wolfssl

Author	SHA1	Message	Date
toddouska	4104b74c40	fix resource leak on bad user cert chain big buffer	2014-05-02 10:30:07 -07:00
John Safranek	fb5200aa95	1. Added more options to the full commit test. 2. Cleanups from static analysis.	2014-04-30 15:01:10 -07:00
John Safranek	09a7a087a2	fix static analysis warnings	2014-04-29 14:52:42 -07:00
John Safranek	618d282d94	Decodes the Name Constraints certificate extension on the CA cert and checks the names on the peer cert, rejecting it if invalid based on the name.	2014-04-28 11:03:24 -07:00
Moisés Guimarães	8d8fca67c3	SHA256, SHA384 and SHA512 error propagation. Major impact on random functions with error propagation.	2014-04-14 21:39:14 -03:00
Moisés Guimarães	32e2d7016f	SHA256, SHA384 and SHA512 error propagation. Major impact on Hmac functions with error propagation.	2014-04-14 21:36:04 -03:00
Moisés Guimarães	644bb9c524	SHA256, SHA384 and SHA512 error propagation. Minor impact on some of internal.c static functions.	2014-04-14 21:28:23 -03:00
Chris Conlon	be65f5d518	update FSF address, wolfSSL copyright	2014-04-11 15:58:58 -06:00
John Safranek	421c08fc61	Merge branch 'frankencert'	2014-04-11 10:01:03 -07:00
John Safranek	e79ce42ef4	Added checking of the key usage and extended key usage extensions in the certificates.	2014-04-10 16:50:14 -07:00
toddouska	1863af0762	remove CYASSL_MSG undef	2014-04-04 15:13:44 -07:00
toddouska	562b017776	user settings, custom rand gen, by tyto diff	2014-04-04 15:10:08 -07:00
toddouska	c210600d93	RSA fips mode	2014-04-01 13:08:48 -07:00
toddouska	4ba587b18a	Merge branch 'master' of github.com:cyassl/cyassl	2014-04-01 12:06:48 -07:00
John Safranek	b5a27b0f41	Add compile flag to disable Cert Sign key usage flag check.	2014-03-28 11:21:07 -07:00
John Safranek	4b22986e74	Check for Certificate Sign key usage bit on intermediate CAs.	2014-03-28 10:10:22 -07:00
Moisés Guimarães	6b9f711de0	DesSetKey refactory to reduce stack usage: --- buffer variable moved to the heap; --- return type changed to int, returning 0 for success; --- chain of dependency updated to propagate the error.	2014-03-28 12:59:39 -03:00
toddouska	05b132ce1c	HMAC fips mode	2014-03-27 15:43:54 -07:00
toddouska	7dd265cf2e	SHA384 fips mode	2014-03-27 14:37:37 -07:00
toddouska	e873d7998b	SHA512 fips mode	2014-03-27 14:03:12 -07:00
toddouska	d5be4c4663	SHA-256 fips mode	2014-03-25 17:11:15 -07:00
toddouska	b41186a6dd	Merge branch 'master' of github.com:cyassl/cyassl	2014-03-25 16:02:12 -07:00
toddouska	3607db9077	add SHA1 fips mode	2014-03-25 16:01:17 -07:00
toddouska	fb6d671629	resolve pull request merge conflict	2014-03-25 11:39:07 -07:00
toddouska	8c5d958a8b	add Aes SetIV fips mode	2014-03-24 14:01:36 -07:00
toddouska	0ea10a4388	add 3DES fips mode	2014-03-24 13:37:52 -07:00
toddouska	388436c53e	add AesSetKey fips mode	2014-03-19 13:56:11 -07:00
Chris Conlon	5a1d420652	move CyaSSL_dtls() and CyaSSL_get_using_nonblock() out of #ifndef CYASSL_LEANPSK for use of leanPSK with standard I/O	2014-03-14 15:33:49 -06:00
John Safranek	65475fdfe3	Merge branch 'PIC32MZ' of github.com:kojo1/cyassl-test into kojo1-PIC32MZ Conflicts: ctaocrypt/benchmark/benchmark.c	2014-03-11 09:54:36 -07:00
John Safranek	6f55549fed	fixes for Xcode 5.1, clang 503.0.38 stricter with some warnings	2014-03-11 09:38:36 -07:00
Takashi Kojo	6235c949b3	PIC32MZ	2014-03-11 11:32:16 +09:00
Takashi Kojo	a9ca608030	Sync with CyaSSL master	2014-03-11 11:22:39 +09:00
Takashi Kojo	3e41d8cecb	Merge branch 'PIC32MZ-HWCrypt' Conflicts: configure.ac ctaocrypt/benchmark/benchmark.c ctaocrypt/src/asn.c ctaocrypt/src/coding.c ctaocrypt/src/des3.c ctaocrypt/src/md5.c ctaocrypt/src/random.c ctaocrypt/src/sha.c ctaocrypt/src/sha256.c cyassl/ctaocrypt/aes.h cyassl/ctaocrypt/settings.h cyassl/ssl.h cyassl/version.h examples/server/server.c m4/ax_debug.m4 m4/ax_tls.m4 mplabx/benchmark_main.c mplabx/ctaocrypt_test.X/nbproject/configurations.xml mplabx/test_main.c src/io.c src/ocsp.c src/ssl.c src/tls.c testsuite/testsuite.c	2014-03-11 10:11:36 +09:00
Takashi Kojo	f5922255b0	Catching up 2.9.0	2014-03-04 22:09:38 +09:00
toddouska	c39cdbea54	make sure enable-webserver (HAVE_WEBSERVER) can handle password callbacks as well as opensslextra unless NO_PWDBASED defined	2014-03-03 12:18:26 -08:00
toddouska	9c5ee66c8c	fix -Wunused-macros	2014-03-02 10:59:03 -08:00
Chris Conlon	85a47b4596	add NO_STDIO_FILESYSTEM to exclude FILE usage from non standard filesystems	2014-02-14 14:57:43 -07:00
Chris Conlon	bc3fc658bb	move filesystem abstraction to port.h	2014-02-14 14:46:49 -07:00
toddouska	1cf884dccc	add enable-certservice, ease of use	2014-02-11 13:08:12 -08:00
Moisés Guimarães	468e26a3a2	fixed error catching on TLSX_EllipticCurve_Parse fixed unsupported curves handling	2014-02-03 21:54:31 -03:00
Moisés Guimarães	36b5bf0df1	Renaming Elliptic Curves to Supported Curves for better extension representation and avoid confusion.	2014-02-03 16:14:35 -03:00
Moisés Guimarães	de6a537896	exporting pkCurve info to ctx and ssl	2014-01-31 16:52:14 -03:00
Moisés Guimarães	75ae9dc973	added external api for Elliptic Curves Extension.	2014-01-31 16:52:13 -03:00
John Safranek	cfa9007199	1. Bumped release version in configure.ac. 2. Added enable option for SCEP. Enables prereqs. 3. Added CyaSSL_wolfSCEP() for ac to test for CyaSSL SCEP.	2014-01-27 11:35:43 -08:00
toddouska	8a1971d52b	add CyaSSL_CertPemToDer for certs, ca certs, and cert reqs	2014-01-14 15:13:43 -08:00
John Safranek	d46c68ba10	Moved OCSP into the CertManager like the CRL.	2013-12-27 12:11:47 -08:00
John Safranek	4ce2e59adf	For Atomic user: 1. Added a getter for the session's IV size. 2. The HMAC size getter should return 0 for AEAD ciphers and the hash length for the others.	2013-12-23 22:32:08 -08:00
Chris Conlon	64912b37f6	adjust key buffer length when using ToTraditional() or ToTraditionalEnc()	2013-12-23 14:07:58 -07:00
toddouska	29c41da818	do size check on user password input	2013-12-23 12:24:03 -08:00
toddouska	3c706b4645	only set up tmp ctx if using password	2013-12-23 12:15:55 -08:00

1 2 3 4 5 ...

357 Commits