wolfssl

feedc0de/wolfssl

Fork 0

forked from wolfSSL/wolfssl

Commit Graph

Select branches

Hide Pull Requests

cert-3389

devin-lifeguard/update-rules-d59f9c48

devin/1739556249-pem-hash-algorithm

devin/1739556249-pem-hash-algorithm-fix

devin/1739556249-pem-hash-algorithm-fix2

devin/1739784730-fix-tlsext-constants

devin/1739818351-optimize-test-suite

devin/1739818351-optimize-test-suite-fix

devin/1739917420-rename-kyberkey-to-mlkem

devin/1739920896-esp32-fixes

devin/1740705266-update-mlkemkey-apis

devin/1740757542-null-cipher-evp-update

devin/1740759575-null-cipher-fix

devin/1741319666-remove-qt-guard-add-tests

devin/1741708186-add-cmake-wolfclu

devin/1742172556-aes-xts-tests

devin/1742405136-cipherType-to-string

devin/1742841122-add-dod-pki-oids

devin/1747238512-add-ssl-remove-session

devin/invalid-gentime-crl-test

fixes_with_new_idf

master

nightly-snapshot

pr-8603

remove-arc4

revert-5549-fix_sha256_debug

revert-8277-aarch64_no_crypto

rm_arc4

WCv4-rng-stable

WCv4-stable

WCv4.0-RC1

WCv4.0-RC2

WCv4.0-RC3

WCv4.0-RC4

WCv4.0-RC5

WCv4.0-RC6

WCv4.0-RC7

WCv4.0-RC8

WCv4.0-RC9

WCv5.0-RC10

WCv5.0-RC11

WCv5.0-RC12

WCv5.0-RC2

WCv5.0-RC3

WCv5.0-RC4

WCv5.0-RC5

WCv5.0-RC6

WCv5.0-RC7

WCv5.0-RC8

WCv5.0-RC9

WCv5.2.1-PILOT

WCv5.2.3-ARMv8-PAA

WCv5.2.3-ARMv8-PAA-r2

WCv5.2.3-DHGENPUB

WCv5.2.3-DHGENPUB-r2

WCv5.2.3-STM32-PAA

WCv6.0.0-RC1

WCv6.0.0-RC2

WCv6.0.0-RC3

WCv6.0.0-RC4

WCv6.0.0-RC5

l

list

v0.5

v1.8.8.0

v1.9.0

v2.0.2

v2.0.3

v2.0.6

v2.0.8

v2.0rc1

v2.0rc2

v2.0rc2b

v2.0rc3

v2.1.1

v2.1.2

v2.1.4

v2.2.0

v2.2.1

v2.2.2

v2.3.0

v2.4.0

v2.4.2

v2.4.6

v2.4.7

v2.5.0

v2.5.2

v2.5.2b

v2.6.0

v2.6.2

v2.7.0

v2.7.2

v2.8.0

v2.8.2

v2.8.3

v2.8.4

v2.8.5

v2.8.5a

v2.8.6

v2.9.0

v2.9.1

v2.9.2

v2.9.4

v3.0.0

v3.0.2

v3.1.0

v3.10.0-stable

v3.10.0a

v3.10.2-stable

v3.10.3

v3.10.4

v3.11.0-stable

v3.11.1-tls13-beta

v3.12.0-stable

v3.12.2-stable

v3.13.0-stable

v3.13.2

v3.13.3

v3.14.0-stable

v3.14.0a

v3.14.0b

v3.14.2

v3.14.4

v3.14.5

v3.15.0-stable

v3.15.3-stable

v3.15.5-stable

v3.15.5a

v3.15.6

v3.15.7-stable

v3.15.8

v3.2.0

v3.2.4

v3.2.6

v3.3.0

v3.3.2

v3.3.3

v3.4.0

v3.4.2

v3.4.6

v3.4.8

v3.6.0

v3.6.0b

v3.6.2

v3.6.6

v3.6.8

v3.6.9

v3.6.9b

v3.6.9c

v3.6.9d

v3.69.d

v3.7.0

v3.7.1

v3.7.3

v3.8.0

v3.9.0

v3.9.1

v3.9.10-stable

v3.9.10b

v3.9.6

v3.9.6w

v3.9.8

v4.0.0-stable

v4.1.0-stable

v4.2.0-stable

v4.2.0c

v4.3.0-stable

v4.4.0-stable

v4.5.0-stable

v4.6.0-stable

v4.7.0-stable

v4.7.1r

v4.8.0-stable

v4.8.1-stable

v5.0.0-stable

v5.1.0-stable

v5.1.1-stable

v5.2.0-stable

v5.2.1-stable

v5.2.1-stable-OS_Seed-HdrOnly

v5.3.0-stable

v5.4.0-stable

v5.5.0-stable

v5.5.1-stable

v5.5.2-stable

v5.5.3-stable

v5.5.4-stable

v5.6.0-stable

v5.6.2-stable

v5.6.3-stable

v5.6.4-stable

v5.6.6-stable

v5.7.0-stable

v5.7.2-stable

v5.7.4-stable

v5.7.6-stable

v5.8.0-stable

wolfEntropy1

wolfRand-RC1

wolfRand-RC2

9c5ee66c8c fix -Wunused-macros toddouska 2014-03-02 10:59:03 -08:00
c4fd159860 Merge branch 'master' of github.com:cyassl/cyassl toddouska 2014-02-25 14:37:00 -08:00
ac7cb3c8aa add -Wunreachable-code toddouska 2014-02-24 11:15:22 -08:00
d26b3bb445 Boundaries check for DoClientKeyExchange. -- switched from totalSz to size in the function parameters -- BUFFER_ERROR returned in case of message overflow (piece larger than the hello size) -- OPAQUE16_LEN used whenever 2 bytes are needed. Moisés Guimarães 2014-02-24 12:41:50 -03:00
78bab91615 removed duplicated check for INCOMPLETE_DATA added new size enums Moisés Guimarães 2014-02-24 11:26:55 -03:00
76c8146bf1 moving available data length check to DoHandShakeMsgType Moisés Guimarães 2014-02-17 11:33:51 -03:00
95bc954273 Boundaries check for server hello parsing. -- added totalSz to the function parameters -- INCOMPLETE DATA checked only once with hello size against buffer size -- BUFFER_ERROR returned in case of message overflow (piece larger than the hello size) -- OPAQUE16_LEN used whenever 2 bytes are needed. -- Session id checking improved. Moisés Guimarães 2014-02-16 12:15:10 -03:00
c03263ae70 fixing HAVE_MAX_FRAGMENT ifdef Moisés Guimarães 2014-02-16 10:19:40 -03:00
cf2f657036 In AX_HARDEN, delete extra comma when appending no-strict-aliasing. John Safranek 2014-02-21 22:26:10 -08:00
77403c7ee2 Sniffer should ignore MATCH_SUITE_ERRORs when processing old client hello messages. John Safranek 2014-02-21 16:33:47 -08:00
7cd238efd2 tcp-conn-nb.c, fixing stat Takashi Kojo 2014-02-20 16:03:12 +09:00
75864e6e9c Merging into master Takashi Kojo 2014-02-20 15:58:03 +09:00
5d5a8dbabd client.c for LwIP native socket, v0.2 Takashi Kojo 2014-02-20 15:38:35 +09:00
cca013b6d9 client.c for LwIP native socket Takashi Kojo 2014-02-20 13:36:42 +09:00
12a1b2faed more settings toddouska 2014-02-18 17:46:08 -08:00
5421990c80 add ARM to settings toddouska 2014-02-18 17:01:27 -08:00
45859e97bf fix arm thumb mode assembly toddouska 2014-02-18 16:45:43 -08:00
24dcddb216 Update autoconf scripts 1. Add patch to AX_TLS to let it work with AC v2.63. 2. AX_TLS() call needs a no-op in the false case. 3. Move AX_HARDEN call back to its original position. 4. Print CC rather than CC_VERSION in configuration summary. John Safranek 2014-02-17 15:33:07 -08:00
2e69313eb3 Multiple callbacks, fixed initialize ssl->lwipCtx, io.c Takashi Kojo 2014-02-17 17:40:42 +09:00
260c37acec Update autoconf scripts 1. Since AX_HARDEN is called always, moved the few items set in configure for gcc-hardening to AX_HARDEN. 2. Dropped the macros that AX_DEBUG was setting that we haven't been using and aren't using now. John Safranek 2014-02-14 15:59:59 -08:00
85a47b4596 add NO_STDIO_FILESYSTEM to exclude FILE usage from non standard filesystems Chris Conlon 2014-02-14 14:57:43 -07:00
bc3fc658bb move filesystem abstraction to port.h Chris Conlon 2014-02-14 14:46:49 -07:00
7959239fb0 bump dev version v2.9.1 v0.5 toddouska 2014-02-13 15:15:49 -08:00
1a075e3629 use host_cpu instead of target_cpu to determine cpu to run on, target is now only for cross compilation tools toddouska 2014-02-13 09:33:30 -08:00
02858ab40b Merge branch 'master' of github.com:cyassl/cyassl toddouska 2014-02-13 08:54:56 -08:00
757db12917 add to certservice requirements toddouska 2014-02-13 08:53:12 -08:00
a57da7c44b Merge pull request #69 from BrianAker/master John Safranek 2014-02-12 16:23:15 -08:00
cfdb76215b Updates for building rpm. Brian Aker 2014-02-12 13:47:39 -08:00
e3f8b74181 update tyto settings.h Chris Conlon 2014-02-12 14:18:23 -07:00
cf6eaf219a tyto build - add GenerateSeed, exclude ctype.h, test.h Chris Conlon 2014-02-12 13:39:38 -07:00
b6d4f10222 Reenabled examples when building single-threaded. Changed testsuite and unit tests to leave out tests cases that require threading. John Safranek 2014-02-11 18:59:20 -08:00
ba1cbdd8bc When NTRU enabled, testsuite should use NTRU cipher suites for testing. John Safranek 2014-02-11 17:56:59 -08:00
6bc3009544 fix minor configure error for debug builds redux 1. Backed out change from commit 8178acfe. 2. AX_DEBUG calling AX_ADD_AM_MACRO incorrectly. Syntax should be AX_ADD_AM_MACRO( VAR += value ), not AX_ADD_AM_MACRO( value, VAR ). John Safranek 2014-02-11 17:49:19 -08:00
4842538fde Merge branch 'master' of github.com:cyassl/cyassl John Safranek 2014-02-11 14:48:21 -08:00
2ff78b7fda Boundaries check for client hello parsing. -- INCOMPLETE DATA checked only once with hello size against buffer size -- BUFFER_ERROR returned in case of message overflow (piece larger than the hello size) -- OPAQUE16_LEN used whenever 2 bytes are needed. -- Session id checking improved. Moisés Guimarães 2014-02-11 11:24:11 -03:00
1cf884dccc add enable-certservice, ease of use toddouska 2014-02-11 13:08:12 -08:00
8178acfe13 fix minor configure error for debug builds John Safranek 2014-02-11 10:21:16 -08:00
fd44cb056f allow badly reassembled sniffer packets to try on full length vs zero length toddouska 2014-02-10 16:27:44 -08:00
f1c2250652 fix static analysis warning, g++ compile warning v2.9.0 John Safranek 2014-02-07 14:52:44 -08:00
594feec68b v2.9.0 release John Safranek 2014-02-07 12:28:41 -08:00
9a275fbe8b updated CRLs for a year John Safranek 2014-02-07 12:17:01 -08:00
4a0afa19bf Reinitialize the index when processing stored DTLS handshake messages. John Safranek 2014-02-04 07:36:59 -08:00
78b897a07c LwIP, native tcp socket, user sent callback Takashi Kojo 2014-02-04 23:15:34 +09:00
99216c0226 LwIP, native tcp socket, user sent callback Takashi Kojo 2014-02-04 23:14:43 +09:00
1234ec6142 LwIP, native tcp socket, v2.1 Takashi Kojo 2014-02-04 16:49:21 +09:00
15e92f78fb LwIP, native tcp socket, v0.2 Takashi Kojo 2014-02-04 16:44:00 +09:00
23bc584caf LwIP, native TCP socket, ver 2 Takashi Kojo 2014-02-04 16:37:50 +09:00
52e661df05 Clean ups Takashi Kojo 2014-02-04 10:07:01 +09:00
468e26a3a2 fixed error catching on TLSX_EllipticCurve_Parse fixed unsupported curves handling Moisés Guimarães 2014-02-03 21:54:31 -03:00
f669e73c8d Merge branch 'master' of github.com:cyassl/cyassl John Safranek 2014-02-03 14:49:38 -08:00
2758f40a09 For OCSP, when decoding X.509 Auth Info Access record, find the first OCSP responder, rather than only looking at the first item. John Safranek 2014-02-03 14:39:41 -08:00
36b5bf0df1 Renaming Elliptic Curves to Supported Curves for better extension representation and avoid confusion. Moisés Guimarães 2014-02-03 16:11:57 -03:00
459df7a7d2 minor fix Takashi Kojo 2014-02-03 10:44:21 +09:00
e39308f059 Take LwIP native TCP socket into io.c Takashi Kojo 2014-02-03 09:18:48 +09:00
80cf1b20b3 Merge https://github.com/cyassl/cyassl Takashi Kojo 2014-02-03 09:01:50 +09:00
168985ed9f LwIP native TCP Socket Takashi Kojo 2014-02-02 18:09:25 +09:00
51b3b1cb6c fix pkCurveOID c files, doesn't require openssl extra toddouska 2014-02-01 12:14:41 -08:00
c14bc1a45c fix ecc w/o openssl extra toddouska 2014-02-01 11:37:08 -08:00
909b9258d6 Thread safe OCSP. John Safranek 2014-01-31 16:59:13 -08:00
5616450a4b fixed return codes added protection for missing HAVE_TLS_EXTENSIONS Moisés Guimarães 2014-01-30 16:59:29 -03:00
30e2b4aa11 writing curves in the right order. (reverse) improved curve validation. Moisés Guimarães 2014-01-28 16:53:59 -03:00
9490c0dbaf validating curves Moisés Guimarães 2014-01-14 15:39:06 -03:00
de6a537896 exporting pkCurve info to ctx and ssl Moisés Guimarães 2014-01-14 14:20:34 -03:00
70e3d6ddb0 removing missing extensions Moisés Guimarães 2014-01-08 12:15:48 -03:00
afd38d11cd removing unused curve names. Moisés Guimarães 2014-01-08 11:57:57 -03:00
ae6d593096 added curve names extension to all extensions Moisés Guimarães 2014-01-06 10:52:22 -03:00
7d2a6800f7 added Elliptic Curves Extensions implementation and configuration. Moisés Guimarães 2013-08-26 12:44:50 -03:00
179836ad43 added api tests for Elliptic Curves Extensions. Moisés Guimarães 2013-08-26 12:39:27 -03:00
75ae9dc973 added external api for Elliptic Curves Extension. Moisés Guimarães 2013-08-26 12:27:58 -03:00
b2ebfe9004 determine if openssl command line tool available for testing with ocsp, if so, HAVE_OPENSSL_CMD define is set toddouska 2014-01-31 10:37:11 -08:00
07af9913c3 LwIP native TCP Takashi Kojo 2014-01-31 08:49:39 +09:00
e28d256197 CyaSSL master, 2.8.6 Takashi Kojo 2014-01-31 08:44:42 +09:00
12e9309618 fix Windows function name conflict John Safranek 2014-01-28 12:30:01 -08:00
2fe8477679 fix make distcheck John Safranek 2014-01-28 12:22:16 -08:00
631cfbcf27 fix output size check bug John Safranek 2014-01-28 11:57:49 -08:00
42ad70591a prevent XFREE from freeing NULL pointer under Freescale MQX Chris Conlon 2014-01-28 10:28:19 -07:00
60cddecd9c remove mcheck from --enable-debug, not thread safe toddouska 2014-01-27 20:04:14 -08:00
2084e9869d fix pkcs7 leaks with normal math toddouska 2014-01-27 16:29:15 -08:00
e040e0ba7a fix scep 32 v2.8.6 toddouska 2014-01-27 12:50:29 -08:00
cfa9007199 1. Bumped release version in configure.ac. 2. Added enable option for SCEP. Enables prereqs. 3. Added CyaSSL_wolfSCEP() for ac to test for CyaSSL SCEP. John Safranek 2014-01-27 11:35:43 -08:00
c0f9780c70 fix challenge pwd init bug toddouska 2014-01-24 14:08:14 -08:00
21c9eb7b22 fix forgotten leading 0 on SetRsaPublicKey toddouska 2014-01-24 13:58:20 -08:00
5945723d87 linux pkcs7 build fixes toddouska 2014-01-24 13:15:26 -08:00
1dac5d28e3 Allow PKCS7_VerifyDecodedData to have an empty set of SignerInfos. Save first certificate. John Safranek 2014-01-24 12:14:53 -08:00
595fe0b445 Merge branch 'master' of github.com:cyassl/cyassl John Safranek 2014-01-23 21:48:37 -08:00
18365df209 add non block length test case, including test again, to aes ctr toddouska 2014-01-23 15:18:42 -08:00
43199cd573 PKCS7_DecodeEnvelopedData, only do ParseCert once in PKCS7_InitWithCert Chris Conlon 2014-01-23 14:48:18 -07:00
45c05ffd30 add non block size AesCtr support toddouska 2014-01-23 12:34:27 -08:00
0972fbbf9d PKCS7_VerifySignedMessage() decodes more of the message and performs an RSA verify on it. John Safranek 2014-01-23 11:24:50 -08:00
9f8dcccc61 PKCS7_DecodeEnvelopedData, RsaPrivateDecryptInline can return 0 upon error Chris Conlon 2014-01-22 15:26:43 -07:00
38c2373c4f PKCS7_VerifySignedData() also saves pointer to signed data. John Safranek 2014-01-21 22:11:21 -08:00
15f94b2f98 1. Resized sample PKCS7 signed data attribute. 2. Removed unnecessary PKCS7 signed data attribute. John Safranek 2014-01-21 11:45:15 -08:00
8541c2cc97 added renegotiation indication SCSV sending on client hello. Moisés Guimarães 2014-01-21 11:36:06 -03:00
c35a635fd7 Added initial PKCS7_VerifySignedData(). Only saves the first included certificate if available. John Safranek 2014-01-20 15:52:41 -08:00
2187955fe9 Merge branch 'master' of github.com:cyassl/cyassl John Safranek 2014-01-20 10:53:14 -08:00
28f3a2dc21 Added deallocator function for PKCS7 initializer data. John Safranek 2014-01-20 10:51:26 -08:00
ce7fe56de5 adjust next PKCS#7 envelopedData recipient check Chris Conlon 2014-01-20 11:42:45 -07:00
c4eb5642b1 1. Sign the PKCS#7 with a supplied private key, not the single cert's public key. 2. Rename PKCS7 Envelope Data function as PKCS7_EncodeEnvelopedData(). 3. Encode signed data to check input parameters. John Safranek 2014-01-17 14:07:40 -08:00
e9b82d8174 place PKCS#7 IV in AlgoID optional params, resolve merge conflicts Chris Conlon 2014-01-16 17:46:28 -07:00
366f42a91b remove NULL tag from block cipher AlgoId, IV there instead Chris Conlon 2014-01-16 17:45:10 -07:00