cjson
fuzzing
inputs
test1 test10 test11 test2 test3 test3.bu test3.uf test3.uu test4 test5 test6 test7 test8 test9library_config
cJSONConfig.cmake.in cJSONConfigVersion.cmake.in libcjson.pc.in libcjson_utils.pc.in uninstall.cmaketests
inputs
test1 test1.expected test10 test10.expected test11 test11.expected test2 test2.expected test3 test3.expected test4 test4.expected test5 test5.expected test6 test7 test7.expected test8 test8.expected test9 test9.expectedjson-patch-tests
.editorconfig .gitignore .npmignore README.md cjson-utils-tests.json package.json spec_tests.json tests.jsonunity
auto
colour_prompt.rb colour_reporter.rb generate_config.yml generate_module.rb generate_test_runner.rb parse_output.rb stylize_as_junit.rb test_file_filter.rb type_sanitizer.rb unity_test_summary.py unity_test_summary.rb unity_to_junit.pydocs
ThrowTheSwitchCodingStandard.md UnityAssertionsCheatSheetSuitableforPrintingandPossiblyFraming.pdf UnityAssertionsReference.md UnityConfigurationGuide.md UnityGettingStartedGuide.md UnityHelperScriptsGuide.md license.txtexamples
unity_config.hcurl
.github
scripts
cleancmd.pl cmp-config.pl cmp-pkg-config.sh codespell-ignore.words codespell.sh distfiles.sh pyspelling.words pyspelling.yaml randcurl.pl requirements-docs.txt requirements-proselint.txt requirements.txt shellcheck-ci.sh shellcheck.sh spellcheck.curl trimmarkdownheader.pl typos.sh typos.toml verify-examples.pl verify-synopsis.pl yamlcheck.sh yamlcheck.yamlworkflows
appveyor-status.yml checkdocs.yml checksrc.yml checkurls.yml codeql.yml configure-vs-cmake.yml curl-for-win.yml distcheck.yml fuzz.yml http3-linux.yml label.yml linux-old.yml linux.yml macos.yml non-native.yml windows.ymlCMake
CurlSymbolHiding.cmake CurlTests.c FindBrotli.cmake FindCares.cmake FindGSS.cmake FindGnuTLS.cmake FindLDAP.cmake FindLibbacktrace.cmake FindLibgsasl.cmake FindLibidn2.cmake FindLibpsl.cmake FindLibssh.cmake FindLibssh2.cmake FindLibuv.cmake FindMbedTLS.cmake FindNGHTTP2.cmake FindNGHTTP3.cmake FindNGTCP2.cmake FindNettle.cmake FindQuiche.cmake FindRustls.cmake FindWolfSSL.cmake FindZstd.cmake Macros.cmake OtherTests.cmake PickyWarnings.cmake Utilities.cmake cmake_uninstall.in.cmake curl-config.in.cmake unix-cache.cmake win32-cache.cmakedocs
cmdline-opts
.gitignore CMakeLists.txt MANPAGE.md Makefile.am Makefile.inc _AUTHORS.md _BUGS.md _DESCRIPTION.md _ENVIRONMENT.md _EXITCODES.md _FILES.md _GLOBBING.md _NAME.md _OPTIONS.md _OUTPUT.md _PROGRESS.md _PROTOCOLS.md _PROXYPREFIX.md _SEEALSO.md _SYNOPSIS.md _URL.md _VARIABLES.md _VERSION.md _WWW.md abstract-unix-socket.md alt-svc.md anyauth.md append.md aws-sigv4.md basic.md ca-native.md cacert.md capath.md cert-status.md cert-type.md cert.md ciphers.md compressed-ssh.md compressed.md config.md connect-timeout.md connect-to.md continue-at.md cookie-jar.md cookie.md create-dirs.md create-file-mode.md crlf.md crlfile.md curves.md data-ascii.md data-binary.md data-raw.md data-urlencode.md data.md delegation.md digest.md disable-eprt.md disable-epsv.md disable.md disallow-username-in-url.md dns-interface.md dns-ipv4-addr.md dns-ipv6-addr.md dns-servers.md doh-cert-status.md doh-insecure.md doh-url.md dump-ca-embed.md dump-header.md ech.md egd-file.md engine.md etag-compare.md etag-save.md expect100-timeout.md fail-early.md fail-with-body.md fail.md false-start.md follow.md form-escape.md form-string.md form.md ftp-account.md ftp-alternative-to-user.md ftp-create-dirs.md ftp-method.md ftp-pasv.md ftp-port.md ftp-pret.md ftp-skip-pasv-ip.md ftp-ssl-ccc-mode.md ftp-ssl-ccc.md ftp-ssl-control.md get.md globoff.md happy-eyeballs-timeout-ms.md haproxy-clientip.md haproxy-protocol.md head.md header.md help.md hostpubmd5.md hostpubsha256.md hsts.md http0.9.md http1.0.md http1.1.md http2-prior-knowledge.md http2.md http3-only.md http3.md ignore-content-length.md insecure.md interface.md ip-tos.md ipfs-gateway.md ipv4.md ipv6.md json.md junk-session-cookies.md keepalive-cnt.md keepalive-time.md key-type.md key.md knownhosts.md krb.md libcurl.md limit-rate.md list-only.md local-port.md location-trusted.md location.md login-options.md mail-auth.md mail-from.md mail-rcpt-allowfails.md mail-rcpt.md mainpage.idx manual.md max-filesize.md max-redirs.md max-time.md metalink.md mptcp.md negotiate.md netrc-file.md netrc-optional.md netrc.md next.md no-alpn.md no-buffer.md no-clobber.md no-keepalive.md no-npn.md no-progress-meter.md no-sessionid.md noproxy.md ntlm-wb.md ntlm.md oauth2-bearer.md out-null.md output-dir.md output.md parallel-immediate.md parallel-max-host.md parallel-max.md parallel.md pass.md path-as-is.md pinnedpubkey.md post301.md post302.md post303.md preproxy.md progress-bar.md proto-default.md proto-redir.md proto.md proxy-anyauth.md proxy-basic.md proxy-ca-native.md proxy-cacert.md proxy-capath.md proxy-cert-type.md proxy-cert.md proxy-ciphers.md proxy-crlfile.md proxy-digest.md proxy-header.md proxy-http2.md proxy-insecure.md proxy-key-type.md proxy-key.md proxy-negotiate.md proxy-ntlm.md proxy-pass.md proxy-pinnedpubkey.md proxy-service-name.md proxy-ssl-allow-beast.md proxy-ssl-auto-client-cert.md proxy-tls13-ciphers.md proxy-tlsauthtype.md proxy-tlspassword.md proxy-tlsuser.md proxy-tlsv1.md proxy-user.md proxy.md proxy1.0.md proxytunnel.md pubkey.md quote.md random-file.md range.md rate.md raw.md referer.md remote-header-name.md remote-name-all.md remote-name.md remote-time.md remove-on-error.md request-target.md request.md resolve.md retry-all-errors.md retry-connrefused.md retry-delay.md retry-max-time.md retry.md sasl-authzid.md sasl-ir.md service-name.md show-error.md show-headers.md sigalgs.md silent.md skip-existing.md socks4.md socks4a.md socks5-basic.md socks5-gssapi-nec.md socks5-gssapi-service.md socks5-gssapi.md socks5-hostname.md socks5.md speed-limit.md speed-time.md ssl-allow-beast.md ssl-auto-client-cert.md ssl-no-revoke.md ssl-reqd.md ssl-revoke-best-effort.md ssl-sessions.md ssl.md sslv2.md sslv3.md stderr.md styled-output.md suppress-connect-headers.md tcp-fastopen.md tcp-nodelay.md telnet-option.md tftp-blksize.md tftp-no-options.md time-cond.md tls-earlydata.md tls-max.md tls13-ciphers.md tlsauthtype.md tlspassword.md tlsuser.md tlsv1.0.md tlsv1.1.md tlsv1.2.md tlsv1.3.md tlsv1.md tr-encoding.md trace-ascii.md trace-config.md trace-ids.md trace-time.md trace.md unix-socket.md upload-file.md upload-flags.md url-query.md url.md use-ascii.md user-agent.md user.md variable.md verbose.md version.md vlan-priority.md write-out.md xattr.mdexamples
.checksrc .gitignore 10-at-a-time.c CMakeLists.txt Makefile.am Makefile.example Makefile.inc README.md adddocsref.pl address-scope.c altsvc.c anyauthput.c block_ip.c cacertinmem.c certinfo.c chkspeed.c connect-to.c cookie_interface.c crawler.c debug.c default-scheme.c ephiperfifo.c evhiperfifo.c externalsocket.c fileupload.c ftp-delete.c ftp-wildcard.c ftpget.c ftpgetinfo.c ftpgetresp.c ftpsget.c ftpupload.c ftpuploadfrommem.c ftpuploadresume.c getinfo.c getinmemory.c getredirect.c getreferrer.c ghiper.c headerapi.c hiperfifo.c hsts-preload.c htmltidy.c htmltitle.cpp http-options.c http-post.c http2-download.c http2-pushinmemory.c http2-serverpush.c http2-upload.c http3-present.c http3.c httpcustomheader.c httpput-postfields.c httpput.c https.c imap-append.c imap-authzid.c imap-copy.c imap-create.c imap-delete.c imap-examine.c imap-fetch.c imap-list.c imap-lsub.c imap-multi.c imap-noop.c imap-search.c imap-ssl.c imap-store.c imap-tls.c interface.c ipv6.c keepalive.c localport.c log_failed_transfers.c maxconnects.c multi-app.c multi-debugcallback.c multi-double.c multi-event.c multi-formadd.c multi-legacy.c multi-post.c multi-single.c multi-uv.c netrc.c parseurl.c persistent.c pop3-authzid.c pop3-dele.c pop3-list.c pop3-multi.c pop3-noop.c pop3-retr.c pop3-ssl.c pop3-stat.c pop3-tls.c pop3-top.c pop3-uidl.c post-callback.c postinmemory.c postit2-formadd.c postit2.c progressfunc.c protofeats.c range.c resolve.c rtsp-options.c sendrecv.c sepheaders.c sessioninfo.c sftpget.c sftpuploadresume.c shared-connection-cache.c simple.c simplepost.c simplessl.c smooth-gtk-thread.c smtp-authzid.c smtp-expn.c smtp-mail.c smtp-mime.c smtp-multi.c smtp-ssl.c smtp-tls.c smtp-vrfy.c sslbackend.c synctime.c threaded.c unixsocket.c url2file.c urlapi.c usercertinmem.c version-check.pl websocket-cb.c websocket-updown.c websocket.c xmlstream.cinternals
BUFQ.md BUFREF.md CHECKSRC.md CLIENT-READERS.md CLIENT-WRITERS.md CODE_STYLE.md CONNECTION-FILTERS.md CREDENTIALS.md CURLX.md DYNBUF.md HASH.md LLIST.md MID.md MQTT.md MULTI-EV.md NEW-PROTOCOL.md PEERS.md PORTING.md RATELIMITS.md README.md SCORECARD.md SPLAY.md STRPARSE.md THRDPOOL-AND-QUEUE.md TIME-KEEPING.md TLS-SESSIONS.md UINT_SETS.md WEBSOCKET.mdlibcurl
opts
CMakeLists.txt CURLINFO_ACTIVESOCKET.md CURLINFO_APPCONNECT_TIME.md CURLINFO_APPCONNECT_TIME_T.md CURLINFO_CAINFO.md CURLINFO_CAPATH.md CURLINFO_CERTINFO.md CURLINFO_CONDITION_UNMET.md CURLINFO_CONNECT_TIME.md CURLINFO_CONNECT_TIME_T.md CURLINFO_CONN_ID.md CURLINFO_CONTENT_LENGTH_DOWNLOAD.md CURLINFO_CONTENT_LENGTH_DOWNLOAD_T.md CURLINFO_CONTENT_LENGTH_UPLOAD.md CURLINFO_CONTENT_LENGTH_UPLOAD_T.md CURLINFO_CONTENT_TYPE.md CURLINFO_COOKIELIST.md CURLINFO_EARLYDATA_SENT_T.md CURLINFO_EFFECTIVE_METHOD.md CURLINFO_EFFECTIVE_URL.md CURLINFO_FILETIME.md CURLINFO_FILETIME_T.md CURLINFO_FTP_ENTRY_PATH.md CURLINFO_HEADER_SIZE.md CURLINFO_HTTPAUTH_AVAIL.md CURLINFO_HTTPAUTH_USED.md CURLINFO_HTTP_CONNECTCODE.md CURLINFO_HTTP_VERSION.md CURLINFO_LASTSOCKET.md CURLINFO_LOCAL_IP.md CURLINFO_LOCAL_PORT.md CURLINFO_NAMELOOKUP_TIME.md CURLINFO_NAMELOOKUP_TIME_T.md CURLINFO_NUM_CONNECTS.md CURLINFO_OS_ERRNO.md CURLINFO_POSTTRANSFER_TIME_T.md CURLINFO_PRETRANSFER_TIME.md CURLINFO_PRETRANSFER_TIME_T.md CURLINFO_PRIMARY_IP.md CURLINFO_PRIMARY_PORT.md CURLINFO_PRIVATE.md CURLINFO_PROTOCOL.md CURLINFO_PROXYAUTH_AVAIL.md CURLINFO_PROXYAUTH_USED.md CURLINFO_PROXY_ERROR.md CURLINFO_PROXY_SSL_VERIFYRESULT.md CURLINFO_QUEUE_TIME_T.md CURLINFO_REDIRECT_COUNT.md CURLINFO_REDIRECT_TIME.md CURLINFO_REDIRECT_TIME_T.md CURLINFO_REDIRECT_URL.md CURLINFO_REFERER.md CURLINFO_REQUEST_SIZE.md CURLINFO_RESPONSE_CODE.md CURLINFO_RETRY_AFTER.md CURLINFO_RTSP_CLIENT_CSEQ.md CURLINFO_RTSP_CSEQ_RECV.md CURLINFO_RTSP_SERVER_CSEQ.md CURLINFO_RTSP_SESSION_ID.md CURLINFO_SCHEME.md CURLINFO_SIZE_DELIVERED.md CURLINFO_SIZE_DOWNLOAD.md CURLINFO_SIZE_DOWNLOAD_T.md CURLINFO_SIZE_UPLOAD.md CURLINFO_SIZE_UPLOAD_T.md CURLINFO_SPEED_DOWNLOAD.md CURLINFO_SPEED_DOWNLOAD_T.md CURLINFO_SPEED_UPLOAD.md CURLINFO_SPEED_UPLOAD_T.md CURLINFO_SSL_ENGINES.md CURLINFO_SSL_VERIFYRESULT.md CURLINFO_STARTTRANSFER_TIME.md CURLINFO_STARTTRANSFER_TIME_T.md CURLINFO_TLS_SESSION.md CURLINFO_TLS_SSL_PTR.md CURLINFO_TOTAL_TIME.md CURLINFO_TOTAL_TIME_T.md CURLINFO_USED_PROXY.md CURLINFO_XFER_ID.md CURLMINFO_XFERS_ADDED.md CURLMINFO_XFERS_CURRENT.md CURLMINFO_XFERS_DONE.md CURLMINFO_XFERS_PENDING.md CURLMINFO_XFERS_RUNNING.md CURLMOPT_CHUNK_LENGTH_PENALTY_SIZE.md CURLMOPT_CONTENT_LENGTH_PENALTY_SIZE.md CURLMOPT_MAXCONNECTS.md CURLMOPT_MAX_CONCURRENT_STREAMS.md CURLMOPT_MAX_HOST_CONNECTIONS.md CURLMOPT_MAX_PIPELINE_LENGTH.md CURLMOPT_MAX_TOTAL_CONNECTIONS.md CURLMOPT_NETWORK_CHANGED.md CURLMOPT_NOTIFYDATA.md CURLMOPT_NOTIFYFUNCTION.md CURLMOPT_PIPELINING.md CURLMOPT_PIPELINING_SERVER_BL.md CURLMOPT_PIPELINING_SITE_BL.md CURLMOPT_PUSHDATA.md CURLMOPT_PUSHFUNCTION.md CURLMOPT_QUICK_EXIT.md CURLMOPT_RESOLVE_THREADS_MAX.md CURLMOPT_SOCKETDATA.md CURLMOPT_SOCKETFUNCTION.md CURLMOPT_TIMERDATA.md CURLMOPT_TIMERFUNCTION.md CURLOPT_ABSTRACT_UNIX_SOCKET.md CURLOPT_ACCEPTTIMEOUT_MS.md CURLOPT_ACCEPT_ENCODING.md CURLOPT_ADDRESS_SCOPE.md CURLOPT_ALTSVC.md CURLOPT_ALTSVC_CTRL.md CURLOPT_APPEND.md CURLOPT_AUTOREFERER.md CURLOPT_AWS_SIGV4.md CURLOPT_BUFFERSIZE.md CURLOPT_CAINFO.md CURLOPT_CAINFO_BLOB.md CURLOPT_CAPATH.md CURLOPT_CA_CACHE_TIMEOUT.md CURLOPT_CERTINFO.md CURLOPT_CHUNK_BGN_FUNCTION.md CURLOPT_CHUNK_DATA.md CURLOPT_CHUNK_END_FUNCTION.md CURLOPT_CLOSESOCKETDATA.md CURLOPT_CLOSESOCKETFUNCTION.md CURLOPT_CONNECTTIMEOUT.md CURLOPT_CONNECTTIMEOUT_MS.md CURLOPT_CONNECT_ONLY.md CURLOPT_CONNECT_TO.md CURLOPT_CONV_FROM_NETWORK_FUNCTION.md CURLOPT_CONV_FROM_UTF8_FUNCTION.md CURLOPT_CONV_TO_NETWORK_FUNCTION.md CURLOPT_COOKIE.md CURLOPT_COOKIEFILE.md CURLOPT_COOKIEJAR.md CURLOPT_COOKIELIST.md CURLOPT_COOKIESESSION.md CURLOPT_COPYPOSTFIELDS.md CURLOPT_CRLF.md CURLOPT_CRLFILE.md CURLOPT_CURLU.md CURLOPT_CUSTOMREQUEST.md CURLOPT_DEBUGDATA.md CURLOPT_DEBUGFUNCTION.md CURLOPT_DEFAULT_PROTOCOL.md CURLOPT_DIRLISTONLY.md CURLOPT_DISALLOW_USERNAME_IN_URL.md CURLOPT_DNS_CACHE_TIMEOUT.md CURLOPT_DNS_INTERFACE.md CURLOPT_DNS_LOCAL_IP4.md CURLOPT_DNS_LOCAL_IP6.md CURLOPT_DNS_SERVERS.md CURLOPT_DNS_SHUFFLE_ADDRESSES.md CURLOPT_DNS_USE_GLOBAL_CACHE.md CURLOPT_DOH_SSL_VERIFYHOST.md CURLOPT_DOH_SSL_VERIFYPEER.md CURLOPT_DOH_SSL_VERIFYSTATUS.md CURLOPT_DOH_URL.md CURLOPT_ECH.md CURLOPT_EGDSOCKET.md CURLOPT_ERRORBUFFER.md CURLOPT_EXPECT_100_TIMEOUT_MS.md CURLOPT_FAILONERROR.md CURLOPT_FILETIME.md CURLOPT_FNMATCH_DATA.md CURLOPT_FNMATCH_FUNCTION.md CURLOPT_FOLLOWLOCATION.md CURLOPT_FORBID_REUSE.md CURLOPT_FRESH_CONNECT.md CURLOPT_FTPPORT.md CURLOPT_FTPSSLAUTH.md CURLOPT_FTP_ACCOUNT.md CURLOPT_FTP_ALTERNATIVE_TO_USER.md CURLOPT_FTP_CREATE_MISSING_DIRS.md CURLOPT_FTP_FILEMETHOD.md CURLOPT_FTP_SKIP_PASV_IP.md CURLOPT_FTP_SSL_CCC.md CURLOPT_FTP_USE_EPRT.md CURLOPT_FTP_USE_EPSV.md CURLOPT_FTP_USE_PRET.md CURLOPT_GSSAPI_DELEGATION.md CURLOPT_HAPPY_EYEBALLS_TIMEOUT_MS.md CURLOPT_HAPROXYPROTOCOL.md CURLOPT_HAPROXY_CLIENT_IP.md CURLOPT_HEADER.md CURLOPT_HEADERDATA.md CURLOPT_HEADERFUNCTION.md CURLOPT_HEADEROPT.md CURLOPT_HSTS.md CURLOPT_HSTSREADDATA.md CURLOPT_HSTSREADFUNCTION.md CURLOPT_HSTSWRITEDATA.md CURLOPT_HSTSWRITEFUNCTION.md CURLOPT_HSTS_CTRL.md CURLOPT_HTTP09_ALLOWED.md CURLOPT_HTTP200ALIASES.md CURLOPT_HTTPAUTH.md CURLOPT_HTTPGET.md CURLOPT_HTTPHEADER.md CURLOPT_HTTPPOST.md CURLOPT_HTTPPROXYTUNNEL.md CURLOPT_HTTP_CONTENT_DECODING.md CURLOPT_HTTP_TRANSFER_DECODING.md CURLOPT_HTTP_VERSION.md CURLOPT_IGNORE_CONTENT_LENGTH.md CURLOPT_INFILESIZE.md CURLOPT_INFILESIZE_LARGE.md CURLOPT_INTERFACE.md CURLOPT_INTERLEAVEDATA.md CURLOPT_INTERLEAVEFUNCTION.md CURLOPT_IOCTLDATA.md CURLOPT_IOCTLFUNCTION.md CURLOPT_IPRESOLVE.md CURLOPT_ISSUERCERT.md CURLOPT_ISSUERCERT_BLOB.md CURLOPT_KEEP_SENDING_ON_ERROR.md CURLOPT_KEYPASSWD.md CURLOPT_KRBLEVEL.md CURLOPT_LOCALPORT.md CURLOPT_LOCALPORTRANGE.md CURLOPT_LOGIN_OPTIONS.md CURLOPT_LOW_SPEED_LIMIT.md CURLOPT_LOW_SPEED_TIME.md CURLOPT_MAIL_AUTH.md CURLOPT_MAIL_FROM.md CURLOPT_MAIL_RCPT.md CURLOPT_MAIL_RCPT_ALLOWFAILS.md CURLOPT_MAXAGE_CONN.md CURLOPT_MAXCONNECTS.md CURLOPT_MAXFILESIZE.md CURLOPT_MAXFILESIZE_LARGE.md CURLOPT_MAXLIFETIME_CONN.md CURLOPT_MAXREDIRS.md CURLOPT_MAX_RECV_SPEED_LARGE.md CURLOPT_MAX_SEND_SPEED_LARGE.md CURLOPT_MIMEPOST.md CURLOPT_MIME_OPTIONS.md CURLOPT_NETRC.md CURLOPT_NETRC_FILE.md CURLOPT_NEW_DIRECTORY_PERMS.md CURLOPT_NEW_FILE_PERMS.md CURLOPT_NOBODY.md CURLOPT_NOPROGRESS.md CURLOPT_NOPROXY.md CURLOPT_NOSIGNAL.md CURLOPT_OPENSOCKETDATA.md CURLOPT_OPENSOCKETFUNCTION.md CURLOPT_PASSWORD.md CURLOPT_PATH_AS_IS.md CURLOPT_PINNEDPUBLICKEY.md CURLOPT_PIPEWAIT.md CURLOPT_PORT.md CURLOPT_POST.md CURLOPT_POSTFIELDS.md CURLOPT_POSTFIELDSIZE.md CURLOPT_POSTFIELDSIZE_LARGE.md CURLOPT_POSTQUOTE.md CURLOPT_POSTREDIR.md CURLOPT_PREQUOTE.md CURLOPT_PREREQDATA.md CURLOPT_PREREQFUNCTION.md CURLOPT_PRE_PROXY.md CURLOPT_PRIVATE.md CURLOPT_PROGRESSDATA.md CURLOPT_PROGRESSFUNCTION.md CURLOPT_PROTOCOLS.md CURLOPT_PROTOCOLS_STR.md CURLOPT_PROXY.md CURLOPT_PROXYAUTH.md CURLOPT_PROXYHEADER.md CURLOPT_PROXYPASSWORD.md CURLOPT_PROXYPORT.md CURLOPT_PROXYTYPE.md CURLOPT_PROXYUSERNAME.md CURLOPT_PROXYUSERPWD.md CURLOPT_PROXY_CAINFO.md CURLOPT_PROXY_CAINFO_BLOB.md CURLOPT_PROXY_CAPATH.md CURLOPT_PROXY_CRLFILE.md CURLOPT_PROXY_ISSUERCERT.md CURLOPT_PROXY_ISSUERCERT_BLOB.md CURLOPT_PROXY_KEYPASSWD.md CURLOPT_PROXY_PINNEDPUBLICKEY.md CURLOPT_PROXY_SERVICE_NAME.md CURLOPT_PROXY_SSLCERT.md CURLOPT_PROXY_SSLCERTTYPE.md CURLOPT_PROXY_SSLCERT_BLOB.md CURLOPT_PROXY_SSLKEY.md CURLOPT_PROXY_SSLKEYTYPE.md CURLOPT_PROXY_SSLKEY_BLOB.md CURLOPT_PROXY_SSLVERSION.md CURLOPT_PROXY_SSL_CIPHER_LIST.md CURLOPT_PROXY_SSL_OPTIONS.md CURLOPT_PROXY_SSL_VERIFYHOST.md CURLOPT_PROXY_SSL_VERIFYPEER.md CURLOPT_PROXY_TLS13_CIPHERS.md CURLOPT_PROXY_TLSAUTH_PASSWORD.md CURLOPT_PROXY_TLSAUTH_TYPE.md CURLOPT_PROXY_TLSAUTH_USERNAME.md CURLOPT_PROXY_TRANSFER_MODE.md CURLOPT_PUT.md CURLOPT_QUICK_EXIT.md CURLOPT_QUOTE.md CURLOPT_RANDOM_FILE.md CURLOPT_RANGE.md CURLOPT_READDATA.md CURLOPT_READFUNCTION.md CURLOPT_REDIR_PROTOCOLS.md CURLOPT_REDIR_PROTOCOLS_STR.md CURLOPT_REFERER.md CURLOPT_REQUEST_TARGET.md CURLOPT_RESOLVE.md CURLOPT_RESOLVER_START_DATA.md CURLOPT_RESOLVER_START_FUNCTION.md CURLOPT_RESUME_FROM.md CURLOPT_RESUME_FROM_LARGE.md CURLOPT_RTSP_CLIENT_CSEQ.md CURLOPT_RTSP_REQUEST.md CURLOPT_RTSP_SERVER_CSEQ.md CURLOPT_RTSP_SESSION_ID.md CURLOPT_RTSP_STREAM_URI.md CURLOPT_RTSP_TRANSPORT.md CURLOPT_SASL_AUTHZID.md CURLOPT_SASL_IR.md CURLOPT_SEEKDATA.md CURLOPT_SEEKFUNCTION.md CURLOPT_SERVER_RESPONSE_TIMEOUT.md CURLOPT_SERVER_RESPONSE_TIMEOUT_MS.md CURLOPT_SERVICE_NAME.md CURLOPT_SHARE.md CURLOPT_SOCKOPTDATA.md CURLOPT_SOCKOPTFUNCTION.md CURLOPT_SOCKS5_AUTH.md CURLOPT_SOCKS5_GSSAPI_NEC.md CURLOPT_SOCKS5_GSSAPI_SERVICE.md CURLOPT_SSH_AUTH_TYPES.md CURLOPT_SSH_COMPRESSION.md CURLOPT_SSH_HOSTKEYDATA.md CURLOPT_SSH_HOSTKEYFUNCTION.md CURLOPT_SSH_HOST_PUBLIC_KEY_MD5.md CURLOPT_SSH_HOST_PUBLIC_KEY_SHA256.md CURLOPT_SSH_KEYDATA.md CURLOPT_SSH_KEYFUNCTION.md CURLOPT_SSH_KNOWNHOSTS.md CURLOPT_SSH_PRIVATE_KEYFILE.md CURLOPT_SSH_PUBLIC_KEYFILE.md CURLOPT_SSLCERT.md CURLOPT_SSLCERTTYPE.md CURLOPT_SSLCERT_BLOB.md CURLOPT_SSLENGINE.md CURLOPT_SSLENGINE_DEFAULT.md CURLOPT_SSLKEY.md CURLOPT_SSLKEYTYPE.md CURLOPT_SSLKEY_BLOB.md CURLOPT_SSLVERSION.md CURLOPT_SSL_CIPHER_LIST.md CURLOPT_SSL_CTX_DATA.md CURLOPT_SSL_CTX_FUNCTION.md CURLOPT_SSL_EC_CURVES.md CURLOPT_SSL_ENABLE_ALPN.md CURLOPT_SSL_ENABLE_NPN.md CURLOPT_SSL_FALSESTART.md CURLOPT_SSL_OPTIONS.md CURLOPT_SSL_SESSIONID_CACHE.md CURLOPT_SSL_SIGNATURE_ALGORITHMS.md CURLOPT_SSL_VERIFYHOST.md CURLOPT_SSL_VERIFYPEER.md CURLOPT_SSL_VERIFYSTATUS.md CURLOPT_STDERR.md CURLOPT_STREAM_DEPENDS.md CURLOPT_STREAM_DEPENDS_E.md CURLOPT_STREAM_WEIGHT.md CURLOPT_SUPPRESS_CONNECT_HEADERS.md CURLOPT_TCP_FASTOPEN.md CURLOPT_TCP_KEEPALIVE.md CURLOPT_TCP_KEEPCNT.md CURLOPT_TCP_KEEPIDLE.md CURLOPT_TCP_KEEPINTVL.md CURLOPT_TCP_NODELAY.md CURLOPT_TELNETOPTIONS.md CURLOPT_TFTP_BLKSIZE.md CURLOPT_TFTP_NO_OPTIONS.md CURLOPT_TIMECONDITION.md CURLOPT_TIMEOUT.md CURLOPT_TIMEOUT_MS.md CURLOPT_TIMEVALUE.md CURLOPT_TIMEVALUE_LARGE.md CURLOPT_TLS13_CIPHERS.md CURLOPT_TLSAUTH_PASSWORD.md CURLOPT_TLSAUTH_TYPE.md CURLOPT_TLSAUTH_USERNAME.md CURLOPT_TRAILERDATA.md CURLOPT_TRAILERFUNCTION.md CURLOPT_TRANSFERTEXT.md CURLOPT_TRANSFER_ENCODING.md CURLOPT_UNIX_SOCKET_PATH.md CURLOPT_UNRESTRICTED_AUTH.md CURLOPT_UPKEEP_INTERVAL_MS.md CURLOPT_UPLOAD.md CURLOPT_UPLOAD_BUFFERSIZE.md CURLOPT_UPLOAD_FLAGS.md CURLOPT_URL.md CURLOPT_USERAGENT.md CURLOPT_USERNAME.md CURLOPT_USERPWD.md CURLOPT_USE_SSL.md CURLOPT_VERBOSE.md CURLOPT_WILDCARDMATCH.md CURLOPT_WRITEDATA.md CURLOPT_WRITEFUNCTION.md CURLOPT_WS_OPTIONS.md CURLOPT_XFERINFODATA.md CURLOPT_XFERINFOFUNCTION.md CURLOPT_XOAUTH2_BEARER.md CURLSHOPT_LOCKFUNC.md CURLSHOPT_SHARE.md CURLSHOPT_UNLOCKFUNC.md CURLSHOPT_UNSHARE.md CURLSHOPT_USERDATA.md Makefile.am Makefile.incinclude
curl
Makefile.am curl.h curlver.h easy.h header.h mprintf.h multi.h options.h stdcheaders.h system.h typecheck-gcc.h urlapi.h websockets.hlib
curlx
base64.c base64.h basename.c basename.h dynbuf.c dynbuf.h fopen.c fopen.h inet_ntop.c inet_ntop.h inet_pton.c inet_pton.h multibyte.c multibyte.h nonblock.c nonblock.h snprintf.c snprintf.h strcopy.c strcopy.h strdup.c strdup.h strerr.c strerr.h strparse.c strparse.h timediff.c timediff.h timeval.c timeval.h version_win32.c version_win32.h wait.c wait.h warnless.c warnless.h winapi.c winapi.hvauth
cleartext.c cram.c digest.c digest.h digest_sspi.c gsasl.c krb5_gssapi.c krb5_sspi.c ntlm.c ntlm_sspi.c oauth2.c spnego_gssapi.c spnego_sspi.c vauth.c vauth.hvquic
curl_ngtcp2.c curl_ngtcp2.h curl_quiche.c curl_quiche.h vquic-tls.c vquic-tls.h vquic.c vquic.h vquic_int.hvtls
apple.c apple.h cipher_suite.c cipher_suite.h gtls.c gtls.h hostcheck.c hostcheck.h keylog.c keylog.h mbedtls.c mbedtls.h openssl.c openssl.h rustls.c rustls.h schannel.c schannel.h schannel_int.h schannel_verify.c vtls.c vtls.h vtls_int.h vtls_scache.c vtls_scache.h vtls_spack.c vtls_spack.h wolfssl.c wolfssl.h x509asn1.c x509asn1.hm4
.gitignore curl-amissl.m4 curl-apple-sectrust.m4 curl-compilers.m4 curl-confopts.m4 curl-functions.m4 curl-gnutls.m4 curl-mbedtls.m4 curl-openssl.m4 curl-override.m4 curl-reentrant.m4 curl-rustls.m4 curl-schannel.m4 curl-sysconfig.m4 curl-wolfssl.m4 xc-am-iface.m4 xc-cc-check.m4 xc-lt-iface.m4 xc-val-flgs.m4 zz40-xc-ovr.m4 zz50-xc-ovr.m4projects
OS400
.checksrc README.OS400 ccsidcurl.c ccsidcurl.h config400.default curl.cmd curl.inc.in curlcl.c curlmain.c initscript.sh make-docs.sh make-include.sh make-lib.sh make-src.sh make-tests.sh makefile.sh os400sys.c os400sys.hWindows
tmpl
.gitattributes README.txt curl-all.sln curl.sln curl.vcxproj curl.vcxproj.filters libcurl.sln libcurl.vcxproj libcurl.vcxproj.filtersvms
Makefile.am backup_gnv_curl_src.com build_curl-config_script.com build_gnv_curl.com build_gnv_curl_pcsi_desc.com build_gnv_curl_pcsi_text.com build_gnv_curl_release_notes.com build_libcurl_pc.com build_vms.com clean_gnv_curl.com compare_curl_source.com config_h.com curl_crtl_init.c curl_gnv_build_steps.txt curl_release_note_start.txt curl_startup.com curlmsg.h curlmsg.msg curlmsg.sdl curlmsg_vms.h generate_config_vms_h_curl.com generate_vax_transfer.com gnv_conftest.c_first gnv_curl_configure.sh gnv_libcurl_symbols.opt gnv_link_curl.com macro32_exactcase.patch make_gnv_curl_install.sh make_pcsi_curl_kit_name.com pcsi_gnv_curl_file_list.txt pcsi_product_gnv_curl.com readme report_openssl_version.c setup_gnv_curl_build.com stage_curl_install.com vms_eco_level.hscripts
.checksrc CMakeLists.txt Makefile.am badwords badwords-all badwords.txt cd2cd cd2nroff cdall checksrc-all.pl checksrc.pl cmakelint.sh completion.pl contributors.sh contrithanks.sh coverage.sh delta dmaketgz extract-unit-protos firefox-db2pem.sh installcheck.sh maketgz managen mdlinkcheck mk-ca-bundle.pl mk-unity.pl nroff2cd perlcheck.sh pythonlint.sh randdisable release-notes.pl release-tools.sh schemetable.c singleuse.pl spacecheck.pl top-complexity top-length verify-release wcurlsrc
.checksrc .gitignore CMakeLists.txt Makefile.am Makefile.inc config2setopts.c config2setopts.h curl.rc curlinfo.c mk-file-embed.pl mkhelp.pl slist_wc.c slist_wc.h terminal.c terminal.h tool_cb_dbg.c tool_cb_dbg.h tool_cb_hdr.c tool_cb_hdr.h tool_cb_prg.c tool_cb_prg.h tool_cb_rea.c tool_cb_rea.h tool_cb_see.c tool_cb_see.h tool_cb_soc.c tool_cb_soc.h tool_cb_wrt.c tool_cb_wrt.h tool_cfgable.c tool_cfgable.h tool_dirhie.c tool_dirhie.h tool_doswin.c tool_doswin.h tool_easysrc.c tool_easysrc.h tool_filetime.c tool_filetime.h tool_findfile.c tool_findfile.h tool_formparse.c tool_formparse.h tool_getparam.c tool_getparam.h tool_getpass.c tool_getpass.h tool_help.c tool_help.h tool_helpers.c tool_helpers.h tool_hugehelp.h tool_ipfs.c tool_ipfs.h tool_libinfo.c tool_libinfo.h tool_listhelp.c tool_main.c tool_main.h tool_msgs.c tool_msgs.h tool_operate.c tool_operate.h tool_operhlp.c tool_operhlp.h tool_paramhlp.c tool_paramhlp.h tool_parsecfg.c tool_parsecfg.h tool_progress.c tool_progress.h tool_sdecls.h tool_setopt.c tool_setopt.h tool_setup.h tool_ssls.c tool_ssls.h tool_stderr.c tool_stderr.h tool_urlglob.c tool_urlglob.h tool_util.c tool_util.h tool_version.h tool_vms.c tool_vms.h tool_writeout.c tool_writeout.h tool_writeout_json.c tool_writeout_json.h tool_xattr.c tool_xattr.h var.c var.htests
certs
.gitignore CMakeLists.txt Makefile.am Makefile.inc genserv.pl srp-verifier-conf srp-verifier-db test-ca.cnf test-ca.prm test-client-cert.prm test-client-eku-only.prm test-localhost-san-first.prm test-localhost-san-last.prm test-localhost.nn.prm test-localhost.prm test-localhost0h.prmdata
.gitignore DISABLED Makefile.am data-xml1 data1400.c data1401.c data1402.c data1403.c data1404.c data1405.c data1406.c data1407.c data1420.c data1461.txt data1463.txt data1465.c data1481.c data1705-1.md data1705-2.md data1705-3.md data1705-4.md data1705-stdout.1 data1706-1.md data1706-2.md data1706-3.md data1706-4.md data1706-stdout.txt data320.html test1 test10 test100 test1000 test1001 test1002 test1003 test1004 test1005 test1006 test1007 test1008 test1009 test101 test1010 test1011 test1012 test1013 test1014 test1015 test1016 test1017 test1018 test1019 test102 test1020 test1021 test1022 test1023 test1024 test1025 test1026 test1027 test1028 test1029 test103 test1030 test1031 test1032 test1033 test1034 test1035 test1036 test1037 test1038 test1039 test104 test1040 test1041 test1042 test1043 test1044 test1045 test1046 test1047 test1048 test1049 test105 test1050 test1051 test1052 test1053 test1054 test1055 test1056 test1057 test1058 test1059 test106 test1060 test1061 test1062 test1063 test1064 test1065 test1066 test1067 test1068 test1069 test107 test1070 test1071 test1072 test1073 test1074 test1075 test1076 test1077 test1078 test1079 test108 test1080 test1081 test1082 test1083 test1084 test1085 test1086 test1087 test1088 test1089 test109 test1090 test1091 test1092 test1093 test1094 test1095 test1096 test1097 test1098 test1099 test11 test110 test1100 test1101 test1102 test1103 test1104 test1105 test1106 test1107 test1108 test1109 test111 test1110 test1111 test1112 test1113 test1114 test1115 test1116 test1117 test1118 test1119 test112 test1120 test1121 test1122 test1123 test1124 test1125 test1126 test1127 test1128 test1129 test113 test1130 test1131 test1132 test1133 test1134 test1135 test1136 test1137 test1138 test1139 test114 test1140 test1141 test1142 test1143 test1144 test1145 test1146 test1147 test1148 test1149 test115 test1150 test1151 test1152 test1153 test1154 test1155 test1156 test1157 test1158 test1159 test116 test1160 test1161 test1162 test1163 test1164 test1165 test1166 test1167 test1168 test1169 test117 test1170 test1171 test1172 test1173 test1174 test1175 test1176 test1177 test1178 test1179 test118 test1180 test1181 test1182 test1183 test1184 test1185 test1186 test1187 test1188 test1189 test119 test1190 test1191 test1192 test1193 test1194 test1195 test1196 test1197 test1198 test1199 test12 test120 test1200 test1201 test1202 test1203 test1204 test1205 test1206 test1207 test1208 test1209 test121 test1210 test1211 test1212 test1213 test1214 test1215 test1216 test1217 test1218 test1219 test122 test1220 test1221 test1222 test1223 test1224 test1225 test1226 test1227 test1228 test1229 test123 test1230 test1231 test1232 test1233 test1234 test1235 test1236 test1237 test1238 test1239 test124 test1240 test1241 test1242 test1243 test1244 test1245 test1246 test1247 test1248 test1249 test125 test1250 test1251 test1252 test1253 test1254 test1255 test1256 test1257 test1258 test1259 test126 test1260 test1261 test1262 test1263 test1264 test1265 test1266 test1267 test1268 test1269 test127 test1270 test1271 test1272 test1273 test1274 test1275 test1276 test1277 test1278 test1279 test128 test1280 test1281 test1282 test1283 test1284 test1285 test1286 test1287 test1288 test1289 test129 test1290 test1291 test1292 test1293 test1294 test1295 test1296 test1297 test1298 test1299 test13 test130 test1300 test1301 test1302 test1303 test1304 test1305 test1306 test1307 test1308 test1309 test131 test1310 test1311 test1312 test1313 test1314 test1315 test1316 test1317 test1318 test1319 test132 test1320 test1321 test1322 test1323 test1324 test1325 test1326 test1327 test1328 test1329 test133 test1330 test1331 test1332 test1333 test1334 test1335 test1336 test1337 test1338 test1339 test134 test1340 test1341 test1342 test1343 test1344 test1345 test1346 test1347 test1348 test1349 test135 test1350 test1351 test1352 test1353 test1354 test1355 test1356 test1357 test1358 test1359 test136 test1360 test1361 test1362 test1363 test1364 test1365 test1366 test1367 test1368 test1369 test137 test1370 test1371 test1372 test1373 test1374 test1375 test1376 test1377 test1378 test1379 test138 test1380 test1381 test1382 test1383 test1384 test1385 test1386 test1387 test1388 test1389 test139 test1390 test1391 test1392 test1393 test1394 test1395 test1396 test1397 test1398 test1399 test14 test140 test1400 test1401 test1402 test1403 test1404 test1405 test1406 test1407 test1408 test1409 test141 test1410 test1411 test1412 test1413 test1414 test1415 test1416 test1417 test1418 test1419 test142 test1420 test1421 test1422 test1423 test1424 test1425 test1426 test1427 test1428 test1429 test143 test1430 test1431 test1432 test1433 test1434 test1435 test1436 test1437 test1438 test1439 test144 test1440 test1441 test1442 test1443 test1444 test1445 test1446 test1447 test1448 test1449 test145 test1450 test1451 test1452 test1453 test1454 test1455 test1456 test1457 test1458 test1459 test146 test1460 test1461 test1462 test1463 test1464 test1465 test1466 test1467 test1468 test1469 test147 test1470 test1471 test1472 test1473 test1474 test1475 test1476 test1477 test1478 test1479 test148 test1480 test1481 test1482 test1483 test1484 test1485 test1486 test1487 test1488 test1489 test149 test1490 test1491 test1492 test1493 test1494 test1495 test1496 test1497 test1498 test1499 test15 test150 test1500 test1501 test1502 test1503 test1504 test1505 test1506 test1507 test1508 test1509 test151 test1510 test1511 test1512 test1513 test1514 test1515 test1516 test1517 test1518 test1519 test152 test1520 test1521 test1522 test1523 test1524 test1525 test1526 test1527 test1528 test1529 test153 test1530 test1531 test1532 test1533 test1534 test1535 test1536 test1537 test1538 test1539 test154 test1540 test1541 test1542 test1543 test1544 test1545 test1546 test1547 test1548 test1549 test155 test1550 test1551 test1552 test1553 test1554 test1555 test1556 test1557 test1558 test1559 test156 test1560 test1561 test1562 test1563 test1564 test1565 test1566 test1567 test1568 test1569 test157 test1570 test1571 test1572 test1573 test1574 test1575 test1576 test1577 test1578 test1579 test158 test1580 test1581 test1582 test1583 test1584 test1585 test1586 test1587 test1588 test1589 test159 test1590 test1591 test1592 test1593 test1594 test1595 test1596 test1597 test1598 test1599 test16 test160 test1600 test1601 test1602 test1603 test1604 test1605 test1606 test1607 test1608 test1609 test161 test1610 test1611 test1612 test1613 test1614 test1615 test1616 test1617 test1618 test1619 test162 test1620 test1621 test1622 test1623 test1624 test1625 test1626 test1627 test1628 test1629 test163 test1630 test1631 test1632 test1633 test1634 test1635 test1636 test1637 test1638 test1639 test164 test1640 test1641 test1642 test1643 test1644 test1645 test165 test1650 test1651 test1652 test1653 test1654 test1655 test1656 test1657 test1658 test1659 test166 test1660 test1661 test1662 test1663 test1664 test1665 test1666 test1667 test1668 test1669 test167 test1670 test1671 test1672 test1673 test1674 test1675 test1676 test168 test1680 test1681 test1682 test1683 test1684 test1685 test169 test17 test170 test1700 test1701 test1702 test1703 test1704 test1705 test1706 test1707 test1708 test1709 test171 test1710 test1711 test1712 test1713 test1714 test1715 test172 test1720 test1721 test173 test174 test175 test176 test177 test178 test179 test18 test180 test1800 test1801 test1802 test181 test182 test183 test184 test1847 test1848 test1849 test185 test1850 test1851 test186 test187 test188 test189 test19 test190 test1900 test1901 test1902 test1903 test1904 test1905 test1906 test1907 test1908 test1909 test191 test1910 test1911 test1912 test1913 test1914 test1915 test1916 test1917 test1918 test1919 test192 test1920 test1921 test193 test1933 test1934 test1935 test1936 test1937 test1938 test1939 test194 test1940 test1941 test1942 test1943 test1944 test1945 test1946 test1947 test1948 test195 test1955 test1956 test1957 test1958 test1959 test196 test1960 test1964 test1965 test1966 test197 test1970 test1971 test1972 test1973 test1974 test1975 test1976 test1977 test1978 test1979 test198 test1980 test1981 test1982 test1983 test1984 test199 test2 test20 test200 test2000 test2001 test2002 test2003 test2004 test2005 test2006 test2007 test2008 test2009 test201 test2010 test2011 test2012 test2013 test2014 test202 test2023 test2024 test2025 test2026 test2027 test2028 test2029 test203 test2030 test2031 test2032 test2033 test2034 test2035 test2037 test2038 test2039 test204 test2040 test2041 test2042 test2043 test2044 test2045 test2046 test2047 test2048 test2049 test205 test2050 test2051 test2052 test2053 test2054 test2055 test2056 test2057 test2058 test2059 test206 test2060 test2061 test2062 test2063 test2064 test2065 test2066 test2067 test2068 test2069 test207 test2070 test2071 test2072 test2073 test2074 test2075 test2076 test2077 test2078 test2079 test208 test2080 test2081 test2082 test2083 test2084 test2085 test2086 test2087 test2088 test2089 test209 test2090 test2091 test2092 test21 test210 test2100 test2101 test2102 test2103 test2104 test211 test212 test213 test214 test215 test216 test217 test218 test219 test22 test220 test2200 test2201 test2202 test2203 test2204 test2205 test2206 test2207 test221 test222 test223 test224 test225 test226 test227 test228 test229 test23 test230 test2300 test2301 test2302 test2303 test2304 test2306 test2307 test2308 test2309 test231 test232 test233 test234 test235 test236 test237 test238 test239 test24 test240 test2400 test2401 test2402 test2403 test2404 test2405 test2406 test2407 test2408 test2409 test241 test2410 test2411 test242 test243 test244 test245 test246 test247 test248 test249 test25 test250 test2500 test2501 test2502 test2503 test2504 test2505 test2506 test251 test252 test253 test254 test255 test256 test257 test258 test259 test26 test260 test2600 test2601 test2602 test2603 test2604 test2605 test261 test262 test263 test264 test265 test266 test267 test268 test269 test27 test270 test2700 test2701 test2702 test2703 test2704 test2705 test2706 test2707 test2708 test2709 test271 test2710 test2711 test2712 test2713 test2714 test2715 test2716 test2717 test2718 test2719 test272 test2720 test2721 test2722 test2723 test273 test274 test275 test276 test277 test278 test279 test28 test280 test281 test282 test283 test284 test285 test286 test287 test288 test289 test29 test290 test291 test292 test293 test294 test295 test296 test297 test298 test299 test3 test30 test300 test3000 test3001 test3002 test3003 test3004 test3005 test3006 test3007 test3008 test3009 test301 test3010 test3011 test3012 test3013 test3014 test3015 test3016 test3017 test3018 test3019 test302 test3020 test3021 test3022 test3023 test3024 test3025 test3026 test3027 test3028 test3029 test303 test3030 test3031 test3032 test3033 test3034 test3035 test3036 test304 test305 test306 test307 test308 test309 test31 test310 test3100 test3101 test3102 test3103 test3104 test3105 test3106 test311 test312 test313 test314 test315 test316 test317 test318 test319 test32 test320 test3200 test3201 test3202 test3203 test3204 test3205 test3206 test3207 test3208 test3209 test321 test3210 test3211 test3212 test3213 test3214 test3215 test3216 test3217 test3218 test3219 test322 test3220 test323 test324 test325 test326 test327 test328 test329 test33 test330 test3300 test3301 test3302 test331 test332 test333 test334 test335 test336 test337 test338 test339 test34 test340 test341 test342 test343 test344 test345 test346 test347 test348 test349 test35 test350 test351 test352 test353 test354 test355 test356 test357 test358 test359 test36 test360 test361 test362 test363 test364 test365 test366 test367 test368 test369 test37 test370 test371 test372 test373 test374 test375 test376 test378 test379 test38 test380 test381 test383 test384 test385 test386 test387 test388 test389 test39 test390 test391 test392 test393 test394 test395 test396 test397 test398 test399 test4 test40 test400 test4000 test4001 test401 test402 test403 test404 test405 test406 test407 test408 test409 test41 test410 test411 test412 test413 test414 test415 test416 test417 test418 test419 test42 test420 test421 test422 test423 test424 test425 test426 test427 test428 test429 test43 test430 test431 test432 test433 test434 test435 test436 test437 test438 test439 test44 test440 test441 test442 test443 test444 test445 test446 test447 test448 test449 test45 test450 test451 test452 test453 test454 test455 test456 test457 test458 test459 test46 test460 test461 test462 test463 test467 test468 test469 test47 test470 test471 test472 test473 test474 test475 test476 test477 test478 test479 test48 test480 test481 test482 test483 test484 test485 test486 test487 test488 test489 test49 test490 test491 test492 test493 test494 test495 test496 test497 test498 test499 test5 test50 test500 test501 test502 test503 test504 test505 test506 test507 test508 test509 test51 test510 test511 test512 test513 test514 test515 test516 test517 test518 test519 test52 test520 test521 test522 test523 test524 test525 test526 test527 test528 test529 test53 test530 test531 test532 test533 test534 test535 test536 test537 test538 test539 test54 test540 test541 test542 test543 test544 test545 test546 test547 test548 test549 test55 test550 test551 test552 test553 test554 test555 test556 test557 test558 test559 test56 test560 test561 test562 test563 test564 test565 test566 test567 test568 test569 test57 test570 test571 test572 test573 test574 test575 test576 test577 test578 test579 test58 test580 test581 test582 test583 test584 test585 test586 test587 test588 test589 test59 test590 test591 test592 test593 test594 test595 test596 test597 test598 test599 test6 test60 test600 test601 test602 test603 test604 test605 test606 test607 test608 test609 test61 test610 test611 test612 test613 test614 test615 test616 test617 test618 test619 test62 test620 test621 test622 test623 test624 test625 test626 test627 test628 test629 test63 test630 test631 test632 test633 test634 test635 test636 test637 test638 test639 test64 test640 test641 test642 test643 test644 test645 test646 test647 test648 test649 test65 test650 test651 test652 test653 test654 test655 test656 test658 test659 test66 test660 test661 test662 test663 test664 test665 test666 test667 test668 test669 test67 test670 test671 test672 test673 test674 test675 test676 test677 test678 test679 test68 test680 test681 test682 test683 test684 test685 test686 test687 test688 test689 test69 test690 test691 test692 test693 test694 test695 test696 test697 test698 test699 test7 test70 test700 test701 test702 test703 test704 test705 test706 test707 test708 test709 test71 test710 test711 test712 test713 test714 test715 test716 test717 test718 test719 test72 test720 test721 test722 test723 test724 test725 test726 test727 test728 test729 test73 test730 test731 test732 test733 test734 test735 test736 test737 test738 test739 test74 test740 test741 test742 test743 test744 test745 test746 test747 test748 test749 test75 test750 test751 test752 test753 test754 test755 test756 test757 test758 test759 test76 test760 test761 test762 test763 test764 test765 test766 test767 test768 test769 test77 test770 test771 test772 test773 test774 test775 test776 test777 test778 test779 test78 test780 test781 test782 test783 test784 test785 test786 test787 test788 test789 test79 test790 test791 test792 test793 test794 test795 test796 test797 test798 test799 test8 test80 test800 test801 test802 test803 test804 test805 test806 test807 test808 test809 test81 test810 test811 test812 test813 test814 test815 test816 test817 test818 test819 test82 test820 test821 test822 test823 test824 test825 test826 test827 test828 test829 test83 test830 test831 test832 test833 test834 test835 test836 test837 test838 test839 test84 test840 test841 test842 test843 test844 test845 test846 test847 test848 test849 test85 test850 test851 test852 test853 test854 test855 test856 test857 test858 test859 test86 test860 test861 test862 test863 test864 test865 test866 test867 test868 test869 test87 test870 test871 test872 test873 test874 test875 test876 test877 test878 test879 test88 test880 test881 test882 test883 test884 test885 test886 test887 test888 test889 test89 test890 test891 test892 test893 test894 test895 test896 test897 test898 test899 test9 test90 test900 test901 test902 test903 test904 test905 test906 test907 test908 test909 test91 test910 test911 test912 test913 test914 test915 test916 test917 test918 test919 test92 test920 test921 test922 test923 test924 test925 test926 test927 test928 test929 test93 test930 test931 test932 test933 test934 test935 test936 test937 test938 test939 test94 test940 test941 test942 test943 test944 test945 test946 test947 test948 test949 test95 test950 test951 test952 test953 test954 test955 test956 test957 test958 test959 test96 test960 test961 test962 test963 test964 test965 test966 test967 test968 test969 test97 test970 test971 test972 test973 test974 test975 test976 test977 test978 test979 test98 test980 test981 test982 test983 test984 test985 test986 test987 test988 test989 test99 test990 test991 test992 test993 test994 test995 test996 test997 test998 test999http
testenv
__init__.py caddy.py certs.py client.py curl.py dante.py dnsd.py env.py httpd.py nghttpx.py ports.py sshd.py vsftpd.py ws_echo_server.pylibtest
.gitignore CMakeLists.txt Makefile.am Makefile.inc cli_ftp_upload.c cli_h2_pausing.c cli_h2_serverpush.c cli_h2_upgrade_extreme.c cli_hx_download.c cli_hx_upload.c cli_tls_session_reuse.c cli_upload_pausing.c cli_ws_data.c cli_ws_pingpong.c first.c first.h lib1156.c lib1301.c lib1308.c lib1485.c lib1500.c lib1501.c lib1502.c lib1506.c lib1507.c lib1508.c lib1509.c lib1510.c lib1511.c lib1512.c lib1513.c lib1514.c lib1515.c lib1517.c lib1518.c lib1520.c lib1522.c lib1523.c lib1525.c lib1526.c lib1527.c lib1528.c lib1529.c lib1530.c lib1531.c lib1532.c lib1533.c lib1534.c lib1535.c lib1536.c lib1537.c lib1538.c lib1540.c lib1541.c lib1542.c lib1545.c lib1549.c lib1550.c lib1551.c lib1552.c lib1553.c lib1554.c lib1555.c lib1556.c lib1557.c lib1558.c lib1559.c lib1560.c lib1564.c lib1565.c lib1567.c lib1568.c lib1569.c lib1571.c lib1576.c lib1582.c lib1587.c lib1588.c lib1589.c lib1591.c lib1592.c lib1593.c lib1594.c lib1597.c lib1598.c lib1599.c lib1662.c lib1900.c lib1901.c lib1902.c lib1903.c lib1905.c lib1906.c lib1907.c lib1908.c lib1910.c lib1911.c lib1912.c lib1913.c lib1915.c lib1916.c lib1918.c lib1919.c lib1920.c lib1921.c lib1933.c lib1934.c lib1935.c lib1936.c lib1937.c lib1938.c lib1939.c lib1940.c lib1945.c lib1947.c lib1948.c lib1955.c lib1956.c lib1957.c lib1958.c lib1959.c lib1960.c lib1964.c lib1965.c lib1970.c lib1971.c lib1972.c lib1973.c lib1974.c lib1975.c lib1977.c lib1978.c lib2023.c lib2032.c lib2082.c lib2301.c lib2302.c lib2304.c lib2306.c lib2308.c lib2309.c lib2402.c lib2404.c lib2405.c lib2502.c lib2504.c lib2505.c lib2506.c lib2700.c lib3010.c lib3025.c lib3026.c lib3027.c lib3033.c lib3034.c lib3100.c lib3101.c lib3102.c lib3103.c lib3104.c lib3105.c lib3207.c lib3208.c lib500.c lib501.c lib502.c lib503.c lib504.c lib505.c lib506.c lib507.c lib508.c lib509.c lib510.c lib511.c lib512.c lib513.c lib514.c lib515.c lib516.c lib517.c lib518.c lib519.c lib520.c lib521.c lib523.c lib524.c lib525.c lib526.c lib530.c lib533.c lib536.c lib537.c lib539.c lib540.c lib541.c lib542.c lib543.c lib544.c lib547.c lib549.c lib552.c lib553.c lib554.c lib555.c lib556.c lib557.c lib558.c lib559.c lib560.c lib562.c lib564.c lib566.c lib567.c lib568.c lib569.c lib570.c lib571.c lib572.c lib573.c lib574.c lib575.c lib576.c lib578.c lib579.c lib582.c lib583.c lib586.c lib589.c lib590.c lib591.c lib597.c lib598.c lib599.c lib643.c lib650.c lib651.c lib652.c lib653.c lib654.c lib655.c lib658.c lib659.c lib661.c lib666.c lib667.c lib668.c lib670.c lib674.c lib676.c lib677.c lib678.c lib694.c lib695.c lib751.c lib753.c lib757.c lib758.c lib766.c memptr.c mk-lib1521.pl test1013.pl test1022.pl test307.pl test610.pl test613.pl testtrace.c testtrace.h testutil.c testutil.h unitcheck.hserver
.checksrc .gitignore CMakeLists.txt Makefile.am Makefile.inc dnsd.c first.c first.h getpart.c mqttd.c resolve.c rtspd.c sockfilt.c socksd.c sws.c tftpd.c util.ctunit
.gitignore CMakeLists.txt Makefile.am Makefile.inc README.md tool1394.c tool1604.c tool1621.c tool1622.c tool1623.c tool1720.cunit
.gitignore CMakeLists.txt Makefile.am Makefile.inc README.md unit1300.c unit1302.c unit1303.c unit1304.c unit1305.c unit1307.c unit1309.c unit1323.c unit1330.c unit1395.c unit1396.c unit1397.c unit1398.c unit1399.c unit1600.c unit1601.c unit1602.c unit1603.c unit1605.c unit1606.c unit1607.c unit1608.c unit1609.c unit1610.c unit1611.c unit1612.c unit1614.c unit1615.c unit1616.c unit1620.c unit1625.c unit1626.c unit1627.c unit1636.c unit1650.c unit1651.c unit1652.c unit1653.c unit1654.c unit1655.c unit1656.c unit1657.c unit1658.c unit1660.c unit1661.c unit1663.c unit1664.c unit1666.c unit1667.c unit1668.c unit1669.c unit1674.c unit1675.c unit1676.c unit1979.c unit1980.c unit2600.c unit2601.c unit2602.c unit2603.c unit2604.c unit2605.c unit3200.c unit3205.c unit3211.c unit3212.c unit3213.c unit3214.c unit3216.c unit3219.c unit3300.c unit3301.c unit3302.cexamples
.env config.ini crypto_test.lua env_test.lua fs_example.lua http_server.lua https_test.lua ini_example.lua json.lua log.lua path_fs_example.lua process_example.lua request_download.lua request_test.lua run_all.lua sqlite_example.lua sqlite_http_template.lua stash_test.lua template_test.lua timer.lua websocket.luainiparser
example
iniexample.c iniwrite.c parse.c twisted-errors.ini twisted-genhuge.py twisted-ofkey.ini twisted-ofval.ini twisted.initest
CMakeLists.txt test_dictionary.c test_iniparser.c unity-config.yml unity_config.hjinjac
libjinjac
src
CMakeLists.txt ast.c ast.h block_statement.c block_statement.h buffer.c buffer.h buildin.c buildin.h common.h convert.c convert.h flex_decl.h jfunction.c jfunction.h jinja_expression.l jinja_expression.y jinjac_parse.c jinjac_parse.h jinjac_stream.c jinjac_stream.h jlist.c jlist.h jobject.c jobject.h parameter.c parameter.h str_obj.c str_obj.h trace.c trace.htest
.gitignore CMakeLists.txt autotest.rb test_01.expected test_01.jinja test_01b.expected test_01b.jinja test_01c.expected test_01c.jinja test_01d.expected test_01d.jinja test_02.expected test_02.jinja test_03.expected test_03.jinja test_04.expected test_04.jinja test_05.expected test_05.jinja test_06.expected test_06.jinja test_07.expected test_07.jinja test_08.expected test_08.jinja test_08b.expected test_08b.jinja test_09.expected test_09.jinja test_10.expected test_10.jinja test_11.expected test_11.jinja test_12.expected test_12.jinja test_13.expected test_13.jinja test_14.expected test_14.jinja test_15.expected test_15.jinja test_16.expected test_16.jinja test_17.expected test_17.jinja test_18.expected test_18.jinja test_18b.expected test_18b.jinja test_18c.expected test_18c.jinja test_19.expected test_19.jinja test_19b.expected test_19b.jinja test_19c.expected test_19c.jinja test_19d.expected test_19d.jinja test_19e.expected test_19e.jinja test_19f.expected test_19f.jinja test_20.expected test_20.jinja test_21.expected test_21.jinja test_22.expected test_22.jinja test_22a.expected test_22a.jinja test_22b.expected test_22b.jinja test_23.expected test_23.jinja test_24.expected test_24.jinjalibev
Changes LICENSE Makefile Makefile.am Makefile.in README Symbols.ev Symbols.event aclocal.m4 autogen.sh compile config.guess config.h config.h.in config.status config.sub configure configure.ac depcomp ev++.h ev.3 ev.c ev.h ev.pod ev_epoll.c ev_kqueue.c ev_poll.c ev_port.c ev_select.c ev_vars.h ev_win32.c ev_wrap.h event.c event.h install-sh libev.m4 libtool ltmain.sh missing mkinstalldirs stamp-h1luajit
doc
bluequad-print.css bluequad.css contact.html ext_buffer.html ext_c_api.html ext_ffi.html ext_ffi_api.html ext_ffi_semantics.html ext_ffi_tutorial.html ext_jit.html ext_profiler.html extensions.html install.html luajit.html running.html
dynasm
dasm_arm.h dasm_arm.lua dasm_arm64.h dasm_arm64.lua dasm_mips.h dasm_mips.lua dasm_mips64.lua dasm_ppc.h dasm_ppc.lua dasm_proto.h dasm_x64.lua dasm_x86.h dasm_x86.lua dynasm.luasrc
host
.gitignore README buildvm.c buildvm.h buildvm_asm.c buildvm_fold.c buildvm_lib.c buildvm_libbc.h buildvm_peobj.c genlibbc.lua genminilua.lua genversion.lua minilua.cjit
.gitignore bc.lua bcsave.lua dis_arm.lua dis_arm64.lua dis_arm64be.lua dis_mips.lua dis_mips64.lua dis_mips64el.lua dis_mips64r6.lua dis_mips64r6el.lua dis_mipsel.lua dis_ppc.lua dis_x64.lua dis_x86.lua dump.lua p.lua v.lua zone.luawolfssl
.github
workflows
ada.yml arduino.yml async-examples.yml async.yml atecc608-sim.yml bind.yml cmake-autoconf.yml cmake.yml codespell.yml coverity-scan-fixes.yml cryptocb-only.yml curl.yml cyrus-sasl.yml disable-pk-algs.yml docker-Espressif.yml docker-OpenWrt.yml emnet-nonblock.yml fil-c.yml freertos-mem-track.yml gencertbuf.yml grpc.yml haproxy.yml hostap-vm.yml intelasm-c-fallback.yml ipmitool.yml jwt-cpp.yml krb5.yml libspdm.yml libssh2.yml libvncserver.yml linuxkm.yml macos-apple-native-cert-validation.yml mbedtls.sh mbedtls.yml membrowse-comment.yml membrowse-onboard.yml membrowse-report.yml memcached.sh memcached.yml mono.yml mosquitto.yml msmtp.yml msys2.yml multi-arch.yml multi-compiler.yml net-snmp.yml nginx.yml no-malloc.yml no-tls.yml nss.sh nss.yml ntp.yml ocsp.yml openldap.yml openssh.yml openssl-ech.yml opensslcoexist.yml openvpn.yml os-check.yml packaging.yml pam-ipmi.yml pq-all.yml pr-commit-check.yml psk.yml puf.yml python.yml rng-tools.yml rust-wrapper.yml se050-sim.yml smallStackSize.yml socat.yml softhsm.yml sssd.yml stm32-sim.yml stsafe-a120-sim.yml stunnel.yml symbol-prefixes.yml threadx.yml tls-anvil.yml trackmemory.yml watcomc.yml win-csharp-test.yml wolfCrypt-Wconversion.yml wolfboot-integration.yml wolfsm.yml xcode.yml zephyr-4.x.yml zephyr.ymlIDE
ARDUINO
Arduino_README_prepend.md README.md include.am keywords.txt library.properties.template wolfssl-arduino.cpp wolfssl-arduino.sh wolfssl.hECLIPSE
Espressif
ESP-IDF
examples
template
CMakeLists.txt Makefile README.md partitions_singleapp_large.csv sdkconfig.defaults sdkconfig.defaults.esp8266wolfssl_benchmark
VisualGDB
wolfssl_benchmark_IDF_v4.4_ESP32.sln wolfssl_benchmark_IDF_v4.4_ESP32.vgdbproj wolfssl_benchmark_IDF_v5_ESP32.sln wolfssl_benchmark_IDF_v5_ESP32.vgdbproj wolfssl_benchmark_IDF_v5_ESP32C3.sln wolfssl_benchmark_IDF_v5_ESP32C3.vgdbproj wolfssl_benchmark_IDF_v5_ESP32S3.sln wolfssl_benchmark_IDF_v5_ESP32S3.vgdbprojwolfssl_client
CMakeLists.txt Makefile README.md README_server_sm.md partitions_singleapp_large.csv sdkconfig.defaults sdkconfig.defaults.esp32c2 sdkconfig.defaults.esp8266 wolfssl_client_ESP8266.vgdbprojwolfssl_server
CMakeLists.txt Makefile README.md README_server_sm.md partitions_singleapp_large.csv sdkconfig.defaults sdkconfig.defaults.esp32c2 sdkconfig.defaults.esp8266 wolfssl_server_ESP8266.vgdbprojwolfssl_test
VisualGDB
wolfssl_test-IDF_v5_ESP32.sln wolfssl_test-IDF_v5_ESP32.vgdbproj wolfssl_test-IDF_v5_ESP32C3.sln wolfssl_test-IDF_v5_ESP32C3.vgdbproj wolfssl_test-IDF_v5_ESP32C6.sln wolfssl_test-IDF_v5_ESP32C6.vgdbproj wolfssl_test_IDF_v5_ESP32S3.sln wolfssl_test_IDF_v5_ESP32S3.vgdbprojGCC-ARM
Makefile Makefile.bench Makefile.client Makefile.common Makefile.server Makefile.static Makefile.test README.md include.am linker.ld linker_fips.ldIAR-EWARM
embOS
SAMV71_XULT
embOS_SAMV71_XULT_user_settings
user_settings.h user_settings_simple_example.h user_settings_verbose_example.hembOS_wolfcrypt_benchmark_SAMV71_XULT
README_wolfcrypt_benchmark wolfcrypt_benchmark.ewd wolfcrypt_benchmark.ewpINTIME-RTOS
Makefile README.md include.am libwolfssl.c libwolfssl.vcxproj user_settings.h wolfExamples.c wolfExamples.h wolfExamples.sln wolfExamples.vcxproj wolfssl-lib.sln wolfssl-lib.vcxprojMQX
Makefile README-jp.md README.md client-tls.c include.am server-tls.c user_config.h user_settings.hMSVS-2019-AZSPHERE
wolfssl_new_azsphere
.gitignore CMakeLists.txt CMakeSettings.json app_manifest.json applibs_versions.h launch.vs.json main.cNETOS
Makefile.wolfcrypt.inc README.md include.am user_settings.h user_settings.h-cert2425 user_settings.h-cert3389 wolfssl_netos_custom.cPlatformIO
examples
wolfssl_benchmark
CMakeLists.txt README.md platformio.ini sdkconfig.defaults wolfssl_benchmark.code-workspaceROWLEY-CROSSWORKS-ARM
Kinetis_FlashPlacement.xml README.md arm_startup.c benchmark_main.c hw.h include.am kinetis_hw.c retarget.c test_main.c user_settings.h wolfssl.hzp wolfssl_ltc.hzpRenesas
e2studio
RA6M3
README.md README_APRA6M_en.md README_APRA6M_jp.md include.amRX72N
EnvisionKit
Simple
README_EN.md README_JP.mdwolfssl_demo
key_data.c key_data.h user_settings.h wolfssl_demo.c wolfssl_demo.h wolfssl_tsip_unit_test.cSTM32Cube
README.md STM32_Benchmarks.md default_conf.ftl include.am main.c wolfssl_example.c wolfssl_example.hWIN
README.txt include.am test.vcxproj user_settings.h user_settings_dtls.h wolfssl-fips.sln wolfssl-fips.vcxprojWIN-SRTP-KDF-140-3
README.txt include.am resource.h test.vcxproj user_settings.h wolfssl-fips.rc wolfssl-fips.sln wolfssl-fips.vcxprojWIN10
README.txt include.am resource.h test.vcxproj user_settings.h wolfssl-fips.rc wolfssl-fips.sln wolfssl-fips.vcxprojXCODE
Benchmark
include.amXilinxSDK
README.md bench.sh combine.sh eclipse_formatter_profile.xml graph.sh include.am user_settings.h wolfssl_example.capple-universal
wolfssl-multiplatform
iotsafe
Makefile README.md ca-cert.c devices.c devices.h include.am main.c memory-tls.c startup.c target.ld user_settings.hmynewt
README.md apps.wolfcrypttest.pkg.yml crypto.wolfssl.pkg.yml crypto.wolfssl.syscfg.yml include.am setup.shcerts
1024
ca-cert.der ca-cert.pem ca-key.der ca-key.pem client-cert.der client-cert.pem client-key.der client-key.pem client-keyPub.der dh1024.der dh1024.pem dsa-pub-1024.pem dsa1024.der dsa1024.pem include.am rsa1024.der server-cert.der server-cert.pem server-key.der server-key.pemcrl
extra-crls
ca-int-cert-revoked.pem claim-root.pem crl_critical_entry.pem crlnum_57oct.pem crlnum_64oct.pem general-server-crl.pem large_crlnum.pem large_crlnum2.pemdilithium
bench_dilithium_level2_key.der bench_dilithium_level3_key.der bench_dilithium_level5_key.der include.amecc
bp256r1-key.der bp256r1-key.pem ca-secp256k1-cert.pem ca-secp256k1-key.pem client-bp256r1-cert.der client-bp256r1-cert.pem client-secp256k1-cert.der client-secp256k1-cert.pem genecc.sh include.am secp256k1-key.der secp256k1-key.pem secp256k1-param.pem secp256k1-privkey.der secp256k1-privkey.pem server-bp256r1-cert.der server-bp256r1-cert.pem server-secp256k1-cert.der server-secp256k1-cert.pem server2-secp256k1-cert.der server2-secp256k1-cert.pem wolfssl.cnf wolfssl_384.cnfed25519
ca-ed25519-key.der ca-ed25519-key.pem ca-ed25519-priv.der ca-ed25519-priv.pem ca-ed25519.der ca-ed25519.pem client-ed25519-key.der client-ed25519-key.pem client-ed25519-priv.der client-ed25519-priv.pem client-ed25519.der client-ed25519.pem eddsa-ed25519.der eddsa-ed25519.pem gen-ed25519-certs.sh gen-ed25519-keys.sh gen-ed25519.sh include.am root-ed25519-key.der root-ed25519-key.pem root-ed25519-priv.der root-ed25519-priv.pem root-ed25519.der root-ed25519.pem server-ed25519-cert.pem server-ed25519-key.der server-ed25519-key.pem server-ed25519-priv.der server-ed25519-priv.pem server-ed25519.der server-ed25519.pemed448
ca-ed448-key.der ca-ed448-key.pem ca-ed448-priv.der ca-ed448-priv.pem ca-ed448.der ca-ed448.pem client-ed448-key.der client-ed448-key.pem client-ed448-priv.der client-ed448-priv.pem client-ed448.der client-ed448.pem gen-ed448-certs.sh gen-ed448-keys.sh include.am root-ed448-key.der root-ed448-key.pem root-ed448-priv.der root-ed448-priv.pem root-ed448.der root-ed448.pem server-ed448-cert.pem server-ed448-key.der server-ed448-key.pem server-ed448-priv.der server-ed448-priv.pem server-ed448.der server-ed448.pemexternal
DigiCertGlobalRootCA.pem README.txt ca-digicert-ev.pem ca-globalsign-root.pem ca-google-root.pem ca_collection.pem include.amintermediate
ca_false_intermediate
gentestcert.sh int_ca.key server.key test_ca.key test_ca.pem test_int_not_cacert.pem test_sign_bynoca_srv.pem wolfssl_base.conf wolfssl_srv.conflms
bc_hss_L2_H5_W8_root.der bc_hss_L3_H5_W4_root.der bc_lms_chain_ca.der bc_lms_chain_leaf.der bc_lms_native_bc_root.der bc_lms_sha256_h10_w8_root.der bc_lms_sha256_h5_w4_root.der include.ammldsa
README.txt include.am mldsa44-cert.der mldsa44-cert.pem mldsa44-key.pem mldsa44_bare-priv.der mldsa44_bare-seed.der mldsa44_oqskeypair.der mldsa44_priv-only.der mldsa44_pub-spki.der mldsa44_seed-only.der mldsa44_seed-priv.der mldsa65-cert.der mldsa65-cert.pem mldsa65-key.pem mldsa65_bare-priv.der mldsa65_bare-seed.der mldsa65_oqskeypair.der mldsa65_priv-only.der mldsa65_pub-spki.der mldsa65_seed-only.der mldsa65_seed-priv.der mldsa87-cert.der mldsa87-cert.pem mldsa87-key.pem mldsa87_bare-priv.der mldsa87_bare-seed.der mldsa87_oqskeypair.der mldsa87_priv-only.der mldsa87_pub-spki.der mldsa87_seed-only.der mldsa87_seed-priv.derocsp
imposter-root-ca-cert.der imposter-root-ca-cert.pem imposter-root-ca-key.der imposter-root-ca-key.pem include.am index-ca-and-intermediate-cas.txt index-ca-and-intermediate-cas.txt.attr index-intermediate1-ca-issued-certs.txt index-intermediate1-ca-issued-certs.txt.attr index-intermediate2-ca-issued-certs.txt index-intermediate2-ca-issued-certs.txt.attr index-intermediate3-ca-issued-certs.txt index-intermediate3-ca-issued-certs.txt.attr intermediate1-ca-cert.der intermediate1-ca-cert.pem intermediate1-ca-key.der intermediate1-ca-key.pem intermediate2-ca-cert.der intermediate2-ca-cert.pem intermediate2-ca-key.der intermediate2-ca-key.pem intermediate3-ca-cert.der intermediate3-ca-cert.pem intermediate3-ca-key.der intermediate3-ca-key.pem ocsp-responder-cert.der ocsp-responder-cert.pem ocsp-responder-key.der ocsp-responder-key.pem openssl.cnf renewcerts-for-test.sh renewcerts.sh root-ca-cert.der root-ca-cert.pem root-ca-crl.pem root-ca-key.der root-ca-key.pem server1-cert.der server1-cert.pem server1-chain-noroot.pem server1-key.der server1-key.pem server2-cert.der server2-cert.pem server2-key.der server2-key.pem server3-cert.der server3-cert.pem server3-key.der server3-key.pem server4-cert.der server4-cert.pem server4-key.der server4-key.pem server5-cert.der server5-cert.pem server5-key.der server5-key.pem test-leaf-response.der test-multi-response.der test-response-nointern.der test-response-rsapss.der test-response.derp521
ca-p521-key.der ca-p521-key.pem ca-p521-priv.der ca-p521-priv.pem ca-p521.der ca-p521.pem client-p521-key.der client-p521-key.pem client-p521-priv.der client-p521-priv.pem client-p521.der client-p521.pem gen-p521-certs.sh gen-p521-keys.sh include.am root-p521-key.der root-p521-key.pem root-p521-priv.der root-p521-priv.pem root-p521.der root-p521.pem server-p521-cert.pem server-p521-key.der server-p521-key.pem server-p521-priv.der server-p521-priv.pem server-p521.der server-p521.pemrpk
client-cert-rpk.der client-ecc-cert-rpk.der include.am server-cert-rpk.der server-ecc-cert-rpk.derrsapss
ca-3072-rsapss-key.der ca-3072-rsapss-key.pem ca-3072-rsapss-priv.der ca-3072-rsapss-priv.pem ca-3072-rsapss.der ca-3072-rsapss.pem ca-rsapss-key.der ca-rsapss-key.pem ca-rsapss-priv.der ca-rsapss-priv.pem ca-rsapss.der ca-rsapss.pem client-3072-rsapss-key.der client-3072-rsapss-key.pem client-3072-rsapss-priv.der client-3072-rsapss-priv.pem client-3072-rsapss.der client-3072-rsapss.pem client-rsapss-key.der client-rsapss-key.pem client-rsapss-priv.der client-rsapss-priv.pem client-rsapss.der client-rsapss.pem gen-rsapss-keys.sh include.am renew-rsapss-certs.sh root-3072-rsapss-key.der root-3072-rsapss-key.pem root-3072-rsapss-priv.der root-3072-rsapss-priv.pem root-3072-rsapss.der root-3072-rsapss.pem root-rsapss-key.der root-rsapss-key.pem root-rsapss-priv.der root-rsapss-priv.pem root-rsapss.der root-rsapss.pem server-3072-rsapss-cert.pem server-3072-rsapss-key.der server-3072-rsapss-key.pem server-3072-rsapss-priv.der server-3072-rsapss-priv.pem server-3072-rsapss.der server-3072-rsapss.pem server-mix-rsapss-cert.pem server-rsapss-cert.pem server-rsapss-key.der server-rsapss-key.pem server-rsapss-priv.der server-rsapss-priv.pem server-rsapss.der server-rsapss.pemslhdsa
bench_slhdsa_sha2_128f_key.der bench_slhdsa_sha2_128s_key.der bench_slhdsa_sha2_192f_key.der bench_slhdsa_sha2_192s_key.der bench_slhdsa_sha2_256f_key.der bench_slhdsa_sha2_256s_key.der bench_slhdsa_shake128f_key.der bench_slhdsa_shake128s_key.der bench_slhdsa_shake192f_key.der bench_slhdsa_shake192s_key.der bench_slhdsa_shake256f_key.der bench_slhdsa_shake256s_key.der client-mldsa44-priv.pem client-mldsa44-sha2.der client-mldsa44-sha2.pem client-mldsa44-shake.der client-mldsa44-shake.pem gen-slhdsa-mldsa-certs.sh include.am root-slhdsa-sha2-128s-priv.der root-slhdsa-sha2-128s-priv.pem root-slhdsa-sha2-128s.der root-slhdsa-sha2-128s.pem root-slhdsa-shake-128s-priv.der root-slhdsa-shake-128s-priv.pem root-slhdsa-shake-128s.der root-slhdsa-shake-128s.pem server-mldsa44-priv.pem server-mldsa44-sha2.der server-mldsa44-sha2.pem server-mldsa44-shake.der server-mldsa44-shake.pemsm2
ca-sm2-key.der ca-sm2-key.pem ca-sm2-priv.der ca-sm2-priv.pem ca-sm2.der ca-sm2.pem client-sm2-key.der client-sm2-key.pem client-sm2-priv.der client-sm2-priv.pem client-sm2.der client-sm2.pem fix_sm2_spki.py gen-sm2-certs.sh gen-sm2-keys.sh include.am root-sm2-key.der root-sm2-key.pem root-sm2-priv.der root-sm2-priv.pem root-sm2.der root-sm2.pem self-sm2-cert.pem self-sm2-key.pem self-sm2-priv.pem server-sm2-cert.der server-sm2-cert.pem server-sm2-key.der server-sm2-key.pem server-sm2-priv.der server-sm2-priv.pem server-sm2.der server-sm2.pemstatickeys
dh-ffdhe2048-params.pem dh-ffdhe2048-pub.der dh-ffdhe2048-pub.pem dh-ffdhe2048.der dh-ffdhe2048.pem ecc-secp256r1.der ecc-secp256r1.pem gen-static.sh include.am x25519-pub.der x25519-pub.pem x25519.der x25519.pemtest
catalog.txt cert-bad-neg-int.der cert-bad-oid.der cert-bad-utf8.der cert-ext-ia.cfg cert-ext-ia.der cert-ext-ia.pem cert-ext-joi.cfg cert-ext-joi.der cert-ext-joi.pem cert-ext-mnc.der cert-ext-multiple.cfg cert-ext-multiple.der cert-ext-multiple.pem cert-ext-nc-combined.der cert-ext-nc-combined.pem cert-ext-nc.cfg cert-ext-nc.der cert-ext-nc.pem cert-ext-ncdns.der cert-ext-ncdns.pem cert-ext-ncip.der cert-ext-ncip.pem cert-ext-ncmixed.der cert-ext-ncmulti.der cert-ext-ncmulti.pem cert-ext-ncrid.der cert-ext-ncrid.pem cert-ext-nct.cfg cert-ext-nct.der cert-ext-nct.pem cert-ext-ndir-exc.cfg cert-ext-ndir-exc.der cert-ext-ndir-exc.pem cert-ext-ndir.cfg cert-ext-ndir.der cert-ext-ndir.pem cert-ext-ns.der cert-over-max-altnames.cfg cert-over-max-altnames.der cert-over-max-altnames.pem cert-over-max-nc.cfg cert-over-max-nc.der cert-over-max-nc.pem client-ecc-cert-ski.hex cn-ip-literal.der cn-ip-wildcard.der crit-cert.pem crit-key.pem dh1024.der dh1024.pem dh512.der dh512.pem digsigku.pem encrypteddata.msg gen-badsig.sh gen-ext-certs.sh gen-testcerts.sh include.am kari-keyid-cms.msg ktri-keyid-cms.msg ossl-trusted-cert.pem server-badaltname.der server-badaltname.pem server-badaltnull.der server-badaltnull.pem server-badcn.der server-badcn.pem server-badcnnull.der server-badcnnull.pem server-cert-ecc-badsig.der server-cert-ecc-badsig.pem server-cert-rsa-badsig.der server-cert-rsa-badsig.pem server-duplicate-policy.pem server-garbage.der server-garbage.pem server-goodalt.der server-goodalt.pem server-goodaltwild.der server-goodaltwild.pem server-goodcn.der server-goodcn.pem server-goodcnwild.der server-goodcnwild.pem server-localhost.der server-localhost.pem smime-test-canon.p7s smime-test-multipart-badsig.p7s smime-test-multipart.p7s smime-test.p7stest-pathlen
assemble-chains.sh chainA-ICA1-key.pem chainA-ICA1-pathlen0.pem chainA-assembled.pem chainA-entity-key.pem chainA-entity.pem chainB-ICA1-key.pem chainB-ICA1-pathlen0.pem chainB-ICA2-key.pem chainB-ICA2-pathlen1.pem chainB-assembled.pem chainB-entity-key.pem chainB-entity.pem chainC-ICA1-key.pem chainC-ICA1-pathlen1.pem chainC-assembled.pem chainC-entity-key.pem chainC-entity.pem chainD-ICA1-key.pem chainD-ICA1-pathlen127.pem chainD-assembled.pem chainD-entity-key.pem chainD-entity.pem chainE-ICA1-key.pem chainE-ICA1-pathlen128.pem chainE-assembled.pem chainE-entity-key.pem chainE-entity.pem chainF-ICA1-key.pem chainF-ICA1-pathlen1.pem chainF-ICA2-key.pem chainF-ICA2-pathlen0.pem chainF-assembled.pem chainF-entity-key.pem chainF-entity.pem chainG-ICA1-key.pem chainG-ICA1-pathlen0.pem chainG-ICA2-key.pem chainG-ICA2-pathlen1.pem chainG-ICA3-key.pem chainG-ICA3-pathlen99.pem chainG-ICA4-key.pem chainG-ICA4-pathlen5.pem chainG-ICA5-key.pem chainG-ICA5-pathlen20.pem chainG-ICA6-key.pem chainG-ICA6-pathlen10.pem chainG-ICA7-key.pem chainG-ICA7-pathlen100.pem chainG-assembled.pem chainG-entity-key.pem chainG-entity.pem chainH-ICA1-key.pem chainH-ICA1-pathlen0.pem chainH-ICA2-key.pem chainH-ICA2-pathlen2.pem chainH-ICA3-key.pem chainH-ICA3-pathlen2.pem chainH-ICA4-key.pem chainH-ICA4-pathlen2.pem chainH-assembled.pem chainH-entity-key.pem chainH-entity.pem chainI-ICA1-key.pem chainI-ICA1-no_pathlen.pem chainI-ICA2-key.pem chainI-ICA2-no_pathlen.pem chainI-ICA3-key.pem chainI-ICA3-pathlen2.pem chainI-assembled.pem chainI-entity-key.pem chainI-entity.pem chainJ-ICA1-key.pem chainJ-ICA1-no_pathlen.pem chainJ-ICA2-key.pem chainJ-ICA2-no_pathlen.pem chainJ-ICA3-key.pem chainJ-ICA3-no_pathlen.pem chainJ-ICA4-key.pem chainJ-ICA4-pathlen2.pem chainJ-assembled.pem chainJ-entity-key.pem chainJ-entity.pem include.am refreshkeys.shtest-serial0
ee_normal.pem ee_serial0.pem generate_certs.sh include.am intermediate_serial0.pem root_serial0.pem root_serial0_key.pem selfsigned_nonca_serial0.pemxmss
bc_xmss_chain_ca.der bc_xmss_chain_leaf.der bc_xmss_sha2_10_256_root.der bc_xmss_sha2_16_256_root.der bc_xmssmt_sha2_20_2_256_root.der bc_xmssmt_sha2_20_4_256_root.der bc_xmssmt_sha2_40_8_256_root.der include.amcmake
Config.cmake.in README.md config.in functions.cmake include.am options.h.in wolfssl-config-version.cmake.in wolfssl-targets.cmake.indebian
changelog.in control.in copyright include.am libwolfssl-dev.install libwolfssl.install rules.indoc
dox_comments
header_files
aes.h arc4.h ascon.h asn.h asn_public.h blake2.h bn.h camellia.h chacha.h chacha20_poly1305.h cmac.h coding.h compress.h cryptocb.h curve25519.h curve448.h des3.h dh.h doxygen_groups.h doxygen_pages.h dsa.h ecc.h eccsi.h ed25519.h ed448.h error-crypt.h evp.h hash.h hmac.h iotsafe.h kdf.h logging.h md2.h md4.h md5.h memory.h ocsp.h pem.h pkcs11.h pkcs7.h poly1305.h psa.h puf.h pwdbased.h quic.h random.h ripemd.h rsa.h sakke.h sha.h sha256.h sha3.h sha512.h signature.h siphash.h srp.h ssl.h tfm.h types.h wc_encrypt.h wc_port.h wc_she.h wc_slhdsa.h wolfio.hheader_files-ja
aes.h arc4.h ascon.h asn.h asn_public.h blake2.h bn.h camellia.h chacha.h chacha20_poly1305.h cmac.h coding.h compress.h cryptocb.h curve25519.h curve448.h des3.h dh.h doxygen_groups.h doxygen_pages.h dsa.h ecc.h eccsi.h ed25519.h ed448.h error-crypt.h evp.h hash.h hmac.h iotsafe.h kdf.h logging.h md2.h md4.h md5.h memory.h ocsp.h pem.h pkcs11.h pkcs7.h poly1305.h psa.h pwdbased.h quic.h random.h ripemd.h rsa.h sakke.h sha.h sha256.h sha3.h sha512.h signature.h siphash.h srp.h ssl.h tfm.h types.h wc_encrypt.h wc_port.h wolfio.h
examples
async
Makefile README.md async_client.c async_server.c async_tls.c async_tls.h include.am user_settings.hconfigs
README.md include.am user_settings_EBSnet.h user_settings_all.h user_settings_arduino.h user_settings_baremetal.h user_settings_ca.h user_settings_curve25519nonblock.h user_settings_dtls13.h user_settings_eccnonblock.h user_settings_espressif.h user_settings_fipsv2.h user_settings_fipsv5.h user_settings_min_ecc.h user_settings_openssl_compat.h user_settings_pkcs7.h user_settings_platformio.h user_settings_pq.h user_settings_rsa_only.h user_settings_stm32.h user_settings_template.h user_settings_tls12.h user_settings_tls13.h user_settings_wolfboot_keytools.h user_settings_wolfssh.h user_settings_wolftpm.hechoclient
echoclient.c echoclient.h echoclient.sln echoclient.vcproj echoclient.vcxproj include.am quitlinuxkm
Kbuild Makefile README.md get_thread_size.c include.am linuxkm-fips-hash-wrapper.sh linuxkm-fips-hash.c linuxkm_memory.c linuxkm_memory.h linuxkm_wc_port.h lkcapi_aes_glue.c lkcapi_dh_glue.c lkcapi_ecdh_glue.c lkcapi_ecdsa_glue.c lkcapi_glue.c lkcapi_rsa_glue.c lkcapi_sha_glue.c module_exports.c.template module_hooks.c pie_redirect_table.c wolfcrypt.lds x86_vector_register_glue.cm4
ax_add_am_macro.m4 ax_am_jobserver.m4 ax_am_macros.m4 ax_append_compile_flags.m4 ax_append_flag.m4 ax_append_link_flags.m4 ax_append_to_file.m4 ax_atomic.m4 ax_bsdkm.m4 ax_check_compile_flag.m4 ax_check_link_flag.m4 ax_compiler_version.m4 ax_count_cpus.m4 ax_create_generic_config.m4 ax_debug.m4 ax_file_escapes.m4 ax_harden_compiler_flags.m4 ax_linuxkm.m4 ax_print_to_file.m4 ax_pthread.m4 ax_require_defined.m4 ax_tls.m4 ax_vcs_checkout.m4 hexversion.m4 lib_socket_nsl.m4 visibility.m4mqx
wolfcrypt_benchmark
ReferencedRSESystems.xml wolfcrypt_benchmark_twrk70f120m_Int_Flash_DDRData_Debug_PnE_U-MultiLink.launch wolfcrypt_benchmark_twrk70f120m_Int_Flash_DDRData_Release_PnE_U-MultiLink.launch wolfcrypt_benchmark_twrk70f120m_Int_Flash_SramData_Debug_JTrace.jlink wolfcrypt_benchmark_twrk70f120m_Int_Flash_SramData_Debug_JTrace.launch wolfcrypt_benchmark_twrk70f120m_Int_Flash_SramData_Debug_PnE_U-MultiLink.launch wolfcrypt_benchmark_twrk70f120m_Int_Flash_SramData_Release_PnE_U-MultiLink.launchwolfcrypt_test
ReferencedRSESystems.xml wolfcrypt_test_twrk70f120m_Int_Flash_DDRData_Debug_PnE_U-MultiLink.launch wolfcrypt_test_twrk70f120m_Int_Flash_DDRData_Release_PnE_U-MultiLink.launch wolfcrypt_test_twrk70f120m_Int_Flash_SramData_Debug_JTrace.jlink wolfcrypt_test_twrk70f120m_Int_Flash_SramData_Debug_JTrace.launch wolfcrypt_test_twrk70f120m_Int_Flash_SramData_Debug_PnE_U-MultiLink.launch wolfcrypt_test_twrk70f120m_Int_Flash_SramData_Release_PnE_U-MultiLink.launchwolfssl_client
ReferencedRSESystems.xml wolfssl_client_twrk70f120m_Int_Flash_DDRData_Debug_PnE_U-MultiLink.launch wolfssl_client_twrk70f120m_Int_Flash_DDRData_Release_PnE_U-MultiLink.launch wolfssl_client_twrk70f120m_Int_Flash_SramData_Debug_JTrace.jlink wolfssl_client_twrk70f120m_Int_Flash_SramData_Debug_JTrace.launch wolfssl_client_twrk70f120m_Int_Flash_SramData_Debug_PnE_U-MultiLink.launch wolfssl_client_twrk70f120m_Int_Flash_SramData_Release_PnE_U-MultiLink.launchscripts
aria-cmake-build-test.sh asn1_oid_sum.pl benchmark.test benchmark_compare.sh cleanup_testfiles.sh crl-gen-openssl.test crl-revoked.test dertoc.pl dtls.test dtlscid.test external.test google.test include.am makedistsmall.sh memtest.sh ocsp-responder-openssl-interop.test ocsp-stapling-with-ca-as-responder.test ocsp-stapling-with-wolfssl-responder.test ocsp-stapling.test ocsp-stapling2.test ocsp-stapling_tls13multi.test ocsp.test openssl.test openssl_srtp.test pem.test ping.test pkcallbacks.test psk.test resume.test rsapss.test sniffer-gen.sh sniffer-ipv6.pcap sniffer-static-rsa.pcap sniffer-testsuite.test sniffer-tls12-keylog.out sniffer-tls12-keylog.pcap sniffer-tls12-keylog.sslkeylog sniffer-tls13-dh-resume.pcap sniffer-tls13-dh.pcap sniffer-tls13-ecc-resume.pcap sniffer-tls13-ecc.pcap sniffer-tls13-hrr.pcap sniffer-tls13-keylog.out sniffer-tls13-keylog.pcap sniffer-tls13-keylog.sslkeylog sniffer-tls13-x25519-resume.pcap sniffer-tls13-x25519.pcap stm32l4-v4_0_1_build.sh tls13.test trusted_peer.test unit.test.in user_settings_asm.shsrc
bio.c conf.c crl.c dtls.c dtls13.c include.am internal.c keys.c ocsp.c pk.c pk_ec.c pk_rsa.c quic.c sniffer.c ssl.c ssl_api_cert.c ssl_api_crl_ocsp.c ssl_api_pk.c ssl_asn1.c ssl_bn.c ssl_certman.c ssl_crypto.c ssl_ech.c ssl_load.c ssl_misc.c ssl_p7p12.c ssl_sess.c ssl_sk.c tls.c tls13.c wolfio.c x509.c x509_str.ctests
api
api.h api_decl.h create_ocsp_test_blobs.py include.am test_aes.c test_aes.h test_arc4.c test_arc4.h test_ascon.c test_ascon.h test_ascon_kats.h test_asn.c test_asn.h test_blake2.c test_blake2.h test_camellia.c test_camellia.h test_certman.c test_certman.h test_chacha.c test_chacha.h test_chacha20_poly1305.c test_chacha20_poly1305.h test_cmac.c test_cmac.h test_curve25519.c test_curve25519.h test_curve448.c test_curve448.h test_des3.c test_des3.h test_dh.c test_dh.h test_digest.h test_dsa.c test_dsa.h test_dtls.c test_dtls.h test_ecc.c test_ecc.h test_ed25519.c test_ed25519.h test_ed448.c test_ed448.h test_evp.c test_evp.h test_evp_cipher.c test_evp_cipher.h test_evp_digest.c test_evp_digest.h test_evp_pkey.c test_evp_pkey.h test_hash.c test_hash.h test_hmac.c test_hmac.h test_md2.c test_md2.h test_md4.c test_md4.h test_md5.c test_md5.h test_mldsa.c test_mldsa.h test_mlkem.c test_mlkem.h test_ocsp.c test_ocsp.h test_ocsp_test_blobs.h test_ossl_asn1.c test_ossl_asn1.h test_ossl_bio.c test_ossl_bio.h test_ossl_bn.c test_ossl_bn.h test_ossl_cipher.c test_ossl_cipher.h test_ossl_dgst.c test_ossl_dgst.h test_ossl_dh.c test_ossl_dh.h test_ossl_dsa.c test_ossl_dsa.h test_ossl_ec.c test_ossl_ec.h test_ossl_ecx.c test_ossl_ecx.h test_ossl_mac.c test_ossl_mac.h test_ossl_obj.c test_ossl_obj.h test_ossl_p7p12.c test_ossl_p7p12.h test_ossl_pem.c test_ossl_pem.h test_ossl_rand.c test_ossl_rand.h test_ossl_rsa.c test_ossl_rsa.h test_ossl_sk.c test_ossl_sk.h test_ossl_x509.c test_ossl_x509.h test_ossl_x509_acert.c test_ossl_x509_acert.h test_ossl_x509_crypto.c test_ossl_x509_crypto.h test_ossl_x509_ext.c test_ossl_x509_ext.h test_ossl_x509_info.c test_ossl_x509_info.h test_ossl_x509_io.c test_ossl_x509_io.h test_ossl_x509_lu.c test_ossl_x509_lu.h test_ossl_x509_name.c test_ossl_x509_name.h test_ossl_x509_pk.c test_ossl_x509_pk.h test_ossl_x509_str.c test_ossl_x509_str.h test_ossl_x509_vp.c test_ossl_x509_vp.h test_pkcs12.c test_pkcs12.h test_pkcs7.c test_pkcs7.h test_poly1305.c test_poly1305.h test_random.c test_random.h test_rc2.c test_rc2.h test_ripemd.c test_ripemd.h test_rsa.c test_rsa.h test_sha.c test_sha.h test_sha256.c test_sha256.h test_sha3.c test_sha3.h test_sha512.c test_sha512.h test_she.c test_she.h test_signature.c test_signature.h test_slhdsa.c test_slhdsa.h test_sm2.c test_sm2.h test_sm3.c test_sm3.h test_sm4.c test_sm4.h test_tls.c test_tls.h test_tls13.c test_tls13.h test_tls_ext.c test_tls_ext.h test_wc_encrypt.c test_wc_encrypt.h test_wolfmath.c test_wolfmath.h test_x509.c test_x509.hwolfcrypt
benchmark
README.md benchmark-VS2022.sln benchmark-VS2022.vcxproj benchmark-VS2022.vcxproj.user benchmark.c benchmark.h benchmark.sln benchmark.vcproj benchmark.vcxproj include.amsrc
port
Espressif
esp_crt_bundle
README.md cacrt_all.pem cacrt_deprecated.pem cacrt_local.pem esp_crt_bundle.c gen_crt_bundle.py pio_install_cryptography.pyRenesas
README.md renesas_common.c renesas_fspsm_aes.c renesas_fspsm_rsa.c renesas_fspsm_sha.c renesas_fspsm_util.c renesas_rx64_hw_sha.c renesas_rx64_hw_util.c renesas_tsip_aes.c renesas_tsip_rsa.c renesas_tsip_sha.c renesas_tsip_util.carm
armv8-32-aes-asm.S armv8-32-aes-asm_c.c armv8-32-chacha-asm.S armv8-32-chacha-asm_c.c armv8-32-curve25519.S armv8-32-curve25519_c.c armv8-32-mlkem-asm.S armv8-32-mlkem-asm_c.c armv8-32-poly1305-asm.S armv8-32-poly1305-asm_c.c armv8-32-sha256-asm.S armv8-32-sha256-asm_c.c armv8-32-sha3-asm.S armv8-32-sha3-asm_c.c armv8-32-sha512-asm.S armv8-32-sha512-asm_c.c armv8-aes-asm.S armv8-aes-asm_c.c armv8-aes.c armv8-chacha-asm.S armv8-chacha-asm_c.c armv8-curve25519.S armv8-curve25519_c.c armv8-mlkem-asm.S armv8-mlkem-asm_c.c armv8-poly1305-asm.S armv8-poly1305-asm_c.c armv8-sha256-asm.S armv8-sha256-asm_c.c armv8-sha256.c armv8-sha3-asm.S armv8-sha3-asm_c.c armv8-sha512-asm.S armv8-sha512-asm_c.c armv8-sha512.c cryptoCell.c cryptoCellHash.c thumb2-aes-asm.S thumb2-aes-asm_c.c thumb2-chacha-asm.S thumb2-chacha-asm_c.c thumb2-curve25519.S thumb2-curve25519_c.c thumb2-mlkem-asm.S thumb2-mlkem-asm_c.c thumb2-poly1305-asm.S thumb2-poly1305-asm_c.c thumb2-sha256-asm.S thumb2-sha256-asm_c.c thumb2-sha3-asm.S thumb2-sha3-asm_c.c thumb2-sha512-asm.S thumb2-sha512-asm_c.ccaam
README.md caam_aes.c caam_doc.pdf caam_driver.c caam_error.c caam_integrity.c caam_qnx.c caam_sha.c wolfcaam_aes.c wolfcaam_cmac.c wolfcaam_ecdsa.c wolfcaam_fsl_nxp.c wolfcaam_hash.c wolfcaam_hmac.c wolfcaam_init.c wolfcaam_qnx.c wolfcaam_rsa.c wolfcaam_seco.c wolfcaam_x25519.cdevcrypto
README.md devcrypto_aes.c devcrypto_ecdsa.c devcrypto_hash.c devcrypto_hmac.c devcrypto_rsa.c devcrypto_x25519.c wc_devcrypto.criscv
riscv-64-aes.c riscv-64-chacha.c riscv-64-poly1305.c riscv-64-sha256.c riscv-64-sha3.c riscv-64-sha512.cwolfssl
openssl
aes.h asn1.h asn1t.h bio.h bn.h buffer.h camellia.h cmac.h cms.h compat_types.h conf.h crypto.h des.h dh.h dsa.h ec.h ec25519.h ec448.h ecdh.h ecdsa.h ed25519.h ed448.h engine.h err.h evp.h fips_rand.h hmac.h include.am kdf.h lhash.h md4.h md5.h modes.h obj_mac.h objects.h ocsp.h opensslconf.h opensslv.h ossl_typ.h pem.h pkcs12.h pkcs7.h rand.h rc4.h ripemd.h rsa.h safestack.h sha.h sha3.h srp.h ssl.h ssl23.h stack.h tls1.h txt_db.h ui.h x509.h x509_vfy.h x509v3.hwolfcrypt
port
Renesas
renesas-fspsm-crypt.h renesas-fspsm-types.h renesas-rx64-hw-crypt.h renesas-tsip-crypt.h renesas_cmn.h renesas_fspsm_internal.h renesas_sync.h renesas_tsip_internal.h renesas_tsip_types.hcaam
caam_driver.h caam_error.h caam_qnx.h wolfcaam.h wolfcaam_aes.h wolfcaam_cmac.h wolfcaam_ecdsa.h wolfcaam_fsl_nxp.h wolfcaam_hash.h wolfcaam_qnx.h wolfcaam_rsa.h wolfcaam_seco.h wolfcaam_sha.h wolfcaam_x25519.hwrapper
Ada
examples
src
aes_verify_main.adb rsa_verify_main.adb sha256_main.adb spark_sockets.adb spark_sockets.ads spark_terminal.adb spark_terminal.ads tls_client.adb tls_client.ads tls_client_main.adb tls_server.adb tls_server.ads tls_server_main.adbtests
src
aes_bindings_tests.adb aes_bindings_tests.ads rsa_verify_bindings_tests.adb rsa_verify_bindings_tests.ads sha256_bindings_tests.adb sha256_bindings_tests.ads tests.adbCSharp
wolfSSL-Example-IOCallbacks
App.config wolfSSL-Example-IOCallbacks.cs wolfSSL-Example-IOCallbacks.csprojwolfSSL-TLS-ServerThreaded
App.config wolfSSL-TLS-ServerThreaded.cs wolfSSL-TLS-ServerThreaded.csprojrust
wolfssl-wolfcrypt
src
aes.rs blake2.rs chacha20_poly1305.rs cmac.rs cmac_mac.rs curve25519.rs dh.rs dilithium.rs ecc.rs ecdsa.rs ed25519.rs ed448.rs fips.rs hkdf.rs hmac.rs hmac_mac.rs kdf.rs lib.rs lms.rs mlkem.rs mlkem_kem.rs pbkdf2_password_hash.rs prf.rs random.rs rsa.rs rsa_pkcs1v15.rs sha.rs sha_digest.rs sys.rstests
test_aes.rs test_blake2.rs test_chacha20_poly1305.rs test_cmac.rs test_cmac_mac.rs test_curve25519.rs test_dh.rs test_dilithium.rs test_ecc.rs test_ecdsa.rs test_ed25519.rs test_ed448.rs test_hkdf.rs test_hmac.rs test_hmac_mac.rs test_kdf.rs test_lms.rs test_mlkem.rs test_mlkem_kem.rs test_pbkdf2_password_hash.rs test_prf.rs test_random.rs test_rsa.rs test_rsa_pkcs1v15.rs test_sha.rs test_sha_digest.rs test_wolfcrypt.rszephyr
samples
wolfssl_benchmark
CMakeLists.txt README install_test.sh prj.conf sample.yaml zephyr_legacy.conf zephyr_v4.1.confwolfssl_test
CMakeLists.txt README install_test.sh prj-no-malloc.conf prj.conf sample.yaml zephyr_legacy.conf zephyr_v4.1.conf
wolfssl/tests/api/test_evp_cipher.c
raw
1/* test_evp_cipher.c
2 *
3 * Copyright (C) 2006-2026 wolfSSL Inc.
4 *
5 * This file is part of wolfSSL.
6 *
7 * wolfSSL is free software; you can redistribute it and/or modify
8 * it under the terms of the GNU General Public License as published by
9 * the Free Software Foundation; either version 3 of the License, or
10 * (at your option) any later version.
11 *
12 * wolfSSL is distributed in the hope that it will be useful,
13 * but WITHOUT ANY WARRANTY; without even the implied warranty of
14 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
15 * GNU General Public License for more details.
16 *
17 * You should have received a copy of the GNU General Public License
18 * along with this program; if not, write to the Free Software
19 * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1335, USA
20 */
21
22#include <tests/unit.h>
23
24#ifdef NO_INLINE
25 #include <wolfssl/wolfcrypt/misc.h>
26#else
27 #define WOLFSSL_MISC_INCLUDED
28 #include <wolfcrypt/src/misc.c>
29#endif
30
31#include <wolfssl/openssl/evp.h>
32#include <tests/api/api.h>
33#include <tests/api/test_evp_cipher.h>
34#if defined(HAVE_FIPS_VERSION) && (HAVE_FIPS_VERSION == 2)
35 #include <wolfssl/wolfcrypt/wc_encrypt.h>
36#endif
37
38
39int test_wolfSSL_EVP_CIPHER_CTX(void)
40{
41 EXPECT_DECLS;
42#if !defined(NO_AES) && defined(HAVE_AES_CBC) && defined(WOLFSSL_AES_128) && \
43 defined(OPENSSL_EXTRA)
44 EVP_CIPHER_CTX *ctx = EVP_CIPHER_CTX_new();
45 const EVP_CIPHER *init = EVP_aes_128_cbc();
46 const EVP_CIPHER *test;
47 byte key[AES_BLOCK_SIZE] = {0};
48 byte iv[AES_BLOCK_SIZE] = {0};
49
50 ExpectNotNull(ctx);
51 wolfSSL_EVP_CIPHER_CTX_init(ctx);
52 ExpectIntEQ(EVP_CipherInit(ctx, init, key, iv, 1), WOLFSSL_SUCCESS);
53 test = EVP_CIPHER_CTX_cipher(ctx);
54 ExpectTrue(init == test);
55 ExpectIntEQ(EVP_CIPHER_nid(test), NID_aes_128_cbc);
56
57 ExpectIntEQ(EVP_CIPHER_CTX_reset(ctx), WOLFSSL_SUCCESS);
58 ExpectIntEQ(EVP_CIPHER_CTX_reset(NULL), WC_NO_ERR_TRACE(WOLFSSL_FAILURE));
59
60 EVP_CIPHER_CTX_free(ctx);
61 /* test EVP_CIPHER_CTX_cleanup with NULL */
62 ExpectIntEQ(EVP_CIPHER_CTX_cleanup(NULL), WOLFSSL_SUCCESS);
63#endif /* !NO_AES && HAVE_AES_CBC && WOLFSSL_AES_128 && OPENSSL_EXTRA */
64 return EXPECT_RESULT();
65}
66
67int test_wolfSSL_EVP_CIPHER_CTX_iv_length(void)
68{
69 EXPECT_DECLS;
70#ifdef OPENSSL_ALL
71 /* This is large enough to be used for all key sizes */
72 byte key[AES_256_KEY_SIZE] = {0};
73 byte iv[AES_BLOCK_SIZE] = {0};
74 int i;
75 int nids[] = {
76 #ifdef HAVE_AES_CBC
77 NID_aes_128_cbc,
78 #endif
79 #if (!defined(HAVE_FIPS) && !defined(HAVE_SELFTEST)) || \
80 (defined(HAVE_FIPS_VERSION) && (HAVE_FIPS_VERSION > 2))
81 #ifdef HAVE_AESGCM
82 NID_aes_128_gcm,
83 #endif
84 #endif /* (HAVE_FIPS && !HAVE_SELFTEST) || HAVE_FIPS_VERSION > 2 */
85 #ifdef WOLFSSL_AES_COUNTER
86 NID_aes_128_ctr,
87 #endif
88 #ifndef NO_DES3
89 NID_des_cbc,
90 NID_des_ede3_cbc,
91 #endif
92 };
93 int iv_lengths[] = {
94 #ifdef HAVE_AES_CBC
95 AES_BLOCK_SIZE,
96 #endif
97 #if (!defined(HAVE_FIPS) && !defined(HAVE_SELFTEST)) || \
98 (defined(HAVE_FIPS_VERSION) && (HAVE_FIPS_VERSION > 2))
99 #ifdef HAVE_AESGCM
100 GCM_NONCE_MID_SZ,
101 #endif
102 #endif /* (HAVE_FIPS && !HAVE_SELFTEST) || HAVE_FIPS_VERSION > 2 */
103 #ifdef WOLFSSL_AES_COUNTER
104 AES_BLOCK_SIZE,
105 #endif
106 #ifndef NO_DES3
107 DES_BLOCK_SIZE,
108 DES_BLOCK_SIZE,
109 #endif
110 };
111 int nidsLen = (sizeof(nids)/sizeof(int));
112
113 for (i = 0; i < nidsLen; i++) {
114 const EVP_CIPHER* init = wolfSSL_EVP_get_cipherbynid(nids[i]);
115 EVP_CIPHER_CTX* ctx = EVP_CIPHER_CTX_new();
116 wolfSSL_EVP_CIPHER_CTX_init(ctx);
117
118 ExpectIntEQ(EVP_CipherInit(ctx, init, key, iv, 1), WOLFSSL_SUCCESS);
119 ExpectIntEQ(wolfSSL_EVP_CIPHER_CTX_iv_length(ctx), iv_lengths[i]);
120
121 EVP_CIPHER_CTX_free(ctx);
122 }
123#endif
124 return EXPECT_RESULT();
125}
126
127int test_wolfSSL_EVP_CIPHER_CTX_key_length(void)
128{
129 EXPECT_DECLS;
130#ifdef OPENSSL_ALL
131 byte key[AES_256_KEY_SIZE] = {0};
132 byte iv[AES_BLOCK_SIZE] = {0};
133 int i;
134 int nids[] = {
135 #ifdef HAVE_AES_CBC
136 NID_aes_128_cbc,
137 #ifdef WOLFSSL_AES_256
138 NID_aes_256_cbc,
139 #endif
140 #endif
141 #if (!defined(HAVE_FIPS) && !defined(HAVE_SELFTEST)) || \
142 (defined(HAVE_FIPS_VERSION) && (HAVE_FIPS_VERSION > 2))
143 #ifdef HAVE_AESGCM
144 NID_aes_128_gcm,
145 #ifdef WOLFSSL_AES_256
146 NID_aes_256_gcm,
147 #endif
148 #endif
149 #endif /* (HAVE_FIPS && !HAVE_SELFTEST) || HAVE_FIPS_VERSION > 2 */
150 #ifdef WOLFSSL_AES_COUNTER
151 NID_aes_128_ctr,
152 #ifdef WOLFSSL_AES_256
153 NID_aes_256_ctr,
154 #endif
155 #endif
156 #ifndef NO_DES3
157 NID_des_cbc,
158 NID_des_ede3_cbc,
159 #endif
160 };
161 int key_lengths[] = {
162 #ifdef HAVE_AES_CBC
163 AES_128_KEY_SIZE,
164 #ifdef WOLFSSL_AES_256
165 AES_256_KEY_SIZE,
166 #endif
167 #endif
168 #if (!defined(HAVE_FIPS) && !defined(HAVE_SELFTEST)) || \
169 (defined(HAVE_FIPS_VERSION) && (HAVE_FIPS_VERSION > 2))
170 #ifdef HAVE_AESGCM
171 AES_128_KEY_SIZE,
172 #ifdef WOLFSSL_AES_256
173 AES_256_KEY_SIZE,
174 #endif
175 #endif
176 #endif /* (HAVE_FIPS && !HAVE_SELFTEST) || HAVE_FIPS_VERSION > 2 */
177 #ifdef WOLFSSL_AES_COUNTER
178 AES_128_KEY_SIZE,
179 #ifdef WOLFSSL_AES_256
180 AES_256_KEY_SIZE,
181 #endif
182 #endif
183 #ifndef NO_DES3
184 DES_KEY_SIZE,
185 DES3_KEY_SIZE,
186 #endif
187 };
188 int nidsLen = (sizeof(nids)/sizeof(int));
189
190 for (i = 0; i < nidsLen; i++) {
191 const EVP_CIPHER *init = wolfSSL_EVP_get_cipherbynid(nids[i]);
192 EVP_CIPHER_CTX* ctx = EVP_CIPHER_CTX_new();
193 wolfSSL_EVP_CIPHER_CTX_init(ctx);
194
195 ExpectIntEQ(EVP_CipherInit(ctx, init, key, iv, 1), WOLFSSL_SUCCESS);
196 ExpectIntEQ(wolfSSL_EVP_CIPHER_CTX_key_length(ctx), key_lengths[i]);
197
198 ExpectIntEQ(wolfSSL_EVP_CIPHER_CTX_set_key_length(ctx, key_lengths[i]),
199 WOLFSSL_SUCCESS);
200
201 EVP_CIPHER_CTX_free(ctx);
202 }
203#endif
204 return EXPECT_RESULT();
205}
206
207int test_wolfSSL_EVP_CIPHER_CTX_set_iv(void)
208{
209 EXPECT_DECLS;
210#if defined(HAVE_AESGCM) && !defined(NO_DES3) && defined(OPENSSL_ALL)
211 int ivLen, keyLen;
212 EVP_CIPHER_CTX *ctx = EVP_CIPHER_CTX_new();
213#ifdef HAVE_AESGCM
214 byte key[AES_128_KEY_SIZE] = {0};
215 byte iv[AES_BLOCK_SIZE] = {0};
216 const EVP_CIPHER *init = EVP_aes_128_gcm();
217#else
218 byte key[DES3_KEY_SIZE] = {0};
219 byte iv[DES_BLOCK_SIZE] = {0};
220 const EVP_CIPHER *init = EVP_des_ede3_cbc();
221#endif
222
223 wolfSSL_EVP_CIPHER_CTX_init(ctx);
224 ExpectIntEQ(EVP_CipherInit(ctx, init, key, iv, 1), WOLFSSL_SUCCESS);
225
226 ivLen = wolfSSL_EVP_CIPHER_CTX_iv_length(ctx);
227 keyLen = wolfSSL_EVP_CIPHER_CTX_key_length(ctx);
228
229 /* Bad cases */
230 ExpectIntEQ(wolfSSL_EVP_CIPHER_CTX_set_iv(NULL, iv, ivLen),
231 WC_NO_ERR_TRACE(WOLFSSL_FAILURE));
232 ExpectIntEQ(wolfSSL_EVP_CIPHER_CTX_set_iv(ctx, NULL, ivLen),
233 WC_NO_ERR_TRACE(WOLFSSL_FAILURE));
234 ExpectIntEQ(wolfSSL_EVP_CIPHER_CTX_set_iv(ctx, iv, 0),
235 WC_NO_ERR_TRACE(WOLFSSL_FAILURE));
236 ExpectIntEQ(wolfSSL_EVP_CIPHER_CTX_set_iv(NULL, NULL, 0),
237 WC_NO_ERR_TRACE(WOLFSSL_FAILURE));
238 ExpectIntEQ(wolfSSL_EVP_CIPHER_CTX_set_iv(ctx, iv, keyLen),
239 WC_NO_ERR_TRACE(WOLFSSL_FAILURE));
240
241 /* Good case */
242 ExpectIntEQ(wolfSSL_EVP_CIPHER_CTX_set_iv(ctx, iv, ivLen), 1);
243
244 EVP_CIPHER_CTX_free(ctx);
245#endif
246 return EXPECT_RESULT();
247}
248
249int test_wolfSSL_EVP_get_cipherbynid(void)
250{
251 EXPECT_DECLS;
252#ifdef OPENSSL_EXTRA
253#ifndef NO_AES
254 const WOLFSSL_EVP_CIPHER* c;
255
256 c = wolfSSL_EVP_get_cipherbynid(419);
257 #if (defined(HAVE_AES_CBC) || defined(WOLFSSL_AES_DIRECT)) && \
258 defined(WOLFSSL_AES_128)
259 ExpectNotNull(c);
260 ExpectNotNull(XSTRCMP("EVP_AES_128_CBC", c));
261 #else
262 ExpectNull(c);
263 #endif
264
265 c = wolfSSL_EVP_get_cipherbynid(423);
266 #if (defined(HAVE_AES_CBC) || defined(WOLFSSL_AES_DIRECT)) && \
267 defined(WOLFSSL_AES_192)
268 ExpectNotNull(c);
269 ExpectNotNull(XSTRCMP("EVP_AES_192_CBC", c));
270 #else
271 ExpectNull(c);
272 #endif
273
274 c = wolfSSL_EVP_get_cipherbynid(427);
275 #if (defined(HAVE_AES_CBC) || defined(WOLFSSL_AES_DIRECT)) && \
276 defined(WOLFSSL_AES_256)
277 ExpectNotNull(c);
278 ExpectNotNull(XSTRCMP("EVP_AES_256_CBC", c));
279 #else
280 ExpectNull(c);
281 #endif
282
283 c = wolfSSL_EVP_get_cipherbynid(904);
284 #if defined(WOLFSSL_AES_COUNTER) && defined(WOLFSSL_AES_128)
285 ExpectNotNull(c);
286 ExpectNotNull(XSTRCMP("EVP_AES_128_CTR", c));
287 #else
288 ExpectNull(c);
289 #endif
290
291 c = wolfSSL_EVP_get_cipherbynid(905);
292 #if defined(WOLFSSL_AES_COUNTER) && defined(WOLFSSL_AES_192)
293 ExpectNotNull(c);
294 ExpectNotNull(XSTRCMP("EVP_AES_192_CTR", c));
295 #else
296 ExpectNull(c);
297 #endif
298
299 c = wolfSSL_EVP_get_cipherbynid(906);
300 #if defined(WOLFSSL_AES_COUNTER) && defined(WOLFSSL_AES_256)
301 ExpectNotNull(c);
302 ExpectNotNull(XSTRCMP("EVP_AES_256_CTR", c));
303 #else
304 ExpectNull(c);
305 #endif
306
307 c = wolfSSL_EVP_get_cipherbynid(418);
308 #if defined(HAVE_AES_ECB) && defined(WOLFSSL_AES_128)
309 ExpectNotNull(c);
310 ExpectNotNull(XSTRCMP("EVP_AES_128_ECB", c));
311 #else
312 ExpectNull(c);
313 #endif
314
315 c = wolfSSL_EVP_get_cipherbynid(422);
316 #if defined(HAVE_AES_ECB) && defined(WOLFSSL_AES_192)
317 ExpectNotNull(c);
318 ExpectNotNull(XSTRCMP("EVP_AES_192_ECB", c));
319 #else
320 ExpectNull(c);
321 #endif
322
323 c = wolfSSL_EVP_get_cipherbynid(426);
324 #if defined(HAVE_AES_ECB) && defined(WOLFSSL_AES_256)
325 ExpectNotNull(c);
326 ExpectNotNull(XSTRCMP("EVP_AES_256_ECB", c));
327 #else
328 ExpectNull(c);
329 #endif
330#endif /* !NO_AES */
331
332#ifndef NO_DES3
333 ExpectNotNull(XSTRCMP("EVP_DES_CBC", wolfSSL_EVP_get_cipherbynid(31)));
334#ifdef WOLFSSL_DES_ECB
335 ExpectNotNull(XSTRCMP("EVP_DES_ECB", wolfSSL_EVP_get_cipherbynid(29)));
336#endif
337 ExpectNotNull(XSTRCMP("EVP_DES_EDE3_CBC", wolfSSL_EVP_get_cipherbynid(44)));
338#ifdef WOLFSSL_DES_ECB
339 ExpectNotNull(XSTRCMP("EVP_DES_EDE3_ECB", wolfSSL_EVP_get_cipherbynid(33)));
340#endif
341#endif /* !NO_DES3 */
342
343#if defined(HAVE_CHACHA) && defined(HAVE_POLY1305)
344 ExpectNotNull(XSTRCMP("EVP_CHACHA20_POLY13O5", EVP_get_cipherbynid(1018)));
345#endif
346
347 /* test for nid is out of range */
348 ExpectNull(wolfSSL_EVP_get_cipherbynid(1));
349#endif
350 return EXPECT_RESULT();
351}
352
353int test_wolfSSL_EVP_CIPHER_block_size(void)
354{
355 EXPECT_DECLS;
356#ifdef OPENSSL_ALL
357#ifdef HAVE_AES_CBC
358 #ifdef WOLFSSL_AES_128
359 ExpectIntEQ(EVP_CIPHER_block_size(EVP_aes_128_cbc()), AES_BLOCK_SIZE);
360 #endif
361 #ifdef WOLFSSL_AES_192
362 ExpectIntEQ(EVP_CIPHER_block_size(EVP_aes_192_cbc()), AES_BLOCK_SIZE);
363 #endif
364 #ifdef WOLFSSL_AES_256
365 ExpectIntEQ(EVP_CIPHER_block_size(EVP_aes_256_cbc()), AES_BLOCK_SIZE);
366 #endif
367#endif
368
369#ifdef HAVE_AESGCM
370 #ifdef WOLFSSL_AES_128
371 ExpectIntEQ(EVP_CIPHER_block_size(EVP_aes_128_gcm()), 1);
372 #endif
373 #ifdef WOLFSSL_AES_192
374 ExpectIntEQ(EVP_CIPHER_block_size(EVP_aes_192_gcm()), 1);
375 #endif
376 #ifdef WOLFSSL_AES_256
377 ExpectIntEQ(EVP_CIPHER_block_size(EVP_aes_256_gcm()), 1);
378 #endif
379#endif
380
381#ifdef HAVE_AESCCM
382 #ifdef WOLFSSL_AES_128
383 ExpectIntEQ(EVP_CIPHER_block_size(EVP_aes_128_ccm()), 1);
384 #endif
385 #ifdef WOLFSSL_AES_192
386 ExpectIntEQ(EVP_CIPHER_block_size(EVP_aes_192_ccm()), 1);
387 #endif
388 #ifdef WOLFSSL_AES_256
389 ExpectIntEQ(EVP_CIPHER_block_size(EVP_aes_256_ccm()), 1);
390 #endif
391#endif
392
393#ifdef WOLFSSL_AES_COUNTER
394 #ifdef WOLFSSL_AES_128
395 ExpectIntEQ(EVP_CIPHER_block_size(EVP_aes_128_ctr()), 1);
396 #endif
397 #ifdef WOLFSSL_AES_192
398 ExpectIntEQ(EVP_CIPHER_block_size(EVP_aes_192_ctr()), 1);
399 #endif
400 #ifdef WOLFSSL_AES_256
401 ExpectIntEQ(EVP_CIPHER_block_size(EVP_aes_256_ctr()), 1);
402 #endif
403#endif
404
405#ifdef HAVE_AES_ECB
406 #ifdef WOLFSSL_AES_128
407 ExpectIntEQ(EVP_CIPHER_block_size(EVP_aes_128_ecb()), AES_BLOCK_SIZE);
408 #endif
409 #ifdef WOLFSSL_AES_192
410 ExpectIntEQ(EVP_CIPHER_block_size(EVP_aes_192_ecb()), AES_BLOCK_SIZE);
411 #endif
412 #ifdef WOLFSSL_AES_256
413 ExpectIntEQ(EVP_CIPHER_block_size(EVP_aes_256_ecb()), AES_BLOCK_SIZE);
414 #endif
415#endif
416
417#ifdef WOLFSSL_AES_OFB
418 #ifdef WOLFSSL_AES_128
419 ExpectIntEQ(EVP_CIPHER_block_size(EVP_aes_128_ofb()), 1);
420 #endif
421 #ifdef WOLFSSL_AES_192
422 ExpectIntEQ(EVP_CIPHER_block_size(EVP_aes_192_ofb()), 1);
423 #endif
424 #ifdef WOLFSSL_AES_256
425 ExpectIntEQ(EVP_CIPHER_block_size(EVP_aes_256_ofb()), 1);
426 #endif
427#endif
428
429#ifndef NO_RC4
430 ExpectIntEQ(EVP_CIPHER_block_size(wolfSSL_EVP_rc4()), 1);
431#endif
432
433#if defined(HAVE_CHACHA) && defined(HAVE_POLY1305)
434 ExpectIntEQ(EVP_CIPHER_block_size(wolfSSL_EVP_chacha20_poly1305()), 1);
435#endif
436
437#ifdef WOLFSSL_SM4_ECB
438 ExpectIntEQ(EVP_CIPHER_block_size(EVP_sm4_ecb()), SM4_BLOCK_SIZE);
439#endif
440#ifdef WOLFSSL_SM4_CBC
441 ExpectIntEQ(EVP_CIPHER_block_size(EVP_sm4_cbc()), SM4_BLOCK_SIZE);
442#endif
443#ifdef WOLFSSL_SM4_CTR
444 ExpectIntEQ(EVP_CIPHER_block_size(EVP_sm4_ctr()), 1);
445#endif
446#ifdef WOLFSSL_SM4_GCM
447 ExpectIntEQ(EVP_CIPHER_block_size(EVP_sm4_gcm()), 1);
448#endif
449#ifdef WOLFSSL_SM4_CCM
450 ExpectIntEQ(EVP_CIPHER_block_size(EVP_sm4_ccm()), 1);
451#endif
452#endif
453 return EXPECT_RESULT();
454}
455
456int test_wolfSSL_EVP_CIPHER_iv_length(void)
457{
458 EXPECT_DECLS;
459#ifdef OPENSSL_ALL
460 int nids[] = {
461 #if defined(HAVE_AES_CBC) || defined(WOLFSSL_AES_DIRECT)
462 #ifdef WOLFSSL_AES_128
463 NID_aes_128_cbc,
464 #endif
465 #ifdef WOLFSSL_AES_192
466 NID_aes_192_cbc,
467 #endif
468 #ifdef WOLFSSL_AES_256
469 NID_aes_256_cbc,
470 #endif
471 #endif /* HAVE_AES_CBC || WOLFSSL_AES_DIRECT */
472 #if (!defined(HAVE_FIPS) && !defined(HAVE_SELFTEST)) || \
473 (defined(HAVE_FIPS_VERSION) && (HAVE_FIPS_VERSION > 2))
474 #ifdef HAVE_AESGCM
475 #ifdef WOLFSSL_AES_128
476 NID_aes_128_gcm,
477 #endif
478 #ifdef WOLFSSL_AES_192
479 NID_aes_192_gcm,
480 #endif
481 #ifdef WOLFSSL_AES_256
482 NID_aes_256_gcm,
483 #endif
484 #endif /* HAVE_AESGCM */
485 #endif /* (HAVE_FIPS && !HAVE_SELFTEST) || HAVE_FIPS_VERSION > 2 */
486 #ifdef WOLFSSL_AES_COUNTER
487 #ifdef WOLFSSL_AES_128
488 NID_aes_128_ctr,
489 #endif
490 #ifdef WOLFSSL_AES_192
491 NID_aes_192_ctr,
492 #endif
493 #ifdef WOLFSSL_AES_256
494 NID_aes_256_ctr,
495 #endif
496 #endif
497 #ifndef NO_DES3
498 NID_des_cbc,
499 NID_des_ede3_cbc,
500 #endif
501 #if defined(HAVE_CHACHA) && defined(HAVE_POLY1305)
502 NID_chacha20_poly1305,
503 #endif
504 };
505 int iv_lengths[] = {
506 #if defined(HAVE_AES_CBC) || defined(WOLFSSL_AES_DIRECT)
507 #ifdef WOLFSSL_AES_128
508 AES_BLOCK_SIZE,
509 #endif
510 #ifdef WOLFSSL_AES_192
511 AES_BLOCK_SIZE,
512 #endif
513 #ifdef WOLFSSL_AES_256
514 AES_BLOCK_SIZE,
515 #endif
516 #endif /* HAVE_AES_CBC || WOLFSSL_AES_DIRECT */
517 #if (!defined(HAVE_FIPS) && !defined(HAVE_SELFTEST)) || \
518 (defined(HAVE_FIPS_VERSION) && (HAVE_FIPS_VERSION > 2))
519 #ifdef HAVE_AESGCM
520 #ifdef WOLFSSL_AES_128
521 GCM_NONCE_MID_SZ,
522 #endif
523 #ifdef WOLFSSL_AES_192
524 GCM_NONCE_MID_SZ,
525 #endif
526 #ifdef WOLFSSL_AES_256
527 GCM_NONCE_MID_SZ,
528 #endif
529 #endif /* HAVE_AESGCM */
530 #endif /* (HAVE_FIPS && !HAVE_SELFTEST) || HAVE_FIPS_VERSION > 2 */
531 #ifdef WOLFSSL_AES_COUNTER
532 #ifdef WOLFSSL_AES_128
533 AES_BLOCK_SIZE,
534 #endif
535 #ifdef WOLFSSL_AES_192
536 AES_BLOCK_SIZE,
537 #endif
538 #ifdef WOLFSSL_AES_256
539 AES_BLOCK_SIZE,
540 #endif
541 #endif
542 #ifndef NO_DES3
543 DES_BLOCK_SIZE,
544 DES_BLOCK_SIZE,
545 #endif
546 #if defined(HAVE_CHACHA) && defined(HAVE_POLY1305)
547 CHACHA20_POLY1305_AEAD_IV_SIZE,
548 #endif
549 };
550 int i;
551 int nidsLen = (sizeof(nids)/sizeof(int));
552
553 for (i = 0; i < nidsLen; i++) {
554 const EVP_CIPHER *c = EVP_get_cipherbynid(nids[i]);
555 ExpectIntEQ(EVP_CIPHER_iv_length(c), iv_lengths[i]);
556 }
557#endif
558 return EXPECT_RESULT();
559}
560
561/* Test for NULL_CIPHER_TYPE in wolfSSL_EVP_CipherUpdate() */
562int test_wolfSSL_EVP_CipherUpdate_Null(void)
563{
564 EXPECT_DECLS;
565#ifdef OPENSSL_EXTRA
566 WOLFSSL_EVP_CIPHER_CTX* ctx;
567 const char* testData = "Test NULL cipher data";
568 unsigned char output[100];
569 int outputLen = 0;
570 int testDataLen = (int)XSTRLEN(testData);
571
572 /* Create and initialize the cipher context */
573 ctx = wolfSSL_EVP_CIPHER_CTX_new();
574 ExpectNotNull(ctx);
575
576 /* Initialize with NULL cipher */
577 ExpectIntEQ(wolfSSL_EVP_CipherInit_ex(ctx, wolfSSL_EVP_enc_null(),
578 NULL, NULL, NULL, 1), WOLFSSL_SUCCESS);
579
580 /* Test encryption (which should just copy the data) */
581 ExpectIntEQ(wolfSSL_EVP_CipherUpdate(ctx, output, &outputLen,
582 (const unsigned char*)testData,
583 testDataLen), WOLFSSL_SUCCESS);
584
585 /* Verify output length matches input length */
586 ExpectIntEQ(outputLen, testDataLen);
587
588 /* Verify output data matches input data (no encryption occurred) */
589 ExpectIntEQ(XMEMCMP(output, testData, testDataLen), 0);
590
591 /* Clean up */
592 wolfSSL_EVP_CIPHER_CTX_free(ctx);
593#endif /* OPENSSL_EXTRA */
594
595 return EXPECT_RESULT();
596}
597
598/* Test for wolfSSL_EVP_CIPHER_type_string() */
599int test_wolfSSL_EVP_CIPHER_type_string(void)
600{
601 EXPECT_DECLS;
602#ifdef OPENSSL_EXTRA
603 const char* cipherStr;
604
605 /* Test with valid cipher types */
606#ifdef HAVE_AES_CBC
607 #ifdef WOLFSSL_AES_128
608 cipherStr = wolfSSL_EVP_CIPHER_type_string(WC_AES_128_CBC_TYPE);
609 ExpectNotNull(cipherStr);
610 ExpectStrEQ(cipherStr, "AES-128-CBC");
611 #endif
612#endif
613
614#ifndef NO_DES3
615 cipherStr = wolfSSL_EVP_CIPHER_type_string(WC_DES_CBC_TYPE);
616 ExpectNotNull(cipherStr);
617 ExpectStrEQ(cipherStr, "DES-CBC");
618#endif
619
620 /* Test with NULL cipher type */
621 cipherStr = wolfSSL_EVP_CIPHER_type_string(WC_NULL_CIPHER_TYPE);
622 ExpectNotNull(cipherStr);
623 ExpectStrEQ(cipherStr, "NULL");
624
625 /* Test with invalid cipher type */
626 cipherStr = wolfSSL_EVP_CIPHER_type_string(0xFFFF);
627 ExpectNull(cipherStr);
628#endif /* OPENSSL_EXTRA */
629
630 return EXPECT_RESULT();
631}
632
633int test_wolfSSL_EVP_BytesToKey(void)
634{
635 EXPECT_DECLS;
636#if !defined(NO_AES) && defined(HAVE_AES_CBC) && defined(OPENSSL_ALL)
637 byte key[AES_BLOCK_SIZE] = {0};
638 byte iv[AES_BLOCK_SIZE] = {0};
639 int count = 0;
640 const EVP_MD* md = EVP_sha256();
641 const EVP_CIPHER *type;
642 const unsigned char *salt = (unsigned char *)"salt1234";
643 int sz = 5;
644 const byte data[] = {
645 0x48,0x65,0x6c,0x6c,0x6f,0x20,0x57,0x6f,
646 0x72,0x6c,0x64
647 };
648
649 type = wolfSSL_EVP_get_cipherbynid(NID_aes_128_cbc);
650
651 /* Bad cases */
652 ExpectIntEQ(EVP_BytesToKey(NULL, md, salt, data, sz, count, key, iv),
653 0);
654 ExpectIntEQ(EVP_BytesToKey(type, md, salt, NULL, sz, count, key, iv),
655 16);
656 md = "2";
657 ExpectIntEQ(EVP_BytesToKey(type, md, salt, data, sz, count, key, iv),
658 WC_NO_ERR_TRACE(WOLFSSL_FAILURE));
659
660 /* Good case */
661 md = EVP_sha256();
662 ExpectIntEQ(EVP_BytesToKey(type, md, salt, data, sz, count, key, iv),
663 16);
664#endif
665 return EXPECT_RESULT();
666}
667
668#if (defined(OPENSSL_EXTRA) || defined(OPENSSL_ALL)) &&\
669 (!defined(NO_AES) && defined(HAVE_AES_CBC) && defined(WOLFSSL_AES_128))
670static void binary_dump(void *ptr, int size)
671{
672 #ifdef WOLFSSL_EVP_PRINT
673 int i = 0;
674 unsigned char *p = (unsigned char *) ptr;
675
676 fprintf(stderr, "{");
677 while ((p != NULL) && (i < size)) {
678 if ((i % 8) == 0) {
679 fprintf(stderr, "\n");
680 fprintf(stderr, " ");
681 }
682 fprintf(stderr, "0x%02x, ", p[i]);
683 i++;
684 }
685 fprintf(stderr, "\n};\n");
686 #else
687 (void) ptr;
688 (void) size;
689 #endif
690}
691
692static int last_val = 0x0f;
693
694static int check_result(unsigned char *data, int len)
695{
696 int i;
697
698 for ( ; len; ) {
699 last_val = (last_val + 1) % 16;
700 for (i = 0; i < 16; len--, i++, data++)
701 if (*data != last_val) {
702 return -1;
703 }
704 }
705 return 0;
706}
707
708static int r_offset;
709static int w_offset;
710
711static void init_offset(void)
712{
713 r_offset = 0;
714 w_offset = 0;
715}
716
717static void get_record(unsigned char *data, unsigned char *buf, int len)
718{
719 XMEMCPY(buf, data+r_offset, len);
720 r_offset += len;
721}
722
723static void set_record(unsigned char *data, unsigned char *buf, int len)
724{
725 XMEMCPY(data+w_offset, buf, len);
726 w_offset += len;
727}
728
729static void set_plain(unsigned char *plain, int rec)
730{
731 int i, j;
732 unsigned char *p = plain;
733
734 #define BLOCKSZ 16
735
736 for (i=0; i<(rec/BLOCKSZ); i++) {
737 for (j=0; j<BLOCKSZ; j++)
738 *p++ = (i % 16);
739 }
740}
741#endif
742
743int test_wolfSSL_EVP_Cipher_extra(void)
744{
745 EXPECT_DECLS;
746#if (defined(OPENSSL_EXTRA) || defined(OPENSSL_ALL)) &&\
747 (!defined(NO_AES) && defined(HAVE_AES_CBC) && defined(WOLFSSL_AES_128))
748 /* aes128-cbc, keylen=16, ivlen=16 */
749 byte aes128_cbc_key[] = {
750 0x12, 0x34, 0x56, 0x78, 0x90, 0xab, 0xcd, 0xef,
751 0x12, 0x34, 0x56, 0x78, 0x90, 0xab, 0xcd, 0xef,
752 };
753
754 byte aes128_cbc_iv[] = {
755 0x11, 0x22, 0x33, 0x44, 0x55, 0x66, 0x77, 0x88,
756 0x99, 0x00, 0xaa, 0xbb, 0xcc, 0xdd, 0xee, 0xff,
757 };
758
759 /* teset data size table */
760 static const int test_drive1[] = {8, 3, 5, 512, 8, 3, 8, 512, 0};
761 static const int test_drive2[] = {8, 3, 8, 512, 0};
762 static const int test_drive3[] = {512, 512, 504, 512, 512, 8, 512, 0};
763
764 static const int *test_drive[] = { test_drive1, test_drive2, test_drive3,
765 NULL };
766
767 int test_drive_len[100];
768
769 int ret = 0;
770 EVP_CIPHER_CTX *evp = NULL;
771
772 int ilen = 0;
773 int klen = 0;
774 int i, j;
775
776 const EVP_CIPHER *type;
777 byte *iv;
778 byte *key;
779 int ivlen;
780 int keylen;
781
782 #define RECORDS 16
783 #define BUFFSZ 512
784 byte plain [BUFFSZ * RECORDS];
785 byte cipher[BUFFSZ * RECORDS];
786
787 byte inb[BUFFSZ];
788 byte outb[BUFFSZ+16];
789 int outl = 0;
790 int inl;
791
792 iv = aes128_cbc_iv;
793 ivlen = sizeof(aes128_cbc_iv);
794 key = aes128_cbc_key;
795 keylen = sizeof(aes128_cbc_key);
796 type = EVP_aes_128_cbc();
797
798 set_plain(plain, BUFFSZ * RECORDS);
799
800 ExpectNotNull(evp = EVP_CIPHER_CTX_new());
801 ExpectIntNE((ret = EVP_CipherInit(evp, type, NULL, iv, 0)), 0);
802
803 ExpectIntEQ(EVP_CIPHER_CTX_nid(evp), NID_aes_128_cbc);
804
805 klen = EVP_CIPHER_CTX_key_length(evp);
806 if (klen > 0 && keylen != klen) {
807 ExpectIntNE(EVP_CIPHER_CTX_set_key_length(evp, keylen), 0);
808 }
809 ilen = EVP_CIPHER_CTX_iv_length(evp);
810 if (ilen > 0 && ivlen != ilen) {
811 ExpectIntNE(EVP_CIPHER_CTX_set_iv_length(evp, ivlen), 0);
812 }
813
814 ExpectIntNE((ret = EVP_CipherInit(evp, NULL, key, iv, 1)), 0);
815
816 for (j = 0; j<RECORDS; j++)
817 {
818 inl = BUFFSZ;
819 get_record(plain, inb, inl);
820 ExpectIntNE((ret = EVP_CipherUpdate(evp, outb, &outl, inb, inl)), 0);
821 set_record(cipher, outb, outl);
822 }
823
824 for (i = 0; test_drive[i]; i++) {
825
826 ExpectIntNE((ret = EVP_CipherInit(evp, NULL, key, iv, 1)), 0);
827
828 init_offset();
829 test_drive_len[i] = 0;
830 for (j = 0; test_drive[i][j]; j++)
831 {
832 inl = test_drive[i][j];
833 test_drive_len[i] += inl;
834
835 get_record(plain, inb, inl);
836 ExpectIntNE((ret = EVP_EncryptUpdate(evp, outb, &outl, inb, inl)),
837 0);
838 /* output to cipher buffer, so that following Dec test can detect
839 if any error */
840 set_record(cipher, outb, outl);
841 }
842
843 EVP_CipherFinal(evp, outb, &outl);
844
845 if (outl > 0)
846 set_record(cipher, outb, outl);
847 }
848
849 for (i = 0; test_drive[i]; i++) {
850 last_val = 0x0f;
851
852 ExpectIntNE((ret = EVP_CipherInit(evp, NULL, key, iv, 0)), 0);
853
854 init_offset();
855
856 for (j = 0; test_drive[i][j]; j++) {
857 inl = test_drive[i][j];
858 get_record(cipher, inb, inl);
859
860 ExpectIntNE((ret = EVP_DecryptUpdate(evp, outb, &outl, inb, inl)),
861 0);
862
863 binary_dump(outb, outl);
864 ExpectIntEQ((ret = check_result(outb, outl)), 0);
865 ExpectFalse(outl > ((inl/16+1)*16) && outl > 16);
866 }
867
868 ret = EVP_CipherFinal(evp, outb, &outl);
869
870 binary_dump(outb, outl);
871
872 ret = (((test_drive_len[i] % 16) != 0) && (ret == 0)) ||
873 (((test_drive_len[i] % 16) == 0) && (ret == 1));
874 ExpectTrue(ret);
875 }
876
877 ExpectIntEQ(wolfSSL_EVP_CIPHER_CTX_cleanup(evp), WOLFSSL_SUCCESS);
878
879 EVP_CIPHER_CTX_free(evp);
880 evp = NULL;
881
882 /* Do an extra test to verify correct behavior with empty input. */
883
884 ExpectNotNull(evp = EVP_CIPHER_CTX_new());
885 ExpectIntNE((ret = EVP_CipherInit(evp, type, NULL, iv, 0)), 0);
886
887 ExpectIntEQ(EVP_CIPHER_CTX_nid(evp), NID_aes_128_cbc);
888
889 klen = EVP_CIPHER_CTX_key_length(evp);
890 if (klen > 0 && keylen != klen) {
891 ExpectIntNE(EVP_CIPHER_CTX_set_key_length(evp, keylen), 0);
892 }
893 ilen = EVP_CIPHER_CTX_iv_length(evp);
894 if (ilen > 0 && ivlen != ilen) {
895 ExpectIntNE(EVP_CIPHER_CTX_set_iv_length(evp, ivlen), 0);
896 }
897
898 ExpectIntNE((ret = EVP_CipherInit(evp, NULL, key, iv, 1)), 0);
899
900 /* outl should be set to 0 after passing NULL, 0 for input args. */
901 outl = -1;
902 ExpectIntNE((ret = EVP_CipherUpdate(evp, outb, &outl, NULL, 0)), 0);
903 ExpectIntEQ(outl, 0);
904
905 EVP_CIPHER_CTX_free(evp);
906#endif /* test_EVP_Cipher */
907 return EXPECT_RESULT();
908}
909
910int test_wolfSSL_EVP_X_STATE(void)
911{
912 EXPECT_DECLS;
913#if !defined(NO_DES3) && !defined(NO_RC4) && defined(OPENSSL_ALL)
914 byte key[DES3_KEY_SIZE] = {0};
915 byte iv[DES_IV_SIZE] = {0};
916 EVP_CIPHER_CTX *ctx = NULL;
917 const EVP_CIPHER *init = NULL;
918
919 /* Bad test cases */
920 ExpectNotNull(ctx = EVP_CIPHER_CTX_new());
921 ExpectNotNull(init = EVP_des_ede3_cbc());
922
923 wolfSSL_EVP_CIPHER_CTX_init(ctx);
924 ExpectIntEQ(EVP_CipherInit(ctx, init, key, iv, 1), WOLFSSL_SUCCESS);
925
926 ExpectNull(wolfSSL_EVP_X_STATE(NULL));
927 ExpectNull(wolfSSL_EVP_X_STATE(ctx));
928 EVP_CIPHER_CTX_free(ctx);
929 ctx = NULL;
930
931 /* Good test case */
932 ExpectNotNull(ctx = EVP_CIPHER_CTX_new());
933 ExpectNotNull(init = wolfSSL_EVP_rc4());
934
935 wolfSSL_EVP_CIPHER_CTX_init(ctx);
936 ExpectIntEQ(EVP_CipherInit(ctx, init, key, iv, 1), WOLFSSL_SUCCESS);
937
938 ExpectNotNull(wolfSSL_EVP_X_STATE(ctx));
939 EVP_CIPHER_CTX_free(ctx);
940#endif
941 return EXPECT_RESULT();
942}
943int test_wolfSSL_EVP_X_STATE_LEN(void)
944{
945 EXPECT_DECLS;
946#if !defined(NO_DES3) && !defined(NO_RC4) && defined(OPENSSL_ALL)
947 byte key[DES3_KEY_SIZE] = {0};
948 byte iv[DES_IV_SIZE] = {0};
949 EVP_CIPHER_CTX *ctx = NULL;
950 const EVP_CIPHER *init = NULL;
951
952 /* Bad test cases */
953 ExpectNotNull(ctx = EVP_CIPHER_CTX_new());
954 ExpectNotNull(init = EVP_des_ede3_cbc());
955
956 wolfSSL_EVP_CIPHER_CTX_init(ctx);
957 ExpectIntEQ(EVP_CipherInit(ctx, init, key, iv, 1), WOLFSSL_SUCCESS);
958
959 ExpectIntEQ(wolfSSL_EVP_X_STATE_LEN(NULL), 0);
960 ExpectIntEQ(wolfSSL_EVP_X_STATE_LEN(ctx), 0);
961 EVP_CIPHER_CTX_free(ctx);
962 ctx = NULL;
963
964 /* Good test case */
965 ExpectNotNull(ctx = EVP_CIPHER_CTX_new());
966 ExpectNotNull(init = wolfSSL_EVP_rc4());
967
968 wolfSSL_EVP_CIPHER_CTX_init(ctx);
969 ExpectIntEQ(EVP_CipherInit(ctx, init, key, iv, 1), WOLFSSL_SUCCESS);
970
971 ExpectIntEQ(wolfSSL_EVP_X_STATE_LEN(ctx), sizeof(Arc4));
972 EVP_CIPHER_CTX_free(ctx);
973#endif
974 return EXPECT_RESULT();
975}
976
977
978int test_wolfSSL_EVP_aes_256_gcm(void)
979{
980 EXPECT_DECLS;
981#if defined(HAVE_AESGCM) && defined(WOLFSSL_AES_256) && defined(OPENSSL_ALL)
982 ExpectNotNull(wolfSSL_EVP_aes_256_gcm());
983#endif
984 return EXPECT_RESULT();
985}
986
987int test_wolfSSL_EVP_aes_192_gcm(void)
988{
989 EXPECT_DECLS;
990#if defined(HAVE_AESGCM) && defined(WOLFSSL_AES_192) && defined(OPENSSL_ALL)
991 ExpectNotNull(wolfSSL_EVP_aes_192_gcm());
992#endif
993 return EXPECT_RESULT();
994}
995
996int test_wolfSSL_EVP_aes_128_gcm(void)
997{
998 EXPECT_DECLS;
999#if defined(HAVE_AESGCM) && defined(WOLFSSL_AES_128) && defined(OPENSSL_ALL)
1000 ExpectNotNull(wolfSSL_EVP_aes_128_gcm());
1001#endif
1002 return EXPECT_RESULT();
1003}
1004
1005int test_evp_cipher_aes_gcm(void)
1006{
1007 EXPECT_DECLS;
1008#if defined(HAVE_AESGCM) && defined(OPENSSL_ALL) && ((!defined(HAVE_FIPS) && \
1009 !defined(HAVE_SELFTEST)) || (defined(HAVE_FIPS_VERSION) && \
1010 (HAVE_FIPS_VERSION >= 2))) && defined(WOLFSSL_AES_256)
1011 /*
1012 * This test checks data at various points in the encrypt/decrypt process
1013 * against known values produced using the same test with OpenSSL. This
1014 * interop testing is critical for verifying the correctness of our
1015 * EVP_Cipher implementation with AES-GCM. Specifically, this test exercises
1016 * a flow supported by OpenSSL that uses the control command
1017 * EVP_CTRL_GCM_IV_GEN to increment the IV between cipher operations without
1018 * the need to call EVP_CipherInit. OpenSSH uses this flow, for example. We
1019 * had a bug with OpenSSH where wolfSSL OpenSSH servers could only talk to
1020 * wolfSSL OpenSSH clients because there was a bug in this flow that
1021 * happened to "cancel out" if both sides of the connection had the bug.
1022 */
1023 enum {
1024 NUM_ENCRYPTIONS = 3,
1025 AAD_SIZE = 4
1026 };
1027 static const byte plainText1[] = {
1028 0x00, 0x01, 0x02, 0x03, 0x04, 0x05, 0x06, 0x07, 0x08, 0x09, 0x0a, 0x0b,
1029 0x0c, 0x0d, 0x0e, 0x0f, 0x10, 0x11, 0x12, 0x13, 0x14, 0x15, 0x16, 0x17,
1030 0x18, 0x19, 0x1a, 0x1b, 0x1c, 0x1d, 0x1e, 0x1f, 0x20, 0x21, 0x22, 0x23
1031 };
1032 static const byte plainText2[] = {
1033 0x42, 0x49, 0x3b, 0x27, 0x03, 0x35, 0x59, 0x14, 0x41, 0x47, 0x37, 0x14,
1034 0x0e, 0x34, 0x0d, 0x28, 0x63, 0x09, 0x0a, 0x5b, 0x22, 0x57, 0x42, 0x22,
1035 0x0f, 0x5c, 0x1e, 0x53, 0x45, 0x15, 0x62, 0x08, 0x60, 0x43, 0x50, 0x2c
1036 };
1037 static const byte plainText3[] = {
1038 0x36, 0x0d, 0x2b, 0x09, 0x4a, 0x56, 0x3b, 0x4c, 0x21, 0x22, 0x58, 0x0e,
1039 0x5b, 0x57, 0x10
1040 };
1041 static const byte* plainTexts[NUM_ENCRYPTIONS] = {
1042 plainText1,
1043 plainText2,
1044 plainText3
1045 };
1046 static const int plainTextSzs[NUM_ENCRYPTIONS] = {
1047 sizeof(plainText1),
1048 sizeof(plainText2),
1049 sizeof(plainText3)
1050 };
1051 static const byte aad1[AAD_SIZE] = {
1052 0x00, 0x00, 0x00, 0x01
1053 };
1054 static const byte aad2[AAD_SIZE] = {
1055 0x00, 0x00, 0x00, 0x10
1056 };
1057 static const byte aad3[AAD_SIZE] = {
1058 0x00, 0x00, 0x01, 0x00
1059 };
1060 static const byte* aads[NUM_ENCRYPTIONS] = {
1061 aad1,
1062 aad2,
1063 aad3
1064 };
1065 const byte iv[GCM_NONCE_MID_SZ] = {
1066 0xDE, 0xAD, 0xBE, 0xEF, 0xDE, 0xAD, 0xBE, 0xEF, 0xDE, 0xAD, 0xBE, 0xEF
1067 };
1068 byte currentIv[GCM_NONCE_MID_SZ];
1069 const byte key[] = {
1070 0x10, 0x11, 0x12, 0x13, 0x14, 0x15, 0x16, 0x17, 0x18, 0x19, 0x1a, 0x1b,
1071 0x1c, 0x1d, 0x1e, 0x1f, 0x20, 0x21, 0x22, 0x23, 0x24, 0x25, 0x26, 0x27,
1072 0x28, 0x29, 0x2a, 0x2b, 0x2c, 0x2d, 0x2e, 0x2f
1073 };
1074 const byte expIvs[NUM_ENCRYPTIONS][GCM_NONCE_MID_SZ] = {
1075 {
1076 0xDE, 0xAD, 0xBE, 0xEF, 0xDE, 0xAD, 0xBE, 0xEF, 0xDE, 0xAD, 0xBE,
1077 0xEF
1078 },
1079 {
1080 0xDE, 0xAD, 0xBE, 0xEF, 0xDE, 0xAD, 0xBE, 0xEF, 0xDE, 0xAD, 0xBE,
1081 0xF0
1082 },
1083 {
1084 0xDE, 0xAD, 0xBE, 0xEF, 0xDE, 0xAD, 0xBE, 0xEF, 0xDE, 0xAD, 0xBE,
1085 0xF1
1086 }
1087 };
1088 const byte expTags[NUM_ENCRYPTIONS][AES_BLOCK_SIZE] = {
1089 {
1090 0x65, 0x4F, 0xF7, 0xA0, 0xBB, 0x7B, 0x90, 0xB7, 0x9C, 0xC8, 0x14,
1091 0x3D, 0x32, 0x18, 0x34, 0xA9
1092 },
1093 {
1094 0x50, 0x3A, 0x13, 0x8D, 0x91, 0x1D, 0xEC, 0xBB, 0xBA, 0x5B, 0x57,
1095 0xA2, 0xFD, 0x2D, 0x6B, 0x7F
1096 },
1097 {
1098 0x3B, 0xED, 0x18, 0x9C, 0xB3, 0xE3, 0x61, 0x1E, 0x11, 0xEB, 0x13,
1099 0x5B, 0xEC, 0x52, 0x49, 0x32,
1100 }
1101 };
1102 static const byte expCipherText1[] = {
1103 0xCB, 0x93, 0x4F, 0xC8, 0x22, 0xE2, 0xC0, 0x35, 0xAA, 0x6B, 0x41, 0x15,
1104 0x17, 0x30, 0x2F, 0x97, 0x20, 0x74, 0x39, 0x28, 0xF8, 0xEB, 0xC5, 0x51,
1105 0x7B, 0xD9, 0x8A, 0x36, 0xB8, 0xDA, 0x24, 0x80, 0xE7, 0x9E, 0x09, 0xDE
1106 };
1107 static const byte expCipherText2[] = {
1108 0xF9, 0x32, 0xE1, 0x87, 0x37, 0x0F, 0x04, 0xC1, 0xB5, 0x59, 0xF0, 0x45,
1109 0x3A, 0x0D, 0xA0, 0x26, 0xFF, 0xA6, 0x8D, 0x38, 0xFE, 0xB8, 0xE5, 0xC2,
1110 0x2A, 0x98, 0x4A, 0x54, 0x8F, 0x1F, 0xD6, 0x13, 0x03, 0xB2, 0x1B, 0xC0
1111 };
1112 static const byte expCipherText3[] = {
1113 0xD0, 0x37, 0x59, 0x1C, 0x2F, 0x85, 0x39, 0x4D, 0xED, 0xC2, 0x32, 0x5B,
1114 0x80, 0x5E, 0x6B,
1115 };
1116 static const byte* expCipherTexts[NUM_ENCRYPTIONS] = {
1117 expCipherText1,
1118 expCipherText2,
1119 expCipherText3
1120 };
1121 byte* cipherText = NULL;
1122 byte* calcPlainText = NULL;
1123 byte tag[AES_BLOCK_SIZE];
1124 EVP_CIPHER_CTX* encCtx = NULL;
1125 EVP_CIPHER_CTX* decCtx = NULL;
1126 int i, j, outl;
1127
1128 /****************************************************/
1129 for (i = 0; i < 3; ++i) {
1130 ExpectNotNull(encCtx = EVP_CIPHER_CTX_new());
1131 ExpectNotNull(decCtx = EVP_CIPHER_CTX_new());
1132
1133 /* First iteration, set key before IV. */
1134 if (i == 0) {
1135 ExpectIntEQ(EVP_CipherInit(encCtx, EVP_aes_256_gcm(), key, NULL, 1),
1136 SSL_SUCCESS);
1137
1138 /*
1139 * The call to EVP_CipherInit below (with NULL key) should clear the
1140 * authIvGenEnable flag set by EVP_CTRL_GCM_SET_IV_FIXED. As such, a
1141 * subsequent EVP_CTRL_GCM_IV_GEN should fail. This matches OpenSSL
1142 * behavior.
1143 */
1144 ExpectIntEQ(EVP_CIPHER_CTX_ctrl(encCtx, EVP_CTRL_GCM_SET_IV_FIXED,
1145 -1, (void*)iv), SSL_SUCCESS);
1146 ExpectIntEQ(EVP_CipherInit(encCtx, NULL, NULL, iv, 1),
1147 SSL_SUCCESS);
1148 ExpectIntEQ(EVP_CIPHER_CTX_ctrl(encCtx, EVP_CTRL_GCM_IV_GEN, -1,
1149 currentIv), WC_NO_ERR_TRACE(WOLFSSL_FAILURE));
1150
1151 ExpectIntEQ(EVP_CipherInit(decCtx, EVP_aes_256_gcm(), key, NULL, 0),
1152 SSL_SUCCESS);
1153 ExpectIntEQ(EVP_CipherInit(decCtx, NULL, NULL, iv, 0),
1154 SSL_SUCCESS);
1155 }
1156 /* Second iteration, IV before key. */
1157 else {
1158 ExpectIntEQ(EVP_CipherInit(encCtx, EVP_aes_256_gcm(), NULL, iv, 1),
1159 SSL_SUCCESS);
1160 ExpectIntEQ(EVP_CipherInit(encCtx, NULL, key, NULL, 1),
1161 SSL_SUCCESS);
1162 ExpectIntEQ(EVP_CipherInit(decCtx, EVP_aes_256_gcm(), NULL, iv, 0),
1163 SSL_SUCCESS);
1164 ExpectIntEQ(EVP_CipherInit(decCtx, NULL, key, NULL, 0),
1165 SSL_SUCCESS);
1166 }
1167
1168 /*
1169 * EVP_CTRL_GCM_IV_GEN should fail if EVP_CTRL_GCM_SET_IV_FIXED hasn't
1170 * been issued first.
1171 */
1172 ExpectIntEQ(EVP_CIPHER_CTX_ctrl(encCtx, EVP_CTRL_GCM_IV_GEN, -1,
1173 currentIv), WC_NO_ERR_TRACE(WOLFSSL_FAILURE));
1174
1175 ExpectIntEQ(EVP_CIPHER_CTX_ctrl(encCtx, EVP_CTRL_GCM_SET_IV_FIXED, -1,
1176 (void*)iv), SSL_SUCCESS);
1177 ExpectIntEQ(EVP_CIPHER_CTX_ctrl(decCtx, EVP_CTRL_GCM_SET_IV_FIXED, -1,
1178 (void*)iv), SSL_SUCCESS);
1179
1180 for (j = 0; j < NUM_ENCRYPTIONS; ++j) {
1181 /*************** Encrypt ***************/
1182 ExpectIntEQ(EVP_CIPHER_CTX_ctrl(encCtx, EVP_CTRL_GCM_IV_GEN, -1,
1183 currentIv), SSL_SUCCESS);
1184 /* Check current IV against expected. */
1185 ExpectIntEQ(XMEMCMP(currentIv, expIvs[j], GCM_NONCE_MID_SZ), 0);
1186
1187 /* Add AAD. */
1188 if (i == 2) {
1189 /* Test streaming API. */
1190 ExpectIntEQ(EVP_CipherUpdate(encCtx, NULL, &outl, aads[j],
1191 AAD_SIZE), SSL_SUCCESS);
1192 }
1193 else {
1194 ExpectIntEQ(EVP_Cipher(encCtx, NULL, (byte *)aads[j], AAD_SIZE),
1195 AAD_SIZE);
1196 }
1197
1198 ExpectNotNull(cipherText = (byte*)XMALLOC(plainTextSzs[j], NULL,
1199 DYNAMIC_TYPE_TMP_BUFFER));
1200
1201 /* Encrypt plaintext. */
1202 if (i == 2) {
1203 ExpectIntEQ(EVP_CipherUpdate(encCtx, cipherText, &outl,
1204 plainTexts[j], plainTextSzs[j]),
1205 SSL_SUCCESS);
1206 }
1207 else {
1208 ExpectIntEQ(EVP_Cipher(encCtx, cipherText,
1209 (byte *)plainTexts[j], plainTextSzs[j]),
1210 plainTextSzs[j]);
1211 }
1212
1213 if (i == 2) {
1214 ExpectIntEQ(EVP_CipherFinal(encCtx, cipherText, &outl),
1215 SSL_SUCCESS);
1216 }
1217 else {
1218 /*
1219 * Calling EVP_Cipher with NULL input and output for AES-GCM is
1220 * akin to calling EVP_CipherFinal.
1221 */
1222 ExpectIntGE(EVP_Cipher(encCtx, NULL, NULL, 0), 0);
1223 }
1224
1225 /* Check ciphertext against expected. */
1226 ExpectIntEQ(XMEMCMP(cipherText, expCipherTexts[j], plainTextSzs[j]),
1227 0);
1228
1229 /* Get and check tag against expected. */
1230 ExpectIntEQ(EVP_CIPHER_CTX_ctrl(encCtx, EVP_CTRL_GCM_GET_TAG,
1231 sizeof(tag), tag), SSL_SUCCESS);
1232 ExpectIntEQ(XMEMCMP(tag, expTags[j], sizeof(tag)), 0);
1233
1234 /*************** Decrypt ***************/
1235 ExpectIntEQ(EVP_CIPHER_CTX_ctrl(decCtx, EVP_CTRL_GCM_IV_GEN, -1,
1236 currentIv), SSL_SUCCESS);
1237 /* Check current IV against expected. */
1238 ExpectIntEQ(XMEMCMP(currentIv, expIvs[j], GCM_NONCE_MID_SZ), 0);
1239
1240 /* Add AAD. */
1241 if (i == 2) {
1242 /* Test streaming API. */
1243 ExpectIntEQ(EVP_CipherUpdate(decCtx, NULL, &outl, aads[j],
1244 AAD_SIZE), SSL_SUCCESS);
1245 }
1246 else {
1247 ExpectIntEQ(EVP_Cipher(decCtx, NULL, (byte *)aads[j], AAD_SIZE),
1248 AAD_SIZE);
1249 }
1250
1251 /* Set expected tag. */
1252 ExpectIntEQ(EVP_CIPHER_CTX_ctrl(decCtx, EVP_CTRL_GCM_SET_TAG,
1253 sizeof(tag), tag), SSL_SUCCESS);
1254
1255 /* Decrypt ciphertext. */
1256 ExpectNotNull(calcPlainText = (byte*)XMALLOC(plainTextSzs[j], NULL,
1257 DYNAMIC_TYPE_TMP_BUFFER));
1258 if (i == 2) {
1259 ExpectIntEQ(EVP_CipherUpdate(decCtx, calcPlainText, &outl,
1260 cipherText, plainTextSzs[j]),
1261 SSL_SUCCESS);
1262 }
1263 else {
1264 /* This first EVP_Cipher call will check the tag, too. */
1265 ExpectIntEQ(EVP_Cipher(decCtx, calcPlainText, cipherText,
1266 plainTextSzs[j]), plainTextSzs[j]);
1267 }
1268
1269 if (i == 2) {
1270 ExpectIntEQ(EVP_CipherFinal(decCtx, calcPlainText, &outl),
1271 SSL_SUCCESS);
1272 }
1273 else {
1274 ExpectIntGE(EVP_Cipher(decCtx, NULL, NULL, 0), 0);
1275 }
1276
1277 /* Check plaintext against expected. */
1278 ExpectIntEQ(XMEMCMP(calcPlainText, plainTexts[j], plainTextSzs[j]),
1279 0);
1280
1281 XFREE(cipherText, NULL, DYNAMIC_TYPE_TMP_BUFFER);
1282 cipherText = NULL;
1283 XFREE(calcPlainText, NULL, DYNAMIC_TYPE_TMP_BUFFER);
1284 calcPlainText = NULL;
1285 }
1286
1287 EVP_CIPHER_CTX_free(encCtx);
1288 encCtx = NULL;
1289 EVP_CIPHER_CTX_free(decCtx);
1290 decCtx = NULL;
1291 }
1292#endif
1293 return EXPECT_RESULT();
1294}
1295
1296int test_wolfssl_EVP_aes_gcm(void)
1297{
1298 EXPECT_DECLS;
1299#if defined(OPENSSL_EXTRA) && !defined(NO_AES) && defined(HAVE_AESGCM) && \
1300 !defined(HAVE_SELFTEST) && !defined(HAVE_FIPS)
1301 /* A 256 bit key, AES_128 will use the first 128 bit*/
1302 byte *key = (byte*)"01234567890123456789012345678901";
1303 /* A 128 bit IV */
1304 byte *iv = (byte*)"0123456789012345";
1305 int ivSz = AES_BLOCK_SIZE;
1306 /* Message to be encrypted */
1307 byte *plaintxt = (byte*)"for things to change you have to change";
1308 /* Additional non-confidential data */
1309 byte *aad = (byte*)"Don't spend major time on minor things.";
1310
1311 unsigned char tag[AES_BLOCK_SIZE] = {0};
1312 int plaintxtSz = (int)XSTRLEN((char*)plaintxt);
1313 int aadSz = (int)XSTRLEN((char*)aad);
1314 byte ciphertxt[AES_BLOCK_SIZE * 4] = {0};
1315 byte decryptedtxt[AES_BLOCK_SIZE * 4] = {0};
1316 int ciphertxtSz = 0;
1317 int decryptedtxtSz = 0;
1318 int len = 0;
1319 int i = 0;
1320 EVP_CIPHER_CTX en[2];
1321 EVP_CIPHER_CTX de[2];
1322
1323 for (i = 0; i < 2; i++) {
1324 EVP_CIPHER_CTX_init(&en[i]);
1325 if (i == 0) {
1326 /* Default uses 96-bits IV length */
1327#ifdef WOLFSSL_AES_128
1328 ExpectIntEQ(1, EVP_EncryptInit_ex(&en[i], EVP_aes_128_gcm(), NULL,
1329 key, iv));
1330#elif defined(WOLFSSL_AES_192)
1331 ExpectIntEQ(1, EVP_EncryptInit_ex(&en[i], EVP_aes_192_gcm(), NULL,
1332 key, iv));
1333#elif defined(WOLFSSL_AES_256)
1334 ExpectIntEQ(1, EVP_EncryptInit_ex(&en[i], EVP_aes_256_gcm(), NULL,
1335 key, iv));
1336#endif
1337 }
1338 else {
1339#ifdef WOLFSSL_AES_128
1340 ExpectIntEQ(1, EVP_EncryptInit_ex(&en[i], EVP_aes_128_gcm(), NULL,
1341 NULL, NULL));
1342#elif defined(WOLFSSL_AES_192)
1343 ExpectIntEQ(1, EVP_EncryptInit_ex(&en[i], EVP_aes_192_gcm(), NULL,
1344 NULL, NULL));
1345#elif defined(WOLFSSL_AES_256)
1346 ExpectIntEQ(1, EVP_EncryptInit_ex(&en[i], EVP_aes_256_gcm(), NULL,
1347 NULL, NULL));
1348#endif
1349 /* non-default must to set the IV length first */
1350 ExpectIntEQ(1, EVP_CIPHER_CTX_ctrl(&en[i], EVP_CTRL_GCM_SET_IVLEN,
1351 ivSz, NULL));
1352 ExpectIntEQ(1, EVP_EncryptInit_ex(&en[i], NULL, NULL, key, iv));
1353 }
1354 ExpectIntEQ(1, EVP_EncryptUpdate(&en[i], NULL, &len, aad, aadSz));
1355 ExpectIntEQ(1, EVP_EncryptUpdate(&en[i], ciphertxt, &len, plaintxt,
1356 plaintxtSz));
1357 ciphertxtSz = len;
1358 ExpectIntEQ(1, EVP_EncryptFinal_ex(&en[i], ciphertxt, &len));
1359 ciphertxtSz += len;
1360 ExpectIntEQ(1, EVP_CIPHER_CTX_ctrl(&en[i], EVP_CTRL_GCM_GET_TAG,
1361 AES_BLOCK_SIZE, tag));
1362 wolfSSL_EVP_CIPHER_CTX_cleanup(&en[i]);
1363
1364 EVP_CIPHER_CTX_init(&de[i]);
1365 if (i == 0) {
1366 /* Default uses 96-bits IV length */
1367#ifdef WOLFSSL_AES_128
1368 ExpectIntEQ(1, EVP_DecryptInit_ex(&de[i], EVP_aes_128_gcm(), NULL,
1369 key, iv));
1370#elif defined(WOLFSSL_AES_192)
1371 ExpectIntEQ(1, EVP_DecryptInit_ex(&de[i], EVP_aes_192_gcm(), NULL,
1372 key, iv));
1373#elif defined(WOLFSSL_AES_256)
1374 ExpectIntEQ(1, EVP_DecryptInit_ex(&de[i], EVP_aes_256_gcm(), NULL,
1375 key, iv));
1376#endif
1377 }
1378 else {
1379#ifdef WOLFSSL_AES_128
1380 ExpectIntEQ(1, EVP_DecryptInit_ex(&de[i], EVP_aes_128_gcm(), NULL,
1381 NULL, NULL));
1382#elif defined(WOLFSSL_AES_192)
1383 ExpectIntEQ(1, EVP_DecryptInit_ex(&de[i], EVP_aes_192_gcm(), NULL,
1384 NULL, NULL));
1385#elif defined(WOLFSSL_AES_256)
1386 ExpectIntEQ(1, EVP_DecryptInit_ex(&de[i], EVP_aes_256_gcm(), NULL,
1387 NULL, NULL));
1388#endif
1389 /* non-default must to set the IV length first */
1390 ExpectIntEQ(1, EVP_CIPHER_CTX_ctrl(&de[i], EVP_CTRL_GCM_SET_IVLEN,
1391 ivSz, NULL));
1392 ExpectIntEQ(1, EVP_DecryptInit_ex(&de[i], NULL, NULL, key, iv));
1393
1394 }
1395 ExpectIntEQ(1, EVP_DecryptUpdate(&de[i], NULL, &len, aad, aadSz));
1396 ExpectIntEQ(1, EVP_DecryptUpdate(&de[i], decryptedtxt, &len, ciphertxt,
1397 ciphertxtSz));
1398 decryptedtxtSz = len;
1399 ExpectIntEQ(1, EVP_CIPHER_CTX_ctrl(&de[i], EVP_CTRL_GCM_SET_TAG,
1400 AES_BLOCK_SIZE, tag));
1401 ExpectIntEQ(1, EVP_DecryptFinal_ex(&de[i], decryptedtxt, &len));
1402 decryptedtxtSz += len;
1403 ExpectIntEQ(ciphertxtSz, decryptedtxtSz);
1404 ExpectIntEQ(0, XMEMCMP(plaintxt, decryptedtxt, decryptedtxtSz));
1405
1406 /* modify tag*/
1407 if (i == 0) {
1408 /* Default uses 96-bits IV length */
1409#ifdef WOLFSSL_AES_128
1410 ExpectIntEQ(1, EVP_DecryptInit_ex(&de[i], EVP_aes_128_gcm(), NULL,
1411 key, iv));
1412#elif defined(WOLFSSL_AES_192)
1413 ExpectIntEQ(1, EVP_DecryptInit_ex(&de[i], EVP_aes_192_gcm(), NULL,
1414 key, iv));
1415#elif defined(WOLFSSL_AES_256)
1416 ExpectIntEQ(1, EVP_DecryptInit_ex(&de[i], EVP_aes_256_gcm(), NULL,
1417 key, iv));
1418#endif
1419 }
1420 else {
1421#ifdef WOLFSSL_AES_128
1422 ExpectIntEQ(1, EVP_DecryptInit_ex(&de[i], EVP_aes_128_gcm(), NULL,
1423 NULL, NULL));
1424#elif defined(WOLFSSL_AES_192)
1425 ExpectIntEQ(1, EVP_DecryptInit_ex(&de[i], EVP_aes_192_gcm(), NULL,
1426 NULL, NULL));
1427#elif defined(WOLFSSL_AES_256)
1428 ExpectIntEQ(1, EVP_DecryptInit_ex(&de[i], EVP_aes_256_gcm(), NULL,
1429 NULL, NULL));
1430#endif
1431 /* non-default must to set the IV length first */
1432 ExpectIntEQ(1, EVP_CIPHER_CTX_ctrl(&de[i], EVP_CTRL_GCM_SET_IVLEN,
1433 ivSz, NULL));
1434 ExpectIntEQ(1, EVP_DecryptInit_ex(&de[i], NULL, NULL, key, iv));
1435
1436 }
1437 tag[AES_BLOCK_SIZE-1]+=0xBB;
1438 ExpectIntEQ(1, EVP_DecryptUpdate(&de[i], NULL, &len, aad, aadSz));
1439 ExpectIntEQ(1, EVP_CIPHER_CTX_ctrl(&de[i], EVP_CTRL_GCM_SET_TAG,
1440 AES_BLOCK_SIZE, tag));
1441 /* fail due to wrong tag */
1442 ExpectIntEQ(1, EVP_DecryptUpdate(&de[i], decryptedtxt, &len, ciphertxt,
1443 ciphertxtSz));
1444 ExpectIntEQ(0, EVP_DecryptFinal_ex(&de[i], decryptedtxt, &len));
1445 ExpectIntEQ(0, len);
1446
1447 wolfSSL_EVP_CIPHER_CTX_cleanup(&de[i]);
1448 }
1449#endif /* OPENSSL_EXTRA && !NO_AES && HAVE_AESGCM */
1450 return EXPECT_RESULT();
1451}
1452
1453int test_wolfssl_EVP_aes_gcm_AAD_2_parts(void)
1454{
1455 EXPECT_DECLS;
1456#if defined(OPENSSL_EXTRA) && !defined(NO_AES) && defined(HAVE_AESGCM) && \
1457 !defined(HAVE_SELFTEST) && !defined(HAVE_FIPS)
1458 const byte iv[12] = { 0 };
1459 const byte key[16] = { 0 };
1460 const byte cleartext[16] = { 0 };
1461 const byte aad[] = {
1462 0x01, 0x10, 0x00, 0x2a, 0x08, 0x00, 0x04, 0x00,
1463 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x08,
1464 0x00, 0x00, 0xdc, 0x4d, 0xad, 0x6b, 0x06, 0x93,
1465 0x4f
1466 };
1467 byte out1Part[16];
1468 byte outTag1Part[16];
1469 byte out2Part[16];
1470 byte outTag2Part[16];
1471 byte decryptBuf[16];
1472 int len = 0;
1473 int tlen;
1474 EVP_CIPHER_CTX* ctx = NULL;
1475
1476 /* ENCRYPT */
1477 /* Send AAD and data in 1 part */
1478 ExpectNotNull(ctx = EVP_CIPHER_CTX_new());
1479 tlen = 0;
1480 ExpectIntEQ(EVP_EncryptInit_ex(ctx, EVP_aes_128_gcm(), NULL, NULL, NULL),
1481 1);
1482 ExpectIntEQ(EVP_EncryptInit_ex(ctx, NULL, NULL, key, iv), 1);
1483 ExpectIntEQ(EVP_EncryptUpdate(ctx, NULL, &len, aad, sizeof(aad)), 1);
1484 ExpectIntEQ(EVP_EncryptUpdate(ctx, out1Part, &len, cleartext,
1485 sizeof(cleartext)), 1);
1486 tlen += len;
1487 ExpectIntEQ(EVP_EncryptFinal_ex(ctx, out1Part, &len), 1);
1488 tlen += len;
1489 ExpectIntEQ(tlen, sizeof(cleartext));
1490 ExpectIntEQ(EVP_CIPHER_CTX_ctrl(ctx, EVP_CTRL_AEAD_GET_TAG, 16,
1491 outTag1Part), 1);
1492 EVP_CIPHER_CTX_free(ctx);
1493 ctx = NULL;
1494
1495 /* DECRYPT */
1496 /* Send AAD and data in 1 part */
1497 ExpectNotNull(ctx = EVP_CIPHER_CTX_new());
1498 tlen = 0;
1499 ExpectIntEQ(EVP_DecryptInit_ex(ctx, EVP_aes_128_gcm(), NULL, NULL, NULL),
1500 1);
1501 ExpectIntEQ(EVP_DecryptInit_ex(ctx, NULL, NULL, key, iv), 1);
1502 ExpectIntEQ(EVP_DecryptUpdate(ctx, NULL, &len, aad, sizeof(aad)), 1);
1503 ExpectIntEQ(EVP_DecryptUpdate(ctx, decryptBuf, &len, out1Part,
1504 sizeof(cleartext)), 1);
1505 tlen += len;
1506 ExpectIntEQ(EVP_CIPHER_CTX_ctrl(ctx, EVP_CTRL_AEAD_SET_TAG, 16,
1507 outTag1Part), 1);
1508 ExpectIntEQ(EVP_DecryptFinal_ex(ctx, decryptBuf, &len), 1);
1509 tlen += len;
1510 ExpectIntEQ(tlen, sizeof(cleartext));
1511 EVP_CIPHER_CTX_free(ctx);
1512 ctx = NULL;
1513
1514 ExpectIntEQ(XMEMCMP(decryptBuf, cleartext, len), 0);
1515
1516 /* ENCRYPT */
1517 /* Send AAD and data in 2 parts */
1518 ExpectNotNull(ctx = EVP_CIPHER_CTX_new());
1519 tlen = 0;
1520 ExpectIntEQ(EVP_EncryptInit_ex(ctx, EVP_aes_128_gcm(), NULL, NULL, NULL),
1521 1);
1522 ExpectIntEQ(EVP_EncryptInit_ex(ctx, NULL, NULL, key, iv), 1);
1523 ExpectIntEQ(EVP_EncryptUpdate(ctx, NULL, &len, aad, 1), 1);
1524 ExpectIntEQ(EVP_EncryptUpdate(ctx, NULL, &len, aad + 1, sizeof(aad) - 1),
1525 1);
1526 ExpectIntEQ(EVP_EncryptUpdate(ctx, out2Part, &len, cleartext, 1), 1);
1527 tlen += len;
1528 ExpectIntEQ(EVP_EncryptUpdate(ctx, out2Part + tlen, &len, cleartext + 1,
1529 sizeof(cleartext) - 1), 1);
1530 tlen += len;
1531 ExpectIntEQ(EVP_EncryptFinal_ex(ctx, out2Part + tlen, &len), 1);
1532 tlen += len;
1533 ExpectIntEQ(tlen, sizeof(cleartext));
1534 ExpectIntEQ(EVP_CIPHER_CTX_ctrl(ctx, EVP_CTRL_AEAD_GET_TAG, 16,
1535 outTag2Part), 1);
1536
1537 ExpectIntEQ(XMEMCMP(out1Part, out2Part, sizeof(out1Part)), 0);
1538 ExpectIntEQ(XMEMCMP(outTag1Part, outTag2Part, sizeof(outTag1Part)), 0);
1539 EVP_CIPHER_CTX_free(ctx);
1540 ctx = NULL;
1541
1542 /* DECRYPT */
1543 /* Send AAD and data in 2 parts */
1544 ExpectNotNull(ctx = EVP_CIPHER_CTX_new());
1545 tlen = 0;
1546 ExpectIntEQ(EVP_DecryptInit_ex(ctx, EVP_aes_128_gcm(), NULL, NULL, NULL),
1547 1);
1548 ExpectIntEQ(EVP_DecryptInit_ex(ctx, NULL, NULL, key, iv), 1);
1549 ExpectIntEQ(EVP_DecryptUpdate(ctx, NULL, &len, aad, 1), 1);
1550 ExpectIntEQ(EVP_DecryptUpdate(ctx, NULL, &len, aad + 1, sizeof(aad) - 1),
1551 1);
1552 ExpectIntEQ(EVP_DecryptUpdate(ctx, decryptBuf, &len, out1Part, 1), 1);
1553 tlen += len;
1554 ExpectIntEQ(EVP_DecryptUpdate(ctx, decryptBuf + tlen, &len, out1Part + 1,
1555 sizeof(cleartext) - 1), 1);
1556 tlen += len;
1557 ExpectIntEQ(EVP_CIPHER_CTX_ctrl(ctx, EVP_CTRL_AEAD_SET_TAG, 16,
1558 outTag1Part), 1);
1559 ExpectIntEQ(EVP_DecryptFinal_ex(ctx, decryptBuf + tlen, &len), 1);
1560 tlen += len;
1561 ExpectIntEQ(tlen, sizeof(cleartext));
1562
1563 ExpectIntEQ(XMEMCMP(decryptBuf, cleartext, len), 0);
1564
1565 /* Test AAD reuse */
1566 EVP_CIPHER_CTX_free(ctx);
1567#endif
1568 return EXPECT_RESULT();
1569}
1570
1571int test_wolfssl_EVP_aes_gcm_zeroLen(void)
1572{
1573 EXPECT_DECLS;
1574#if defined(OPENSSL_EXTRA) && !defined(NO_AES) && defined(HAVE_AESGCM) && \
1575 !defined(HAVE_SELFTEST) && !defined(HAVE_FIPS) && defined(WOLFSSL_AES_256)
1576 /* Zero length plain text */
1577 byte key[] = {
1578 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
1579 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
1580 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
1581 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00
1582 }; /* align */
1583 byte iv[] = {
1584 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00
1585 }; /* align */
1586 byte plaintxt[1];
1587 int ivSz = 12;
1588 int plaintxtSz = 0;
1589 unsigned char tag[16];
1590 unsigned char tag_kat[] = {
1591 0x53,0x0f,0x8a,0xfb,0xc7,0x45,0x36,0xb9,
1592 0xa9,0x63,0xb4,0xf1,0xc4,0xcb,0x73,0x8b
1593 };
1594
1595 byte ciphertxt[AES_BLOCK_SIZE * 4] = {0};
1596 byte decryptedtxt[AES_BLOCK_SIZE * 4] = {0};
1597 int ciphertxtSz = 0;
1598 int decryptedtxtSz = 0;
1599 int len = 0;
1600
1601 EVP_CIPHER_CTX *en = EVP_CIPHER_CTX_new();
1602 EVP_CIPHER_CTX *de = EVP_CIPHER_CTX_new();
1603
1604 ExpectIntEQ(1, EVP_EncryptInit_ex(en, EVP_aes_256_gcm(), NULL, key, iv));
1605 ExpectIntEQ(1, EVP_CIPHER_CTX_ctrl(en, EVP_CTRL_GCM_SET_IVLEN, ivSz, NULL));
1606 ExpectIntEQ(1, EVP_EncryptUpdate(en, ciphertxt, &ciphertxtSz , plaintxt,
1607 plaintxtSz));
1608 ExpectIntEQ(1, EVP_EncryptFinal_ex(en, ciphertxt, &len));
1609 ciphertxtSz += len;
1610 ExpectIntEQ(1, EVP_CIPHER_CTX_ctrl(en, EVP_CTRL_GCM_GET_TAG, 16, tag));
1611 ExpectIntEQ(1, EVP_CIPHER_CTX_cleanup(en));
1612
1613 ExpectIntEQ(0, ciphertxtSz);
1614 ExpectIntEQ(0, XMEMCMP(tag, tag_kat, sizeof(tag)));
1615
1616 EVP_CIPHER_CTX_init(de);
1617 ExpectIntEQ(1, EVP_DecryptInit_ex(de, EVP_aes_256_gcm(), NULL, key, iv));
1618 ExpectIntEQ(1, EVP_CIPHER_CTX_ctrl(de, EVP_CTRL_GCM_SET_IVLEN, ivSz, NULL));
1619 ExpectIntEQ(1, EVP_DecryptUpdate(de, NULL, &len, ciphertxt, len));
1620 decryptedtxtSz = len;
1621 ExpectIntEQ(1, EVP_CIPHER_CTX_ctrl(de, EVP_CTRL_GCM_SET_TAG, 16, tag));
1622 ExpectIntEQ(1, EVP_DecryptFinal_ex(de, decryptedtxt, &len));
1623 decryptedtxtSz += len;
1624 ExpectIntEQ(0, decryptedtxtSz);
1625
1626 EVP_CIPHER_CTX_free(en);
1627 EVP_CIPHER_CTX_free(de);
1628#endif
1629 return EXPECT_RESULT();
1630}
1631
1632int test_wolfSSL_EVP_aes_256_ccm(void)
1633{
1634 EXPECT_DECLS;
1635#if defined(HAVE_AESCCM) && defined(WOLFSSL_AES_256) && defined(OPENSSL_ALL)
1636 ExpectNotNull(wolfSSL_EVP_aes_256_ccm());
1637#endif
1638 return EXPECT_RESULT();
1639}
1640
1641int test_wolfSSL_EVP_aes_192_ccm(void)
1642{
1643 EXPECT_DECLS;
1644#if defined(HAVE_AESCCM) && defined(WOLFSSL_AES_192) && defined(OPENSSL_ALL)
1645 ExpectNotNull(wolfSSL_EVP_aes_192_ccm());
1646#endif
1647 return EXPECT_RESULT();
1648}
1649
1650int test_wolfSSL_EVP_aes_128_ccm(void)
1651{
1652 EXPECT_DECLS;
1653#if defined(HAVE_AESCCM) && defined(WOLFSSL_AES_128) && defined(OPENSSL_ALL)
1654 ExpectNotNull(wolfSSL_EVP_aes_128_ccm());
1655#endif
1656 return EXPECT_RESULT();
1657}
1658
1659int test_wolfssl_EVP_aes_ccm(void)
1660{
1661 EXPECT_DECLS;
1662#if defined(OPENSSL_EXTRA) && !defined(NO_AES) && defined(HAVE_AESCCM) && \
1663 !defined(HAVE_SELFTEST) && !defined(HAVE_FIPS)
1664 /* A 256 bit key, AES_128 will use the first 128 bit*/
1665 byte *key = (byte*)"01234567890123456789012345678901";
1666 /* A 128 bit IV */
1667 byte *iv = (byte*)"0123456789012";
1668 int ivSz = (int)XSTRLEN((char*)iv);
1669 /* Message to be encrypted */
1670 byte *plaintxt = (byte*)"for things to change you have to change";
1671 /* Additional non-confidential data */
1672 byte *aad = (byte*)"Don't spend major time on minor things.";
1673
1674 unsigned char tag[AES_BLOCK_SIZE] = {0};
1675 int plaintxtSz = (int)XSTRLEN((char*)plaintxt);
1676 int aadSz = (int)XSTRLEN((char*)aad);
1677 byte ciphertxt[AES_BLOCK_SIZE * 4] = {0};
1678 byte decryptedtxt[AES_BLOCK_SIZE * 4] = {0};
1679 int ciphertxtSz = 0;
1680 int decryptedtxtSz = 0;
1681 int len = 0;
1682 int i = 0;
1683 int ret;
1684 EVP_CIPHER_CTX en[2];
1685 EVP_CIPHER_CTX de[2];
1686
1687 for (i = 0; i < 2; i++) {
1688 EVP_CIPHER_CTX_init(&en[i]);
1689
1690 if (i == 0) {
1691 /* Default uses 96-bits IV length */
1692#ifdef WOLFSSL_AES_128
1693 ExpectIntEQ(1, EVP_EncryptInit_ex(&en[i], EVP_aes_128_ccm(), NULL,
1694 key, iv));
1695#elif defined(WOLFSSL_AES_192)
1696 ExpectIntEQ(1, EVP_EncryptInit_ex(&en[i], EVP_aes_192_ccm(), NULL,
1697 key, iv));
1698#elif defined(WOLFSSL_AES_256)
1699 ExpectIntEQ(1, EVP_EncryptInit_ex(&en[i], EVP_aes_256_ccm(), NULL,
1700 key, iv));
1701#endif
1702 }
1703 else {
1704#ifdef WOLFSSL_AES_128
1705 ExpectIntEQ(1, EVP_EncryptInit_ex(&en[i], EVP_aes_128_ccm(), NULL,
1706 NULL, NULL));
1707#elif defined(WOLFSSL_AES_192)
1708 ExpectIntEQ(1, EVP_EncryptInit_ex(&en[i], EVP_aes_192_ccm(), NULL,
1709 NULL, NULL));
1710#elif defined(WOLFSSL_AES_256)
1711 ExpectIntEQ(1, EVP_EncryptInit_ex(&en[i], EVP_aes_256_ccm(), NULL,
1712 NULL, NULL));
1713#endif
1714 /* non-default must to set the IV length first */
1715 ExpectIntEQ(1, EVP_CIPHER_CTX_ctrl(&en[i], EVP_CTRL_CCM_SET_IVLEN,
1716 ivSz, NULL));
1717 ExpectIntEQ(1, EVP_EncryptInit_ex(&en[i], NULL, NULL, key, iv));
1718 }
1719 ExpectIntEQ(1, EVP_EncryptUpdate(&en[i], NULL, &len, aad, aadSz));
1720 ExpectIntEQ(1, EVP_EncryptUpdate(&en[i], ciphertxt, &len, plaintxt,
1721 plaintxtSz));
1722 ciphertxtSz = len;
1723 ExpectIntEQ(1, EVP_EncryptFinal_ex(&en[i], ciphertxt, &len));
1724 ciphertxtSz += len;
1725 ExpectIntEQ(1, EVP_CIPHER_CTX_ctrl(&en[i], EVP_CTRL_CCM_GET_TAG,
1726 AES_BLOCK_SIZE, tag));
1727 ret = wolfSSL_EVP_CIPHER_CTX_cleanup(&en[i]);
1728 ExpectIntEQ(ret, 1);
1729
1730 EVP_CIPHER_CTX_init(&de[i]);
1731 if (i == 0) {
1732 /* Default uses 96-bits IV length */
1733#ifdef WOLFSSL_AES_128
1734 ExpectIntEQ(1, EVP_DecryptInit_ex(&de[i], EVP_aes_128_ccm(), NULL,
1735 key, iv));
1736#elif defined(WOLFSSL_AES_192)
1737 ExpectIntEQ(1, EVP_DecryptInit_ex(&de[i], EVP_aes_192_ccm(), NULL,
1738 key, iv));
1739#elif defined(WOLFSSL_AES_256)
1740 ExpectIntEQ(1, EVP_DecryptInit_ex(&de[i], EVP_aes_256_ccm(), NULL,
1741 key, iv));
1742#endif
1743 }
1744 else {
1745#ifdef WOLFSSL_AES_128
1746 ExpectIntEQ(1, EVP_DecryptInit_ex(&de[i], EVP_aes_128_ccm(), NULL,
1747 NULL, NULL));
1748#elif defined(WOLFSSL_AES_192)
1749 ExpectIntEQ(1, EVP_DecryptInit_ex(&de[i], EVP_aes_192_ccm(), NULL,
1750 NULL, NULL));
1751#elif defined(WOLFSSL_AES_256)
1752 ExpectIntEQ(1, EVP_DecryptInit_ex(&de[i], EVP_aes_256_ccm(), NULL,
1753 NULL, NULL));
1754#endif
1755 /* non-default must to set the IV length first */
1756 ExpectIntEQ(1, EVP_CIPHER_CTX_ctrl(&de[i], EVP_CTRL_CCM_SET_IVLEN,
1757 ivSz, NULL));
1758 ExpectIntEQ(1, EVP_DecryptInit_ex(&de[i], NULL, NULL, key, iv));
1759
1760 }
1761 ExpectIntEQ(1, EVP_DecryptUpdate(&de[i], NULL, &len, aad, aadSz));
1762 ExpectIntEQ(1, EVP_DecryptUpdate(&de[i], decryptedtxt, &len, ciphertxt,
1763 ciphertxtSz));
1764 decryptedtxtSz = len;
1765 ExpectIntEQ(1, EVP_CIPHER_CTX_ctrl(&de[i], EVP_CTRL_CCM_SET_TAG,
1766 AES_BLOCK_SIZE, tag));
1767 ExpectIntEQ(1, EVP_DecryptFinal_ex(&de[i], decryptedtxt, &len));
1768 decryptedtxtSz += len;
1769 ExpectIntEQ(ciphertxtSz, decryptedtxtSz);
1770 ExpectIntEQ(0, XMEMCMP(plaintxt, decryptedtxt, decryptedtxtSz));
1771
1772 /* modify tag*/
1773 tag[AES_BLOCK_SIZE-1]+=0xBB;
1774 ExpectIntEQ(1, EVP_DecryptUpdate(&de[i], NULL, &len, aad, aadSz));
1775 ExpectIntEQ(1, EVP_CIPHER_CTX_ctrl(&de[i], EVP_CTRL_CCM_SET_TAG,
1776 AES_BLOCK_SIZE, tag));
1777 /* fail due to wrong tag */
1778 ExpectIntEQ(1, EVP_DecryptUpdate(&de[i], decryptedtxt, &len, ciphertxt,
1779 ciphertxtSz));
1780 ExpectIntEQ(0, EVP_DecryptFinal_ex(&de[i], decryptedtxt, &len));
1781 ExpectIntEQ(0, len);
1782 ret = wolfSSL_EVP_CIPHER_CTX_cleanup(&de[i]);
1783 ExpectIntEQ(ret, 1);
1784 }
1785#endif /* OPENSSL_EXTRA && !NO_AES && HAVE_AESCCM */
1786 return EXPECT_RESULT();
1787}
1788
1789int test_wolfssl_EVP_aes_ccm_zeroLen(void)
1790{
1791 EXPECT_DECLS;
1792#if defined(OPENSSL_EXTRA) && !defined(NO_AES) && defined(HAVE_AESCCM) && \
1793 !defined(HAVE_SELFTEST) && !defined(HAVE_FIPS) && defined(WOLFSSL_AES_256)
1794 /* Zero length plain text */
1795 byte key[] = {
1796 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
1797 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
1798 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
1799 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00
1800 }; /* align */
1801 byte iv[] = {
1802 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00
1803 }; /* align */
1804 byte plaintxt[1];
1805 int ivSz = 12;
1806 int plaintxtSz = 0;
1807 unsigned char tag[16];
1808
1809 byte ciphertxt[AES_BLOCK_SIZE * 4] = {0};
1810 byte decryptedtxt[AES_BLOCK_SIZE * 4] = {0};
1811 int ciphertxtSz = 0;
1812 int decryptedtxtSz = 0;
1813 int len = 0;
1814
1815 EVP_CIPHER_CTX *en = EVP_CIPHER_CTX_new();
1816 EVP_CIPHER_CTX *de = EVP_CIPHER_CTX_new();
1817
1818 ExpectIntEQ(1, EVP_EncryptInit_ex(en, EVP_aes_256_ccm(), NULL, key, iv));
1819 ExpectIntEQ(1, EVP_CIPHER_CTX_ctrl(en, EVP_CTRL_CCM_SET_IVLEN, ivSz, NULL));
1820 ExpectIntEQ(1, EVP_EncryptUpdate(en, ciphertxt, &ciphertxtSz , plaintxt,
1821 plaintxtSz));
1822 ExpectIntEQ(1, EVP_EncryptFinal_ex(en, ciphertxt, &len));
1823 ciphertxtSz += len;
1824 ExpectIntEQ(1, EVP_CIPHER_CTX_ctrl(en, EVP_CTRL_CCM_GET_TAG, 16, tag));
1825 ExpectIntEQ(1, EVP_CIPHER_CTX_cleanup(en));
1826
1827 ExpectIntEQ(0, ciphertxtSz);
1828
1829 EVP_CIPHER_CTX_init(de);
1830 ExpectIntEQ(1, EVP_DecryptInit_ex(de, EVP_aes_256_ccm(), NULL, key, iv));
1831 ExpectIntEQ(1, EVP_CIPHER_CTX_ctrl(de, EVP_CTRL_CCM_SET_IVLEN, ivSz, NULL));
1832 ExpectIntEQ(1, EVP_DecryptUpdate(de, NULL, &len, ciphertxt, len));
1833 decryptedtxtSz = len;
1834 ExpectIntEQ(1, EVP_CIPHER_CTX_ctrl(de, EVP_CTRL_CCM_SET_TAG, 16, tag));
1835 ExpectIntEQ(1, EVP_DecryptFinal_ex(de, decryptedtxt, &len));
1836 decryptedtxtSz += len;
1837 ExpectIntEQ(0, decryptedtxtSz);
1838
1839 EVP_CIPHER_CTX_free(en);
1840 EVP_CIPHER_CTX_free(de);
1841#endif
1842 return EXPECT_RESULT();
1843}
1844
1845int test_wolfssl_EVP_chacha20(void)
1846{
1847 EXPECT_DECLS;
1848#if defined(OPENSSL_EXTRA) && defined(HAVE_CHACHA)
1849 byte key[CHACHA_MAX_KEY_SZ];
1850 byte iv [WOLFSSL_EVP_CHACHA_IV_BYTES];
1851 byte plainText[] = {0xDE, 0xAD, 0xBE, 0xEF};
1852 byte cipherText[sizeof(plainText)];
1853 byte decryptedText[sizeof(plainText)];
1854 EVP_CIPHER_CTX* ctx = NULL;
1855 int outSz;
1856
1857 XMEMSET(key, 0, sizeof(key));
1858 XMEMSET(iv, 0, sizeof(iv));
1859 /* Encrypt. */
1860 ExpectNotNull((ctx = EVP_CIPHER_CTX_new()));
1861 ExpectIntEQ(EVP_EncryptInit_ex(ctx, EVP_chacha20(), NULL, NULL,
1862 NULL), WOLFSSL_SUCCESS);
1863 /* Any tag length must fail - not an AEAD cipher. */
1864 ExpectIntEQ(EVP_CIPHER_CTX_ctrl(ctx, EVP_CTRL_AEAD_SET_TAG,
1865 16, NULL), WC_NO_ERR_TRACE(WOLFSSL_FAILURE));
1866 ExpectIntEQ(EVP_EncryptInit_ex(ctx, NULL, NULL, key, iv), WOLFSSL_SUCCESS);
1867 ExpectIntEQ(EVP_EncryptUpdate(ctx, cipherText, &outSz, plainText,
1868 sizeof(plainText)), WOLFSSL_SUCCESS);
1869 ExpectIntEQ(outSz, sizeof(plainText));
1870 ExpectIntEQ(EVP_EncryptFinal_ex(ctx, cipherText, &outSz), WOLFSSL_SUCCESS);
1871 ExpectIntEQ(outSz, 0);
1872 EVP_CIPHER_CTX_free(ctx);
1873 ctx = NULL;
1874
1875 /* Decrypt. */
1876 ExpectNotNull((ctx = EVP_CIPHER_CTX_new()));
1877 ExpectIntEQ(EVP_DecryptInit_ex(ctx, EVP_chacha20(), NULL, NULL,
1878 NULL), WOLFSSL_SUCCESS);
1879 ExpectIntEQ(EVP_DecryptInit_ex(ctx, NULL, NULL, key, iv), WOLFSSL_SUCCESS);
1880 ExpectIntEQ(EVP_DecryptUpdate(ctx, decryptedText, &outSz, cipherText,
1881 sizeof(cipherText)), WOLFSSL_SUCCESS);
1882 ExpectIntEQ(outSz, sizeof(cipherText));
1883 ExpectIntEQ(EVP_DecryptFinal_ex(ctx, decryptedText, &outSz),
1884 WOLFSSL_SUCCESS);
1885 ExpectIntEQ(outSz, 0);
1886 EVP_CIPHER_CTX_free(ctx);
1887 ctx = NULL;
1888
1889 /* Test partial Inits. CipherInit() allow setting of key and iv
1890 * in separate calls. */
1891 ExpectNotNull((ctx = EVP_CIPHER_CTX_new()));
1892 ExpectIntEQ(wolfSSL_EVP_CipherInit(ctx, EVP_chacha20(),
1893 key, NULL, 1), WOLFSSL_SUCCESS);
1894 ExpectIntEQ(wolfSSL_EVP_CipherInit(ctx, NULL, NULL, iv, 1),
1895 WOLFSSL_SUCCESS);
1896 ExpectIntEQ(EVP_DecryptUpdate(ctx, decryptedText, &outSz, cipherText,
1897 sizeof(cipherText)), WOLFSSL_SUCCESS);
1898 ExpectIntEQ(outSz, sizeof(cipherText));
1899 ExpectIntEQ(EVP_DecryptFinal_ex(ctx, decryptedText, &outSz),
1900 WOLFSSL_SUCCESS);
1901 ExpectIntEQ(outSz, 0);
1902 EVP_CIPHER_CTX_free(ctx);
1903#endif
1904 return EXPECT_RESULT();
1905}
1906
1907int test_wolfssl_EVP_chacha20_poly1305(void)
1908{
1909 EXPECT_DECLS;
1910#if defined(OPENSSL_EXTRA) && defined(HAVE_CHACHA) && defined(HAVE_POLY1305)
1911 byte key[CHACHA20_POLY1305_AEAD_KEYSIZE];
1912 byte iv [CHACHA20_POLY1305_AEAD_IV_SIZE];
1913 byte plainText[] = {0xDE, 0xAD, 0xBE, 0xEF};
1914 byte aad[] = {0xAA, 0XBB, 0xCC, 0xDD, 0xEE, 0xFF};
1915 byte cipherText[sizeof(plainText)];
1916 byte decryptedText[sizeof(plainText)];
1917 byte tag[CHACHA20_POLY1305_AEAD_AUTHTAG_SIZE];
1918 byte badTag[CHACHA20_POLY1305_AEAD_AUTHTAG_SIZE];
1919 EVP_CIPHER_CTX* ctx = NULL;
1920 int outSz;
1921
1922 XMEMSET(key, 0, sizeof(key));
1923 XMEMSET(iv, 0, sizeof(iv));
1924
1925 /* Encrypt. */
1926 ExpectNotNull((ctx = EVP_CIPHER_CTX_new()));
1927 ExpectIntEQ(EVP_EncryptInit_ex(ctx, EVP_chacha20_poly1305(), NULL, NULL,
1928 NULL), WOLFSSL_SUCCESS);
1929 /* Invalid IV length. */
1930 ExpectIntEQ(EVP_CIPHER_CTX_ctrl(ctx, EVP_CTRL_AEAD_SET_IVLEN,
1931 CHACHA20_POLY1305_AEAD_IV_SIZE-1, NULL),
1932 WC_NO_ERR_TRACE(WOLFSSL_FAILURE));
1933 /* Valid IV length. */
1934 ExpectIntEQ(EVP_CIPHER_CTX_ctrl(ctx, EVP_CTRL_AEAD_SET_IVLEN,
1935 CHACHA20_POLY1305_AEAD_IV_SIZE, NULL), WOLFSSL_SUCCESS);
1936 /* Invalid tag length. */
1937 ExpectIntEQ(EVP_CIPHER_CTX_ctrl(ctx, EVP_CTRL_AEAD_SET_TAG,
1938 CHACHA20_POLY1305_AEAD_AUTHTAG_SIZE-1, NULL),
1939 WC_NO_ERR_TRACE(WOLFSSL_FAILURE));
1940 /* Valid tag length. */
1941 ExpectIntEQ(EVP_CIPHER_CTX_ctrl(ctx, EVP_CTRL_AEAD_SET_TAG,
1942 CHACHA20_POLY1305_AEAD_AUTHTAG_SIZE, NULL), WOLFSSL_SUCCESS);
1943 ExpectIntEQ(EVP_EncryptInit_ex(ctx, NULL, NULL, key, iv), WOLFSSL_SUCCESS);
1944 ExpectIntEQ(EVP_EncryptUpdate(ctx, NULL, &outSz, aad, sizeof(aad)),
1945 WOLFSSL_SUCCESS);
1946 ExpectIntEQ(outSz, sizeof(aad));
1947 ExpectIntEQ(EVP_EncryptUpdate(ctx, cipherText, &outSz, plainText,
1948 sizeof(plainText)), WOLFSSL_SUCCESS);
1949 ExpectIntEQ(outSz, sizeof(plainText));
1950 ExpectIntEQ(EVP_EncryptFinal_ex(ctx, cipherText, &outSz), WOLFSSL_SUCCESS);
1951 ExpectIntEQ(outSz, 0);
1952 /* Invalid tag length. */
1953 ExpectIntEQ(EVP_CIPHER_CTX_ctrl(ctx, EVP_CTRL_AEAD_GET_TAG,
1954 CHACHA20_POLY1305_AEAD_AUTHTAG_SIZE-1, tag),
1955 WC_NO_ERR_TRACE(WOLFSSL_FAILURE));
1956 /* Valid tag length. */
1957 ExpectIntEQ(EVP_CIPHER_CTX_ctrl(ctx, EVP_CTRL_AEAD_GET_TAG,
1958 CHACHA20_POLY1305_AEAD_AUTHTAG_SIZE, tag), WOLFSSL_SUCCESS);
1959 EVP_CIPHER_CTX_free(ctx);
1960 ctx = NULL;
1961
1962 /* Decrypt. */
1963 ExpectNotNull((ctx = EVP_CIPHER_CTX_new()));
1964 ExpectIntEQ(EVP_DecryptInit_ex(ctx, EVP_chacha20_poly1305(), NULL, NULL,
1965 NULL), WOLFSSL_SUCCESS);
1966 ExpectIntEQ(EVP_CIPHER_CTX_ctrl(ctx, EVP_CTRL_AEAD_SET_IVLEN,
1967 CHACHA20_POLY1305_AEAD_IV_SIZE, NULL), WOLFSSL_SUCCESS);
1968 ExpectIntEQ(EVP_CIPHER_CTX_ctrl(ctx, EVP_CTRL_AEAD_SET_TAG,
1969 CHACHA20_POLY1305_AEAD_AUTHTAG_SIZE, tag), WOLFSSL_SUCCESS);
1970 ExpectIntEQ(EVP_DecryptInit_ex(ctx, NULL, NULL, key, iv), WOLFSSL_SUCCESS);
1971 ExpectIntEQ(EVP_DecryptUpdate(ctx, NULL, &outSz, aad, sizeof(aad)),
1972 WOLFSSL_SUCCESS);
1973 ExpectIntEQ(outSz, sizeof(aad));
1974 ExpectIntEQ(EVP_DecryptUpdate(ctx, decryptedText, &outSz, cipherText,
1975 sizeof(cipherText)), WOLFSSL_SUCCESS);
1976 ExpectIntEQ(outSz, sizeof(cipherText));
1977 ExpectIntEQ(EVP_DecryptFinal_ex(ctx, decryptedText, &outSz),
1978 WOLFSSL_SUCCESS);
1979 ExpectIntEQ(outSz, 0);
1980 EVP_CIPHER_CTX_free(ctx);
1981 ctx = NULL;
1982
1983 /* Negative test: forged (all-zero) tag must be rejected. */
1984 XMEMSET(badTag, 0, sizeof(badTag));
1985 ExpectNotNull((ctx = EVP_CIPHER_CTX_new()));
1986 ExpectIntEQ(EVP_DecryptInit_ex(ctx, EVP_chacha20_poly1305(), NULL,
1987 NULL, NULL), WOLFSSL_SUCCESS);
1988 ExpectIntEQ(EVP_CIPHER_CTX_ctrl(ctx, EVP_CTRL_AEAD_SET_IVLEN,
1989 CHACHA20_POLY1305_AEAD_IV_SIZE, NULL), WOLFSSL_SUCCESS);
1990 ExpectIntEQ(EVP_CIPHER_CTX_ctrl(ctx, EVP_CTRL_AEAD_SET_TAG,
1991 CHACHA20_POLY1305_AEAD_AUTHTAG_SIZE, badTag),
1992 WOLFSSL_SUCCESS);
1993 ExpectIntEQ(EVP_DecryptInit_ex(ctx, NULL, NULL, key, iv),
1994 WOLFSSL_SUCCESS);
1995 ExpectIntEQ(EVP_DecryptUpdate(ctx, NULL, &outSz, aad, sizeof(aad)),
1996 WOLFSSL_SUCCESS);
1997 ExpectIntEQ(EVP_DecryptUpdate(ctx, decryptedText, &outSz, cipherText,
1998 sizeof(cipherText)), WOLFSSL_SUCCESS);
1999 /* EVP_DecryptFinal_ex MUST return failure on tag mismatch */
2000 ExpectIntNE(EVP_DecryptFinal_ex(ctx, decryptedText, &outSz),
2001 WOLFSSL_SUCCESS);
2002 EVP_CIPHER_CTX_free(ctx);
2003 ctx = NULL;
2004
2005 /* Test partial Inits. CipherInit() allow setting of key and iv
2006 * in separate calls. */
2007 ExpectNotNull((ctx = EVP_CIPHER_CTX_new()));
2008 ExpectIntEQ(wolfSSL_EVP_CipherInit(ctx, EVP_chacha20_poly1305(),
2009 key, NULL, 1), WOLFSSL_SUCCESS);
2010 ExpectIntEQ(wolfSSL_EVP_CipherInit(ctx, NULL, NULL, iv, 1),
2011 WOLFSSL_SUCCESS);
2012 ExpectIntEQ(wolfSSL_EVP_CipherUpdate(ctx, NULL, &outSz,
2013 aad, sizeof(aad)), WOLFSSL_SUCCESS);
2014 ExpectIntEQ(outSz, sizeof(aad));
2015 ExpectIntEQ(outSz, sizeof(aad));
2016 ExpectIntEQ(EVP_DecryptUpdate(ctx, decryptedText, &outSz, cipherText,
2017 sizeof(cipherText)), WOLFSSL_SUCCESS);
2018 ExpectIntEQ(outSz, sizeof(cipherText));
2019 ExpectIntEQ(EVP_DecryptFinal_ex(ctx, decryptedText, &outSz),
2020 WOLFSSL_SUCCESS);
2021 ExpectIntEQ(outSz, 0);
2022 EVP_CIPHER_CTX_free(ctx);
2023#endif
2024 return EXPECT_RESULT();
2025}
2026
2027int test_wolfssl_EVP_aria_gcm(void)
2028{
2029 int res = TEST_SKIPPED;
2030#if defined(OPENSSL_EXTRA) && defined(HAVE_ARIA) && \
2031 !defined(HAVE_SELFTEST) && !defined(HAVE_FIPS)
2032
2033 /* A 256 bit key, AES_128 will use the first 128 bit*/
2034 byte *key = (byte*)"01234567890123456789012345678901";
2035 /* A 128 bit IV */
2036 byte *iv = (byte*)"0123456789012345";
2037 int ivSz = ARIA_BLOCK_SIZE;
2038 /* Message to be encrypted */
2039 const int plaintxtSz = 40;
2040 byte plaintxt[WC_ARIA_GCM_GET_CIPHERTEXT_SIZE(plaintxtSz)];
2041 XMEMCPY(plaintxt,"for things to change you have to change",plaintxtSz);
2042 /* Additional non-confidential data */
2043 byte *aad = (byte*)"Don't spend major time on minor things.";
2044
2045 unsigned char tag[ARIA_BLOCK_SIZE] = {0};
2046 int aadSz = (int)XSTRLEN((char*)aad);
2047 byte ciphertxt[WC_ARIA_GCM_GET_CIPHERTEXT_SIZE(plaintxtSz)];
2048 byte decryptedtxt[plaintxtSz];
2049 int ciphertxtSz = 0;
2050 int decryptedtxtSz = 0;
2051 int len = 0;
2052 int i = 0;
2053 #define TEST_ARIA_GCM_COUNT 6
2054 EVP_CIPHER_CTX en[TEST_ARIA_GCM_COUNT];
2055 EVP_CIPHER_CTX de[TEST_ARIA_GCM_COUNT];
2056
2057 for (i = 0; i < TEST_ARIA_GCM_COUNT; i++) {
2058
2059 EVP_CIPHER_CTX_init(&en[i]);
2060 switch (i) {
2061 case 0:
2062 /* Default uses 96-bits IV length */
2063 AssertIntEQ(1, EVP_EncryptInit_ex(&en[i], EVP_aria_128_gcm(),
2064 NULL, key, iv));
2065 break;
2066 case 1:
2067 /* Default uses 96-bits IV length */
2068 AssertIntEQ(1, EVP_EncryptInit_ex(&en[i], EVP_aria_192_gcm(),
2069 NULL, key, iv));
2070 break;
2071 case 2:
2072 /* Default uses 96-bits IV length */
2073 AssertIntEQ(1, EVP_EncryptInit_ex(&en[i], EVP_aria_256_gcm(),
2074 NULL, key, iv));
2075 break;
2076 case 3:
2077 AssertIntEQ(1, EVP_EncryptInit_ex(&en[i], EVP_aria_128_gcm(),
2078 NULL, NULL, NULL));
2079 /* non-default must to set the IV length first */
2080 AssertIntEQ(1, EVP_CIPHER_CTX_ctrl(&en[i],
2081 EVP_CTRL_GCM_SET_IVLEN, ivSz, NULL));
2082 AssertIntEQ(1, EVP_EncryptInit_ex(&en[i], NULL, NULL, key, iv));
2083 break;
2084 case 4:
2085 AssertIntEQ(1, EVP_EncryptInit_ex(&en[i], EVP_aria_192_gcm(),
2086 NULL, NULL, NULL));
2087 /* non-default must to set the IV length first */
2088 AssertIntEQ(1, EVP_CIPHER_CTX_ctrl(&en[i],
2089 EVP_CTRL_GCM_SET_IVLEN, ivSz, NULL));
2090 AssertIntEQ(1, EVP_EncryptInit_ex(&en[i], NULL, NULL, key, iv));
2091 break;
2092 case 5:
2093 AssertIntEQ(1, EVP_EncryptInit_ex(&en[i], EVP_aria_256_gcm(),
2094 NULL, NULL, NULL));
2095 /* non-default must to set the IV length first */
2096 AssertIntEQ(1, EVP_CIPHER_CTX_ctrl(&en[i],
2097 EVP_CTRL_GCM_SET_IVLEN, ivSz, NULL));
2098 AssertIntEQ(1, EVP_EncryptInit_ex(&en[i], NULL, NULL, key, iv));
2099 break;
2100 }
2101 XMEMSET(ciphertxt,0,sizeof(ciphertxt));
2102 AssertIntEQ(1, EVP_EncryptUpdate(&en[i], NULL, &len, aad, aadSz));
2103 AssertIntEQ(1, EVP_EncryptUpdate(&en[i], ciphertxt, &len, plaintxt,
2104 plaintxtSz));
2105 ciphertxtSz = len;
2106 AssertIntEQ(1, EVP_EncryptFinal_ex(&en[i], ciphertxt, &len));
2107 AssertIntNE(0, XMEMCMP(plaintxt, ciphertxt, plaintxtSz));
2108 ciphertxtSz += len;
2109 AssertIntEQ(1, EVP_CIPHER_CTX_ctrl(&en[i], EVP_CTRL_GCM_GET_TAG,
2110 ARIA_BLOCK_SIZE, tag));
2111 AssertIntEQ(wolfSSL_EVP_CIPHER_CTX_cleanup(&en[i]), 1);
2112
2113 EVP_CIPHER_CTX_init(&de[i]);
2114 switch (i) {
2115 case 0:
2116 /* Default uses 96-bits IV length */
2117 AssertIntEQ(1, EVP_DecryptInit_ex(&de[i], EVP_aria_128_gcm(),
2118 NULL, key, iv));
2119 break;
2120 case 1:
2121 /* Default uses 96-bits IV length */
2122 AssertIntEQ(1, EVP_DecryptInit_ex(&de[i], EVP_aria_192_gcm(),
2123 NULL, key, iv));
2124 break;
2125 case 2:
2126 /* Default uses 96-bits IV length */
2127 AssertIntEQ(1, EVP_DecryptInit_ex(&de[i], EVP_aria_256_gcm(),
2128 NULL, key, iv));
2129 break;
2130 case 3:
2131 AssertIntEQ(1, EVP_DecryptInit_ex(&de[i], EVP_aria_128_gcm(),
2132 NULL, NULL, NULL));
2133 /* non-default must to set the IV length first */
2134 AssertIntEQ(1, EVP_CIPHER_CTX_ctrl(&de[i],
2135 EVP_CTRL_GCM_SET_IVLEN, ivSz, NULL));
2136 AssertIntEQ(1, EVP_DecryptInit_ex(&de[i], NULL, NULL, key, iv));
2137 break;
2138 case 4:
2139 AssertIntEQ(1, EVP_DecryptInit_ex(&de[i], EVP_aria_192_gcm(),
2140 NULL, NULL, NULL));
2141 /* non-default must to set the IV length first */
2142 AssertIntEQ(1, EVP_CIPHER_CTX_ctrl(&de[i],
2143 EVP_CTRL_GCM_SET_IVLEN, ivSz, NULL));
2144 AssertIntEQ(1, EVP_DecryptInit_ex(&de[i], NULL, NULL, key, iv));
2145 break;
2146 case 5:
2147 AssertIntEQ(1, EVP_DecryptInit_ex(&de[i], EVP_aria_256_gcm(),
2148 NULL, NULL, NULL));
2149 /* non-default must to set the IV length first */
2150 AssertIntEQ(1, EVP_CIPHER_CTX_ctrl(&de[i],
2151 EVP_CTRL_GCM_SET_IVLEN, ivSz, NULL));
2152 AssertIntEQ(1, EVP_DecryptInit_ex(&de[i], NULL, NULL, key, iv));
2153 break;
2154 }
2155 XMEMSET(decryptedtxt,0,sizeof(decryptedtxt));
2156 AssertIntEQ(1, EVP_DecryptUpdate(&de[i], NULL, &len, aad, aadSz));
2157 AssertIntEQ(1, EVP_DecryptUpdate(&de[i], decryptedtxt, &len, ciphertxt,
2158 ciphertxtSz));
2159 decryptedtxtSz = len;
2160 AssertIntEQ(1, EVP_CIPHER_CTX_ctrl(&de[i], EVP_CTRL_GCM_SET_TAG,
2161 ARIA_BLOCK_SIZE, tag));
2162 AssertIntEQ(1, EVP_DecryptFinal_ex(&de[i], decryptedtxt, &len));
2163 decryptedtxtSz += len;
2164 AssertIntEQ(plaintxtSz, decryptedtxtSz);
2165 AssertIntEQ(0, XMEMCMP(plaintxt, decryptedtxt, decryptedtxtSz));
2166
2167 XMEMSET(decryptedtxt,0,sizeof(decryptedtxt));
2168 /* modify tag*/
2169 tag[AES_BLOCK_SIZE-1]+=0xBB;
2170 AssertIntEQ(1, EVP_DecryptUpdate(&de[i], NULL, &len, aad, aadSz));
2171 AssertIntEQ(1, EVP_CIPHER_CTX_ctrl(&de[i], EVP_CTRL_GCM_SET_TAG,
2172 ARIA_BLOCK_SIZE, tag));
2173 /* fail due to wrong tag */
2174 AssertIntEQ(1, EVP_DecryptUpdate(&de[i], decryptedtxt, &len, ciphertxt,
2175 ciphertxtSz));
2176 AssertIntEQ(0, EVP_DecryptFinal_ex(&de[i], decryptedtxt, &len));
2177 AssertIntEQ(0, len);
2178 AssertIntEQ(wolfSSL_EVP_CIPHER_CTX_cleanup(&de[i]), 1);
2179 }
2180
2181 res = TEST_RES_CHECK(1);
2182#endif /* OPENSSL_EXTRA && !NO_AES && HAVE_AESGCM */
2183 return res;
2184}
2185
2186int test_wolfssl_EVP_sm4_ecb(void)
2187{
2188 int res = TEST_SKIPPED;
2189#if defined(OPENSSL_EXTRA) && defined(WOLFSSL_SM4_ECB)
2190 EXPECT_DECLS;
2191 byte key[SM4_KEY_SIZE];
2192 byte plainText[SM4_BLOCK_SIZE] = {
2193 0xDE, 0xAD, 0xBE, 0xEF, 0xDE, 0xAD, 0xBE, 0xEF,
2194 0xDE, 0xAD, 0xBE, 0xEF, 0xDE, 0xAD, 0xBE, 0xEF
2195 };
2196 byte cipherText[sizeof(plainText) + SM4_BLOCK_SIZE];
2197 byte decryptedText[sizeof(plainText) + SM4_BLOCK_SIZE];
2198 EVP_CIPHER_CTX* ctx = NULL;
2199 int outSz;
2200
2201 XMEMSET(key, 0, sizeof(key));
2202
2203 /* Encrypt. */
2204 ExpectNotNull((ctx = EVP_CIPHER_CTX_new()));
2205 ExpectIntEQ(EVP_EncryptInit_ex(ctx, EVP_sm4_ecb(), NULL, NULL, NULL),
2206 WOLFSSL_SUCCESS);
2207 /* Any tag length must fail - not an AEAD cipher. */
2208 ExpectIntEQ(EVP_CIPHER_CTX_ctrl(ctx, EVP_CTRL_AEAD_SET_TAG, 16, NULL),
2209 WC_NO_ERR_TRACE(WOLFSSL_FAILURE));
2210 ExpectIntEQ(EVP_EncryptInit_ex(ctx, NULL, NULL, key, NULL),
2211 WOLFSSL_SUCCESS);
2212 ExpectIntEQ(EVP_EncryptUpdate(ctx, cipherText, &outSz, plainText,
2213 sizeof(plainText)), WOLFSSL_SUCCESS);
2214 ExpectIntEQ(outSz, sizeof(plainText));
2215 ExpectIntEQ(EVP_EncryptFinal_ex(ctx, cipherText + outSz, &outSz),
2216 WOLFSSL_SUCCESS);
2217 ExpectIntEQ(outSz, SM4_BLOCK_SIZE);
2218 ExpectBufNE(cipherText, plainText, sizeof(plainText));
2219 EVP_CIPHER_CTX_free(ctx);
2220
2221 /* Decrypt. */
2222 ExpectNotNull((ctx = EVP_CIPHER_CTX_new()));
2223 ExpectIntEQ(EVP_DecryptInit_ex(ctx, EVP_sm4_ecb(), NULL, NULL, NULL),
2224 WOLFSSL_SUCCESS);
2225 ExpectIntEQ(EVP_DecryptInit_ex(ctx, NULL, NULL, key, NULL),
2226 WOLFSSL_SUCCESS);
2227 ExpectIntEQ(EVP_DecryptUpdate(ctx, decryptedText, &outSz, cipherText,
2228 sizeof(cipherText)), WOLFSSL_SUCCESS);
2229 ExpectIntEQ(outSz, sizeof(plainText));
2230 ExpectIntEQ(EVP_DecryptFinal_ex(ctx, decryptedText + outSz, &outSz),
2231 WOLFSSL_SUCCESS);
2232 ExpectIntEQ(outSz, 0);
2233 ExpectBufEQ(decryptedText, plainText, sizeof(plainText));
2234 EVP_CIPHER_CTX_free(ctx);
2235
2236 res = EXPECT_RESULT();
2237#endif
2238 return res;
2239}
2240
2241int test_wolfssl_EVP_sm4_cbc(void)
2242{
2243 int res = TEST_SKIPPED;
2244#if defined(OPENSSL_EXTRA) && defined(WOLFSSL_SM4_CBC)
2245 EXPECT_DECLS;
2246 byte key[SM4_KEY_SIZE];
2247 byte iv[SM4_BLOCK_SIZE];
2248 byte plainText[SM4_BLOCK_SIZE] = {
2249 0xDE, 0xAD, 0xBE, 0xEF, 0xDE, 0xAD, 0xBE, 0xEF,
2250 0xDE, 0xAD, 0xBE, 0xEF, 0xDE, 0xAD, 0xBE, 0xEF
2251 };
2252 byte cipherText[sizeof(plainText) + SM4_BLOCK_SIZE];
2253 byte decryptedText[sizeof(plainText) + SM4_BLOCK_SIZE];
2254 EVP_CIPHER_CTX* ctx = NULL;
2255 int outSz;
2256
2257 XMEMSET(key, 0, sizeof(key));
2258 XMEMSET(iv, 0, sizeof(iv));
2259
2260 /* Encrypt. */
2261 ExpectNotNull((ctx = EVP_CIPHER_CTX_new()));
2262 ExpectIntEQ(EVP_EncryptInit_ex(ctx, EVP_sm4_cbc(), NULL, NULL, NULL),
2263 WOLFSSL_SUCCESS);
2264 /* Any tag length must fail - not an AEAD cipher. */
2265 ExpectIntEQ(EVP_CIPHER_CTX_ctrl(ctx, EVP_CTRL_AEAD_SET_TAG, 16, NULL),
2266 WC_NO_ERR_TRACE(WOLFSSL_FAILURE));
2267 ExpectIntEQ(EVP_EncryptInit_ex(ctx, NULL, NULL, key, iv), WOLFSSL_SUCCESS);
2268 ExpectIntEQ(EVP_EncryptUpdate(ctx, cipherText, &outSz, plainText,
2269 sizeof(plainText)), WOLFSSL_SUCCESS);
2270 ExpectIntEQ(outSz, sizeof(plainText));
2271 ExpectIntEQ(EVP_EncryptFinal_ex(ctx, cipherText + outSz, &outSz),
2272 WOLFSSL_SUCCESS);
2273 ExpectIntEQ(outSz, SM4_BLOCK_SIZE);
2274 ExpectBufNE(cipherText, plainText, sizeof(plainText));
2275 EVP_CIPHER_CTX_free(ctx);
2276
2277 /* Decrypt. */
2278 ExpectNotNull((ctx = EVP_CIPHER_CTX_new()));
2279 ExpectIntEQ(EVP_DecryptInit_ex(ctx, EVP_sm4_cbc(), NULL, NULL, NULL),
2280 WOLFSSL_SUCCESS);
2281 ExpectIntEQ(EVP_DecryptInit_ex(ctx, NULL, NULL, key, iv), WOLFSSL_SUCCESS);
2282 ExpectIntEQ(EVP_DecryptUpdate(ctx, decryptedText, &outSz, cipherText,
2283 sizeof(cipherText)), WOLFSSL_SUCCESS);
2284 ExpectIntEQ(outSz, sizeof(plainText));
2285 ExpectIntEQ(EVP_DecryptFinal_ex(ctx, decryptedText + outSz, &outSz),
2286 WOLFSSL_SUCCESS);
2287 ExpectIntEQ(outSz, 0);
2288 ExpectBufEQ(decryptedText, plainText, sizeof(plainText));
2289 EVP_CIPHER_CTX_free(ctx);
2290
2291 /* Test partial Inits. CipherInit() allow setting of key and iv
2292 * in separate calls. */
2293 ExpectNotNull((ctx = EVP_CIPHER_CTX_new()));
2294 ExpectIntEQ(wolfSSL_EVP_CipherInit(ctx, EVP_sm4_cbc(), key, NULL, 0),
2295 WOLFSSL_SUCCESS);
2296 ExpectIntEQ(wolfSSL_EVP_CipherInit(ctx, NULL, NULL, iv, 0),
2297 WOLFSSL_SUCCESS);
2298 ExpectIntEQ(EVP_DecryptUpdate(ctx, decryptedText, &outSz, cipherText,
2299 sizeof(cipherText)), WOLFSSL_SUCCESS);
2300 ExpectIntEQ(outSz, sizeof(plainText));
2301 ExpectIntEQ(EVP_DecryptFinal_ex(ctx, decryptedText + outSz, &outSz),
2302 WOLFSSL_SUCCESS);
2303 ExpectIntEQ(outSz, 0);
2304 ExpectBufEQ(decryptedText, plainText, sizeof(plainText));
2305 EVP_CIPHER_CTX_free(ctx);
2306
2307 res = EXPECT_RESULT();
2308#endif
2309 return res;
2310}
2311
2312int test_wolfssl_EVP_sm4_ctr(void)
2313{
2314 int res = TEST_SKIPPED;
2315#if defined(OPENSSL_EXTRA) && defined(WOLFSSL_SM4_CTR)
2316 EXPECT_DECLS;
2317 byte key[SM4_KEY_SIZE];
2318 byte iv[SM4_BLOCK_SIZE];
2319 byte plainText[] = {0xDE, 0xAD, 0xBE, 0xEF};
2320 byte cipherText[sizeof(plainText)];
2321 byte decryptedText[sizeof(plainText)];
2322 EVP_CIPHER_CTX* ctx = NULL;
2323 int outSz;
2324
2325 XMEMSET(key, 0, sizeof(key));
2326 XMEMSET(iv, 0, sizeof(iv));
2327
2328 /* Encrypt. */
2329 ExpectNotNull((ctx = EVP_CIPHER_CTX_new()));
2330 ExpectIntEQ(EVP_EncryptInit_ex(ctx, EVP_sm4_ctr(), NULL, NULL, NULL),
2331 WOLFSSL_SUCCESS);
2332 /* Any tag length must fail - not an AEAD cipher. */
2333 ExpectIntEQ(EVP_CIPHER_CTX_ctrl(ctx, EVP_CTRL_AEAD_SET_TAG, 16, NULL),
2334 WC_NO_ERR_TRACE(WOLFSSL_FAILURE));
2335 ExpectIntEQ(EVP_EncryptInit_ex(ctx, NULL, NULL, key, iv), WOLFSSL_SUCCESS);
2336 ExpectIntEQ(EVP_EncryptUpdate(ctx, cipherText, &outSz, plainText,
2337 sizeof(plainText)), WOLFSSL_SUCCESS);
2338 ExpectIntEQ(outSz, sizeof(plainText));
2339 ExpectIntEQ(EVP_EncryptFinal_ex(ctx, cipherText, &outSz), WOLFSSL_SUCCESS);
2340 ExpectIntEQ(outSz, 0);
2341 ExpectBufNE(cipherText, plainText, sizeof(plainText));
2342 EVP_CIPHER_CTX_free(ctx);
2343
2344 /* Decrypt. */
2345 ExpectNotNull((ctx = EVP_CIPHER_CTX_new()));
2346 ExpectIntEQ(EVP_DecryptInit_ex(ctx, EVP_sm4_ctr(), NULL, NULL, NULL),
2347 WOLFSSL_SUCCESS);
2348 ExpectIntEQ(EVP_DecryptInit_ex(ctx, NULL, NULL, key, iv), WOLFSSL_SUCCESS);
2349 ExpectIntEQ(EVP_DecryptUpdate(ctx, decryptedText, &outSz, cipherText,
2350 sizeof(cipherText)), WOLFSSL_SUCCESS);
2351 ExpectIntEQ(outSz, sizeof(cipherText));
2352 ExpectIntEQ(EVP_DecryptFinal_ex(ctx, decryptedText, &outSz),
2353 WOLFSSL_SUCCESS);
2354 ExpectIntEQ(outSz, 0);
2355 ExpectBufEQ(decryptedText, plainText, sizeof(plainText));
2356 EVP_CIPHER_CTX_free(ctx);
2357
2358 /* Test partial Inits. CipherInit() allow setting of key and iv
2359 * in separate calls. */
2360 ExpectNotNull((ctx = EVP_CIPHER_CTX_new()));
2361 ExpectIntEQ(wolfSSL_EVP_CipherInit(ctx, EVP_sm4_ctr(), key, NULL, 1),
2362 WOLFSSL_SUCCESS);
2363 ExpectIntEQ(wolfSSL_EVP_CipherInit(ctx, NULL, NULL, iv, 1),
2364 WOLFSSL_SUCCESS);
2365 ExpectIntEQ(EVP_DecryptUpdate(ctx, decryptedText, &outSz, cipherText,
2366 sizeof(cipherText)), WOLFSSL_SUCCESS);
2367 ExpectIntEQ(outSz, sizeof(cipherText));
2368 ExpectIntEQ(EVP_DecryptFinal_ex(ctx, decryptedText, &outSz),
2369 WOLFSSL_SUCCESS);
2370 ExpectIntEQ(outSz, 0);
2371 ExpectBufEQ(decryptedText, plainText, sizeof(plainText));
2372 EVP_CIPHER_CTX_free(ctx);
2373
2374 res = EXPECT_RESULT();
2375#endif
2376 return res;
2377}
2378
2379int test_wolfssl_EVP_sm4_gcm_zeroLen(void)
2380{
2381 int res = TEST_SKIPPED;
2382#if defined(OPENSSL_EXTRA) && defined(WOLFSSL_SM4_GCM)
2383 /* Zero length plain text */
2384 EXPECT_DECLS;
2385 byte key[] = {
2386 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
2387 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
2388 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
2389 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00
2390 }; /* align */
2391 byte iv[] = {
2392 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00
2393 }; /* align */
2394 byte plaintxt[1];
2395 int ivSz = 12;
2396 int plaintxtSz = 0;
2397 unsigned char tag[16];
2398 unsigned char tag_kat[16] = {
2399 0x23,0x2f,0x0c,0xfe,0x30,0x8b,0x49,0xea,
2400 0x6f,0xc8,0x82,0x29,0xb5,0xdc,0x85,0x8d
2401 };
2402
2403 byte ciphertxt[SM4_BLOCK_SIZE * 4] = {0};
2404 byte decryptedtxt[SM4_BLOCK_SIZE * 4] = {0};
2405 int ciphertxtSz = 0;
2406 int decryptedtxtSz = 0;
2407 int len = 0;
2408
2409 EVP_CIPHER_CTX *en = EVP_CIPHER_CTX_new();
2410 EVP_CIPHER_CTX *de = EVP_CIPHER_CTX_new();
2411
2412 ExpectIntEQ(1, EVP_EncryptInit_ex(en, EVP_sm4_gcm(), NULL, key, iv));
2413 ExpectIntEQ(1, EVP_CIPHER_CTX_ctrl(en, EVP_CTRL_GCM_SET_IVLEN, ivSz, NULL));
2414 ExpectIntEQ(1, EVP_EncryptUpdate(en, ciphertxt, &ciphertxtSz , plaintxt,
2415 plaintxtSz));
2416 ExpectIntEQ(1, EVP_EncryptFinal_ex(en, ciphertxt, &len));
2417 ciphertxtSz += len;
2418 ExpectIntEQ(1, EVP_CIPHER_CTX_ctrl(en, EVP_CTRL_GCM_GET_TAG, 16, tag));
2419 ExpectIntEQ(1, EVP_CIPHER_CTX_cleanup(en));
2420
2421 ExpectIntEQ(0, ciphertxtSz);
2422 ExpectIntEQ(0, XMEMCMP(tag, tag_kat, sizeof(tag)));
2423
2424 EVP_CIPHER_CTX_init(de);
2425 ExpectIntEQ(1, EVP_DecryptInit_ex(de, EVP_sm4_gcm(), NULL, key, iv));
2426 ExpectIntEQ(1, EVP_CIPHER_CTX_ctrl(de, EVP_CTRL_GCM_SET_IVLEN, ivSz, NULL));
2427 ExpectIntEQ(1, EVP_DecryptUpdate(de, NULL, &len, ciphertxt, len));
2428 decryptedtxtSz = len;
2429 ExpectIntEQ(1, EVP_CIPHER_CTX_ctrl(de, EVP_CTRL_GCM_SET_TAG, 16, tag));
2430 ExpectIntEQ(1, EVP_DecryptFinal_ex(de, decryptedtxt, &len));
2431 decryptedtxtSz += len;
2432 ExpectIntEQ(0, decryptedtxtSz);
2433
2434 EVP_CIPHER_CTX_free(en);
2435 EVP_CIPHER_CTX_free(de);
2436
2437 res = EXPECT_RESULT();
2438#endif /* OPENSSL_EXTRA && WOLFSSL_SM4_GCM */
2439 return res;
2440}
2441
2442int test_wolfssl_EVP_sm4_gcm(void)
2443{
2444 int res = TEST_SKIPPED;
2445#if defined(OPENSSL_EXTRA) && defined(WOLFSSL_SM4_GCM)
2446 EXPECT_DECLS;
2447 byte *key = (byte*)"0123456789012345";
2448 /* A 128 bit IV */
2449 byte *iv = (byte*)"0123456789012345";
2450 int ivSz = SM4_BLOCK_SIZE;
2451 /* Message to be encrypted */
2452 byte *plaintxt = (byte*)"for things to change you have to change";
2453 /* Additional non-confidential data */
2454 byte *aad = (byte*)"Don't spend major time on minor things.";
2455
2456 unsigned char tag[SM4_BLOCK_SIZE] = {0};
2457 int plaintxtSz = (int)XSTRLEN((char*)plaintxt);
2458 int aadSz = (int)XSTRLEN((char*)aad);
2459 byte ciphertxt[SM4_BLOCK_SIZE * 4] = {0};
2460 byte decryptedtxt[SM4_BLOCK_SIZE * 4] = {0};
2461 int ciphertxtSz = 0;
2462 int decryptedtxtSz = 0;
2463 int len = 0;
2464 int i = 0;
2465 EVP_CIPHER_CTX en[2];
2466 EVP_CIPHER_CTX de[2];
2467
2468 for (i = 0; i < 2; i++) {
2469 EVP_CIPHER_CTX_init(&en[i]);
2470
2471 if (i == 0) {
2472 /* Default uses 96-bits IV length */
2473 ExpectIntEQ(1, EVP_EncryptInit_ex(&en[i], EVP_sm4_gcm(), NULL, key,
2474 iv));
2475 }
2476 else {
2477 ExpectIntEQ(1, EVP_EncryptInit_ex(&en[i], EVP_sm4_gcm(), NULL, NULL,
2478 NULL));
2479 /* non-default must to set the IV length first */
2480 ExpectIntEQ(1, EVP_CIPHER_CTX_ctrl(&en[i], EVP_CTRL_GCM_SET_IVLEN,
2481 ivSz, NULL));
2482 ExpectIntEQ(1, EVP_EncryptInit_ex(&en[i], NULL, NULL, key, iv));
2483 }
2484 ExpectIntEQ(1, EVP_EncryptUpdate(&en[i], NULL, &len, aad, aadSz));
2485 ExpectIntEQ(1, EVP_EncryptUpdate(&en[i], ciphertxt, &len, plaintxt,
2486 plaintxtSz));
2487 ciphertxtSz = len;
2488 ExpectIntEQ(1, EVP_EncryptFinal_ex(&en[i], ciphertxt, &len));
2489 ciphertxtSz += len;
2490 ExpectIntEQ(1, EVP_CIPHER_CTX_ctrl(&en[i], EVP_CTRL_GCM_GET_TAG,
2491 SM4_BLOCK_SIZE, tag));
2492 ExpectIntEQ(wolfSSL_EVP_CIPHER_CTX_cleanup(&en[i]), 1);
2493
2494 EVP_CIPHER_CTX_init(&de[i]);
2495 if (i == 0) {
2496 /* Default uses 96-bits IV length */
2497 ExpectIntEQ(1, EVP_DecryptInit_ex(&de[i], EVP_sm4_gcm(), NULL, key,
2498 iv));
2499 }
2500 else {
2501 ExpectIntEQ(1, EVP_DecryptInit_ex(&de[i], EVP_sm4_gcm(), NULL, NULL,
2502 NULL));
2503 /* non-default must to set the IV length first */
2504 ExpectIntEQ(1, EVP_CIPHER_CTX_ctrl(&de[i], EVP_CTRL_GCM_SET_IVLEN,
2505 ivSz, NULL));
2506 ExpectIntEQ(1, EVP_DecryptInit_ex(&de[i], NULL, NULL, key, iv));
2507
2508 }
2509 ExpectIntEQ(1, EVP_DecryptUpdate(&de[i], NULL, &len, aad, aadSz));
2510 ExpectIntEQ(1, EVP_DecryptUpdate(&de[i], decryptedtxt, &len, ciphertxt,
2511 ciphertxtSz));
2512 decryptedtxtSz = len;
2513 ExpectIntEQ(1, EVP_CIPHER_CTX_ctrl(&de[i], EVP_CTRL_GCM_SET_TAG,
2514 SM4_BLOCK_SIZE, tag));
2515 ExpectIntEQ(1, EVP_DecryptFinal_ex(&de[i], decryptedtxt, &len));
2516 decryptedtxtSz += len;
2517 ExpectIntEQ(ciphertxtSz, decryptedtxtSz);
2518 ExpectIntEQ(0, XMEMCMP(plaintxt, decryptedtxt, decryptedtxtSz));
2519
2520 /* modify tag*/
2521 tag[SM4_BLOCK_SIZE-1]+=0xBB;
2522 ExpectIntEQ(1, EVP_DecryptUpdate(&de[i], NULL, &len, aad, aadSz));
2523 ExpectIntEQ(1, EVP_CIPHER_CTX_ctrl(&de[i], EVP_CTRL_GCM_SET_TAG,
2524 SM4_BLOCK_SIZE, tag));
2525 /* fail due to wrong tag */
2526 ExpectIntEQ(1, EVP_DecryptUpdate(&de[i], decryptedtxt, &len, ciphertxt,
2527 ciphertxtSz));
2528 ExpectIntEQ(0, EVP_DecryptFinal_ex(&de[i], decryptedtxt, &len));
2529 ExpectIntEQ(0, len);
2530 ExpectIntEQ(wolfSSL_EVP_CIPHER_CTX_cleanup(&de[i]), 1);
2531 }
2532
2533 res = EXPECT_RESULT();
2534#endif /* OPENSSL_EXTRA && WOLFSSL_SM4_GCM */
2535 return res;
2536}
2537
2538int test_wolfssl_EVP_sm4_ccm_zeroLen(void)
2539{
2540 int res = TEST_SKIPPED;
2541#if defined(OPENSSL_EXTRA) && defined(WOLFSSL_SM4_CCM)
2542 /* Zero length plain text */
2543 EXPECT_DECLS;
2544 byte key[] = {
2545 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
2546 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
2547 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
2548 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00
2549 }; /* align */
2550 byte iv[] = {
2551 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00
2552 }; /* align */
2553 byte plaintxt[1];
2554 int ivSz = 12;
2555 int plaintxtSz = 0;
2556 unsigned char tag[16];
2557
2558 byte ciphertxt[SM4_BLOCK_SIZE * 4] = {0};
2559 byte decryptedtxt[SM4_BLOCK_SIZE * 4] = {0};
2560 int ciphertxtSz = 0;
2561 int decryptedtxtSz = 0;
2562 int len = 0;
2563
2564 EVP_CIPHER_CTX *en = EVP_CIPHER_CTX_new();
2565 EVP_CIPHER_CTX *de = EVP_CIPHER_CTX_new();
2566
2567 ExpectIntEQ(1, EVP_EncryptInit_ex(en, EVP_sm4_ccm(), NULL, key, iv));
2568 ExpectIntEQ(1, EVP_CIPHER_CTX_ctrl(en, EVP_CTRL_CCM_SET_IVLEN, ivSz, NULL));
2569 ExpectIntEQ(1, EVP_EncryptUpdate(en, ciphertxt, &ciphertxtSz , plaintxt,
2570 plaintxtSz));
2571 ExpectIntEQ(1, EVP_EncryptFinal_ex(en, ciphertxt, &len));
2572 ciphertxtSz += len;
2573 ExpectIntEQ(1, EVP_CIPHER_CTX_ctrl(en, EVP_CTRL_CCM_GET_TAG, 16, tag));
2574 ExpectIntEQ(1, EVP_CIPHER_CTX_cleanup(en));
2575
2576 ExpectIntEQ(0, ciphertxtSz);
2577
2578 EVP_CIPHER_CTX_init(de);
2579 ExpectIntEQ(1, EVP_DecryptInit_ex(de, EVP_sm4_ccm(), NULL, key, iv));
2580 ExpectIntEQ(1, EVP_CIPHER_CTX_ctrl(de, EVP_CTRL_CCM_SET_IVLEN, ivSz, NULL));
2581 ExpectIntEQ(1, EVP_DecryptUpdate(de, NULL, &len, ciphertxt, len));
2582 decryptedtxtSz = len;
2583 ExpectIntEQ(1, EVP_CIPHER_CTX_ctrl(de, EVP_CTRL_CCM_SET_TAG, 16, tag));
2584 ExpectIntEQ(1, EVP_DecryptFinal_ex(de, decryptedtxt, &len));
2585 decryptedtxtSz += len;
2586 ExpectIntEQ(0, decryptedtxtSz);
2587
2588 EVP_CIPHER_CTX_free(en);
2589 EVP_CIPHER_CTX_free(de);
2590
2591 res = EXPECT_RESULT();
2592#endif /* OPENSSL_EXTRA && WOLFSSL_SM4_CCM */
2593 return res;
2594}
2595
2596int test_wolfssl_EVP_sm4_ccm(void)
2597{
2598 int res = TEST_SKIPPED;
2599#if defined(OPENSSL_EXTRA) && defined(WOLFSSL_SM4_CCM)
2600 EXPECT_DECLS;
2601 byte *key = (byte*)"0123456789012345";
2602 byte *iv = (byte*)"0123456789012";
2603 int ivSz = (int)XSTRLEN((char*)iv);
2604 /* Message to be encrypted */
2605 byte *plaintxt = (byte*)"for things to change you have to change";
2606 /* Additional non-confidential data */
2607 byte *aad = (byte*)"Don't spend major time on minor things.";
2608
2609 unsigned char tag[SM4_BLOCK_SIZE] = {0};
2610 int plaintxtSz = (int)XSTRLEN((char*)plaintxt);
2611 int aadSz = (int)XSTRLEN((char*)aad);
2612 byte ciphertxt[SM4_BLOCK_SIZE * 4] = {0};
2613 byte decryptedtxt[SM4_BLOCK_SIZE * 4] = {0};
2614 int ciphertxtSz = 0;
2615 int decryptedtxtSz = 0;
2616 int len = 0;
2617 int i = 0;
2618 EVP_CIPHER_CTX en[2];
2619 EVP_CIPHER_CTX de[2];
2620
2621 for (i = 0; i < 2; i++) {
2622 EVP_CIPHER_CTX_init(&en[i]);
2623
2624 if (i == 0) {
2625 /* Default uses 96-bits IV length */
2626 ExpectIntEQ(1, EVP_EncryptInit_ex(&en[i], EVP_sm4_ccm(), NULL, key,
2627 iv));
2628 }
2629 else {
2630 ExpectIntEQ(1, EVP_EncryptInit_ex(&en[i], EVP_sm4_ccm(), NULL, NULL,
2631 NULL));
2632 /* non-default must to set the IV length first */
2633 ExpectIntEQ(1, EVP_CIPHER_CTX_ctrl(&en[i], EVP_CTRL_CCM_SET_IVLEN,
2634 ivSz, NULL));
2635 ExpectIntEQ(1, EVP_EncryptInit_ex(&en[i], NULL, NULL, key, iv));
2636 }
2637 ExpectIntEQ(1, EVP_EncryptUpdate(&en[i], NULL, &len, aad, aadSz));
2638 ExpectIntEQ(1, EVP_EncryptUpdate(&en[i], ciphertxt, &len, plaintxt,
2639 plaintxtSz));
2640 ciphertxtSz = len;
2641 ExpectIntEQ(1, EVP_EncryptFinal_ex(&en[i], ciphertxt, &len));
2642 ciphertxtSz += len;
2643 ExpectIntEQ(1, EVP_CIPHER_CTX_ctrl(&en[i], EVP_CTRL_CCM_GET_TAG,
2644 SM4_BLOCK_SIZE, tag));
2645 ExpectIntEQ(wolfSSL_EVP_CIPHER_CTX_cleanup(&en[i]), 1);
2646
2647 EVP_CIPHER_CTX_init(&de[i]);
2648 if (i == 0) {
2649 /* Default uses 96-bits IV length */
2650 ExpectIntEQ(1, EVP_DecryptInit_ex(&de[i], EVP_sm4_ccm(), NULL, key,
2651 iv));
2652 }
2653 else {
2654 ExpectIntEQ(1, EVP_DecryptInit_ex(&de[i], EVP_sm4_ccm(), NULL, NULL,
2655 NULL));
2656 /* non-default must to set the IV length first */
2657 ExpectIntEQ(1, EVP_CIPHER_CTX_ctrl(&de[i], EVP_CTRL_CCM_SET_IVLEN,
2658 ivSz, NULL));
2659 ExpectIntEQ(1, EVP_DecryptInit_ex(&de[i], NULL, NULL, key, iv));
2660
2661 }
2662 ExpectIntEQ(1, EVP_DecryptUpdate(&de[i], NULL, &len, aad, aadSz));
2663 ExpectIntEQ(1, EVP_DecryptUpdate(&de[i], decryptedtxt, &len, ciphertxt,
2664 ciphertxtSz));
2665 decryptedtxtSz = len;
2666 ExpectIntEQ(1, EVP_CIPHER_CTX_ctrl(&de[i], EVP_CTRL_CCM_SET_TAG,
2667 SM4_BLOCK_SIZE, tag));
2668 ExpectIntEQ(1, EVP_DecryptFinal_ex(&de[i], decryptedtxt, &len));
2669 decryptedtxtSz += len;
2670 ExpectIntEQ(ciphertxtSz, decryptedtxtSz);
2671 ExpectIntEQ(0, XMEMCMP(plaintxt, decryptedtxt, decryptedtxtSz));
2672
2673 /* modify tag*/
2674 tag[SM4_BLOCK_SIZE-1]+=0xBB;
2675 ExpectIntEQ(1, EVP_DecryptUpdate(&de[i], NULL, &len, aad, aadSz));
2676 ExpectIntEQ(1, EVP_CIPHER_CTX_ctrl(&de[i], EVP_CTRL_CCM_SET_TAG,
2677 SM4_BLOCK_SIZE, tag));
2678 /* fail due to wrong tag */
2679 ExpectIntEQ(1, EVP_DecryptUpdate(&de[i], decryptedtxt, &len, ciphertxt,
2680 ciphertxtSz));
2681 ExpectIntEQ(0, EVP_DecryptFinal_ex(&de[i], decryptedtxt, &len));
2682 ExpectIntEQ(0, len);
2683 ExpectIntEQ(wolfSSL_EVP_CIPHER_CTX_cleanup(&de[i]), 1);
2684 }
2685
2686 res = EXPECT_RESULT();
2687#endif /* OPENSSL_EXTRA && WOLFSSL_SM4_CCM */
2688 return res;
2689}
2690
2691
2692int test_wolfSSL_EVP_rc4(void)
2693{
2694 EXPECT_DECLS;
2695#if !defined(NO_RC4) && defined(OPENSSL_ALL)
2696 ExpectNotNull(wolfSSL_EVP_rc4());
2697#endif
2698 return EXPECT_RESULT();
2699}
2700
2701int test_wolfSSL_EVP_enc_null(void)
2702{
2703 EXPECT_DECLS;
2704#ifdef OPENSSL_ALL
2705 ExpectNotNull(wolfSSL_EVP_enc_null());
2706#endif
2707 return EXPECT_RESULT();
2708}
2709int test_wolfSSL_EVP_rc2_cbc(void)
2710
2711{
2712 EXPECT_DECLS;
2713#if defined(WOLFSSL_QT) && !defined(NO_WOLFSSL_STUB)
2714 ExpectNull(wolfSSL_EVP_rc2_cbc());
2715#endif
2716 return EXPECT_RESULT();
2717}
2718
2719int test_wolfSSL_EVP_mdc2(void)
2720{
2721 EXPECT_DECLS;
2722#if !defined(NO_WOLFSSL_STUB) && defined(OPENSSL_ALL)
2723 ExpectNull(wolfSSL_EVP_mdc2());
2724#endif
2725 return EXPECT_RESULT();
2726}
2727
2728/* Test for integer overflow in EVP AEAD AAD accumulation.
2729 *
2730 * wolfSSL_EVP_CipherUpdate_GCM_AAD (and the CCM/ARIA variants) compute
2731 * allocation sizes as (ctx->authInSz + inl) where both operands are int.
2732 * Repeated AAD calls can accumulate authInSz to a value where adding inl
2733 * overflows the signed int sum. The overflowed value is then cast to size_t
2734 * for XMALLOC/XREALLOC, producing either:
2735 * - A huge allocation on 64-bit (masking the bug as MEMORY_E), or
2736 * - A potential heap buffer overflow on 32-bit if the wrapped size is small
2737 * enough to succeed but the subsequent XMEMCPY uses the original large
2738 * authInSz offset.
2739 *
2740 * This test simulates the overflow condition by directly setting authInSz near
2741 * INT_MAX after legitimate initialization, then calling EVP_EncryptUpdate with
2742 * AAD that triggers the overflow. A properly-fixed implementation should detect
2743 * the overflow and return WOLFSSL_FAILURE before attempting the allocation.
2744 */
2745int test_evp_cipher_pkcs7_pad_zero(void)
2746{
2747 EXPECT_DECLS;
2748#if !defined(NO_AES) && defined(HAVE_AES_CBC) && defined(WOLFSSL_AES_128) && \
2749 defined(OPENSSL_EXTRA)
2750 EVP_CIPHER_CTX *ctx = NULL;
2751 /* AES-128-CBC key and IV */
2752 byte key[AES_BLOCK_SIZE] = {
2753 0x00, 0x01, 0x02, 0x03, 0x04, 0x05, 0x06, 0x07,
2754 0x08, 0x09, 0x0a, 0x0b, 0x0c, 0x0d, 0x0e, 0x0f
2755 };
2756 byte iv[AES_BLOCK_SIZE] = {0};
2757 /* Two plaintext blocks, with the last byte set to 0x00. When decrypted
2758 * with padding enabled, the last byte (0x00) will be interpreted as the
2759 * PKCS#7 padding length, which is invalid (valid range is 1..block_size).
2760 * Using two blocks ensures CipherUpdate outputs the first block and
2761 * CipherFinal processes the second (last) block through checkPad. */
2762 byte plain[AES_BLOCK_SIZE * 2] = {
2763 0x41, 0x41, 0x41, 0x41, 0x41, 0x41, 0x41, 0x41,
2764 0x41, 0x41, 0x41, 0x41, 0x41, 0x41, 0x41, 0x41,
2765 0x41, 0x41, 0x41, 0x41, 0x41, 0x41, 0x41, 0x41,
2766 0x41, 0x41, 0x41, 0x41, 0x41, 0x41, 0x41, 0x00
2767 };
2768 byte cipher[AES_BLOCK_SIZE * 3];
2769 byte decrypted[AES_BLOCK_SIZE * 3];
2770 int outl = 0;
2771 int total = 0;
2772
2773 /* Encrypt two plaintext blocks with padding disabled so the ciphertext
2774 * is exactly two blocks. */
2775 ExpectNotNull(ctx = EVP_CIPHER_CTX_new());
2776 ExpectIntEQ(EVP_CipherInit(ctx, EVP_aes_128_cbc(), key, iv, 1),
2777 WOLFSSL_SUCCESS);
2778 ExpectIntEQ(EVP_CIPHER_CTX_set_padding(ctx, 0), WOLFSSL_SUCCESS);
2779 ExpectIntEQ(EVP_CipherUpdate(ctx, cipher, &outl, plain,
2780 AES_BLOCK_SIZE * 2), WOLFSSL_SUCCESS);
2781 total = outl;
2782 ExpectIntEQ(EVP_CipherFinal(ctx, cipher + total, &outl), WOLFSSL_SUCCESS);
2783 total += outl;
2784 ExpectIntEQ(total, AES_BLOCK_SIZE * 2);
2785 EVP_CIPHER_CTX_free(ctx);
2786 ctx = NULL;
2787
2788 /* Decrypt the ciphertext with padding enabled (the default).
2789 * CipherUpdate should output the first block. CipherFinal processes
2790 * the last block through checkPad, which should reject padding value 0. */
2791 ExpectNotNull(ctx = EVP_CIPHER_CTX_new());
2792 ExpectIntEQ(EVP_CipherInit(ctx, EVP_aes_128_cbc(), key, iv, 0),
2793 WOLFSSL_SUCCESS);
2794 ExpectIntEQ(EVP_CipherUpdate(ctx, decrypted, &outl, cipher, total),
2795 WOLFSSL_SUCCESS);
2796 ExpectIntEQ(outl, AES_BLOCK_SIZE);
2797 ExpectIntNE(EVP_CipherFinal(ctx, decrypted + outl, &outl),
2798 WOLFSSL_SUCCESS);
2799 EVP_CIPHER_CTX_free(ctx);
2800
2801#endif /* !NO_AES && HAVE_AES_CBC && WOLFSSL_AES_128 && OPENSSL_EXTRA */
2802 return EXPECT_RESULT();
2803}
2804
2805int test_evp_cipher_aead_aad_overflow(void)
2806{
2807 EXPECT_DECLS;
2808#if defined(OPENSSL_EXTRA) && !defined(NO_AES) && defined(HAVE_AESGCM) && \
2809 defined(WOLFSSL_AES_256) && !defined(HAVE_SELFTEST) && !defined(HAVE_FIPS) && \
2810 !defined(WOLFSSL_AESGCM_STREAM)
2811
2812 WOLFSSL_EVP_CIPHER_CTX *ctx = NULL;
2813 byte key[32] = {0};
2814 byte iv[12] = {0};
2815 byte aad[32] = {0};
2816 int outl = 0;
2817 int savedAuthInSz;
2818
2819 /* Initialize AES-256-GCM encryption context */
2820 ctx = EVP_CIPHER_CTX_new();
2821 ExpectNotNull(ctx);
2822 ExpectIntEQ(WOLFSSL_SUCCESS, EVP_EncryptInit_ex(ctx, EVP_aes_256_gcm(),
2823 NULL, key, iv));
2824
2825 /* Feed a small legitimate AAD to allocate authIn */
2826 ExpectIntEQ(WOLFSSL_SUCCESS, EVP_EncryptUpdate(ctx, NULL, &outl, aad, 16));
2827
2828 if (EXPECT_SUCCESS()) {
2829 ExpectIntEQ(ctx->authInSz, 16);
2830
2831 /* Simulate accumulated AAD near INT_MAX.
2832 * In a real attack scenario, an attacker controlling AAD input to a
2833 * server could accumulate authInSz toward INT_MAX through many calls.
2834 * We set it directly to avoid needing ~2GB of actual allocations.
2835 */
2836 savedAuthInSz = ctx->authInSz;
2837 ctx->authInSz = INT_MAX - 16;
2838
2839 /* Attempt AAD update that causes overflow:
2840 * (INT_MAX - 16) + 32 = INT_MAX + 16
2841 * This overflows signed int (undefined behavior in C). The result:
2842 * - As signed int: wraps to INT_MIN + 15 (on 2's complement)
2843 * - Cast to size_t on 64-bit: ~0xFFFFFFFF8000000F (huge)
2844 * - Cast to size_t on 32-bit: ~0x8000000F (~2GB)
2845 *
2846 * With no overflow check, the code proceeds to XREALLOC with the
2847 * wrapped size. On 64-bit this fails (MEMORY_E), accidentally
2848 * preventing corruption. On 32-bit, if the allocation succeeds,
2849 * XMEMCPY writes at offset (INT_MAX - 16) into the buffer, causing
2850 * heap corruption.
2851 */
2852 ExpectIntNE(WOLFSSL_SUCCESS,
2853 EVP_EncryptUpdate(ctx, NULL, &outl, aad, 32));
2854
2855 /* Restore authInSz so cleanup doesn't operate on corrupted state */
2856 if (ctx != NULL)
2857 ctx->authInSz = savedAuthInSz;
2858 }
2859
2860 EVP_CIPHER_CTX_free(ctx);
2861
2862#endif /* OPENSSL_EXTRA && HAVE_AESGCM && WOLFSSL_AES_256 */
2863 return EXPECT_RESULT();
2864}
2865
2866