Merge branch 'master' of https://github.com/wolfSSL/wolfssl into zd20603

Author: kareem-wolfssl

.github/workflows/mono.yml

@@ -0,0 +1,142 @@
+name: Linux Mono C# Build Test
+
+# START OF COMMON SECTION
+on:
+  push:
+    branches: [ 'master', 'main', 'release/**' ]
+  pull_request:
+    branches: [ '*' ]
+
+concurrency:
+  group: ${{ github.workflow }}-${{ github.ref }}
+  cancel-in-progress: true
+# END OF COMMON SECTION
+
+jobs:
+  build_wolfssl:
+    name: Build wolfSSL C# Wrapper
+    if: github.repository_owner == 'wolfssl'
+    runs-on: ubuntu-24.04
+    timeout-minutes: 10
+    steps:
+
+    # Build wolfSSL using the user_settings.h from the C# wrapper directory
+    - name: Build wolfSSL
+      uses: wolfSSL/actions-build-autotools-project@v1
+      with:
+        path: wolfssl
+        configure: --enable-usersettings CPPFLAGS=-I$GITHUB_WORKSPACE/wolfssl/wrapper/CSharp
+        install: true
+        check: false
+
+    - name: Install mono-complete
+      run: |
+        sudo apt-get update
+        sudo apt-get install -y mono-complete
+
+    - name: Copy wolfSSL.dll to C# wrapper directory
+      run: |
+        echo "Copying wolfSSL.dll to C# wrapper directory. $GITHUB_WORKSPACE/build-dir/lib contains:"
+        ls -la $GITHUB_WORKSPACE/build-dir/lib/*
+        cp $GITHUB_WORKSPACE/build-dir/lib/libwolfssl.so $GITHUB_WORKSPACE/wolfssl/wrapper/CSharp/wolfssl.dll
+        cp $GITHUB_WORKSPACE/build-dir/lib/libwolfssl.so $GITHUB_WORKSPACE/wolfssl/wrapper/CSharp/libwolfssl.so
+
+    - name: Build and run wolfCrypt test wrapper
+      working-directory: wolfssl/wrapper/CSharp
+      run: |
+        mcs wolfCrypt-Test/wolfCrypt-Test.cs wolfSSL_CSharp/wolfCrypt.cs wolfSSL_CSharp/wolfSSL.cs wolfSSL_CSharp/X509.cs -OUT:wolfcrypttest.exe
+        mono wolfcrypttest.exe
+
+    - name: Build wolfSSL client/server test
+      working-directory: wolfssl/wrapper/CSharp
+      env:
+        LD_LIBRARY_PATH: $GITHUB_WORKSPACE/build-dir/lib
+      run: |
+        mcs wolfSSL_CSharp/wolfSSL.cs wolfSSL_CSharp/X509.cs wolfSSL-TLS-Server/wolfSSL-TLS-Server.cs -OUT:server.exe
+        mcs wolfSSL_CSharp/wolfCrypt.cs wolfSSL-TLS-Client/wolfSSL-TLS-Client.cs wolfSSL_CSharp/wolfSSL.cs wolfSSL_CSharp/X509.cs -OUT:client.exe
+
+    - name: Test wolfSSL client/server communication
+      working-directory: wolfssl/wrapper/CSharp
+      env:
+        LD_LIBRARY_PATH: $GITHUB_WORKSPACE/build-dir/lib
+      run: |
+        # Start server in background and capture its PID
+        timeout 10s mono server.exe > server.log 2>&1 &
+        SERVER_PID=$!
+
+        # Wait for server to start
+        sleep 2
+
+        # Run client and capture output
+        timeout 5s mono client.exe > client.log 2>&1
+        CLIENT_EXIT_CODE=$?
+
+        # Wait a moment for server to process
+        sleep 1
+
+        # Kill server
+        kill $SERVER_PID 2>/dev/null || true
+
+        # Check if client completed successfully (exit code 0)
+        if [ $CLIENT_EXIT_CODE -eq 0 ]; then
+          echo "Client completed successfully"
+        else
+          echo "Client failed with exit code $CLIENT_EXIT_CODE"
+          cat client.log
+          exit 1
+        fi
+
+        # Check for success indicators in logs
+        if grep -q "SSL version is" client.log && grep -q "SSL cipher suite is" client.log; then
+          echo "TLS handshake successful - SSL version and cipher suite detected"
+        else
+          echo "TLS handshake failed - no SSL version/cipher detected"
+          echo "Client log:"
+          cat client.log
+          echo "Server log:"
+          cat server.log
+          exit 1
+        fi
+
+    - name: Test SNI functionality
+      working-directory: wolfssl/wrapper/CSharp
+      env:
+        LD_LIBRARY_PATH: $GITHUB_WORKSPACE/build-dir/lib
+      run: |
+        # Start server with SNI support in background
+        timeout 10s mono server.exe -S > server_sni.log 2>&1 &
+        SERVER_PID=$!
+
+        # Wait for server to start
+        sleep 2
+
+        # Run client with SNI and capture output
+        timeout 5s mono client.exe -S localhost > client_sni.log 2>&1
+        CLIENT_EXIT_CODE=$?
+
+        # Wait a moment for server to process
+        sleep 1
+
+        # Kill server
+        kill $SERVER_PID 2>/dev/null || true
+
+        # Check if client completed successfully
+        if [ $CLIENT_EXIT_CODE -eq 0 ]; then
+          echo "SNI client completed successfully"
+        else
+          echo "SNI client failed with exit code $CLIENT_EXIT_CODE"
+          cat client_sni.log
+          exit 1
+        fi
+
+        # Check for SNI success indicators
+        if grep -q "SSL version is" client_sni.log && grep -q "SSL cipher suite is" client_sni.log; then
+          echo "SNI TLS handshake successful"
+        else
+          echo "SNI TLS handshake failed"
+          echo "Client log:"
+          cat client_sni.log
+          echo "Server log:"
+          cat server_sni.log
+          exit 1
+        fi

.github/workflows/symbol-prefixes.yml

@@ -0,0 +1,70 @@
+name: WOLFSSL_API_PREFIX_MAP
+
+# START OF COMMON SECTION
+on:
+  push:
+    branches: [ 'master', 'main', 'release/**' ]
+  pull_request:
+    branches: [ '*' ]
+
+concurrency:
+  group: ${{ github.workflow }}-${{ github.ref }}
+  cancel-in-progress: true
+# END OF COMMON SECTION
+
+jobs:
+  make_and_analyze:
+    strategy:
+      matrix:
+        config: [
+          '--enable-all --enable-mlkem --enable-mldsa --enable-xmss --enable-lms --enable-acert --with-sys-crypto-policy CFLAGS=-DWOLFSSL_API_PREFIX_MAP'
+        ]
+    name: make and analyze
+    if: github.repository_owner == 'wolfssl'
+    runs-on: ubuntu-22.04
+    # This should be a safe limit for the tests to run.
+    timeout-minutes: 6
+    steps:
+      - uses: actions/checkout@v4
+        name: Checkout wolfSSL
+
+      - name: Test --enable-opensslcoexist and TEST_OPENSSL_COEXIST
+        run: |
+          ./autogen.sh || $(exit 2)
+          ./configure ${{ matrix.config }} || $(exit 3)
+          make -j 4 || $(exit 4)
+          # ignore properly prefixed symbols, and symbols associated with asm implementations (all internal) regardless of prefix:
+          readelf --symbols --wide src/.libs/libwolfssl.so | \
+          awk '
+          BEGIN {
+              total_public_symbols = 0;
+              unprefixed_public_symbols = 0;
+          }
+          {
+              if (($5 == "GLOBAL") && ($6 != "HIDDEN") && ($7 ~ /^[0-9]+$/)) {
+                  ++total_public_symbols;
+              }
+          }
+          {
+              if (($7 !~ /^[0-9]+$/) ||
+                  ($8 ~ /^(wc_|wolf|WOLF|__pfx|fe_|sp_[a-zA-Z090-0_]*[0-9])/) ||
+                  ($8 ~ /(_avx[12]|_AVX[12]|_sse[12]|_SSE[12]|_aesni|_AESNI|_bmi2|_x64$)/))
+              {
+                  next;
+              }
+          }
+          {
+              if (($4 == "FUNC") && ($5 == "GLOBAL") && ($6 == "DEFAULT")) {
+                  ++unprefixed_public_symbols;
+                  print;
+              }
+          }
+          END {
+              if (unprefixed_public_symbols) {
+                  print unprefixed_public_symbols " unprefixed public symbols found, of " total_public_symbols " total." >"/dev/stderr";
+                  exit(1);
+              } else {
+                  print total_public_symbols " public symbols found in libwolfssl, all OK.";
+                  exit(0);
+              }
+          }' || $(exit 5)

.wolfssl_known_macro_extras

@@ -428,6 +428,7 @@ NO_WOLFSSL_AUTOSAR_CRYPTO
 NO_WOLFSSL_AUTOSAR_CSM
 NO_WOLFSSL_BASE64_DECODE
 NO_WOLFSSL_BN_CTX
+NO_WOLFSSL_CURVE25519_BLINDING
 NO_WOLFSSL_MSG_EX
 NO_WOLFSSL_RENESAS_FSPSM_AES
 NO_WOLFSSL_RENESAS_FSPSM_HASH
@@ -942,6 +943,7 @@ _NETOS
 _POSIX_C_SOURCE
 _SDCC_VERSION_PATCHLEVEL
 _SH3
+_SILICON_LABS_32B_SERIES_3_CONFIG_301
 _SILICON_LABS_SECURITY_FEATURE
 _SOCKLEN_T
 _SYS_DEVCON_LOCAL_H
@@ -1079,6 +1081,7 @@ __svr4__
 __thumb__
 __ti__
 __x86_64__
+__xtensa__
 byte
 configTICK_RATE_HZ
 fallthrough

README

@@ -29,24 +29,29 @@ of the wolfSSL manual. (https://www.wolfssl.com/docs/wolfssl-manual/ch4/)
 *** Notes, Please read ***
 
 Note 1)
-wolfSSL as of 3.6.6 no longer enables SSLv3 by default.  wolfSSL also no longer
-supports static key cipher suites with PSK, RSA, or ECDH. This means if you
-plan to use TLS cipher suites you must enable DH (DH is on by default), or
-enable ECC (ECC is on by default), or you must enable static key cipher suites
-with
-
-    WOLFSSL_STATIC_DH
-    WOLFSSL_STATIC_RSA
-      or
-    WOLFSSL_STATIC_PSK
-
-though static key cipher suites are deprecated and will be removed from future
-versions of TLS.  They also lower your security by removing PFS.
-
-When compiling ssl.c, wolfSSL will now issue a compiler error if no cipher
+wolfSSL as of 3.6.6 no longer enables SSLv3 by default. By default, wolfSSL
+disables static key cipher suites that use PSK, RSA, or ECDH without ephemeral
+key exchange. Instead, wolfSSL enables cipher suites that provide perfect
+forward secrecy (PFS) using ephemeral Diffie-Hellman (DH) or Elliptic Curve
+(ECC) key exchange, both of which are enabled by default.
+
+If you need to support legacy systems that require static key cipher suites,
+you can enable them using one or more of these defines:
+
+WOLFSSL_STATIC_DH
+WOLFSSL_STATIC_RSA
+WOLFSSL_STATIC_PSK
+
+Important: Static key cipher suites reduce security by eliminating perfect
+forward secrecy. These cipher suites reuse the same long-term private key for
+all session key exchanges. In contrast, PFS-enabled cipher suites (the wolfSSL
+default) generate a new ephemeral key for each session, ensuring that
+compromising a long-term key cannot decrypt past sessions.
+
+When compiling `ssl.c`, wolfSSL will now issue a compiler error if no cipher
 suites are available. You can remove this error by defining
-WOLFSSL_ALLOW_NO_SUITES in the event that you desire that, i.e., you're not
-using TLS cipher suites.
+`WOLFSSL_ALLOW_NO_SUITES` in the event that you desire that, i.e., you're
+not using TLS cipher suites.
 
 Note 2)
 wolfSSL takes a different approach to certificate verification than OpenSSL

README.md

@@ -33,19 +33,24 @@ of the wolfSSL manual.
 ## Notes, Please Read
 
 ### Note 1
-wolfSSL as of 3.6.6 no longer enables SSLv3 by default.  wolfSSL also no longer
-supports static key cipher suites with PSK, RSA, or ECDH. This means if you
-plan to use TLS cipher suites you must enable DH (DH is on by default), or
-enable ECC (ECC is on by default), or you must enable static key cipher suites
-with one or more of the following defines:
-
-```
-WOLFSSL_STATIC_DH
-WOLFSSL_STATIC_RSA
-WOLFSSL_STATIC_PSK
-```
-Though static key cipher suites are deprecated and will be removed from future
-versions of TLS.  They also lower your security by removing PFS.
+wolfSSL as of 3.6.6 no longer enables SSLv3 by default. By default, wolfSSL
+disables static key cipher suites that use PSK, RSA, or ECDH without ephemeral
+key exchange. Instead, wolfSSL enables cipher suites that provide perfect
+forward secrecy (PFS) using ephemeral Diffie-Hellman (DH) or Elliptic Curve
+(ECC) key exchange, both of which are enabled by default.
+
+If you need to support legacy systems that require static key cipher suites,
+you can enable them using one or more of these defines:
+
+* `WOLFSSL_STATIC_DH`
+* `WOLFSSL_STATIC_RSA`
+* `WOLFSSL_STATIC_PSK`
+
+**Important:** Static key cipher suites reduce security by eliminating perfect
+forward secrecy. These cipher suites reuse the same long-term private key for
+all session key exchanges. In contrast, PFS-enabled cipher suites (the wolfSSL
+default) generate a new ephemeral key for each session, ensuring that
+compromising a long-term key cannot decrypt past sessions.
 
 When compiling `ssl.c`, wolfSSL will now issue a compiler error if no cipher
 suites are available. You can remove this error by defining

configure.ac

@@ -1503,14 +1503,14 @@ AC_ARG_WITH([liboqs],
 # MLKEM
 # Used:
 #  - SHA3, Shake128 and Shake256
-AC_ARG_ENABLE([kyber],
-    [AS_HELP_STRING([--enable-kyber],[Enable Kyber/MLKEM (default: disabled)])],
+AC_ARG_ENABLE([mlkem],
+    [AS_HELP_STRING([--enable-mlkem],[Enable MLKEM (default: disabled)])],
     [ ENABLED_MLKEM=$enableval ],
     [ ENABLED_MLKEM=no ]
     )
-# note, inherits default from "kyber" clause above.
-AC_ARG_ENABLE([mlkem],
-    [AS_HELP_STRING([--enable-mlkem],[Enable MLKEM (default: disabled)])],
+# note, inherits default from "mlkem" clause above.
+AC_ARG_ENABLE([kyber],
+    [AS_HELP_STRING([--enable-kyber],[Enable Kyber/MLKEM (default: disabled)])],
     [ ENABLED_MLKEM=$enableval ]
     )
 
@@ -1639,11 +1639,16 @@ fi
 
 # Dilithium
 #  - SHA3, Shake128, Shake256 and AES-CTR
-AC_ARG_ENABLE([dilithium],
-    [AS_HELP_STRING([--enable-dilithium],[Enable DILITHIUM (default: disabled)])],
+AC_ARG_ENABLE([mldsa],
+    [AS_HELP_STRING([--enable-mldsa],[Enable MLDSA (default: disabled)])],
     [ ENABLED_DILITHIUM=$enableval ],
     [ ENABLED_DILITHIUM=no ]
     )
+# note, inherits default from "mldsa" clause above.
+AC_ARG_ENABLE([dilithium],
+    [AS_HELP_STRING([--enable-dilithium],[Enable Dilithium/MLDSA (default: disabled)])],
+    [ ENABLED_DILITHIUM=$enableval ]
+    )
 
 ENABLED_DILITHIUM_OPTS=$ENABLED_DILITHIUM
 ENABLED_DILITHIUM_MAKE_KEY=no
@@ -4924,15 +4929,6 @@ AC_ARG_ENABLE([tlsv12],
     [ ENABLED_TLSV12=yes ]
     )
 
-if test "$ENABLED_CRYPTONLY" = "yes"
-then
-    ENABLED_TLSV12=no
-fi
-if test "$ENABLED_TLSV12" = "no"
-then
-    AM_CFLAGS="$AM_CFLAGS -DWOLFSSL_NO_TLS12 -DNO_OLD_TLS"
-fi
-
 # STACK SIZE info for testwolfcrypt and examples
 AC_ARG_ENABLE([stacksize],
     [AS_HELP_STRING([--enable-stacksize],[Enable stack size info on examples (default: disabled)])],