Merge branch 'master' of https://github.com/wolfSSL/wolfssl

README

@@ -34,13 +34,29 @@ before calling wolfSSL_new();  Though it's not recommended.
 
 *** end Notes ***
 
-wolfSSL (Formerly CyaSSL) Release 3.6.2 (07/20/2015)
+wolfSSL (Formerly CyaSSL) Release 3.6.6 (08/20/2015)
 
-Release 3.6.2 of wolfSSL is an intermediate custom release including:
+Release 3.6.6 of wolfSSL has bug fixes and new features including:
 
 - OpenSSH  compatibility with --enable-openssh
 - stunnel  compatibility with --enable-stunnel
 - lighttpd compatibility with --enable-lighty
+- SSLv3 is now disabled by default, can be enabled with --enable-sslv3
+- Ephemeral key cipher suites only are now supported by default
+    To enable static ECDH cipher suites define WOLFSSL_STATIC_DH
+    To enable static  RSA cipher suites define WOLFSSL_STATIC_RSA
+    To enable static  PSK cipher suites define WOLFSSL_STATIC_PSK
+- Added QSH (quantum-safe handshake) extension with --enable-ntru
+- SRP is now part of wolfCrypt, enable with --enabe-srp
+- Certificate handshake messages can now be sent fragmented if the record
+  size is smaller than the total message size, no user action required.
+- DTLS duplicate message fixes
+- Visual Studio project files now support DLL and static builds for 32/64bit.
+- Support for new Freesacle I/O
+- FreeRTOS FIPS support
+
+- No high level security fixes that requires an update though we always
+  recommend updating to the latest
 
 See INSTALL file for build instructions.
 More info can be found on-line at //http://wolfssl.com/yaSSL/Docs.html

README.md

@@ -38,13 +38,29 @@ before calling wolfSSL_new();  Though it's not recommended.
 - GNU Binutils 2.24 ld has problems with some debug builds, to fix an ld error
   add -fdebug-types-section to C_EXTRA_FLAGS
 
-#wolfSSL (Formerly CyaSSL) Release 3.6.2 (07/20/2015)
+#wolfSSL (Formerly CyaSSL) Release 3.6.6 (08/20/2015)
 
-##Release 3.6.2 of wolfSSL is an intermediate custom release including:
+##Release 3.6.6 of wolfSSL has bug fixes and new features including:
 
 - OpenSSH  compatibility with --enable-openssh
 - stunnel  compatibility with --enable-stunnel
 - lighttpd compatibility with --enable-lighty
+- SSLv3 is now disabled by default, can be enabled with --enable-sslv3
+- Ephemeral key cipher suites only are now supported by default
+    To enable static ECDH cipher suites define WOLFSSL_STATIC_DH
+    To enable static  RSA cipher suites define WOLFSSL_STATIC_RSA
+    To enable static  PSK cipher suites define WOLFSSL_STATIC_PSK
+- Added QSH (quantum-safe handshake) extension with --enable-ntru
+- SRP is now part of wolfCrypt, enable with --enabe-srp
+- Certificate handshake messages can now be sent fragmented if the record
+  size is smaller than the total message size, no user action required.
+- DTLS duplicate message fixes
+- Visual Studio project files now support DLL and static builds for 32/64bit.
+- Support for new Freesacle I/O
+- FreeRTOS FIPS support
+
+- No high level security fixes that requires an update though we always
+  recommend updating to the latest
 
 See INSTALL file for build instructions.
 More info can be found on-line at //http://wolfssl.com/yaSSL/Docs.html

configure.ac

@@ -6,7 +6,7 @@
 #
 #
 
-AC_INIT([wolfssl],[3.6.3],[https://github.com/wolfssl/wolfssl/issues],[wolfssl],[http://www.wolfssl.com])
+AC_INIT([wolfssl],[3.6.6],[https://github.com/wolfssl/wolfssl/issues],[wolfssl],[http://www.wolfssl.com])
 
 AC_CONFIG_AUX_DIR([build-aux])
 
@@ -31,7 +31,7 @@ AC_CONFIG_MACRO_DIR([m4])
 AC_CONFIG_HEADERS([config.h:config.in])dnl Keep filename to 8.3 for MS-DOS.
 
 #shared library versioning
-WOLFSSL_LIBRARY_VERSION=0:2:0
+WOLFSSL_LIBRARY_VERSION=0:3:0
 #                       | | |
 #                +------+ | +---+
 #                |        |     |
@@ -889,7 +889,7 @@ fi
 
 # SSLv3
 AC_ARG_ENABLE([sslv3],
-    [  --enable-sslv3         Enable SSL version 3.0 (default: disabled)],
+    [AS_HELP_STRING([--enable-sslv3],[Enable SSL version 3.0 (default: disabled)])],
     [ ENABLED_SSLV3=$enableval ],
     [ ENABLED_SSLV3=no]
     )

rpm/spec.in

@@ -69,7 +69,7 @@ mkdir -p $RPM_BUILD_ROOT/
 %{_libdir}/libwolfssl.la
 %{_libdir}/libwolfssl.so
 %{_libdir}/libwolfssl.so.0
-%{_libdir}/libwolfssl.so.0.0.2
+%{_libdir}/libwolfssl.so.0.0.3
 
 %files devel
 %defattr(-,root,root,-)

sslSniffer/sslSnifferTest/snifftest.c

@@ -60,6 +60,7 @@ int main(void)
 #ifndef _WIN32
     #include <sys/socket.h>    /* AF_INET */
     #include <arpa/inet.h>
+    #include <netinet/in.h>
 #endif
 
 typedef unsigned char byte;

support/wolfssl.pc

@@ -5,6 +5,6 @@ includedir=${prefix}/include
 
 Name: wolfssl
 Description: wolfssl C library.
-Version: 3.6.3
+Version: 3.6.6
 Libs: -L${libdir} -lwolfssl
 Cflags: -I${includedir}

wolfcrypt/src/asn.c

@@ -1444,7 +1444,6 @@ int wc_DsaKeyToDer(DsaKey* key, byte* output, word32 inLen)
     word32 seqSz, verSz, rawLen, intTotalLen = 0;
     word32 sizes[DSA_INTS];
     int    i, j, outLen, ret = 0, lbit;
-    int    err;
 
     byte  seq[MAX_SEQ_SZ];
     byte  ver[MAX_VERSION_SZ];

wolfssl/version.h

@@ -26,8 +26,8 @@
 extern "C" {
 #endif
 
-#define LIBWOLFSSL_VERSION_STRING "3.6.3"
-#define LIBWOLFSSL_VERSION_HEX 0x03006003
+#define LIBWOLFSSL_VERSION_STRING "3.6.6"
+#define LIBWOLFSSL_VERSION_HEX 0x03006006
 
 #ifdef __cplusplus
 }