wolfssl

feedc0de/wolfssl

Fork 0

forked from wolfSSL/wolfssl

Commit Graph

Select branches

Hide Pull Requests

cert-3389

devin-lifeguard/update-rules-d59f9c48

devin/1739556249-pem-hash-algorithm

devin/1739556249-pem-hash-algorithm-fix

devin/1739556249-pem-hash-algorithm-fix2

devin/1739784730-fix-tlsext-constants

devin/1739818351-optimize-test-suite

devin/1739818351-optimize-test-suite-fix

devin/1739917420-rename-kyberkey-to-mlkem

devin/1739920896-esp32-fixes

devin/1740705266-update-mlkemkey-apis

devin/1740757542-null-cipher-evp-update

devin/1740759575-null-cipher-fix

devin/1741319666-remove-qt-guard-add-tests

devin/1741708186-add-cmake-wolfclu

devin/1742172556-aes-xts-tests

devin/1742405136-cipherType-to-string

devin/1742841122-add-dod-pki-oids

devin/1747238512-add-ssl-remove-session

devin/invalid-gentime-crl-test

fixes_with_new_idf

master

nightly-snapshot

pr-8603

remove-arc4

revert-5549-fix_sha256_debug

revert-8277-aarch64_no_crypto

rm_arc4

WCv4-rng-stable

WCv4-stable

WCv4.0-RC1

WCv4.0-RC2

WCv4.0-RC3

WCv4.0-RC4

WCv4.0-RC5

WCv4.0-RC6

WCv4.0-RC7

WCv4.0-RC8

WCv4.0-RC9

WCv5.0-RC10

WCv5.0-RC11

WCv5.0-RC12

WCv5.0-RC2

WCv5.0-RC3

WCv5.0-RC4

WCv5.0-RC5

WCv5.0-RC6

WCv5.0-RC7

WCv5.0-RC8

WCv5.0-RC9

WCv5.2.1-PILOT

WCv5.2.3-ARMv8-PAA

WCv5.2.3-ARMv8-PAA-r2

WCv5.2.3-DHGENPUB

WCv5.2.3-DHGENPUB-r2

WCv5.2.3-STM32-PAA

WCv6.0.0-RC1

WCv6.0.0-RC2

WCv6.0.0-RC3

WCv6.0.0-RC4

WCv6.0.0-RC5

l

list

v0.5

v1.8.8.0

v1.9.0

v2.0.2

v2.0.3

v2.0.6

v2.0.8

v2.0rc1

v2.0rc2

v2.0rc2b

v2.0rc3

v2.1.1

v2.1.2

v2.1.4

v2.2.0

v2.2.1

v2.2.2

v2.3.0

v2.4.0

v2.4.2

v2.4.6

v2.4.7

v2.5.0

v2.5.2

v2.5.2b

v2.6.0

v2.6.2

v2.7.0

v2.7.2

v2.8.0

v2.8.2

v2.8.3

v2.8.4

v2.8.5

v2.8.5a

v2.8.6

v2.9.0

v2.9.1

v2.9.2

v2.9.4

v3.0.0

v3.0.2

v3.1.0

v3.10.0-stable

v3.10.0a

v3.10.2-stable

v3.10.3

v3.10.4

v3.11.0-stable

v3.11.1-tls13-beta

v3.12.0-stable

v3.12.2-stable

v3.13.0-stable

v3.13.2

v3.13.3

v3.14.0-stable

v3.14.0a

v3.14.0b

v3.14.2

v3.14.4

v3.14.5

v3.15.0-stable

v3.15.3-stable

v3.15.5-stable

v3.15.5a

v3.15.6

v3.15.7-stable

v3.15.8

v3.2.0

v3.2.4

v3.2.6

v3.3.0

v3.3.2

v3.3.3

v3.4.0

v3.4.2

v3.4.6

v3.4.8

v3.6.0

v3.6.0b

v3.6.2

v3.6.6

v3.6.8

v3.6.9

v3.6.9b

v3.6.9c

v3.6.9d

v3.69.d

v3.7.0

v3.7.1

v3.7.3

v3.8.0

v3.9.0

v3.9.1

v3.9.10-stable

v3.9.10b

v3.9.6

v3.9.6w

v3.9.8

v4.0.0-stable

v4.1.0-stable

v4.2.0-stable

v4.2.0c

v4.3.0-stable

v4.4.0-stable

v4.5.0-stable

v4.6.0-stable

v4.7.0-stable

v4.7.1r

v4.8.0-stable

v4.8.1-stable

v5.0.0-stable

v5.1.0-stable

v5.1.1-stable

v5.2.0-stable

v5.2.1-stable

v5.2.1-stable-OS_Seed-HdrOnly

v5.3.0-stable

v5.4.0-stable

v5.5.0-stable

v5.5.1-stable

v5.5.2-stable

v5.5.3-stable

v5.5.4-stable

v5.6.0-stable

v5.6.2-stable

v5.6.3-stable

v5.6.4-stable

v5.6.6-stable

v5.7.0-stable

v5.7.2-stable

v5.7.4-stable

v5.7.6-stable

v5.8.0-stable

wolfEntropy1

wolfRand-RC1

wolfRand-RC2

6b9f711de0 DesSetKey refactory to reduce stack usage: --- buffer variable moved to the heap; --- return type changed to int, returning 0 for success; --- chain of dependency updated to propagate the error. Moisés Guimarães 2014-03-28 12:47:22 -03:00
05b132ce1c HMAC fips mode toddouska 2014-03-27 15:43:54 -07:00
7dd265cf2e SHA384 fips mode toddouska 2014-03-27 14:37:37 -07:00
e873d7998b SHA512 fips mode toddouska 2014-03-27 14:03:12 -07:00
74a6916606 remove fips file stubs Chris Conlon 2014-03-27 12:47:38 -06:00
59c1adaf0e version 2.9.2 release v2.9.2 Chris Conlon 2014-03-27 10:35:57 -06:00
4677f2f2c1 fix windows warnings, ignore empty file ones Chris Conlon 2014-03-27 10:09:14 -06:00
62b8abafc5 fix variable shadow warning in asn.c Chris Conlon 2014-03-26 23:43:44 -06:00
9d74775934 add fips file placeholders Chris Conlon 2014-03-26 23:40:07 -06:00
5bbd36c860 update README for 2.9.2 toddouska 2014-03-26 14:47:26 -07:00
7e9be23628 fix item 5 from report by Ivan Fratric of the Google Security Team toddouska 2014-03-26 13:54:16 -07:00
717f3adb47 fix item 9 from report by Ivan Fratric of the Google Security Team toddouska 2014-03-26 13:28:19 -07:00
86ebc48032 fix for item 7 report by Ivan Fratric of the Google Security Team toddouska 2014-03-26 13:16:43 -07:00
23300a201f Merge branch 'master' of github.com:cyassl/cyassl toddouska 2014-03-26 12:15:04 -07:00
43909ac725 fix sslv3 verify mac pad check, item 6 by report from Ivan Fratric of the Google Security Team toddouska 2014-03-26 12:14:18 -07:00
dd61daef70 When saving the signature from a DecodedCert to a CYASSL_X509 only copy the signature if it exists. John Safranek 2014-03-26 12:01:26 -07:00
d5be4c4663 SHA-256 fips mode toddouska 2014-03-25 17:11:15 -07:00
18d178f325 add ShaFinal fips mode toddouska 2014-03-25 16:20:03 -07:00
b41186a6dd Merge branch 'master' of github.com:cyassl/cyassl toddouska 2014-03-25 16:02:12 -07:00
3607db9077 add SHA1 fips mode toddouska 2014-03-25 16:01:17 -07:00
67672171c1 udpate .gitignore, ignore MPLABX generated files Chris Conlon 2014-03-25 16:20:24 -06:00
0d25d6f11d update MCAPI projects to use zlib 1.2.8 Chris Conlon 2014-03-25 16:18:55 -06:00
746fd7d74d increase MCAPI CRYPT_AES_CTX to hold Aes Chris Conlon 2014-03-25 16:16:44 -06:00
73e0ef76f7 fix unclosed MPLABX ifdef Chris Conlon 2014-03-25 15:39:37 -06:00
0fd8ca5409 NO_MAIN_DRIVER for settings toddouska 2014-03-25 14:10:07 -07:00
b6fc109c1d add ecc_ctx_reset() so user can reuse ctx w/o init/free toddouska 2014-03-25 12:48:25 -07:00
43c6ae3691 no C++ comments toddouska 2014-03-25 11:44:00 -07:00
fb6d671629 resolve pull request merge conflict toddouska 2014-03-25 11:39:07 -07:00
8c5d958a8b add Aes SetIV fips mode toddouska 2014-03-24 14:01:36 -07:00
0ea10a4388 add 3DES fips mode toddouska 2014-03-24 13:37:52 -07:00
8889e17489 Merge branch 'master' of github.com:cyassl/cyassl toddouska 2014-03-21 14:50:52 -07:00
9fe9276236 finish fips aes w/ tests toddouska 2014-03-21 14:49:49 -07:00
e19e2a801d Ext Key Usage 1. Store reference to raw EKU OIDs in the DecodedCert. 2. Fixed usage of the anyEKU. John Safranek 2014-03-21 09:37:10 -07:00
08ae775406 Merge branch 'master' of github.com:cyassl/cyassl John Safranek 2014-03-21 09:34:08 -07:00
a0d4c34900 allow snifftest to handle jumbo frames + potential partial 16k record from previous data packet on the stack toddouska 2014-03-20 15:34:20 -07:00
98c6e3f3af have Base16 Decode on for FIPS tests toddouska 2014-03-20 11:38:14 -07:00
c934f6b4b5 linux doesn't suport -o ping, -i 0.2 is more compatible toddouska 2014-03-20 11:05:03 -07:00
ef8458f754 return right away after valid ping response, use TLSv1.2 for google toddouska 2014-03-20 10:37:53 -07:00
0e9f2b5996 Merge branch 'master' of github.com:cyassl/cyassl toddouska 2014-03-20 10:32:50 -07:00
8bc6bf9424 add lower case support to Base16 decode for better known answer test support, export toddouska 2014-03-20 10:31:52 -07:00
1e041abf04 decode Extended Key Usage extension John Safranek 2014-03-20 10:07:47 -07:00
5c41acb6be Merge branch 'master' of github.com:cyassl/cyassl John Safranek 2014-03-19 21:31:15 -07:00
acfa8fb966 Added a test script to perform a client/webserver connection. John Safranek 2014-03-19 21:20:43 -07:00
58885b36eb add AesCbc fips mode toddouska 2014-03-19 16:43:52 -07:00
388436c53e add AesSetKey fips mode toddouska 2014-03-19 13:56:11 -07:00
faecf7f849 require thread local storage for power on self thread check toddouska 2014-03-19 10:19:08 -07:00
be9451fbc5 rm --cahced didn't work to stop tracking toddouska 2014-03-19 09:55:20 -07:00
8bbc30f3e1 add fips enable switch toddouska 2014-03-19 09:43:57 -07:00
90b08761c4 fix benchmark output with 3 decimals toddouska 2014-03-18 12:28:54 -07:00
ac452eebdc in DecodeAltNames, skip unknown name types, don't treat as error John Safranek 2014-03-18 09:24:07 -07:00
1ea620cece Merge branch 'master' of github.com:cyassl/cyassl John Safranek 2014-03-14 16:02:38 -07:00
bcd7f03495 X.509 1. Added stubs for the Extended Key Usage and Inhibit anyPolicy extensions. 2. Key Usage extension is decoded normally. 3. Certificate Policy extension is noted normally. John Safranek 2014-03-14 15:48:33 -07:00
a28d0dd276 add EROAD settings Chris Conlon 2014-03-14 15:54:21 -06:00
5a1d420652 move CyaSSL_dtls() and CyaSSL_get_using_nonblock() out of #ifndef CYASSL_LEANPSK for use of leanPSK with standard I/O Chris Conlon 2014-03-14 15:33:49 -06:00
692cbf111f remove -Wunreachable becuase older clang is buggy and gcc always was when it had it toddouska 2014-03-14 11:47:39 -07:00
4ac70de055 Merge branch 'master' of github.com:cyassl/cyassl toddouska 2014-03-13 18:56:07 -07:00
b56ecd1842 add enable-iopool , simple I/O pool example using memory overrides toddouska 2014-03-13 18:54:51 -07:00
0a5b758de3 Boundaries check for DoCertificate . -- added size in the function parameters; -- BUFFER_ERROR returned in case of message overflow (piece larger than the hello size); -- OPAQUE24_LEN used whenever 3 bytes are needed; -- removed unnecessary variable i; -- Moved BUFFER_E check outside of the while, check against certSz is not needed, in this case the problem is a malformed packet since certSz can never be bigger than listSz. Moisés Guimarães 2014-03-13 19:15:26 -03:00
2d2d1341cf Boundaries check for DoCertificateVerify. -- added size in the function parameters; -- BUFFER_ERROR returned in case of message overflow (piece larger than the hello size); -- ENUM_LEN and OPAQUE8_LEN used whenever 1 byte is needed; -- OPAQUE16_LEN used whenever 2 bytes are needed; -- removed unnecessary variables (signature, sigLen); -- removed unnecessary #ifdef HAVE_ECC. Moisés Guimarães 2014-03-10 16:34:33 -03:00
eba36226dc Boundaries check for DoCertificateRequest. -- added size in the function parameters; -- BUFFER_ERROR returned in case of message overflow (piece larger than the message size); -- OPAQUE16_LEN used where 2 bytes are needed. Moisés Guimarães 2014-03-10 12:44:45 -03:00
7630b1d222 Boundaries check for DoHelloVerifyRequest. -- added size in the function parameters; -- BUFFER_ERROR returned in case of message overflow (piece larger than the message size); -- OPAQUE16_LEN used where 2 bytes are needed. Moisés Guimarães 2014-03-10 12:16:58 -03:00
881de67196 Boundaries check for DoHelloRequest. -- added size and totalSz in the function parameters; -- BUFFER_ERROR returned in case of message overflow (piece larger than the message size); -- INCOMPLETE_DATA returned in case of buffer overflow (piece smaller than the expected size); -- removed unnecessary variable mac; Moisés Guimarães 2014-03-10 11:01:41 -03:00
244e335e81 Boundaries check for DoFinished. -- added size and totalSz in the function parameters; -- BUFFER_ERROR returned in case of message overflow (piece larger than the message size); -- INCOMPLETE_DATA returned in case of buffer overflow (piece smaller than the expected size); -- removed unnecessary variable idx; -- fixed the sniffer to adapt to the changes. Moisés Guimarães 2014-03-04 11:41:18 -03:00
4821b5d5fe Boundaries check for DoCertificateVerify. -- switched from totalSz to size in the function parameters; -- BUFFER_ERROR returned in case of message overflow (piece larger than the hello size); -- ENUM_LEN used whenever 1 byte is needed; -- OPAQUE16_LEN used whenever 2 bytes are needed; -- removed unnecessary variables; -- removed unnecessary #ifdef HAVE_ECC and #ifndef NO_RSA. Moisés Guimarães 2014-03-03 12:38:39 -03:00
cd8e80e391 Merge branch 'master' of github.com:cyassl/cyassl toddouska 2014-03-13 11:37:49 -07:00
2b8ee45a18 change default static buffer size to record header size to prevent memory fragmentation, only adds 8 bytes to SSL toddouska 2014-03-13 11:35:14 -07:00
54bf1f8d94 added new test certificates for failure cases John Safranek 2014-03-13 11:19:54 -07:00
4724c23a05 added critical extension error to error strings John Safranek 2014-03-13 11:15:16 -07:00
1c35e5929a Merge branch 'master' of github.com:cyassl/cyassl John Safranek 2014-03-12 15:41:40 -07:00
dc14fafb2e reversed a change to clear a warning, replaced some tabs John Safranek 2014-03-12 14:32:02 -07:00
dcb39d5554 bug fixes John Safranek 2014-03-12 05:50:37 -07:00
92c31d81f9 X.509 with unsupported critical extensions should be rejected John Safranek 2014-03-11 11:50:45 -07:00
65475fdfe3 Merge branch 'PIC32MZ' of github.com:kojo1/cyassl-test into kojo1-PIC32MZ John Safranek 2014-03-11 09:54:36 -07:00
6f55549fed fixes for Xcode 5.1, clang 503.0.38 stricter with some warnings John Safranek 2014-03-11 09:38:36 -07:00
974abca729 mplabx/benchmark_main.c Takashi Kojo 2014-03-11 13:59:37 +09:00
e02fa2c571 random.c, indentation Takashi Kojo 2014-03-11 13:53:37 +09:00
5dbe391d92 sha256.c, mplabx/test_main.c Takashi Kojo 2014-03-11 13:43:24 +09:00
5a6e2482da Eliminate unused file. Takashi Kojo 2014-03-11 12:00:53 +09:00
6235c949b3 PIC32MZ Takashi Kojo 2014-03-11 11:32:16 +09:00
a9ca608030 Sync with CyaSSL master Takashi Kojo 2014-03-11 11:22:39 +09:00
6463d34fe7 Roll back native LwIP Takashi Kojo 2014-03-11 10:59:09 +09:00
3e41d8cecb Merge branch 'PIC32MZ-HWCrypt' Takashi Kojo 2014-03-11 10:11:36 +09:00
8ea2eec773 Merge https://github.com/cyassl/cyassl Takashi Kojo 2014-03-11 09:55:57 +09:00
a12fe60723 Add AES-Counter to benchmark.c Takashi Kojo 2014-03-10 10:46:40 +09:00
ceb4a8f568 port 0 hack for the API unit test John Safranek 2014-03-09 15:08:18 -07:00
c671f1c663 reverse suite test dependency toddouska 2014-03-07 14:29:37 -08:00
18f60966f4 force make tests to run serially John Safranek 2014-03-06 21:34:33 -08:00
ad93bc3510 Merge branch 'master' of github.com:cyassl/cyassl John Safranek 2014-03-05 13:24:46 -08:00
b0d255ed40 fix IE session tickets, they don't have sessionIDs like Chrome, Safari, and Firefox do toddouska 2014-03-05 13:12:42 -08:00
65dc202356 settings.h for Harmony Takashi Kojo 2014-03-04 22:57:51 +09:00
e5a51ca516 PIC32MZ Crypt Engine Takashi Kojo 2014-03-04 22:10:19 +09:00
f5922255b0 Catching up 2.9.0 Takashi Kojo 2014-03-04 22:09:38 +09:00
f1597c86b1 fix clang -Wconversion except -Wsign-conversion toddouska 2014-03-03 16:46:48 -08:00
1bb09fb97a Added epoch to sequence number for AES-CCM with DTLS encrypt/decrypt. John Safranek 2014-03-03 14:51:57 -08:00
1fd6245600 fix all clang warnings except Wpadded (diagnostic), Wconversion which inludes Wsign-conversion (implicit conversions part of standard) toddouska 2014-03-03 13:27:52 -08:00
c39cdbea54 make sure enable-webserver (HAVE_WEBSERVER) can handle password callbacks as well as opensslextra unless NO_PWDBASED defined toddouska 2014-03-03 12:18:26 -08:00
ec7c79c12e fix a couple more uninitialized variables John Safranek 2014-03-02 18:38:12 -08:00
a50d2e1e21 fix -Wcast-align toddouska 2014-03-02 11:47:43 -08:00
f0f6497526 fix -Wconditional-uninitialized toddouska 2014-03-02 11:11:39 -08:00
7b00374930 fix -Wmissing-variable-declarations toddouska 2014-03-02 11:06:41 -08:00