wolfssl

feedc0de/wolfssl

Fork 0

forked from wolfSSL/wolfssl

Commit Graph

Select branches

Hide Pull Requests

cert-3389

devin-lifeguard/update-rules-d59f9c48

devin/1739556249-pem-hash-algorithm

devin/1739556249-pem-hash-algorithm-fix

devin/1739556249-pem-hash-algorithm-fix2

devin/1739784730-fix-tlsext-constants

devin/1739818351-optimize-test-suite

devin/1739818351-optimize-test-suite-fix

devin/1739917420-rename-kyberkey-to-mlkem

devin/1739920896-esp32-fixes

devin/1740705266-update-mlkemkey-apis

devin/1740757542-null-cipher-evp-update

devin/1740759575-null-cipher-fix

devin/1741319666-remove-qt-guard-add-tests

devin/1741708186-add-cmake-wolfclu

devin/1742172556-aes-xts-tests

devin/1742405136-cipherType-to-string

devin/1742841122-add-dod-pki-oids

devin/1747238512-add-ssl-remove-session

devin/invalid-gentime-crl-test

fixes_with_new_idf

master

nightly-snapshot

pr-8603

remove-arc4

revert-5549-fix_sha256_debug

revert-8277-aarch64_no_crypto

rm_arc4

WCv4-rng-stable

WCv4-stable

WCv4.0-RC1

WCv4.0-RC2

WCv4.0-RC3

WCv4.0-RC4

WCv4.0-RC5

WCv4.0-RC6

WCv4.0-RC7

WCv4.0-RC8

WCv4.0-RC9

WCv5.0-RC10

WCv5.0-RC11

WCv5.0-RC12

WCv5.0-RC2

WCv5.0-RC3

WCv5.0-RC4

WCv5.0-RC5

WCv5.0-RC6

WCv5.0-RC7

WCv5.0-RC8

WCv5.0-RC9

WCv5.2.1-PILOT

WCv5.2.3-ARMv8-PAA

WCv5.2.3-ARMv8-PAA-r2

WCv5.2.3-DHGENPUB

WCv5.2.3-DHGENPUB-r2

WCv5.2.3-STM32-PAA

WCv6.0.0-RC1

WCv6.0.0-RC2

WCv6.0.0-RC3

WCv6.0.0-RC4

WCv6.0.0-RC5

l

list

v0.5

v1.8.8.0

v1.9.0

v2.0.2

v2.0.3

v2.0.6

v2.0.8

v2.0rc1

v2.0rc2

v2.0rc2b

v2.0rc3

v2.1.1

v2.1.2

v2.1.4

v2.2.0

v2.2.1

v2.2.2

v2.3.0

v2.4.0

v2.4.2

v2.4.6

v2.4.7

v2.5.0

v2.5.2

v2.5.2b

v2.6.0

v2.6.2

v2.7.0

v2.7.2

v2.8.0

v2.8.2

v2.8.3

v2.8.4

v2.8.5

v2.8.5a

v2.8.6

v2.9.0

v2.9.1

v2.9.2

v2.9.4

v3.0.0

v3.0.2

v3.1.0

v3.10.0-stable

v3.10.0a

v3.10.2-stable

v3.10.3

v3.10.4

v3.11.0-stable

v3.11.1-tls13-beta

v3.12.0-stable

v3.12.2-stable

v3.13.0-stable

v3.13.2

v3.13.3

v3.14.0-stable

v3.14.0a

v3.14.0b

v3.14.2

v3.14.4

v3.14.5

v3.15.0-stable

v3.15.3-stable

v3.15.5-stable

v3.15.5a

v3.15.6

v3.15.7-stable

v3.15.8

v3.2.0

v3.2.4

v3.2.6

v3.3.0

v3.3.2

v3.3.3

v3.4.0

v3.4.2

v3.4.6

v3.4.8

v3.6.0

v3.6.0b

v3.6.2

v3.6.6

v3.6.8

v3.6.9

v3.6.9b

v3.6.9c

v3.6.9d

v3.69.d

v3.7.0

v3.7.1

v3.7.3

v3.8.0

v3.9.0

v3.9.1

v3.9.10-stable

v3.9.10b

v3.9.6

v3.9.6w

v3.9.8

v4.0.0-stable

v4.1.0-stable

v4.2.0-stable

v4.2.0c

v4.3.0-stable

v4.4.0-stable

v4.5.0-stable

v4.6.0-stable

v4.7.0-stable

v4.7.1r

v4.8.0-stable

v4.8.1-stable

v5.0.0-stable

v5.1.0-stable

v5.1.1-stable

v5.2.0-stable

v5.2.1-stable

v5.2.1-stable-OS_Seed-HdrOnly

v5.3.0-stable

v5.4.0-stable

v5.5.0-stable

v5.5.1-stable

v5.5.2-stable

v5.5.3-stable

v5.5.4-stable

v5.6.0-stable

v5.6.2-stable

v5.6.3-stable

v5.6.4-stable

v5.6.6-stable

v5.7.0-stable

v5.7.2-stable

v5.7.4-stable

v5.7.6-stable

v5.8.0-stable

wolfEntropy1

wolfRand-RC1

wolfRand-RC2

782cb0e077 Merge branch 'master' of github.com:cyassl/cyassl toddouska 2013-09-06 14:25:51 -07:00
46be3b8508 add fixed point ecc cache, --enable-fpecc, add locking down to crypt level next toddouska 2013-09-06 14:24:31 -07:00
d7a08b1a76 centralizing MAX_DIGEST_SIZE definition in hmac.h Moisés Guimarães 2013-09-06 15:53:22 -03:00
f2c75a9e87 ECDSA signatures need a zero padding for the ASN.1 storage of the R and S values John Safranek 2013-09-05 12:14:30 -07:00
08c9f61f16 add accelerated ecc_proj* and ECC SHAMIR to speed up ecdsa verify toddouska 2013-09-04 13:13:10 -07:00
e93a0640f1 break up huge math into individual parts so can add piece by piece, e.g., ECC256 toddouska 2013-09-03 13:13:13 -07:00
f813182efd release update v2.8.0 toddouska 2013-08-30 12:34:26 -07:00
b9540bf579 check NULL to match docs toddouska 2013-08-29 08:25:14 -07:00
78b8da9949 Initialize the AEAD explicit IV to 0. John Safranek 2013-08-27 10:44:04 -07:00
9764970b8a Added gcov's extensions to gitignore John Safranek 2013-08-27 10:16:16 -07:00
e8fcf35098 add Rsa Public/Private client key exchange callbacks, examples toddouska 2013-08-26 17:14:19 -07:00
f3f80bd66e add Rsa Sign/Verify callbacks, client/server examples toddouska 2013-08-26 16:27:29 -07:00
664c6de5d5 send blank cert on client if TLS instead of TLSv1.2, more accept this now and some even incorrectly require it toddouska 2013-08-26 12:34:39 -07:00
081a3a57d4 move variable declaration before function code John Safranek 2013-08-23 10:26:42 -07:00
33a7a7f762 initialize return variable John Safranek 2013-08-23 10:20:39 -07:00
0002ba4ee8 Merge branch 'master' of github.com:cyassl/cyassl John Safranek 2013-08-23 10:12:17 -07:00
d734c86c72 cleanup build warnings 1. Change CyaSSL_OCSP_set_options() to return SSL_SUCCESS or SSL_FAILURE as int like rest of API. 2. Fix data narrowing warning in file io.c function process_http_response(). 3. Fix global variable shadowed warning in file ssl.c function CyaSSL_GetSessionAtIndex() 4. Fix data narrowing warning in file internal.c functions Encrypt() and Decrypt(). Passed in a word32 size parameter that was provided a word16 and used as a word16. 5. Removed unreachable code from file tls.c function CyaSSL_GetHmacType(). 6. Fix data narrowing warnings in file aes.c functions AesCcmEncrypt() and AesCcmDecrypt(). John Safranek 2013-08-23 10:09:35 -07:00
e98f5f95c2 add public key callbacks for ecc sign/verify, examples toddouska 2013-08-22 18:19:39 -07:00
bc958f5798 C comments only toddouska 2013-08-22 10:35:46 -07:00
64ba0587a3 Merge branch 'master' of github.com:cyassl/cyassl John Safranek 2013-08-21 22:42:15 -07:00
957cf90118 Added function to read certificate from file into CYASSL_X509 buffer. John Safranek 2013-08-21 22:36:43 -07:00
54a2f8b9aa add useratomic DecryptVerify Callbacks, example toddouska 2013-08-21 16:55:34 -07:00
9f07a7dd2b modified SEP X509 functions to behave like the NAME_oneline function John Safranek 2013-08-20 16:47:38 -07:00
442886a207 Added x509 accessors for the SEP build certificate additions. John Safranek 2013-08-17 09:01:15 -07:00
19f7053f1d Merge branch 'master' of github.com:cyassl/cyassl toddouska 2013-08-09 17:28:14 -07:00
65f0e9f6b9 add atomic user macencrypt cb toddouska 2013-08-09 17:27:15 -07:00
840e958ae5 add ecc verify to benchmark toddouska 2013-08-09 17:06:02 -07:00
16db0c234e bump dev version v2.7.2 toddouska 2013-08-06 15:08:05 -07:00
3378f8f25e add DTLS cookie ctx geter toddouska 2013-08-06 15:06:33 -07:00
5c5cee0789 use external CYASSL_MAX_ERROR_SZ for buffer size toddouska 2013-08-06 11:48:00 -07:00
427a421ec5 fix rpm with .pc install, from Brian toddouska 2013-08-06 11:29:37 -07:00
831d9cf640 SEP Profile 1. Changed session index shift values to constants. 2. Added bounds checking when retrieving a session. 3. Added function to retrieve the peer cert chain from a CYASSL_SESSION record. John Safranek 2013-08-02 16:03:41 -07:00
3b4ff94931 add paramter validation to SSL I/O calls toddouska 2013-08-02 12:12:51 -07:00
1357cdb0e4 SEP Profile 1. Add session cache index to CYASSL structure. 2. Add accessor for cache index in CYASSL structure. 3. Add copy function for session cache item. John Safranek 2013-07-28 17:11:22 -07:00
505b1a8a67 fix ecc sign/hash truncation with odd bit sizes when hash length is longer than key size toddouska 2013-07-25 15:59:09 -07:00
55401c13dd Truncated HMAC first part (protocol). Extension processing will be coded later. Moisés Guimarães 2013-07-23 15:42:43 -03:00
14b100fee6 fix savecert with no_skid, gcc warnings toddouska 2013-07-22 14:30:35 -07:00
37a9a7a457 add IOCb Ctx getters toddouska 2013-07-22 11:01:00 -07:00
1b5bc04e4a Merge pull request #47 from kojo1/master toddouska 2013-07-18 08:49:36 -07:00
d04c915227 MKD-ARM proj name fixed kojo 2013-07-18 09:39:20 +09:00
e6c80f0725 RTX aware flag for MDK-ARM projects kojo 2013-07-18 09:25:49 +09:00
5e633ea6fd Merge pull request #45 from kojo1/master toddouska 2013-07-16 18:24:52 -07:00
37c5ba26bf MDK-ARM LCP43xx project fixed kojo 2013-07-17 09:34:06 +09:00
7db3116ae4 update rpm version toddouska 2013-07-11 16:33:27 -07:00
f3a707724b README typo fixes Chris Conlon 2013-07-11 10:17:29 -06:00
43f320d5e2 SEP Extensions 1. Added configure option to enable SEP extensions. 2. Enabled KEEP_PEER_CERT for the SEP configuration. 3. Copy the Certificate Policy extension into the cert as the device type. 4. Copy an other type Alt Name extension into the cert as the hwType and hwSerialNumber, if the alt name has a hardwareModuleName OID. John Safranek 2013-06-25 16:26:53 -07:00
99b6c1d3c3 fix GCC warning toddouska 2013-07-09 09:57:55 -07:00
f9bf003718 allow NULL IVs for CBC mode, same as all zero IV toddouska 2013-07-08 11:52:00 -07:00
b66cb11cb8 Fixed bug in DecodeAltNames() where idx wasn't advanced past the length. John Safranek 2013-07-05 10:10:38 -07:00
705aa0f453 fix user malloc define w/ opensslextra toddouska 2013-07-05 09:42:49 -07:00
226f018829 Fixed memory leak of http buffer in OCSP lookup. John Safranek 2013-07-02 16:29:34 -07:00
b3d99f2d32 only have fastmath on by default on x86_64 toddouska 2013-07-01 12:10:59 -07:00
593e466a44 limiting max_fragment API for client side only. Moisés Guimarães 2013-07-01 10:13:43 -03:00
98e6ad3ee9 add comverge switch for settings toddouska 2013-06-27 10:28:58 -07:00
307c71d9cb add CyaSSL_UnloadCertsKeys to free SSL certs and keys after handshake toddouska 2013-06-27 10:26:04 -07:00
773d0da1bc Fixed issue with the DTLS EmbedReceiveFrom() callback using IPv6. John Safranek 2013-06-26 17:40:21 -07:00
fdb2416e49 Merge branch 'master' of github.com:cyassl/cyassl toddouska 2013-06-26 17:06:49 -07:00
d0c2e9b7a2 switch comverge settings to ecc by default toddouska 2013-06-26 17:05:30 -07:00
29b32e582a DTLS IPv6 Hello Cookie Update 1. Add support for IPv6 addresses when calculating DTLS Cookie. 2. Simplify cookie calculation. John Safranek 2013-06-26 11:21:36 -07:00
0d0fc27e42 Fixed DecodeAuthKeyId fail case not returning. John Safranek 2013-06-26 11:16:17 -07:00
ed82f06382 Merge branch 'master' of github.com:cyassl/cyassl toddouska 2013-06-26 11:05:00 -07:00
60c2388ae7 fix potential NetX packet memory leak toddouska 2013-06-26 11:03:54 -07:00
f3af0124e4 Fixed DecodeAltNames extension falling through to next case. John Safranek 2013-06-25 13:37:43 -07:00
7fd3b8a993 Fixed error string for example server private key file failure. John Safranek 2013-06-25 13:12:47 -07:00
87eb94b7c4 Merge branch 'master' of github.com:cyassl/cyassl toddouska 2013-06-24 14:02:40 -07:00
b51d6f3b8f add NetX default IO context handling toddouska 2013-06-24 14:00:48 -07:00
c3cb9b3b43 add IDE files to distribution toddouska 2013-06-24 12:00:21 -07:00
0c34ecb451 OCSP Updates 1. Add option to example server and client to check the OCSP responder. 2. Add option to example server and client to override the URL to use when checking the OCSP responder. 3. Copy the certificate serial number correctly into OCSP request. Add leading zero only if MS bit is set. 4. Fix responder address used when Auth Info extension is present. 5. Update EmbedOcspLookup callback to better handle the HTTP response and obtain the complete OCSP response. John Safranek 2013-06-20 11:07:54 -07:00
e0a84521c5 Make alert description and level enumerations public. John Safranek 2013-06-21 14:56:42 -07:00
17ab84eb07 Update call to DoAlert() John Safranek 2013-06-14 12:49:56 +03:00
42a0f3500f Update AES-GCM and AES-CCM to use AES-NI 1. Added the assembly functions to do AES-ECB. 2. Updated AesEncrypt and AesDecrypt to use the assembly functions if available. 3. Modified the AES-GCM and AES-CCM key setup functions to use the the AES-NI key setup if availble. 4. Added tests for the AES-ECB encrypt and decrypt. 5. Only include stdio.h for AES when DEBUG_AESNI is enabled 6. If using local key setup, skip using AES-NI for basic Encrypt and Decrypt. John Safranek 2013-05-05 20:55:38 -07:00
affbb3ef27 Merge branch 'master' of https://github.com/cyassl/cyassl Moisés Guimarães 2013-06-19 17:20:48 -03:00
4502716fc4 Merge branch 'master' of https://github.com/cyassl/cyassl Moisés Guimarães 2013-06-19 17:04:43 -03:00
b5ba31501c make stacksize more portable toddouska 2013-06-19 12:56:25 -07:00
25e910a0a9 max fragment length tests and fixes Moisés Guimarães 2013-06-19 16:38:57 -03:00
5f3ee80407 added: - max fragment length extension; - CyaSSL_SNI_GetRequest() to get client's request at server side; - Automated tests for SNI; Moisés Guimarães 2013-06-19 15:45:06 -03:00
85d25798a5 update ntru cert expires dates, update crls while at it, don't turn on skid for crls since openssl/firefox don't use by default and cyassl needs crl extension parsing v2.7.0 toddouska 2013-06-17 14:48:51 -07:00
d02af46256 windows build warning fixes toddouska 2013-06-17 12:26:21 -07:00
a1f25a9299 release 2.7.0 init toddouska 2013-06-17 12:06:37 -07:00
8c70b11528 add newSession flag to SetServerID to do full handshake w/ new session toddouska 2013-06-14 15:29:18 -07:00
7f7c595d10 differentiate between THREADX and RTP_SYS toddouska 2013-06-14 13:45:25 -07:00
9559f09028 warning fixes toddouska 2013-06-13 12:13:46 -07:00
b40c2c0b1f Fixed issue with no_server/no_client optional compile losing two functions John Safranek 2013-06-06 21:59:05 +02:00
33a7d7481d Merge branch 'master' of github.com:cyassl/cyassl toddouska 2013-06-03 14:57:40 -07:00
ae84982777 add STACK_TRAP to track stack use on client, will seqfault if exceed limit to see where use is too high, doesn't work with pthread_create() toddouska 2013-06-03 14:56:37 -07:00
f1d1898ddf Added new option to SNI: CYASSL_SNI_ANSWER_ON_MISMATCH Added new function to SNI API: CyaSSL_SNI_Matched() Moisés Guimarães 2013-06-03 17:55:06 -03:00
cb2082edee changed CYASSL_SNI_ABORT_ON_MISMATCH to CYASSL_SNI_CONTINUE_ON_MISMATCH Moisés Guimarães 2013-06-03 10:04:49 -03:00
4ad91673ca fixed description for filesystem configure option to match default John Safranek 2013-05-31 17:57:08 -07:00
ebd03368c7 for DTLS handshakes, put change cipher spec and finished messages in same datagram John Safranek 2013-05-31 13:48:49 -07:00
79fad81c32 shrinking function names Moisés Guimarães 2013-05-30 15:40:10 -03:00
5c665fe614 Added options to SNI (now it is possible to choose whether or not to abort on a SNI Host Name mismatch) Exposed SNI Type at ssl.h Moisés Guimarães 2013-05-30 15:22:38 -03:00
baa012b1d9 change = to space for user options defines with = value toddouska 2013-05-29 15:03:27 -07:00
b2ef938cbe fix CYASSL_MALLOC_CHECK hard tabs and extra function not needed toddouska 2013-05-29 11:18:16 -07:00
af48800c58 Merge branch 'MDK.STM.LPC' of https://github.com/kojo1/cyassl-test toddouska 2013-05-28 11:59:52 -07:00
2b59554245 fix cipherSuite0 byte in sniffer, so ECC is recognised correctly. Jasper Spaans 2013-05-28 10:56:13 +02:00
cf25dfb16e Config-BARE-METAL default kojo 2013-05-26 14:02:58 +09:00
1680b47ac6 Release for STM/LPC kojo 2013-05-26 12:17:06 +09:00
e4a95342f1 Merging cyassl/master and STM.LPC kojo 2013-05-26 10:05:35 +09:00
9382f74f2e Marging cyassl/master and STM.LPC kojo 2013-05-26 09:47:51 +09:00
4b9c3d3512 Merge remote-tracking branch 'cyassl/master' into STM.LPC kojo 2013-05-26 09:27:06 +09:00