Zero DH keys, tighten SSL APIs, harden TLS extensions

[JeremiahM37]

Fixes F-2085, F-2083, F-2888, F-2889, F-2104, F-2108, F-2106, F-2901, F-3228, F-2934, F-1836, F-1840, F-2935, F-2936

Zeroize DH private keys on free

• TLSX_KeyShare_FreeAll: zero FFDHE privKey
• wolfSSL_DH_generate_key: zero priv
• FreeKeyExchange: zero sig.buffer
• Sniffer async free: zero SnifferKey

Guard zero length in DES ncbc

• wolfSSL_DES_ncbc_encrypt: early-return on length <= 0

Harden SSL config and session

• wolfSSL_clear: restore PSK DHE flags from ctx
• wolfSSL_SetSession: skip state on expired session
• set_default_verify_paths: fail closed when no CA source
• parse_cipher_list: fail on TLS 1.3-only list, non-1.3 ctx

Harden workflow against heredoc injection (F-2083)

• hostap-vm.yml: pass toJSON(github) via env:

Harden TLS extension processing

• TLSX_CA_Names_GetSize: cap at WOLFSSL_MAX_16BIT
• TLSX_ECH parse: enforce allowed msgTypes
• TLSX_USE_SRTP parse: enforce allowed msgTypes

[wolfSSL-Fenrir-bot]

Fenrir Automated Review — PR #10304

Scan targets checked: wolfssl-bugs, wolfssl-src

No new issues found in the changed files. ✅

[github-actions]

MemBrowse Memory Report

No memory changes detected for:

• gcc-arm-cortex-m4
• gcc-arm-cortex-m4-baremetal
• gcc-arm-cortex-m4-min-ecc
• gcc-arm-cortex-m4-tls12