forked from wolfSSL/wolfssl
Merge branch 'master' of https://github.com/wolfSSL/wolfssl to get updated ocsp tests
This commit is contained in:
TakayukiMatsuo
@@ -1,7 +1,10 @@
|
||||
|
||||
wolfSSL (formerly known as CyaSSL) and wolfCrypt are either licensed for use
|
||||
under the GPLv2 or a standard commercial license. For our users who cannot use
|
||||
wolfSSL under GPLv2, a commercial license to wolfSSL and wolfCrypt is available.
|
||||
under the GPLv2 (or at your option any later version) or a standard commercial
|
||||
license. For our users who cannot use wolfSSL under GPLv2
|
||||
(or any later version), a commercial license to wolfSSL and wolfCrypt is
|
||||
available.
|
||||
|
||||
Please contact wolfSSL Inc. directly at:
|
||||
|
||||
Email: licensing@wolfssl.com
|
||||
|
||||
+82
@@ -0,0 +1,82 @@
|
||||
Certificate:
|
||||
Data:
|
||||
Version: 3 (0x2)
|
||||
Serial Number:
|
||||
08:3b:e0:56:90:42:46:b1:a1:75:6a:c9:59:91:c7:4a
|
||||
Signature Algorithm: sha1WithRSAEncryption
|
||||
Issuer: C = US, O = DigiCert Inc, OU = www.digicert.com, CN = DigiCert Global Root CA
|
||||
Validity
|
||||
Not Before: Nov 10 00:00:00 2006 GMT
|
||||
Not After : Nov 10 00:00:00 2031 GMT
|
||||
Subject: C = US, O = DigiCert Inc, OU = www.digicert.com, CN = DigiCert Global Root CA
|
||||
Subject Public Key Info:
|
||||
Public Key Algorithm: rsaEncryption
|
||||
RSA Public-Key: (2048 bit)
|
||||
Modulus:
|
||||
00:e2:3b:e1:11:72:de:a8:a4:d3:a3:57:aa:50:a2:
|
||||
8f:0b:77:90:c9:a2:a5:ee:12:ce:96:5b:01:09:20:
|
||||
cc:01:93:a7:4e:30:b7:53:f7:43:c4:69:00:57:9d:
|
||||
e2:8d:22:dd:87:06:40:00:81:09:ce:ce:1b:83:bf:
|
||||
df:cd:3b:71:46:e2:d6:66:c7:05:b3:76:27:16:8f:
|
||||
7b:9e:1e:95:7d:ee:b7:48:a3:08:da:d6:af:7a:0c:
|
||||
39:06:65:7f:4a:5d:1f:bc:17:f8:ab:be:ee:28:d7:
|
||||
74:7f:7a:78:99:59:85:68:6e:5c:23:32:4b:bf:4e:
|
||||
c0:e8:5a:6d:e3:70:bf:77:10:bf:fc:01:f6:85:d9:
|
||||
a8:44:10:58:32:a9:75:18:d5:d1:a2:be:47:e2:27:
|
||||
6a:f4:9a:33:f8:49:08:60:8b:d4:5f:b4:3a:84:bf:
|
||||
a1:aa:4a:4c:7d:3e:cf:4f:5f:6c:76:5e:a0:4b:37:
|
||||
91:9e:dc:22:e6:6d:ce:14:1a:8e:6a:cb:fe:cd:b3:
|
||||
14:64:17:c7:5b:29:9e:32:bf:f2:ee:fa:d3:0b:42:
|
||||
d4:ab:b7:41:32:da:0c:d4:ef:f8:81:d5:bb:8d:58:
|
||||
3f:b5:1b:e8:49:28:a2:70:da:31:04:dd:f7:b2:16:
|
||||
f2:4c:0a:4e:07:a8:ed:4a:3d:5e:b5:7f:a3:90:c3:
|
||||
af:27
|
||||
Exponent: 65537 (0x10001)
|
||||
X509v3 extensions:
|
||||
X509v3 Key Usage: critical
|
||||
Digital Signature, Certificate Sign, CRL Sign
|
||||
X509v3 Basic Constraints: critical
|
||||
CA:TRUE
|
||||
X509v3 Subject Key Identifier:
|
||||
03:DE:50:35:56:D1:4C:BB:66:F0:A3:E2:1B:1B:C3:97:B2:3D:D1:55
|
||||
X509v3 Authority Key Identifier:
|
||||
keyid:03:DE:50:35:56:D1:4C:BB:66:F0:A3:E2:1B:1B:C3:97:B2:3D:D1:55
|
||||
|
||||
Signature Algorithm: sha1WithRSAEncryption
|
||||
cb:9c:37:aa:48:13:12:0a:fa:dd:44:9c:4f:52:b0:f4:df:ae:
|
||||
04:f5:79:79:08:a3:24:18:fc:4b:2b:84:c0:2d:b9:d5:c7:fe:
|
||||
f4:c1:1f:58:cb:b8:6d:9c:7a:74:e7:98:29:ab:11:b5:e3:70:
|
||||
a0:a1:cd:4c:88:99:93:8c:91:70:e2:ab:0f:1c:be:93:a9:ff:
|
||||
63:d5:e4:07:60:d3:a3:bf:9d:5b:09:f1:d5:8e:e3:53:f4:8e:
|
||||
63:fa:3f:a7:db:b4:66:df:62:66:d6:d1:6e:41:8d:f2:2d:b5:
|
||||
ea:77:4a:9f:9d:58:e2:2b:59:c0:40:23:ed:2d:28:82:45:3e:
|
||||
79:54:92:26:98:e0:80:48:a8:37:ef:f0:d6:79:60:16:de:ac:
|
||||
e8:0e:cd:6e:ac:44:17:38:2f:49:da:e1:45:3e:2a:b9:36:53:
|
||||
cf:3a:50:06:f7:2e:e8:c4:57:49:6c:61:21:18:d5:04:ad:78:
|
||||
3c:2c:3a:80:6b:a7:eb:af:15:14:e9:d8:89:c1:b9:38:6c:e2:
|
||||
91:6c:8a:ff:64:b9:77:25:57:30:c0:1b:24:a3:e1:dc:e9:df:
|
||||
47:7c:b5:b4:24:08:05:30:ec:2d:bd:0b:bf:45:bf:50:b9:a9:
|
||||
f3:eb:98:01:12:ad:c8:88:c6:98:34:5f:8d:0a:3c:c6:e9:d5:
|
||||
95:95:6d:de
|
||||
-----BEGIN CERTIFICATE-----
|
||||
MIIDrzCCApegAwIBAgIQCDvgVpBCRrGhdWrJWZHHSjANBgkqhkiG9w0BAQUFADBh
|
||||
MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3
|
||||
d3cuZGlnaWNlcnQuY29tMSAwHgYDVQQDExdEaWdpQ2VydCBHbG9iYWwgUm9vdCBD
|
||||
QTAeFw0wNjExMTAwMDAwMDBaFw0zMTExMTAwMDAwMDBaMGExCzAJBgNVBAYTAlVT
|
||||
MRUwEwYDVQQKEwxEaWdpQ2VydCBJbmMxGTAXBgNVBAsTEHd3dy5kaWdpY2VydC5j
|
||||
b20xIDAeBgNVBAMTF0RpZ2lDZXJ0IEdsb2JhbCBSb290IENBMIIBIjANBgkqhkiG
|
||||
9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4jvhEXLeqKTTo1eqUKKPC3eQyaKl7hLOllsB
|
||||
CSDMAZOnTjC3U/dDxGkAV53ijSLdhwZAAIEJzs4bg7/fzTtxRuLWZscFs3YnFo97
|
||||
nh6Vfe63SKMI2tavegw5BmV/Sl0fvBf4q77uKNd0f3p4mVmFaG5cIzJLv07A6Fpt
|
||||
43C/dxC//AH2hdmoRBBYMql1GNXRor5H4idq9Joz+EkIYIvUX7Q6hL+hqkpMfT7P
|
||||
T19sdl6gSzeRntwi5m3OFBqOasv+zbMUZBfHWymeMr/y7vrTC0LUq7dBMtoM1O/4
|
||||
gdW7jVg/tRvoSSiicNoxBN33shbyTApOB6jtSj1etX+jkMOvJwIDAQABo2MwYTAO
|
||||
BgNVHQ8BAf8EBAMCAYYwDwYDVR0TAQH/BAUwAwEB/zAdBgNVHQ4EFgQUA95QNVbR
|
||||
TLtm8KPiGxvDl7I90VUwHwYDVR0jBBgwFoAUA95QNVbRTLtm8KPiGxvDl7I90VUw
|
||||
DQYJKoZIhvcNAQEFBQADggEBAMucN6pIExIK+t1EnE9SsPTfrgT1eXkIoyQY/Esr
|
||||
hMAtudXH/vTBH1jLuG2cenTnmCmrEbXjcKChzUyImZOMkXDiqw8cvpOp/2PV5Adg
|
||||
06O/nVsJ8dWO41P0jmP6P6fbtGbfYmbW0W5BjfIttep3Sp+dWOIrWcBAI+0tKIJF
|
||||
PnlUkiaY4IBIqDfv8NZ5YBberOgOzW6sRBc4L0na4UU+Krk2U886UAb3LujEV0ls
|
||||
YSEY1QSteDwsOoBrp+uvFRTp2InBuThs4pFsiv9kuXclVzDAGySj4dzp30d8tbQk
|
||||
CAUw7C29C79Fv1C5qfPrmAESrciIxpg0X40KPMbp1ZWVbd4=
|
||||
-----END CERTIFICATE-----
|
||||
Vendored
+3
@@ -0,0 +1,3 @@
|
||||
ca_collection.pem contains the two possible Root CA's that login.live.com can
|
||||
return, either the Baltimore Cyber Trust Root CA or the DigiCert Global Sign
|
||||
Root CA.
|
||||
Vendored
+159
@@ -0,0 +1,159 @@
|
||||
Certificate:
|
||||
Data:
|
||||
Version: 3 (0x2)
|
||||
Serial Number: 33554617 (0x20000b9)
|
||||
Signature Algorithm: sha1WithRSAEncryption
|
||||
Issuer: C = IE, O = Baltimore, OU = CyberTrust, CN = Baltimore CyberTrust Root
|
||||
Validity
|
||||
Not Before: May 12 18:46:00 2000 GMT
|
||||
Not After : May 12 23:59:00 2025 GMT
|
||||
Subject: C = IE, O = Baltimore, OU = CyberTrust, CN = Baltimore CyberTrust Root
|
||||
Subject Public Key Info:
|
||||
Public Key Algorithm: rsaEncryption
|
||||
RSA Public-Key: (2048 bit)
|
||||
Modulus:
|
||||
00:a3:04:bb:22:ab:98:3d:57:e8:26:72:9a:b5:79:
|
||||
d4:29:e2:e1:e8:95:80:b1:b0:e3:5b:8e:2b:29:9a:
|
||||
64:df:a1:5d:ed:b0:09:05:6d:db:28:2e:ce:62:a2:
|
||||
62:fe:b4:88:da:12:eb:38:eb:21:9d:c0:41:2b:01:
|
||||
52:7b:88:77:d3:1c:8f:c7:ba:b9:88:b5:6a:09:e7:
|
||||
73:e8:11:40:a7:d1:cc:ca:62:8d:2d:e5:8f:0b:a6:
|
||||
50:d2:a8:50:c3:28:ea:f5:ab:25:87:8a:9a:96:1c:
|
||||
a9:67:b8:3f:0c:d5:f7:f9:52:13:2f:c2:1b:d5:70:
|
||||
70:f0:8f:c0:12:ca:06:cb:9a:e1:d9:ca:33:7a:77:
|
||||
d6:f8:ec:b9:f1:68:44:42:48:13:d2:c0:c2:a4:ae:
|
||||
5e:60:fe:b6:a6:05:fc:b4:dd:07:59:02:d4:59:18:
|
||||
98:63:f5:a5:63:e0:90:0c:7d:5d:b2:06:7a:f3:85:
|
||||
ea:eb:d4:03:ae:5e:84:3e:5f:ff:15:ed:69:bc:f9:
|
||||
39:36:72:75:cf:77:52:4d:f3:c9:90:2c:b9:3d:e5:
|
||||
c9:23:53:3f:1f:24:98:21:5c:07:99:29:bd:c6:3a:
|
||||
ec:e7:6e:86:3a:6b:97:74:63:33:bd:68:18:31:f0:
|
||||
78:8d:76:bf:fc:9e:8e:5d:2a:86:a7:4d:90:dc:27:
|
||||
1a:39
|
||||
Exponent: 65537 (0x10001)
|
||||
X509v3 extensions:
|
||||
X509v3 Subject Key Identifier:
|
||||
E5:9D:59:30:82:47:58:CC:AC:FA:08:54:36:86:7B:3A:B5:04:4D:F0
|
||||
X509v3 Basic Constraints: critical
|
||||
CA:TRUE, pathlen:3
|
||||
X509v3 Key Usage: critical
|
||||
Certificate Sign, CRL Sign
|
||||
Signature Algorithm: sha1WithRSAEncryption
|
||||
85:0c:5d:8e:e4:6f:51:68:42:05:a0:dd:bb:4f:27:25:84:03:
|
||||
bd:f7:64:fd:2d:d7:30:e3:a4:10:17:eb:da:29:29:b6:79:3f:
|
||||
76:f6:19:13:23:b8:10:0a:f9:58:a4:d4:61:70:bd:04:61:6a:
|
||||
12:8a:17:d5:0a:bd:c5:bc:30:7c:d6:e9:0c:25:8d:86:40:4f:
|
||||
ec:cc:a3:7e:38:c6:37:11:4f:ed:dd:68:31:8e:4c:d2:b3:01:
|
||||
74:ee:be:75:5e:07:48:1a:7f:70:ff:16:5c:84:c0:79:85:b8:
|
||||
05:fd:7f:be:65:11:a3:0f:c0:02:b4:f8:52:37:39:04:d5:a9:
|
||||
31:7a:18:bf:a0:2a:f4:12:99:f7:a3:45:82:e3:3c:5e:f5:9d:
|
||||
9e:b5:c8:9e:7c:2e:c8:a4:9e:4e:08:14:4b:6d:fd:70:6d:6b:
|
||||
1a:63:bd:64:e6:1f:b7:ce:f0:f2:9f:2e:bb:1b:b7:f2:50:88:
|
||||
73:92:c2:e2:e3:16:8d:9a:32:02:ab:8e:18:dd:e9:10:11:ee:
|
||||
7e:35:ab:90:af:3e:30:94:7a:d0:33:3d:a7:65:0f:f5:fc:8e:
|
||||
9e:62:cf:47:44:2c:01:5d:bb:1d:b5:32:d2:47:d2:38:2e:d0:
|
||||
fe:81:dc:32:6a:1e:b5:ee:3c:d5:fc:e7:81:1d:19:c3:24:42:
|
||||
ea:63:39:a9
|
||||
-----BEGIN CERTIFICATE-----
|
||||
MIIDdzCCAl+gAwIBAgIEAgAAuTANBgkqhkiG9w0BAQUFADBaMQswCQYDVQQGEwJJ
|
||||
RTESMBAGA1UEChMJQmFsdGltb3JlMRMwEQYDVQQLEwpDeWJlclRydXN0MSIwIAYD
|
||||
VQQDExlCYWx0aW1vcmUgQ3liZXJUcnVzdCBSb290MB4XDTAwMDUxMjE4NDYwMFoX
|
||||
DTI1MDUxMjIzNTkwMFowWjELMAkGA1UEBhMCSUUxEjAQBgNVBAoTCUJhbHRpbW9y
|
||||
ZTETMBEGA1UECxMKQ3liZXJUcnVzdDEiMCAGA1UEAxMZQmFsdGltb3JlIEN5YmVy
|
||||
VHJ1c3QgUm9vdDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAKMEuyKr
|
||||
mD1X6CZymrV51Cni4eiVgLGw41uOKymaZN+hXe2wCQVt2yguzmKiYv60iNoS6zjr
|
||||
IZ3AQSsBUnuId9Mcj8e6uYi1agnnc+gRQKfRzMpijS3ljwumUNKoUMMo6vWrJYeK
|
||||
mpYcqWe4PwzV9/lSEy/CG9VwcPCPwBLKBsua4dnKM3p31vjsufFoREJIE9LAwqSu
|
||||
XmD+tqYF/LTdB1kC1FkYmGP1pWPgkAx9XbIGevOF6uvUA65ehD5f/xXtabz5OTZy
|
||||
dc93Uk3zyZAsuT3lySNTPx8kmCFcB5kpvcY67Oduhjprl3RjM71oGDHweI12v/ye
|
||||
jl0qhqdNkNwnGjkCAwEAAaNFMEMwHQYDVR0OBBYEFOWdWTCCR1jMrPoIVDaGezq1
|
||||
BE3wMBIGA1UdEwEB/wQIMAYBAf8CAQMwDgYDVR0PAQH/BAQDAgEGMA0GCSqGSIb3
|
||||
DQEBBQUAA4IBAQCFDF2O5G9RaEIFoN27TyclhAO992T9Ldcw46QQF+vaKSm2eT92
|
||||
9hkTI7gQCvlYpNRhcL0EYWoSihfVCr3FvDB81ukMJY2GQE/szKN+OMY3EU/t3Wgx
|
||||
jkzSswF07r51XgdIGn9w/xZchMB5hbgF/X++ZRGjD8ACtPhSNzkE1akxehi/oCr0
|
||||
Epn3o0WC4zxe9Z2etciefC7IpJ5OCBRLbf1wbWsaY71k5h+3zvDyny67G7fyUIhz
|
||||
ksLi4xaNmjICq44Y3ekQEe5+NauQrz4wlHrQMz2nZQ/1/I6eYs9HRCwBXbsdtTLS
|
||||
R9I4LtD+gdwyah617jzV/OeBHRnDJELqYzmp
|
||||
-----END CERTIFICATE-----
|
||||
Certificate:
|
||||
Data:
|
||||
Version: 3 (0x2)
|
||||
Serial Number:
|
||||
08:3b:e0:56:90:42:46:b1:a1:75:6a:c9:59:91:c7:4a
|
||||
Signature Algorithm: sha1WithRSAEncryption
|
||||
Issuer: C = US, O = DigiCert Inc, OU = www.digicert.com, CN = DigiCert Global Root CA
|
||||
Validity
|
||||
Not Before: Nov 10 00:00:00 2006 GMT
|
||||
Not After : Nov 10 00:00:00 2031 GMT
|
||||
Subject: C = US, O = DigiCert Inc, OU = www.digicert.com, CN = DigiCert Global Root CA
|
||||
Subject Public Key Info:
|
||||
Public Key Algorithm: rsaEncryption
|
||||
RSA Public-Key: (2048 bit)
|
||||
Modulus:
|
||||
00:e2:3b:e1:11:72:de:a8:a4:d3:a3:57:aa:50:a2:
|
||||
8f:0b:77:90:c9:a2:a5:ee:12:ce:96:5b:01:09:20:
|
||||
cc:01:93:a7:4e:30:b7:53:f7:43:c4:69:00:57:9d:
|
||||
e2:8d:22:dd:87:06:40:00:81:09:ce:ce:1b:83:bf:
|
||||
df:cd:3b:71:46:e2:d6:66:c7:05:b3:76:27:16:8f:
|
||||
7b:9e:1e:95:7d:ee:b7:48:a3:08:da:d6:af:7a:0c:
|
||||
39:06:65:7f:4a:5d:1f:bc:17:f8:ab:be:ee:28:d7:
|
||||
74:7f:7a:78:99:59:85:68:6e:5c:23:32:4b:bf:4e:
|
||||
c0:e8:5a:6d:e3:70:bf:77:10:bf:fc:01:f6:85:d9:
|
||||
a8:44:10:58:32:a9:75:18:d5:d1:a2:be:47:e2:27:
|
||||
6a:f4:9a:33:f8:49:08:60:8b:d4:5f:b4:3a:84:bf:
|
||||
a1:aa:4a:4c:7d:3e:cf:4f:5f:6c:76:5e:a0:4b:37:
|
||||
91:9e:dc:22:e6:6d:ce:14:1a:8e:6a:cb:fe:cd:b3:
|
||||
14:64:17:c7:5b:29:9e:32:bf:f2:ee:fa:d3:0b:42:
|
||||
d4:ab:b7:41:32:da:0c:d4:ef:f8:81:d5:bb:8d:58:
|
||||
3f:b5:1b:e8:49:28:a2:70:da:31:04:dd:f7:b2:16:
|
||||
f2:4c:0a:4e:07:a8:ed:4a:3d:5e:b5:7f:a3:90:c3:
|
||||
af:27
|
||||
Exponent: 65537 (0x10001)
|
||||
X509v3 extensions:
|
||||
X509v3 Key Usage: critical
|
||||
Digital Signature, Certificate Sign, CRL Sign
|
||||
X509v3 Basic Constraints: critical
|
||||
CA:TRUE
|
||||
X509v3 Subject Key Identifier:
|
||||
03:DE:50:35:56:D1:4C:BB:66:F0:A3:E2:1B:1B:C3:97:B2:3D:D1:55
|
||||
X509v3 Authority Key Identifier:
|
||||
keyid:03:DE:50:35:56:D1:4C:BB:66:F0:A3:E2:1B:1B:C3:97:B2:3D:D1:55
|
||||
|
||||
Signature Algorithm: sha1WithRSAEncryption
|
||||
cb:9c:37:aa:48:13:12:0a:fa:dd:44:9c:4f:52:b0:f4:df:ae:
|
||||
04:f5:79:79:08:a3:24:18:fc:4b:2b:84:c0:2d:b9:d5:c7:fe:
|
||||
f4:c1:1f:58:cb:b8:6d:9c:7a:74:e7:98:29:ab:11:b5:e3:70:
|
||||
a0:a1:cd:4c:88:99:93:8c:91:70:e2:ab:0f:1c:be:93:a9:ff:
|
||||
63:d5:e4:07:60:d3:a3:bf:9d:5b:09:f1:d5:8e:e3:53:f4:8e:
|
||||
63:fa:3f:a7:db:b4:66:df:62:66:d6:d1:6e:41:8d:f2:2d:b5:
|
||||
ea:77:4a:9f:9d:58:e2:2b:59:c0:40:23:ed:2d:28:82:45:3e:
|
||||
79:54:92:26:98:e0:80:48:a8:37:ef:f0:d6:79:60:16:de:ac:
|
||||
e8:0e:cd:6e:ac:44:17:38:2f:49:da:e1:45:3e:2a:b9:36:53:
|
||||
cf:3a:50:06:f7:2e:e8:c4:57:49:6c:61:21:18:d5:04:ad:78:
|
||||
3c:2c:3a:80:6b:a7:eb:af:15:14:e9:d8:89:c1:b9:38:6c:e2:
|
||||
91:6c:8a:ff:64:b9:77:25:57:30:c0:1b:24:a3:e1:dc:e9:df:
|
||||
47:7c:b5:b4:24:08:05:30:ec:2d:bd:0b:bf:45:bf:50:b9:a9:
|
||||
f3:eb:98:01:12:ad:c8:88:c6:98:34:5f:8d:0a:3c:c6:e9:d5:
|
||||
95:95:6d:de
|
||||
-----BEGIN CERTIFICATE-----
|
||||
MIIDrzCCApegAwIBAgIQCDvgVpBCRrGhdWrJWZHHSjANBgkqhkiG9w0BAQUFADBh
|
||||
MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3
|
||||
d3cuZGlnaWNlcnQuY29tMSAwHgYDVQQDExdEaWdpQ2VydCBHbG9iYWwgUm9vdCBD
|
||||
QTAeFw0wNjExMTAwMDAwMDBaFw0zMTExMTAwMDAwMDBaMGExCzAJBgNVBAYTAlVT
|
||||
MRUwEwYDVQQKEwxEaWdpQ2VydCBJbmMxGTAXBgNVBAsTEHd3dy5kaWdpY2VydC5j
|
||||
b20xIDAeBgNVBAMTF0RpZ2lDZXJ0IEdsb2JhbCBSb290IENBMIIBIjANBgkqhkiG
|
||||
9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4jvhEXLeqKTTo1eqUKKPC3eQyaKl7hLOllsB
|
||||
CSDMAZOnTjC3U/dDxGkAV53ijSLdhwZAAIEJzs4bg7/fzTtxRuLWZscFs3YnFo97
|
||||
nh6Vfe63SKMI2tavegw5BmV/Sl0fvBf4q77uKNd0f3p4mVmFaG5cIzJLv07A6Fpt
|
||||
43C/dxC//AH2hdmoRBBYMql1GNXRor5H4idq9Joz+EkIYIvUX7Q6hL+hqkpMfT7P
|
||||
T19sdl6gSzeRntwi5m3OFBqOasv+zbMUZBfHWymeMr/y7vrTC0LUq7dBMtoM1O/4
|
||||
gdW7jVg/tRvoSSiicNoxBN33shbyTApOB6jtSj1etX+jkMOvJwIDAQABo2MwYTAO
|
||||
BgNVHQ8BAf8EBAMCAYYwDwYDVR0TAQH/BAUwAwEB/zAdBgNVHQ4EFgQUA95QNVbR
|
||||
TLtm8KPiGxvDl7I90VUwHwYDVR0jBBgwFoAUA95QNVbRTLtm8KPiGxvDl7I90VUw
|
||||
DQYJKoZIhvcNAQEFBQADggEBAMucN6pIExIK+t1EnE9SsPTfrgT1eXkIoyQY/Esr
|
||||
hMAtudXH/vTBH1jLuG2cenTnmCmrEbXjcKChzUyImZOMkXDiqw8cvpOp/2PV5Adg
|
||||
06O/nVsJ8dWO41P0jmP6P6fbtGbfYmbW0W5BjfIttep3Sp+dWOIrWcBAI+0tKIJF
|
||||
PnlUkiaY4IBIqDfv8NZ5YBberOgOzW6sRBc4L0na4UU+Krk2U886UAb3LujEV0ls
|
||||
YSEY1QSteDwsOoBrp+uvFRTp2InBuThs4pFsiv9kuXclVzDAGySj4dzp30d8tbQk
|
||||
CAUw7C29C79Fv1C5qfPrmAESrciIxpg0X40KPMbp1ZWVbd4=
|
||||
-----END CERTIFICATE-----
|
||||
Vendored
+7
-2
@@ -4,6 +4,11 @@
|
||||
|
||||
EXTRA_DIST += \
|
||||
certs/external/ca-globalsign-root.pem \
|
||||
certs/external/ca-google-root.pem\
|
||||
certs/external/ca-google-root.pem \
|
||||
certs/external/ca-digicert-ev.pem \
|
||||
certs/external/baltimore-cybertrust-root.pem
|
||||
certs/external/baltimore-cybertrust-root.pem \
|
||||
certs/external/README.txt \
|
||||
certs/external/DigiCertGlobalRootCA.pem \
|
||||
certs/external/ca_collection.pem
|
||||
|
||||
|
||||
|
||||
@@ -157,9 +157,6 @@ cleanup()
|
||||
}
|
||||
trap cleanup EXIT INT TERM HUP
|
||||
|
||||
server=login.live.com
|
||||
ca=certs/external/baltimore-cybertrust-root.pem
|
||||
|
||||
[ ! -x ./examples/client/client ] && echo -e "\n\nClient doesn't exist" && exit 1
|
||||
./examples/client/client '-?' 2>&1 | grep -- 'Client not compiled in!'
|
||||
if [ $? -eq 0 ]; then
|
||||
@@ -224,6 +221,10 @@ sleep 1
|
||||
#./scripts/ping.test $server 2
|
||||
|
||||
# client test against the server
|
||||
server=login.live.com
|
||||
#ca=certs/external/baltimore-cybertrust-root.pem
|
||||
ca=certs/external/ca_collection.pem
|
||||
|
||||
./examples/client/client -C -h $server -p 443 -A $ca -g -W 1
|
||||
RESULT=$?
|
||||
[ $RESULT -ne 0 ] && echo -e "\n\nClient connection failed" && exit 1
|
||||
|
||||
@@ -12744,16 +12744,13 @@ int AddSession(WOLFSSL* ssl)
|
||||
#ifdef HAVE_EXT_CACHE
|
||||
if (ssl->options.internalCacheOff) {
|
||||
/* Create a new session object to be stored. */
|
||||
session = (WOLFSSL_SESSION*)XMALLOC(sizeof(WOLFSSL_SESSION), NULL,
|
||||
DYNAMIC_TYPE_OPENSSL);
|
||||
session = wolfSSL_SESSION_new();
|
||||
if (session == NULL) {
|
||||
#ifdef HAVE_SESSION_TICKET
|
||||
XFREE(tmpBuff, ssl->heap, DYNAMIC_TYPE_SESSION_TICK);
|
||||
#endif
|
||||
return MEMORY_E;
|
||||
}
|
||||
XMEMSET(session, 0, sizeof(WOLFSSL_SESSION));
|
||||
session->isAlloced = 1;
|
||||
}
|
||||
else
|
||||
#endif
|
||||
@@ -17332,6 +17329,12 @@ WOLFSSL_X509* wolfSSL_d2i_X509(WOLFSSL_X509** x509, const unsigned char** in,
|
||||
int len)
|
||||
{
|
||||
WOLFSSL_X509* newX509 = NULL;
|
||||
WOLFSSL_ENTER("wolfSSL_d2i_X509");
|
||||
|
||||
if (in == NULL) {
|
||||
WOLFSSL_MSG("NULL input for wolfSSL_d2i_X509");
|
||||
return NULL;
|
||||
}
|
||||
|
||||
newX509 = wolfSSL_X509_d2i(x509, *in, len);
|
||||
if (newX509 != NULL) {
|
||||
@@ -19277,6 +19280,44 @@ int wolfSSL_session_reused(WOLFSSL* ssl)
|
||||
}
|
||||
|
||||
#if defined(OPENSSL_EXTRA) || defined(HAVE_EXT_CACHE)
|
||||
/* return a new malloc'd session with default settings on success */
|
||||
WOLFSSL_SESSION* wolfSSL_SESSION_new()
|
||||
{
|
||||
WOLFSSL_SESSION* ret = NULL;
|
||||
|
||||
ret = (WOLFSSL_SESSION*)XMALLOC(sizeof(WOLFSSL_SESSION), NULL,
|
||||
DYNAMIC_TYPE_OPENSSL);
|
||||
if (ret != NULL) {
|
||||
XMEMSET(ret, 0, sizeof(WOLFSSL_SESSION));
|
||||
#ifdef OPENSSL_EXTRA
|
||||
if (wc_InitMutex(&ret->refMutex) != 0) {
|
||||
WOLFSSL_MSG("Error setting up session reference mutex");
|
||||
XFREE(ret, NULL, DYNAMIC_TYPE_OPENSSL);
|
||||
return NULL;
|
||||
}
|
||||
#endif
|
||||
ret->isAlloced = 1;
|
||||
}
|
||||
return ret;
|
||||
}
|
||||
|
||||
|
||||
/* add one to session reference count
|
||||
* return WOFLSSL_SUCCESS on success and WOLFSSL_FAILURE on error */
|
||||
int wolfSSL_SESSION_up_ref(WOLFSSL_SESSION* session)
|
||||
{
|
||||
if (session == NULL)
|
||||
return WOLFSSL_FAILURE;
|
||||
|
||||
if (wc_LockMutex(&session->refMutex) != 0) {
|
||||
WOLFSSL_MSG("Failed to lock session mutex");
|
||||
}
|
||||
session->refCount++;
|
||||
wc_UnLockMutex(&session->refMutex);
|
||||
return WOLFSSL_SUCCESS;
|
||||
}
|
||||
|
||||
|
||||
WOLFSSL_SESSION* wolfSSL_SESSION_dup(WOLFSSL_SESSION* session)
|
||||
{
|
||||
#ifdef HAVE_EXT_CACHE
|
||||
@@ -19293,8 +19334,7 @@ WOLFSSL_SESSION* wolfSSL_SESSION_dup(WOLFSSL_SESSION* session)
|
||||
}
|
||||
#endif
|
||||
|
||||
copy = (WOLFSSL_SESSION*)XMALLOC(sizeof(WOLFSSL_SESSION), NULL,
|
||||
DYNAMIC_TYPE_OPENSSL);
|
||||
copy = wolfSSL_SESSION_new();
|
||||
if (copy != NULL) {
|
||||
XMEMCPY(copy, session, sizeof(WOLFSSL_SESSION));
|
||||
copy->isAlloced = 1;
|
||||
@@ -19331,7 +19371,18 @@ void wolfSSL_SESSION_free(WOLFSSL_SESSION* session)
|
||||
}
|
||||
#endif
|
||||
|
||||
#ifdef HAVE_EXT_CACHE
|
||||
#ifdef OPENSSL_EXTRA
|
||||
if (wc_LockMutex(&session->refMutex) != 0) {
|
||||
WOLFSSL_MSG("Failed to lock session mutex");
|
||||
}
|
||||
if (session->refCount > 0) {
|
||||
session->refCount--;
|
||||
wc_UnLockMutex(&session->refMutex);
|
||||
return;
|
||||
}
|
||||
wc_UnLockMutex(&session->refMutex);
|
||||
#endif
|
||||
#if defined(HAVE_EXT_CACHE) || defined(OPENSSL_EXTRA)
|
||||
if (session->isAlloced) {
|
||||
#ifdef HAVE_SESSION_TICKET
|
||||
if (session->isDynamic)
|
||||
@@ -23939,7 +23990,10 @@ unsigned long wolfSSL_ERR_peek_error(void)
|
||||
|
||||
int wolfSSL_ERR_GET_LIB(unsigned long err)
|
||||
{
|
||||
switch (err) {
|
||||
unsigned long value;
|
||||
|
||||
value = (err & 0xFFFFFFL);
|
||||
switch (value) {
|
||||
case PEM_R_NO_START_LINE:
|
||||
case PEM_R_PROBLEMS_GETTING_PASSWORD:
|
||||
case PEM_R_BAD_PASSWORD_READ:
|
||||
@@ -27220,12 +27274,9 @@ WOLFSSL_SESSION* wolfSSL_d2i_SSL_SESSION(WOLFSSL_SESSION** sess,
|
||||
return NULL;
|
||||
|
||||
if (s == NULL) {
|
||||
s = (WOLFSSL_SESSION*)XMALLOC(sizeof(WOLFSSL_SESSION), NULL,
|
||||
DYNAMIC_TYPE_OPENSSL);
|
||||
s = wolfSSL_SESSION_new();
|
||||
if (s == NULL)
|
||||
return NULL;
|
||||
XMEMSET(s, 0, sizeof(WOLFSSL_SESSION));
|
||||
s->isAlloced = 1;
|
||||
#ifdef HAVE_SESSION_TICKET
|
||||
s->isDynamic = 0;
|
||||
#endif
|
||||
@@ -42999,9 +43050,9 @@ unsigned long wolfSSL_ERR_peek_error_line_data(const char **file, int *line,
|
||||
|
||||
if (ret == -ASN_NO_PEM_HEADER)
|
||||
return (ERR_LIB_PEM << 24) | PEM_R_NO_START_LINE;
|
||||
if (ret != WANT_READ && ret != WANT_WRITE &&
|
||||
ret != ZERO_RETURN && ret != WOLFSSL_ERROR_ZERO_RETURN &&
|
||||
ret != SOCKET_PEER_CLOSED_E && ret != SOCKET_ERROR_E)
|
||||
if (ret != -WANT_READ && ret != -WANT_WRITE &&
|
||||
ret != -ZERO_RETURN && ret != -WOLFSSL_ERROR_ZERO_RETURN &&
|
||||
ret != -SOCKET_PEER_CLOSED_E && ret != -SOCKET_ERROR_E)
|
||||
break;
|
||||
|
||||
wc_RemoveErrorNode(-1);
|
||||
@@ -43823,6 +43874,13 @@ int wolfSSL_X509_check_issued(WOLFSSL_X509 *issuer, WOLFSSL_X509 *subject)
|
||||
|
||||
WOLFSSL_X509* wolfSSL_X509_dup(WOLFSSL_X509 *x)
|
||||
{
|
||||
WOLFSSL_ENTER("wolfSSL_X509_dup");
|
||||
|
||||
if (x == NULL) {
|
||||
WOLFSSL_MSG("Error: NULL certificate passed in");
|
||||
return NULL;
|
||||
}
|
||||
|
||||
return wolfSSL_X509_d2i(NULL, x->derCert->buffer, x->derCert->length);
|
||||
}
|
||||
|
||||
|
||||
@@ -4154,8 +4154,10 @@ int TLSX_SupportedFFDHE_Set(WOLFSSL* ssl)
|
||||
ssl->options.haveDH = 0;
|
||||
|
||||
|
||||
if ((ret = TLSX_PopulateSupportedGroups(ssl, &priority)) != WOLFSSL_SUCCESS)
|
||||
if ((ret = TLSX_PopulateSupportedGroups(ssl, &priority)) != WOLFSSL_SUCCESS) {
|
||||
TLSX_FreeAll(priority, ssl->heap);
|
||||
return ret;
|
||||
}
|
||||
ret = 0;
|
||||
|
||||
ext = TLSX_Find(priority, TLSX_SUPPORTED_GROUPS);
|
||||
|
||||
+1
-1
@@ -7032,7 +7032,7 @@ int DoTls13HandShakeMsgType(WOLFSSL* ssl, byte* input, word32* inOutIdx,
|
||||
if (ssl->options.resuming || !IsAtLeastTLSv1_2(ssl) ||
|
||||
IsAtLeastTLSv1_3(ssl->version)) {
|
||||
ssl->options.cacheMessages = 0;
|
||||
if (ssl->hsHashes->messages != NULL) {
|
||||
if ((ssl->hsHashes != NULL) && (ssl->hsHashes->messages != NULL)) {
|
||||
XFREE(ssl->hsHashes->messages, ssl->heap, DYNAMIC_TYPE_HASHES);
|
||||
ssl->hsHashes->messages = NULL;
|
||||
}
|
||||
|
||||
+425
-12
@@ -6422,9 +6422,222 @@ static int test_wc_Sha256Final (void)
|
||||
return flag;
|
||||
|
||||
} /* END test_wc_Sha256Final */
|
||||
/*
|
||||
* Unit test function for wc_Sha256FinalRaw()
|
||||
*/
|
||||
static int test_wc_Sha256FinalRaw (void)
|
||||
{
|
||||
int flag = 0;
|
||||
#if !defined(NO_SHA256) && \
|
||||
(defined(WOLFSSL_HASH_FLAGS) || defined(WOLF_CRYPTO_CB))
|
||||
wc_Sha256 sha256;
|
||||
byte* hash_test[3];
|
||||
byte hash1[WC_SHA256_DIGEST_SIZE];
|
||||
byte hash2[2*WC_SHA256_DIGEST_SIZE];
|
||||
byte hash3[5*WC_SHA256_DIGEST_SIZE];
|
||||
int times, i, ret;
|
||||
|
||||
/* Initialize */
|
||||
ret = wc_InitSha256(&sha256);
|
||||
if (ret != 0) {
|
||||
flag = ret;
|
||||
}
|
||||
|
||||
if (!flag) {
|
||||
hash_test[0] = hash1;
|
||||
hash_test[1] = hash2;
|
||||
hash_test[2] = hash3;
|
||||
}
|
||||
|
||||
times = sizeof(hash_test) / sizeof(byte*);
|
||||
|
||||
/* Good test args. */
|
||||
printf(testingFmt, "wc_Sha256FinalRaw()");
|
||||
|
||||
for (i = 0; i < times; i++) {
|
||||
if (!flag) {
|
||||
ret = wc_Sha256FinalRaw(&sha256, hash_test[i]);
|
||||
if (ret != 0) {
|
||||
flag = WOLFSSL_FATAL_ERROR;
|
||||
}
|
||||
}
|
||||
}
|
||||
|
||||
/* Test bad args. */
|
||||
if (!flag ) {
|
||||
ret = wc_Sha256FinalRaw(NULL, NULL);
|
||||
if (ret != BAD_FUNC_ARG) {
|
||||
flag = WOLFSSL_FATAL_ERROR;
|
||||
}
|
||||
}
|
||||
|
||||
if (!flag) {
|
||||
ret = wc_Sha256FinalRaw(NULL, hash1);
|
||||
if (ret != BAD_FUNC_ARG) {
|
||||
flag = WOLFSSL_FATAL_ERROR;
|
||||
}
|
||||
}
|
||||
|
||||
if (!flag) {
|
||||
ret = wc_Sha256FinalRaw(&sha256, NULL);
|
||||
if (ret != BAD_FUNC_ARG) {
|
||||
flag = WOLFSSL_FATAL_ERROR;
|
||||
}
|
||||
}
|
||||
|
||||
wc_Sha256Free(&sha256);
|
||||
|
||||
printf(resultFmt, flag == 0 ? passed : failed);
|
||||
|
||||
#endif
|
||||
return flag;
|
||||
|
||||
} /* END test_wc_Sha256FinalRaw */
|
||||
/*
|
||||
* Unit test function for wc_Sha256GetFlags()
|
||||
*/
|
||||
static int test_wc_Sha256GetFlags (void)
|
||||
{
|
||||
int flag = 0;
|
||||
#if !defined(NO_SHA256) && \
|
||||
(defined(WOLFSSL_HASH_FLAGS) || defined(WOLF_CRYPTO_CB))
|
||||
wc_Sha256 sha256;
|
||||
word32 flags = 0;
|
||||
|
||||
|
||||
printf(testingFmt, "wc_Sha256GetFlags()");
|
||||
|
||||
/* Initialize */
|
||||
flag = wc_InitSha256(&sha256);
|
||||
if (flag == 0) {
|
||||
flag = wc_Sha256GetFlags(&sha256, &flags);
|
||||
}
|
||||
if (flag == 0) {
|
||||
if (flags & WC_HASH_FLAG_ISCOPY) {
|
||||
flag = 0;
|
||||
}
|
||||
}
|
||||
|
||||
wc_Sha256Free(&sha256);
|
||||
|
||||
printf(resultFmt, flag == 0 ? passed : failed);
|
||||
|
||||
#endif
|
||||
return flag;
|
||||
|
||||
} /* END test_wc_Sha256GetFlags */
|
||||
/*
|
||||
* Unit test function for wc_Sha256Free()
|
||||
*/
|
||||
static int test_wc_Sha256Free (void)
|
||||
{
|
||||
int flag = 0;
|
||||
#ifndef NO_SHA256
|
||||
|
||||
printf(testingFmt, "wc_Sha256Free()");
|
||||
wc_Sha256Free(NULL);
|
||||
|
||||
printf(resultFmt, flag == 0 ? passed : failed);
|
||||
|
||||
#endif
|
||||
return flag;
|
||||
|
||||
} /* END test_wc_Sha256Free */
|
||||
/*
|
||||
* Unit test function for wc_Sha256GetHash()
|
||||
*/
|
||||
static int test_wc_Sha256GetHash (void)
|
||||
{
|
||||
int flag = 0;
|
||||
#ifndef NO_SHA256
|
||||
wc_Sha256 sha256;
|
||||
byte hash1[WC_SHA256_DIGEST_SIZE];
|
||||
|
||||
printf(testingFmt, "wc_Sha256GetHash()");
|
||||
|
||||
/* Initialize */
|
||||
flag = wc_InitSha256(&sha256);
|
||||
|
||||
if (flag == 0) {
|
||||
flag = wc_Sha256GetHash(&sha256, hash1);
|
||||
}
|
||||
/*test bad arguements*/
|
||||
if (flag == 0) {
|
||||
flag = wc_Sha256GetHash(NULL, NULL);
|
||||
if (flag == BAD_FUNC_ARG) {
|
||||
flag = 0;
|
||||
}
|
||||
}
|
||||
if (flag == 0) {
|
||||
flag = wc_Sha256GetHash(NULL, hash1);
|
||||
if (flag == BAD_FUNC_ARG) {
|
||||
flag = 0;
|
||||
}
|
||||
}
|
||||
if (flag == 0) {
|
||||
flag = wc_Sha256GetHash(&sha256, NULL);
|
||||
if (flag == BAD_FUNC_ARG) {
|
||||
flag = 0;
|
||||
}
|
||||
}
|
||||
|
||||
wc_Sha256Free(&sha256);
|
||||
|
||||
printf(resultFmt, flag == 0 ? passed : failed);
|
||||
|
||||
#endif
|
||||
return flag;
|
||||
|
||||
} /* END test_wc_Sha256GetHash */
|
||||
/*
|
||||
* Unit test function for wc_Sha256Copy()
|
||||
*/
|
||||
static int test_wc_Sha256Copy (void)
|
||||
{
|
||||
int flag = 0;
|
||||
#ifndef NO_SHA256
|
||||
wc_Sha256 sha256;
|
||||
wc_Sha256 temp;
|
||||
|
||||
printf(testingFmt, "wc_Sha256Copy()");
|
||||
|
||||
/* Initialize */
|
||||
flag = wc_InitSha256(&sha256);
|
||||
if (flag == 0) {
|
||||
flag = wc_InitSha256(&temp);
|
||||
}
|
||||
if (flag == 0) {
|
||||
flag = wc_Sha256Copy(&sha256, &temp);
|
||||
}
|
||||
/*test bad arguements*/
|
||||
if (flag == 0) {
|
||||
flag = wc_Sha256Copy(NULL, NULL);
|
||||
if (flag == BAD_FUNC_ARG) {
|
||||
flag = 0;
|
||||
}
|
||||
}
|
||||
if (flag == 0) {
|
||||
flag = wc_Sha256Copy(NULL, &temp);
|
||||
if (flag == BAD_FUNC_ARG) {
|
||||
flag = 0;
|
||||
}
|
||||
}
|
||||
if (flag == 0) {
|
||||
flag = wc_Sha256Copy(&sha256, NULL);
|
||||
if (flag == BAD_FUNC_ARG) {
|
||||
flag = 0;
|
||||
}
|
||||
}
|
||||
|
||||
wc_Sha256Free(&sha256);
|
||||
wc_Sha256Free(&temp);
|
||||
|
||||
printf(resultFmt, flag == 0 ? passed : failed);
|
||||
|
||||
#endif
|
||||
return flag;
|
||||
|
||||
} /* END test_wc_Sha256Copy */
|
||||
/*
|
||||
* Testing wc_InitSha512()
|
||||
*/
|
||||
@@ -7056,10 +7269,188 @@ static int test_wc_Sha224Final (void)
|
||||
#endif
|
||||
return flag;
|
||||
} /* END test_wc_Sha224Final */
|
||||
/*
|
||||
* Unit test function for wc_Sha224SetFlags()
|
||||
*/
|
||||
static int test_wc_Sha224SetFlags (void)
|
||||
{
|
||||
int flag = 0;
|
||||
#if !defined(NO_SHA224) && \
|
||||
(defined(WOLFSSL_HASH_FLAGS) || defined(WOLF_CRYPTO_CB))
|
||||
wc_Sha224 sha224;
|
||||
word32 flags = 0;
|
||||
|
||||
printf(testingFmt, "wc_Sha224SetFlags()");
|
||||
|
||||
/* Initialize */
|
||||
flag = wc_InitSha224(&sha224);
|
||||
if (flag == 0) {
|
||||
flag = wc_Sha224SetFlags(&sha224, flags);
|
||||
}
|
||||
if (flag == 0) {
|
||||
if (flags & WC_HASH_FLAG_ISCOPY) {
|
||||
flag = 0;
|
||||
}
|
||||
}
|
||||
|
||||
wc_Sha224Free(&sha224);
|
||||
|
||||
printf(resultFmt, flag == 0 ? passed : failed);
|
||||
|
||||
#endif
|
||||
return flag;
|
||||
|
||||
} /* END test_wc_Sha224SetFlags */
|
||||
/*
|
||||
* Unit test function for wc_Sha224GetFlags()
|
||||
*/
|
||||
static int test_wc_Sha224GetFlags (void)
|
||||
{
|
||||
int flag = 0;
|
||||
#if !defined(NO_SHA224) && \
|
||||
(defined(WOLFSSL_HASH_FLAGS) || defined(WOLF_CRYPTO_CB))
|
||||
wc_Sha224 sha224;
|
||||
word32 flags = 0;
|
||||
|
||||
printf(testingFmt, "wc_Sha224GetFlags()");
|
||||
|
||||
/* Initialize */
|
||||
flag = wc_InitSha224(&sha224);
|
||||
if (flag == 0) {
|
||||
flag = wc_Sha224GetFlags(&sha224, &flags);
|
||||
}
|
||||
if (flag == 0) {
|
||||
if (flags & WC_HASH_FLAG_ISCOPY) {
|
||||
flag = 0;
|
||||
}
|
||||
}
|
||||
|
||||
|
||||
wc_Sha224Free(&sha224);
|
||||
|
||||
printf(resultFmt, flag == 0 ? passed : failed);
|
||||
|
||||
#endif
|
||||
return flag;
|
||||
|
||||
} /* END test_wc_Sha224GetFlags */
|
||||
/*
|
||||
* Unit test function for wc_Sha224Free()
|
||||
*/
|
||||
static int test_wc_Sha224Free (void)
|
||||
{
|
||||
int flag = 0;
|
||||
#if !defined(NO_SHA224) && \
|
||||
(defined(WOLFSSL_HASH_FLAGS) || defined(WOLF_CRYPTO_CB))
|
||||
|
||||
printf(testingFmt, "wc_Sha224Free()");
|
||||
wc_Sha224Free(NULL);
|
||||
|
||||
|
||||
printf(resultFmt, flag == 0 ? passed : failed);
|
||||
|
||||
#endif
|
||||
return flag;
|
||||
|
||||
} /* END test_wc_Sha224Free */
|
||||
/*
|
||||
* Unit test function for wc_Sha224GetHash()
|
||||
*/
|
||||
static int test_wc_Sha224GetHash (void)
|
||||
{
|
||||
int flag = 0;
|
||||
#if !defined(NO_SHA224) && \
|
||||
(defined(WOLFSSL_HASH_FLAGS) || defined(WOLF_CRYPTO_CB))
|
||||
wc_Sha224 sha224;
|
||||
byte hash1[WC_SHA224_DIGEST_SIZE];
|
||||
|
||||
printf(testingFmt, "wc_Sha224GetHash()");
|
||||
|
||||
/* Initialize */
|
||||
flag = wc_InitSha224(&sha224);
|
||||
|
||||
if (flag == 0) {
|
||||
flag = wc_Sha224GetHash(&sha224, hash1);
|
||||
}
|
||||
/*test bad arguements*/
|
||||
if (flag == 0) {
|
||||
flag = wc_Sha224GetHash(NULL, NULL);
|
||||
if (flag == BAD_FUNC_ARG) {
|
||||
flag = 0;
|
||||
}
|
||||
}
|
||||
if (flag == 0) {
|
||||
flag = wc_Sha224GetHash(NULL, hash1);
|
||||
if (flag == BAD_FUNC_ARG) {
|
||||
flag = 0;
|
||||
}
|
||||
}
|
||||
if (flag == 0) {
|
||||
flag = wc_Sha224GetHash(&sha224, NULL);
|
||||
if (flag == BAD_FUNC_ARG) {
|
||||
flag = 0;
|
||||
}
|
||||
}
|
||||
|
||||
wc_Sha224Free(&sha224);
|
||||
|
||||
printf(resultFmt, flag == 0 ? passed : failed);
|
||||
|
||||
#endif
|
||||
return flag;
|
||||
|
||||
} /* END test_wc_Sha224GetHash */
|
||||
/*
|
||||
* Unit test function for wc_Sha224Copy()
|
||||
*/
|
||||
static int test_wc_Sha224Copy (void)
|
||||
{
|
||||
int flag = 0;
|
||||
#if !defined(NO_SHA224) && \
|
||||
(defined(WOLFSSL_HASH_FLAGS) || defined(WOLF_CRYPTO_CB))
|
||||
wc_Sha224 sha224;
|
||||
wc_Sha224 temp;
|
||||
|
||||
printf(testingFmt, "wc_Sha224Copy()");
|
||||
|
||||
/* Initialize */
|
||||
flag = wc_InitSha224(&sha224);
|
||||
if (flag == 0) {
|
||||
flag = wc_InitSha224(&temp);
|
||||
}
|
||||
if (flag == 0) {
|
||||
flag = wc_Sha224Copy(&sha224, &temp);
|
||||
}
|
||||
/*test bad arguements*/
|
||||
if (flag == 0) {
|
||||
flag = wc_Sha224Copy(NULL, NULL);
|
||||
if (flag == BAD_FUNC_ARG) {
|
||||
flag = 0;
|
||||
}
|
||||
}
|
||||
if (flag == 0) {
|
||||
flag = wc_Sha224Copy(NULL, &temp);
|
||||
if (flag == BAD_FUNC_ARG) {
|
||||
flag = 0;
|
||||
}
|
||||
}
|
||||
if (flag == 0) {
|
||||
flag = wc_Sha224Copy(&sha224, NULL);
|
||||
if (flag == BAD_FUNC_ARG) {
|
||||
flag = 0;
|
||||
}
|
||||
}
|
||||
|
||||
|
||||
wc_Sha224Free(&sha224);
|
||||
wc_Sha224Free(&temp);
|
||||
|
||||
printf(resultFmt, flag == 0 ? passed : failed);
|
||||
|
||||
#endif
|
||||
return flag;
|
||||
|
||||
} /* END test_wc_Sha224Copy */
|
||||
/*
|
||||
* Testing wc_InitRipeMd()
|
||||
*/
|
||||
@@ -16105,7 +16496,7 @@ static int test_wc_curve25519_export_public_ex (void)
|
||||
if (ret == 0) {
|
||||
|
||||
ret = wc_curve25519_make_key(&rng, CURVE25519_KEYSIZE, &key);
|
||||
if (ret == 0){
|
||||
if (ret == 0) {
|
||||
ret = wc_curve25519_export_public(&key, out, &outLen);
|
||||
}
|
||||
if (ret == 0) {
|
||||
@@ -16177,10 +16568,10 @@ static int test_wc_curve25519_import_private_raw_ex (void)
|
||||
if (ret == 0) {
|
||||
|
||||
ret = wc_curve25519_make_key(&rng, CURVE25519_KEYSIZE, &key);
|
||||
if (ret == 0){
|
||||
if (ret == 0) {
|
||||
ret = wc_curve25519_export_private_raw_ex(&key, priv, &privSz, endian);
|
||||
}
|
||||
if (ret == 0){
|
||||
if (ret == 0) {
|
||||
ret = wc_curve25519_export_public(&key, pub, &pubSz);
|
||||
}
|
||||
if (ret == 0) {
|
||||
@@ -16266,11 +16657,11 @@ static int test_wc_curve25519_import_private (void)
|
||||
if (ret == 0) {
|
||||
|
||||
ret = wc_curve25519_make_key(&rng, CURVE25519_KEYSIZE, &key);
|
||||
if (ret == 0){
|
||||
if (ret == 0) {
|
||||
ret = wc_curve25519_export_private_raw(&key, priv, &privSz);
|
||||
}
|
||||
}
|
||||
if (ret == 0){
|
||||
if (ret == 0) {
|
||||
ret = wc_curve25519_import_private(priv, privSz, &key);
|
||||
}
|
||||
printf(resultFmt, ret == 0 ? passed : failed);
|
||||
@@ -17162,15 +17553,15 @@ static int test_wc_curve448_shared_secret_ex (void)
|
||||
ret = wc_curve448_init(&private_key);
|
||||
if (ret == 0) {
|
||||
ret = wc_InitRng(&rng);
|
||||
if (ret == 0){
|
||||
if (ret == 0) {
|
||||
ret = wc_curve448_make_key(&rng, CURVE448_KEY_SIZE, &private_key);
|
||||
}
|
||||
}
|
||||
if (ret == 0){
|
||||
if (ret == 0) {
|
||||
ret = wc_curve448_init(&public_key);
|
||||
}
|
||||
if (ret == 0) {
|
||||
if (ret == 0){
|
||||
if (ret == 0) {
|
||||
ret = wc_curve448_make_key(&rng, CURVE448_KEY_SIZE, &public_key);
|
||||
}
|
||||
}
|
||||
@@ -17485,10 +17876,10 @@ static int test_wc_curve448_export_key_raw (void)
|
||||
if (ret == 0) {
|
||||
|
||||
ret = wc_curve448_make_key(&rng, CURVE448_KEY_SIZE, &key);
|
||||
if (ret == 0){
|
||||
if (ret == 0) {
|
||||
ret = wc_curve448_export_private_raw(&key, priv, &privSz);
|
||||
}
|
||||
if (ret == 0){
|
||||
if (ret == 0) {
|
||||
ret = wc_curve448_export_public(&key, pub, &pubSz);
|
||||
}
|
||||
if (ret == 0) {
|
||||
@@ -17527,11 +17918,11 @@ static int test_wc_curve448_import_private (void)
|
||||
if (ret == 0) {
|
||||
|
||||
ret = wc_curve448_make_key(&rng, CURVE448_KEY_SIZE, &key);
|
||||
if (ret == 0){
|
||||
if (ret == 0) {
|
||||
ret = wc_curve448_export_private_raw(&key, priv, &privSz);
|
||||
}
|
||||
}
|
||||
if (ret == 0){
|
||||
if (ret == 0) {
|
||||
ret = wc_curve448_import_private(priv, privSz, &key);
|
||||
}
|
||||
printf(resultFmt, ret == 0 ? passed : failed);
|
||||
@@ -25591,6 +25982,18 @@ static void test_wolfSSL_X509_sign(void)
|
||||
XFCLOSE(tmpFile);
|
||||
#endif
|
||||
|
||||
/* test invalid version number */
|
||||
#if defined(OPENSSL_ALL)
|
||||
#ifdef WOLFSSL_ALT_NAMES
|
||||
AssertIntEQ(X509_get_ext_count(x509), 1);
|
||||
#endif
|
||||
AssertIntNE(X509_set_version(x509, 6L), 0);
|
||||
AssertIntGT(X509_sign(x509, priv, EVP_sha256()), 0);
|
||||
|
||||
/* uses ParseCert which fails on bad version number */
|
||||
AssertIntEQ(X509_get_ext_count(x509), SSL_FAILURE);
|
||||
#endif
|
||||
|
||||
#ifndef WOLFSSL_ALT_NAMES
|
||||
/* Valid case - size should be 798 */
|
||||
AssertIntEQ(ret, 798);
|
||||
@@ -34071,6 +34474,11 @@ void ApiTest(void)
|
||||
AssertFalse(test_wc_InitSha256());
|
||||
AssertFalse(test_wc_Sha256Update());
|
||||
AssertFalse(test_wc_Sha256Final());
|
||||
AssertFalse(test_wc_Sha256FinalRaw());
|
||||
AssertFalse(test_wc_Sha256GetFlags());
|
||||
AssertFalse(test_wc_Sha256Free());
|
||||
AssertFalse(test_wc_Sha256GetHash());
|
||||
AssertFalse(test_wc_Sha256Copy());
|
||||
AssertFalse(test_wc_InitSha512());
|
||||
AssertFalse(test_wc_Sha512Update());
|
||||
AssertFalse(test_wc_Sha512Final());
|
||||
@@ -34080,6 +34488,11 @@ void ApiTest(void)
|
||||
AssertFalse(test_wc_InitSha224());
|
||||
AssertFalse(test_wc_Sha224Update());
|
||||
AssertFalse(test_wc_Sha224Final());
|
||||
AssertFalse(test_wc_Sha224SetFlags());
|
||||
AssertFalse(test_wc_Sha224GetFlags());
|
||||
AssertFalse(test_wc_Sha224Free());
|
||||
AssertFalse(test_wc_Sha224GetHash());
|
||||
AssertFalse(test_wc_Sha224Copy());
|
||||
AssertFalse(test_wc_InitBlake2b());
|
||||
AssertFalse(test_wc_InitRipeMd());
|
||||
AssertFalse(test_wc_RipeMdUpdate());
|
||||
|
||||
@@ -8731,3 +8731,7 @@ L_AES_GCM_decrypt_avx2_cmp_tag_done:
|
||||
.size AES_GCM_decrypt_avx2,.-AES_GCM_decrypt_avx2
|
||||
#endif /* __APPLE__ */
|
||||
#endif /* HAVE_INTEL_AVX2 */
|
||||
|
||||
#if defined(__linux__) && defined(__ELF__)
|
||||
.section .note.GNU-stack,"",%progbits
|
||||
#endif
|
||||
|
||||
+11
-1
@@ -841,8 +841,18 @@ static int GetExplicitVersion(const byte* input, word32* inOutIdx, int* version,
|
||||
return ASN_PARSE_E;
|
||||
|
||||
if (tag == (ASN_CONTEXT_SPECIFIC | ASN_CONSTRUCTED)) {
|
||||
int ret;
|
||||
|
||||
*inOutIdx = ++idx; /* skip header */
|
||||
return GetMyVersion(input, inOutIdx, version, maxIdx);
|
||||
ret = GetMyVersion(input, inOutIdx, version, maxIdx);
|
||||
if (ret >= 0) {
|
||||
/* check if version is expected value rfc 5280 4.1 {0, 1, 2} */
|
||||
if (*version > MAX_X509_VERSION || *version < MIN_X509_VERSION) {
|
||||
WOLFSSL_MSG("Unexpected certificate version");
|
||||
ret = ASN_VERSION_E;
|
||||
}
|
||||
}
|
||||
return ret;
|
||||
}
|
||||
|
||||
/* go back as is */
|
||||
|
||||
@@ -1418,3 +1418,7 @@ L_chacha20_avx2_end256:
|
||||
.size chacha_encrypt_avx2,.-chacha_encrypt_avx2
|
||||
#endif /* __APPLE__ */
|
||||
#endif /* HAVE_INTEL_AVX2 */
|
||||
|
||||
#if defined(__linux__) && defined(__ELF__)
|
||||
.section .note.GNU-stack,"",%progbits
|
||||
#endif
|
||||
|
||||
@@ -6,7 +6,7 @@
|
||||
*
|
||||
* wolfSSL is free software; you can redistribute it and/or modify
|
||||
* it under the terms of the GNU General Public License as published by
|
||||
* the Free Software Foundation; either version 3 of the License, or
|
||||
* the Free Software Foundation; either version 2 of the License, or
|
||||
* (at your option) any later version.
|
||||
*
|
||||
* wolfSSL is distributed in the hope that it will be useful,
|
||||
|
||||
@@ -16540,3 +16540,7 @@ _fe_ge_sub_avx2:
|
||||
.size fe_ge_sub_avx2,.-fe_ge_sub_avx2
|
||||
#endif /* __APPLE__ */
|
||||
#endif /* HAVE_INTEL_AVX2 */
|
||||
|
||||
#if defined(__linux__) && defined(__ELF__)
|
||||
.section .note.GNU-stack,"",%progbits
|
||||
#endif
|
||||
|
||||
@@ -1103,3 +1103,7 @@ L_poly1305_avx2_final_cmp_copy:
|
||||
.size poly1305_final_avx2,.-poly1305_final_avx2
|
||||
#endif /* __APPLE__ */
|
||||
#endif /* HAVE_INTEL_AVX2 */
|
||||
|
||||
#if defined(__linux__) && defined(__ELF__)
|
||||
.section .note.GNU-stack,"",%progbits
|
||||
#endif
|
||||
|
||||
@@ -23,7 +23,6 @@
|
||||
* cd ../scripts
|
||||
* ruby ./x25519/x25519.rb arm32 ../wolfssl/wolfcrypt/src/port/arm/armv8-32-curve25519.S
|
||||
*/
|
||||
|
||||
#ifdef WOLFSSL_ARMASM
|
||||
#ifndef __aarch64__
|
||||
.text
|
||||
@@ -6010,3 +6009,7 @@ fe_ge_sub:
|
||||
.size fe_ge_sub,.-fe_ge_sub
|
||||
#endif /* !__aarch64__ */
|
||||
#endif /* WOLFSSL_ARMASM */
|
||||
|
||||
#if defined(__linux__) && defined(__ELF__)
|
||||
.section .note.GNU-stack,"",%progbits
|
||||
#endif
|
||||
|
||||
@@ -23,19 +23,14 @@
|
||||
* cd ../scripts
|
||||
* ruby ./x25519/x25519.rb arm32 ../wolfssl/wolfcrypt/src/port/arm/armv8-32-curve25519.c
|
||||
*/
|
||||
|
||||
#ifdef WOLFSSL_ARMASM
|
||||
#ifndef __aarch64__
|
||||
|
||||
#include <stdint.h>
|
||||
#ifdef HAVE_CONFIG_H
|
||||
#include <config.h>
|
||||
#endif
|
||||
|
||||
#endif /* HAVE_CONFIG_H */
|
||||
#include <wolfssl/wolfcrypt/settings.h>
|
||||
|
||||
#ifdef WOLFSSL_ARMASM
|
||||
#include <wolfssl/wolfcrypt/fe_operations.h>
|
||||
#include <stdint.h>
|
||||
|
||||
void fe_init()
|
||||
{
|
||||
@@ -5577,5 +5572,5 @@ void fe_ge_sub(fe rx, fe ry, fe rz, fe rt, const fe px, const fe py, const fe pz
|
||||
(void)qyminusx;
|
||||
}
|
||||
|
||||
#endif /* WOLFSSL_ARMASM */
|
||||
#endif /* !__aarch64__ */
|
||||
#endif /* WOLFSSL_ARMASM */
|
||||
|
||||
@@ -23,7 +23,6 @@
|
||||
* cd ../scripts
|
||||
* ruby ./sha2/sha512.rb arm32 ../wolfssl/wolfcrypt/src/port/arm/armv8-32-sha512-asm.S
|
||||
*/
|
||||
|
||||
#ifdef WOLFSSL_ARMASM
|
||||
#ifndef __aarch64__
|
||||
#ifdef WOLFSSL_ARMASM_NO_NEON
|
||||
@@ -5333,3 +5332,7 @@ L_sha512_len_neon_start:
|
||||
#endif /* !WOLFSSL_ARMASM_NO_NEON */
|
||||
#endif /* !__aarch64__ */
|
||||
#endif /* WOLFSSL_ARMASM */
|
||||
|
||||
#if defined(__linux__) && defined(__ELF__)
|
||||
.section .note.GNU-stack,"",%progbits
|
||||
#endif
|
||||
|
||||
@@ -23,17 +23,13 @@
|
||||
* cd ../scripts
|
||||
* ruby ./sha2/sha512.rb arm32 ../wolfssl/wolfcrypt/src/port/arm/armv8-32-sha512-asm.c
|
||||
*/
|
||||
|
||||
#ifdef WOLFSSL_ARMASM
|
||||
#ifndef __aarch64__
|
||||
#include <stdint.h>
|
||||
|
||||
#ifdef HAVE_CONFIG_H
|
||||
#include <config.h>
|
||||
#endif
|
||||
|
||||
#endif /* HAVE_CONFIG_H */
|
||||
#include <wolfssl/wolfcrypt/settings.h>
|
||||
|
||||
#ifdef WOLFSSL_ARMASM
|
||||
#include <wolfssl/wolfcrypt/sha512.h>
|
||||
|
||||
#ifdef WOLFSSL_ARMASM_NO_NEON
|
||||
@@ -4779,5 +4775,5 @@ void Transform_Sha512_Len(wc_Sha512* sha512, const byte* data, word32 len)
|
||||
}
|
||||
|
||||
#endif /* !WOLFSSL_ARMASM_NO_NEON */
|
||||
#endif /* WOLFSSL_ARMASM */
|
||||
#endif /* !__aarch64__ */
|
||||
#endif /* WOLFSSL_ARMASM */
|
||||
|
||||
@@ -23,6 +23,7 @@
|
||||
* cd ../scripts
|
||||
* ruby ./x25519/x25519.rb arm64 ../wolfssl/wolfcrypt/src/port/arm/armv8-curve25519.S
|
||||
*/
|
||||
#ifdef WOLFSSL_ARMASM
|
||||
#ifdef __aarch64__
|
||||
.text
|
||||
.align 2
|
||||
@@ -6713,3 +6714,8 @@ fe_ge_sub:
|
||||
ret
|
||||
.size fe_ge_sub,.-fe_ge_sub
|
||||
#endif /* __aarch64__ */
|
||||
#endif /* WOLFSSL_ARMASM */
|
||||
|
||||
#if defined(__linux__) && defined(__ELF__)
|
||||
.section .note.GNU-stack,"",%progbits
|
||||
#endif
|
||||
|
||||
@@ -23,17 +23,14 @@
|
||||
* cd ../scripts
|
||||
* ruby ./x25519/x25519.rb arm64 ../wolfssl/wolfcrypt/src/port/arm/armv8-curve25519.c
|
||||
*/
|
||||
#ifdef WOLFSSL_ARMASM
|
||||
#ifdef __aarch64__
|
||||
#include <stdint.h>
|
||||
#ifdef HAVE_CONFIG_H
|
||||
#include <config.h>
|
||||
#endif
|
||||
|
||||
#endif /* HAVE_CONFIG_H */
|
||||
#include <wolfssl/wolfcrypt/settings.h>
|
||||
|
||||
#ifdef WOLFSSL_ARMASM
|
||||
#include <wolfssl/wolfcrypt/fe_operations.h>
|
||||
#include <stdint.h>
|
||||
|
||||
void fe_init()
|
||||
{
|
||||
@@ -6721,5 +6718,5 @@ void fe_ge_sub(fe rx, fe ry, fe rz, fe rt, const fe px, const fe py, const fe pz
|
||||
(void)qyminusx;
|
||||
}
|
||||
|
||||
#endif /* WOLFSSL_ARMASM */
|
||||
#endif /* __aarch64__ */
|
||||
#endif /* WOLFSSL_ARMASM */
|
||||
|
||||
@@ -23,6 +23,7 @@
|
||||
* cd ../scripts
|
||||
* ruby ./sha2/sha512.rb arm64 ../wolfssl/wolfcrypt/src/port/arm/armv8-sha512-asm.S
|
||||
*/
|
||||
#ifdef WOLFSSL_ARMASM
|
||||
#ifdef __aarch64__
|
||||
.text
|
||||
.section .rodata
|
||||
@@ -1044,3 +1045,8 @@ L_sha512_len_neon_start:
|
||||
ret
|
||||
.size Transform_Sha512_Len,.-Transform_Sha512_Len
|
||||
#endif /* __aarch64__ */
|
||||
#endif /* WOLFSSL_ARMASM */
|
||||
|
||||
#if defined(__linux__) && defined(__ELF__)
|
||||
.section .note.GNU-stack,"",%progbits
|
||||
#endif
|
||||
|
||||
@@ -23,16 +23,13 @@
|
||||
* cd ../scripts
|
||||
* ruby ./sha2/sha512.rb arm64 ../wolfssl/wolfcrypt/src/port/arm/armv8-sha512-asm.c
|
||||
*/
|
||||
#ifdef WOLFSSL_ARMASM
|
||||
#ifdef __aarch64__
|
||||
#include <stdint.h>
|
||||
|
||||
#ifdef HAVE_CONFIG_H
|
||||
#include <config.h>
|
||||
#endif
|
||||
|
||||
#endif /* HAVE_CONFIG_H */
|
||||
#include <wolfssl/wolfcrypt/settings.h>
|
||||
|
||||
#ifdef WOLFSSL_ARMASM
|
||||
#include <wolfssl/wolfcrypt/sha512.h>
|
||||
|
||||
static const uint64_t L_SHA512_transform_neon_len_k[] = {
|
||||
@@ -1037,5 +1034,5 @@ void Transform_Sha512_Len(wc_Sha512* sha512, const byte* data, word32 len)
|
||||
);
|
||||
}
|
||||
|
||||
#endif /* WOLFSSL_ARMASM */
|
||||
#endif /* __aarch64__ */
|
||||
#endif /* WOLFSSL_ARMASM */
|
||||
|
||||
@@ -501,6 +501,8 @@ int wc_PKCS12_PBKDF_ex(byte* output, const byte* passwd, int passLen,
|
||||
if (ret < 0) break;
|
||||
}
|
||||
|
||||
if (ret < 0) break;
|
||||
|
||||
currentLen = min(kLen, (int)u);
|
||||
XMEMCPY(output, Ai, currentLen);
|
||||
output += currentLen;
|
||||
@@ -721,16 +723,22 @@ int wc_scrypt(byte* output, const byte* passwd, int passLen,
|
||||
bSz = 128 * blockSize;
|
||||
blocksSz = bSz * parallel;
|
||||
blocks = (byte*)XMALLOC(blocksSz, NULL, DYNAMIC_TYPE_TMP_BUFFER);
|
||||
if (blocks == NULL)
|
||||
if (blocks == NULL) {
|
||||
ret = MEMORY_E;
|
||||
goto end;
|
||||
}
|
||||
/* Temporary for scryptROMix. */
|
||||
v = (byte*)XMALLOC((1 << cost) * bSz, NULL, DYNAMIC_TYPE_TMP_BUFFER);
|
||||
if (v == NULL)
|
||||
if (v == NULL) {
|
||||
ret = MEMORY_E;
|
||||
goto end;
|
||||
}
|
||||
/* Temporary for scryptBlockMix. */
|
||||
y = (byte*)XMALLOC(blockSize * 128, NULL, DYNAMIC_TYPE_TMP_BUFFER);
|
||||
if (y == NULL)
|
||||
if (y == NULL) {
|
||||
ret = MEMORY_E;
|
||||
goto end;
|
||||
}
|
||||
|
||||
/* Step 1. */
|
||||
ret = wc_PBKDF2(blocks, passwd, passLen, salt, saltLen, 1, blocksSz,
|
||||
|
||||
@@ -22651,3 +22651,7 @@ L_sha256_len_avx2_rorx_done:
|
||||
.size Transform_Sha256_AVX2_RORX_Len,.-Transform_Sha256_AVX2_RORX_Len
|
||||
#endif /* __APPLE__ */
|
||||
#endif /* HAVE_INTEL_AVX2 */
|
||||
|
||||
#if defined(__linux__) && defined(__ELF__)
|
||||
.section .note.GNU-stack,"",%progbits
|
||||
#endif
|
||||
|
||||
@@ -10739,3 +10739,7 @@ L_sha512_len_avx2_rorx_done:
|
||||
.size Transform_Sha512_AVX2_RORX_Len,.-Transform_Sha512_AVX2_RORX_Len
|
||||
#endif /* __APPLE__ */
|
||||
#endif /* HAVE_INTEL_AVX2 */
|
||||
|
||||
#if defined(__linux__) && defined(__ELF__)
|
||||
.section .note.GNU-stack,"",%progbits
|
||||
#endif
|
||||
|
||||
+23
-10
@@ -180,7 +180,8 @@ int sp_read_unsigned_bin(sp_int* a, const byte* in, int inSz)
|
||||
int err = MP_OKAY;
|
||||
int i, j = 0, k;
|
||||
|
||||
if (inSz > SP_INT_DIGITS * (int)sizeof(a->dp[0])) {
|
||||
/* Extra digit added to SP_INT_DIGITS to be used in calculations. */
|
||||
if (inSz > (SP_INT_DIGITS - 1) * (int)sizeof(a->dp[0])) {
|
||||
err = MP_VAL;
|
||||
}
|
||||
|
||||
@@ -592,20 +593,26 @@ int sp_cmp_d(sp_int *a, sp_int_digit d)
|
||||
static int sp_lshb(sp_int* a, int n)
|
||||
{
|
||||
int i;
|
||||
sp_digit v;
|
||||
|
||||
if (n >= SP_WORD_SIZE) {
|
||||
sp_lshd(a, n / SP_WORD_SIZE);
|
||||
n %= SP_WORD_SIZE;
|
||||
}
|
||||
|
||||
if (n != 0) {
|
||||
a->dp[a->used] = 0;
|
||||
for (i = a->used - 1; i >= 0; i--) {
|
||||
if ((n != 0) && (a->used != 0)) {
|
||||
v = a->dp[a->used - 1] >> (SP_WORD_SIZE - n);
|
||||
if (v != 0) {
|
||||
a->dp[a->used] = v;
|
||||
}
|
||||
a->dp[a->used - 1] = a->dp[a->used - 1] << n;
|
||||
for (i = a->used - 2; i >= 0; i--) {
|
||||
a->dp[i+1] |= a->dp[i] >> (SP_WORD_SIZE - n);
|
||||
a->dp[i] = a->dp[i] << n;
|
||||
}
|
||||
if (a->dp[a->used] != 0)
|
||||
if (v != 0) {
|
||||
a->used++;
|
||||
}
|
||||
}
|
||||
|
||||
return MP_OKAY;
|
||||
@@ -986,7 +993,9 @@ int sp_add(sp_int* a, sp_int* b, sp_int* r)
|
||||
r->dp[i] = b->dp[i] + c;
|
||||
c = (b->dp[i] != 0) && (r->dp[i] == 0);
|
||||
}
|
||||
r->dp[i] = c;
|
||||
if (c != 0) {
|
||||
r->dp[i] = c;
|
||||
}
|
||||
r->used = (int)(i + c);
|
||||
|
||||
return MP_OKAY;
|
||||
@@ -1183,7 +1192,8 @@ int sp_mul(sp_int* a, sp_int* b, sp_int* r)
|
||||
sp_int tr[1];
|
||||
#endif
|
||||
|
||||
if (a->used + b->used > SP_INT_DIGITS)
|
||||
/* Need extra digit during calculation. */
|
||||
if (a->used + b->used > (SP_INT_DIGITS - 1))
|
||||
err = MP_VAL;
|
||||
|
||||
#ifdef WOLFSSL_SMALL_STACK
|
||||
@@ -1227,7 +1237,8 @@ static int sp_sqrmod(sp_int* a, sp_int* m, sp_int* r)
|
||||
{
|
||||
int err = MP_OKAY;
|
||||
|
||||
if (a->used * 2 > SP_INT_DIGITS)
|
||||
/* Need extra digit during calculation. */
|
||||
if (a->used * 2 > (SP_INT_DIGITS - 1))
|
||||
err = MP_VAL;
|
||||
|
||||
if (err == MP_OKAY)
|
||||
@@ -1257,7 +1268,8 @@ int sp_mulmod(sp_int* a, sp_int* b, sp_int* m, sp_int* r)
|
||||
sp_int t[1];
|
||||
#endif
|
||||
|
||||
if (a->used + b->used > SP_INT_DIGITS)
|
||||
/* Need extra digit during calculation. */
|
||||
if (a->used + b->used > (SP_INT_DIGITS - 1))
|
||||
err = MP_VAL;
|
||||
|
||||
#ifdef WOLFSSL_SMALL_STACK
|
||||
@@ -1627,7 +1639,8 @@ int sp_exptmod(sp_int* b, sp_int* e, sp_int* m, sp_int* r)
|
||||
sp_set(r, 0);
|
||||
done = 1;
|
||||
}
|
||||
else if (m->used * 2 > SP_INT_DIGITS) {
|
||||
/* Ensure SP integers have space for intermediate values. */
|
||||
else if (m->used * 2 > (SP_INT_DIGITS - 1)) {
|
||||
err = BAD_FUNC_ARG;
|
||||
}
|
||||
|
||||
|
||||
@@ -42865,3 +42865,7 @@ _sp_384_mul_d_avx2_6:
|
||||
#endif /* __APPLE__ */
|
||||
#endif /* HAVE_INTEL_AVX2 */
|
||||
#endif /* WOLFSSL_SP_384 */
|
||||
|
||||
#if defined(__linux__) && defined(__ELF__)
|
||||
.section .note.GNU-stack,"",%progbits
|
||||
#endif
|
||||
|
||||
@@ -6,7 +6,7 @@
|
||||
*
|
||||
* wolfSSL is free software; you can redistribute it and/or modify
|
||||
* it under the terms of the GNU General Public License as published by
|
||||
* the Free Software Foundation; either version 3 of the License, or
|
||||
* the Free Software Foundation; either version 2 of the License, or
|
||||
* (at your option) any later version.
|
||||
*
|
||||
* wolfSSL is distributed in the hope that it will be useful,
|
||||
|
||||
+3
-1
@@ -3156,6 +3156,8 @@ struct WOLFSSL_SESSION {
|
||||
#ifdef OPENSSL_EXTRA
|
||||
byte sessionCtxSz; /* sessionCtx length */
|
||||
byte sessionCtx[ID_LEN]; /* app specific context id */
|
||||
wolfSSL_Mutex refMutex; /* ref count mutex */
|
||||
int refCount; /* reference count */
|
||||
#endif
|
||||
#ifdef WOLFSSL_TLS13
|
||||
word16 namedGroup;
|
||||
@@ -3176,7 +3178,7 @@ struct WOLFSSL_SESSION {
|
||||
byte staticTicket[SESSION_TICKET_LEN];
|
||||
byte isDynamic;
|
||||
#endif
|
||||
#ifdef HAVE_EXT_CACHE
|
||||
#if defined(HAVE_EXT_CACHE) || defined(OPENSSL_EXTRA)
|
||||
byte isAlloced;
|
||||
#endif
|
||||
#ifdef HAVE_EX_DATA
|
||||
|
||||
@@ -302,6 +302,7 @@ typedef STACK_OF(ACCESS_DESCRIPTION) AUTHORITY_INFO_ACCESS;
|
||||
#define SSL_set_connect_state wolfSSL_set_connect_state
|
||||
#define SSL_set_accept_state wolfSSL_set_accept_state
|
||||
#define SSL_session_reused wolfSSL_session_reused
|
||||
#define SSL_SESSION_up_ref wolfSSL_SESSION_up_ref
|
||||
#define SSL_SESSION_dup wolfSSL_SESSION_dup
|
||||
#define SSL_SESSION_free wolfSSL_SESSION_free
|
||||
#define SSL_is_init_finished wolfSSL_is_init_finished
|
||||
|
||||
@@ -1153,7 +1153,9 @@ WOLFSSL_API int wolfSSL_set_session_id_context(WOLFSSL*, const unsigned char*,
|
||||
WOLFSSL_API void wolfSSL_set_connect_state(WOLFSSL*);
|
||||
WOLFSSL_API void wolfSSL_set_accept_state(WOLFSSL*);
|
||||
WOLFSSL_API int wolfSSL_session_reused(WOLFSSL*);
|
||||
WOLFSSL_API int wolfSSL_SESSION_up_ref(WOLFSSL_SESSION* session);
|
||||
WOLFSSL_API WOLFSSL_SESSION* wolfSSL_SESSION_dup(WOLFSSL_SESSION* session);
|
||||
WOLFSSL_API WOLFSSL_SESSION* wolfSSL_SESSION_new(void);
|
||||
WOLFSSL_API void wolfSSL_SESSION_free(WOLFSSL_SESSION* session);
|
||||
WOLFSSL_API int wolfSSL_is_init_finished(WOLFSSL*);
|
||||
|
||||
|
||||
@@ -371,6 +371,8 @@ enum Misc_ASN {
|
||||
TRAILING_ZERO = 1, /* Used for size of zero pad */
|
||||
ASN_TAG_SZ = 1, /* single byte ASN.1 tag */
|
||||
MIN_VERSION_SZ = 3, /* Min bytes needed for GetMyVersion */
|
||||
MAX_X509_VERSION = 3, /* Max X509 version allowed */
|
||||
MIN_X509_VERSION = 0, /* Min X509 version allowed */
|
||||
#if defined(OPENSSL_ALL) || defined(WOLFSSL_MYSQL_COMPATIBLE) || \
|
||||
defined(WOLFSSL_NGINX) || defined(WOLFSSL_HAPROXY) || \
|
||||
defined(OPENSSL_EXTRA) || defined(HAVE_PKCS7)
|
||||
|
||||
@@ -6,7 +6,7 @@
|
||||
*
|
||||
* wolfSSL is free software; you can redistribute it and/or modify
|
||||
* it under the terms of the GNU General Public License as published by
|
||||
* the Free Software Foundation; either version 3 of the License, or
|
||||
* the Free Software Foundation; either version 2 of the License, or
|
||||
* (at your option) any later version.
|
||||
*
|
||||
* wolfSSL is distributed in the hope that it will be useful,
|
||||
|
||||
@@ -6,7 +6,7 @@
|
||||
*
|
||||
* wolfSSL is free software; you can redistribute it and/or modify
|
||||
* it under the terms of the GNU General Public License as published by
|
||||
* the Free Software Foundation; either version 3 of the License, or
|
||||
* the Free Software Foundation; either version 2 of the License, or
|
||||
* (at your option) any later version.
|
||||
*
|
||||
* wolfSSL is distributed in the hope that it will be useful,
|
||||
|
||||
@@ -6,7 +6,7 @@
|
||||
*
|
||||
* wolfSSL is free software; you can redistribute it and/or modify
|
||||
* it under the terms of the GNU General Public License as published by
|
||||
* the Free Software Foundation; either version 3 of the License, or
|
||||
* the Free Software Foundation; either version 2 of the License, or
|
||||
* (at your option) any later version.
|
||||
*
|
||||
* wolfSSL is distributed in the hope that it will be useful,
|
||||
|
||||
Reference in New Issue
Block a user