feedc0de/wolfssl
1
0
Fork 0
forked from wolfSSL/wolfssl
Code Pull Requests Activity

Commit Graph

  • 24ad3f7f3e Merge pull request #473 from toddouska/ecc-timing-fix dgarske 2016-07-08 15:08:58 -07:00
  • acc5389f9a Fixed possible issue with OID pointer returned from "wc_ecc_get_oid" if "HAVE_OID_ENCODING" enabled. Was previously returning static pointer, which was shared for all OID's. Now uses cache for each OID, which also improves performance on subsequent calls to the same OID. David Garske 2016-07-08 14:22:21 -07:00
  • 19db78fc76 Moved the ECC OID's into separate static const array to reduce ecc_sets size. Added "ecc_oid_t" typedef to determine "oid" size based on HAVE_OID_ENCODING option. Reduced the encoded variable size to word16. David Garske 2016-07-08 14:15:54 -07:00
  • 8da8c87fa4 don't include comba includes if FP_SIZE is too small for index toddouska 2016-07-08 12:29:38 -07:00
  • c7318c8576 fix fpecc thread local storage size with clang toddouska 2016-07-08 12:01:52 -07:00
  • 68d66d12d6 fix ecc timming missing variable toddouska 2016-07-08 11:57:24 -07:00
  • 7a1acc7e56 Added TLS support for all SECP and Brainpool curves. Added ECC curve specs for all Brainpool, Koblitz and R2/R3. Adds new "HAVE_ECC_BRAINPOOL", "HAVE_ECC_KOBLITZ", "HAVE_ECC_SECPR2" and "HAVE_ECC_SECPR3" options. ECC refactor to use curve_id in _ex functions. NID and ECC Id's match now. Added ability to encode OID (HAVE_OID_ENCODING), but leave off by default and will use pre-encoded value for best performance. David Garske 2016-07-07 10:59:45 -07:00
  • 0f25ee703d Merge pull request #468 from JacobBarthelmeh/master toddouska 2016-07-06 18:48:18 -07:00
  • 5fbab0e6a7 option to use test.h without gettimeofday Jacob Barthelmeh 2016-06-29 15:38:32 -06:00
  • 00cd0a3146 Merge pull request #471 from dgarske/fixdoubleinit toddouska 2016-06-30 19:32:52 -07:00
  • df87ee810f Merge pull request #469 from cconlon/bug-fixes toddouska 2016-06-30 19:31:58 -07:00
  • 000f1a19e5 Merge pull request #470 from JacobBarthelmeh/Testing toddouska 2016-06-30 19:30:28 -07:00
  • dcdc28e014 Remove double call to "wolfCrypt_Init()" in test.c. Appears to have been added in static memory merge on 6/10. David Garske 2016-06-30 16:51:13 -07:00
  • 8bba628f3f sanity check in function GetInputData and when shrinking buffer Jacob Barthelmeh 2016-06-30 13:42:38 -06:00
  • f194c216c0 Merge pull request #466 from JacobBarthelmeh/mutex toddouska 2016-06-30 12:05:06 -07:00
  • cf522314ce sanity checks Jacob Barthelmeh 2016-06-30 11:41:22 -06:00
  • a2bd4719ee update README with CU bug fix note Chris Conlon 2016-06-29 16:54:25 -06:00
  • 3f36a914da remove cast from enum to int Jacob Barthelmeh 2016-06-29 14:28:36 -06:00
  • c17830e5c7 Merge pull request #467 from dgarske/stdlib_macro_cleanup toddouska 2016-06-29 12:14:09 -07:00
  • 5b3a72d482 Cleanup of stdlib function calls in the wolfSSL library to use our cross-platform "X*" style macros in types.h. David Garske 2016-06-29 11:11:25 -07:00
  • eb072e0344 Merge pull request #463 from JacobBarthelmeh/master toddouska 2016-06-28 14:56:57 -07:00
  • 981cf9cbcb Merge pull request #462 from cconlon/bug-fixes toddouska 2016-06-28 09:58:18 -07:00
  • 0589fe0d39 free ctx in case of InitMutex fail Jacob Barthelmeh 2016-06-28 09:29:28 -06:00
  • 7da797dd4c Merge pull request #464 from wolfSSL/revert-461-bio dgarske 2016-06-27 14:50:50 -07:00
  • f18ff8bfa4 update mysql patch Jacob Barthelmeh 2016-06-27 15:44:52 -06:00
  • ac6635593b Revert "Bio" toddouska 2016-06-27 10:53:34 -07:00
  • 9c7bea46d2 fix out of bounds read in PemToDer with 0 size der buffer, CU #4 Chris Conlon 2016-06-24 14:42:06 -06:00
  • 92e501c8e4 fix possible out of bound read in PemToDer header, CU #3 Chris Conlon 2016-06-24 14:37:45 -06:00
  • 2951e167b5 check return code of PemToDer in wolfSSL_CertManagerVerifyBuffer, CU #2 Chris Conlon 2016-06-24 14:17:52 -06:00
  • 8fac3fffea fix possible out of bounds read in PemToDer, CU #1 Chris Conlon 2016-06-24 13:57:09 -06:00
  • 3a18b057d7 Merge pull request #460 from dgarske/DerBufMemcpyCleanup toddouska 2016-06-24 14:51:30 -07:00
  • fbef3c2523 Merge pull request #461 from JacobBarthelmeh/bio toddouska 2016-06-24 14:50:52 -07:00
  • 49934a5c91 Merge https://github.com/wolfSSL/wolfssl into bio Jacob Barthelmeh 2016-06-24 14:22:14 -06:00
  • d0e832bda9 change file name from compat-wolfssl to compat-wolfcrypt Ludovic FLAMENT 2016-06-24 19:10:39 +02:00
  • 033f308a08 change file name from compat-wolfssl to compat-wolfcrypt Ludovic FLAMENT 2016-06-24 19:00:39 +02:00
  • 19da114c0c Merge pull request #454 from ejohnstown/dtls-version Kaleb Himes 2016-06-24 08:44:55 -07:00
  • 4215182945 fix macro error Ludovic FLAMENT 2016-06-24 13:27:49 +02:00
  • 0c43123a01 Fix BIO based on review Ludovic FLAMENT 2016-06-24 10:54:58 +02:00
  • 379af941a8 Merge pull request #459 from ejohnstown/aes-cmac-fixes JacobBarthelmeh 2016-06-23 22:10:26 -06:00
  • b0f7d819bd Cleanup of DerBuffer duplication that was using memcpy still after refractor and should be direct pointer copy. David Garske 2016-06-23 18:14:22 -07:00
  • ffb537c33f removed dependency on AES-NI for the AES-direct test John Safranek 2016-06-01 15:12:55 -07:00
  • 0d031fcbd7 added parameter checking to Generate and Verify John Safranek 2016-05-29 13:46:27 -07:00
  • 746ae2f4e5 Merge pull request #458 from JacobBarthelmeh/master toddouska 2016-06-23 13:34:39 -07:00
  • 0b91e000bb fix secure renegotiation build Jacob Barthelmeh 2016-06-23 13:10:39 -06:00
  • 02ef518a75 Merge pull request #456 from dgarske/FixEccCompKey toddouska 2016-06-22 14:47:42 -07:00
  • f6bbe845f5 Merge https://github.com/wolfSSL/wolfssl into bio Jacob Barthelmeh 2016-06-22 09:14:53 -06:00
  • 47c1f4e68f Fix possible use of ForceZero with NULL pointer. Improve init of "kb" when small stack disabled, so memset isn't performed twice. David Garske 2016-06-22 07:22:30 -07:00
  • 69db94d668 Fix build error for un-initialized "kb" variable when built with fixed point cache and small stack enabled. David Garske 2016-06-22 07:06:07 -07:00
  • d294dc363e Fix scan-build warning with "redundant redeclaration of 'fp_isprime'". Changed "fp_isprime" and "fp_isprime_ex" to local static only. Also made "fp_gcd", "fp_lcm", and "fp_randprime" static functions. David Garske 2016-06-21 19:35:25 -07:00
  • 1db880b6bf Fixed issue with compressed keys and custom curves. The inLen adjustment for compressed curves was only be done for built-in curves. David Garske 2016-06-21 15:55:17 -07:00
  • dd52af0872 ECC cleanup / fixes. Improvements to ECC with fast math enabled to avoid mp_clear on stack variables. Refactor of ECC failure cleanup (fixes possible mem leaks with small stack enabled). Refactor of "fp_is*" response checks to use FP_YES or FP_NO. Pulled libtom enhancement/cleanup of fp_isprime. Fix for compressed keys import with custom curves (still having some issues though). David Garske 2016-06-21 15:27:51 -07:00
  • aa1a405dd1 Fixes for compressed keys. Fix to fast math "mp_cnt_lsb" to return proper value, which fixes "mp_jacobi", which fixes "mp_sqrtmod_prime", which fixes compressed keys for 224-bit key. Removed workarounds for compressed keys. Added new configure option "--enable-compkey". Fixed issue with normal math and custom curves where "t2" could be free'd and used. Fixed issue with mp_dump in integer.c, with not allocating correctly sized buffer for toradix. David Garske 2016-06-21 14:06:02 -07:00
  • 5fa80a2667 Merge pull request #455 from toddouska/version dgarske 2016-06-20 22:07:18 -07:00
  • f4473edfb1 bump dev version toddouska 2016-06-20 16:20:18 -07:00
  • 335865a5b2 Merge pull request #447 from ejohnstown/dtls-retx toddouska 2016-06-20 15:46:55 -07:00
  • 79e2af8c15 Merge pull request #445 from ejohnstown/dtls-alert toddouska 2016-06-20 15:36:18 -07:00
  • a859cf189d Merge pull request #443 from ejohnstown/new-ccm-suite toddouska 2016-06-20 15:34:55 -07:00
  • 6d520e0da9 hello verify request handshake version number to match server hello version number John Safranek 2016-06-20 11:08:45 -06:00
  • de4448c59b Merge pull request #452 from dgarske/fixeccscanbuildwarning toddouska 2016-06-20 09:09:21 -07:00
  • 3789d9913c Fixes scan-build warning "wolfcrypt/src/ecc.c:2208:6: warning: Use of memory after it is freed". This is due to a rebase issue with static memory changes after the new ECC custom curves changes. The precomp[] is init to NULL at top so cleanup can always be done at end (shouldn't be done in middle). David Garske 2016-06-18 22:35:52 -07:00
  • 9173ecdc04 Merge pull request #450 from dgarske/NidFix toddouska 2016-06-18 16:14:04 -07:00
  • eb1d8d5df6 Fix for NID names on NIST prime 192 and 256 curves. Cleanup of the memcpy/memset in .i files to use portable names. David Garske 2016-06-17 15:59:25 -07:00
  • ffee1eafd9 add test_bio.txt to .getignore Jacob Barthelmeh 2016-06-17 16:20:54 -06:00
  • b8e00a3448 Merge pull request #449 from moisesguimaraes/fix-ocsp-stapling-tests JacobBarthelmeh 2016-06-17 15:16:39 -06:00
  • ea71814518 Merge https://github.com/wolfSSL/wolfssl Jacob Barthelmeh 2016-06-17 13:58:53 -06:00
  • e8c4950a83 Merge pull request #446 from cconlon/cleanup toddouska 2016-06-17 12:57:55 -07:00
  • 4fc07a2e9e Merge pull request #415 from dgarske/customcurve-mathupdate toddouska 2016-06-17 12:56:52 -07:00
  • db7aab5e37 fixes ocsp stapling tests ignoring CRL Moisés Guimarães 2016-06-17 08:19:57 -03:00
  • 16b85cee8f Merge pull request #448 from cconlon/winfix v3.9.6w JacobBarthelmeh 2016-06-16 18:18:32 -06:00
  • a7c7407406 fix windows example echoserver Chris Conlon 2016-06-16 16:39:18 -06:00
  • 6da166d83b Enhancement / cleanup of the "wc_ecc_make_key_ex" API so it can be used with "keysize" or "dp" and allows compatibility with existing "wc_ecc_make_key". Note: "wc_ecc_make_key_ex" was not previously public, so changing it at this point is okay. David Garske 2016-06-16 10:38:15 -07:00
  • d55663eaee Added ECC API's for using custom curves that are not in the "ecc_sets" list. Added wolfCrypt test to validate/demonstrate custom curve using BRAINPOOL256R1. Exposed "wc_ecc_make_key_ex" and added "wc_ecc_import_x963_ex" / "wc_ecc_import_raw_ex" API's that accept "const ecc_set_type*" for custom curve. Internally use "ECC_CUSTOM_IDX" (-1) to define custom curve is used. Added "--enable-ecccustcurves" option to configure.ac. David Garske 2016-06-16 10:09:41 -07:00
  • 69b6ac504f Fixes for ecc heap errors after rebase. David Garske 2016-06-16 06:46:22 -07:00
  • 8f3c56c03f Fix where the last flight was getting retransmit on timeout notification. John Safranek 2016-06-15 18:44:25 -07:00
  • 31908b7263 remove unused protos for wc_Sha384Free and wc_Sha512Free, not impmlemented by ti-hash.c Chris Conlon 2016-06-15 11:34:29 -06:00
  • 3fec69d3f8 remove unused proto for wc_SetCertificatePolicies Chris Conlon 2016-06-15 10:50:41 -06:00
  • 237193fdee Fixed scan-build warning about "len" being used un-initialized in ecc_mul2add. Cleanup of the "mu" variable handling. David Garske 2016-05-11 09:04:59 -07:00
  • 7c5483ba0b Performance improvements in fp_mulmod, fp_submod and fp_submod to handle ALT_ECC_SIZE better. Revert fp_clear to fp_add_d, since it isn't required and slows it down. David Garske 2016-05-10 15:17:40 -07:00
  • 5703e5eadb ECC changes to support custom curves. Added new "WOLFSSL_CUSTOM_CURVES" option to support non-standard ECC curves in ecc_is_point and ecc_projective_dbl_point. Refactor to load and pass curve "a" parameter down through ECC functions. Relocated mp_submod and added mp_addmod. Refactor to pass mp variable directly (not pointer) for montgomery variable. Fix in mp_jacobi to also handle case of a == 0. Cleanup of *_ecc_mulmod and wc_ecc_make_key_ex error handling. Cleanup of ecc_map for handling normal, fast and alt_ecc math for optimization of performance and allowing reduced ecc_size. David Garske 2016-05-10 15:05:11 -07:00
  • bb17bac018 Updated the naming for the ECC curve sets. Additional comments for each curve parameter. David Garske 2016-05-10 15:02:42 -07:00
  • 87c00eb3f3 Math updates from libtom. Fixes in mp_read_radix for to include char 36 and clear the destination before checks. Fix to clear tmp value on fp_sub_d and fp_add_d. Fixes in assembly for x86-32 INNERMUL, PPC32 INNERMUL and PROPCARRY and x86-64 SQRADD. Added mp_isneg. Refactor of mp_iszero, mp_iseven, mp_isodd and mp_isneg to check using MP_YES or MP_NO. Changed fp_read_unsigned_bin "b" arg to const. Removal of the "register" on stack variables to let compiler determine best optimization. David Garske 2016-05-10 14:49:24 -07:00
  • 7a3cb23af9 Merge pull request #444 from JacobBarthelmeh/master v3.9.6 dgarske 2016-06-14 15:51:01 -07:00
  • 35f43f9216 In DTLS, if a mac or decrypt error is detected, just drop the datagram and don't send an alert John Safranek 2016-06-14 14:36:08 -07:00
  • 03de8e3464 prepare for version 3.9.6 Jacob Barthelmeh 2016-06-14 14:35:12 -06:00
  • 2f9c9b9a22 Add cipher suite ECDHE-ECDSA-AES128-CCM 1. Added the usual cipher suite changes for the new suite. 2. Added a build option, WOLFSSL_ALT_TEST_STRINGS, for testing against GnuTLS. It wants to receive strings with newlines. 3. Updated the test configs for the new suite. John Safranek 2016-06-13 14:39:41 -07:00
  • 2752f3f9c9 Merge pull request #442 from toddouska/mcapi-aes dgarske 2016-06-11 12:52:59 -07:00
  • 02985b16ac fix mcapi aes size with heap toddouska 2016-06-11 09:29:20 -07:00
  • a156cedabc Merge pull request #435 from JacobBarthelmeh/staticmemory toddouska 2016-06-10 17:03:49 -07:00
  • 707714dd38 threaded fixes with static memory Jacob Barthelmeh 2016-06-10 15:35:02 -06:00
  • 3d3591a227 typdef gaurd / error out on bad mutex init / handle no maxHa or maxIO set Jacob Barthelmeh 2016-06-10 14:13:27 -06:00
  • cbefaef6bc Merge pull request #440 from toddouska/output-size Chris Conlon 2016-06-10 11:33:31 -06:00
  • 2bda6c6449 16 byte aligned static memory Jacob Barthelmeh 2016-06-10 11:15:54 -06:00
  • 620ea41191 Merge pull request #439 from kaleb-himes/update-cert-buffers Chris Conlon 2016-06-10 10:08:25 -06:00
  • dede05db9e Merge pull request #441 from dgarske/time_base64enc toddouska 2016-06-10 08:47:08 -07:00
  • ea3d1f8e17 extended method function Jacob Barthelmeh 2016-06-09 23:41:51 -06:00
  • b3068ffef5 Added new public "wc_GetTime" API for getting seconds from the asn.c XTIME. Added new "./configure --enable-base64encode" to enable Base64 encoding (now enabled by default for "x86_64"). David Garske 2016-06-09 16:26:39 -07:00
  • 6551c9fcab add getter for max output size toddouska 2016-06-09 14:51:07 -07:00
  • 76d960c4c0 update certificate buffers per github issue #422 kaleb-himes 2016-06-09 13:47:33 -06:00
  • 7943f68f2a run allocation tool on ocsp and check for mallocs Jacob Barthelmeh 2016-06-09 12:03:28 -06:00
  • 367b519407 Merge pull request #424 from kojo1/MDK5 dgarske 2016-06-09 10:47:04 -07:00