David Garske
|
070ca6c34d
|
Fixes to properly support sniffer with secure renegotiation.
|
2021-07-16 14:48:22 -07:00 |
|
David Garske
|
fe77e29ba0
|
Fix for SNI refactor handling of return codes. Fix for possible use of NULL on client array.
|
2021-07-16 11:23:20 -07:00 |
|
David Garske
|
3ff21171cb
|
Fix for secure renegotiation, which was not keeping handshake resources. Added NULL checks for case where handshake resources might be free'd to prevent possible use of NULL. Refactor the SNI client hello processing to not assume TLS header is in prior buffer (not there for decrypted handshake packets).
|
2021-07-14 10:44:33 -07:00 |
|
David Garske
|
db32570ab3
|
Fix for missing sp_radix_size with WC_MP_TO_RADIX.
|
2021-07-12 13:40:55 -07:00 |
|
David Garske
|
e1b487ab9f
|
Fix for wc_export_int with WC_TYPE_HEX_STR, which was not returning the correct length.
|
2021-07-08 14:36:36 -07:00 |
|
David Garske
|
4f055653c7
|
Restore TLS v1.3 hello_retry behavior with session id. Fix for SNI with default (no name) putting newline due to fgets.
|
2021-07-08 13:50:08 -07:00 |
|
David Garske
|
4cb076f22b
|
Cleanup to remove duplicate stat sslResumptionValid. Add print of sslResumptionInserts.
|
2021-07-08 09:49:13 -07:00 |
|
David Garske
|
ddbe0e6dab
|
Fix for sniffer stats on resume miss. The logic for hello_retry_request will no longer try and do resume, so restore BAD_SESSION_RESUME_STR error.
|
2021-07-08 09:31:59 -07:00 |
|
David Garske
|
26789ef877
|
Fix variable declaration mid-code.
|
2021-07-02 13:24:25 -07:00 |
|
David Garske
|
2dd169f9a1
|
Added new sniffer API for callback for key use ssl_SetKeyCallback. Support indicated by WOLFSSL_SNIFFER_KEY_CALLBACK. Trace cleanup for custom error.
|
2021-07-02 12:18:56 -07:00 |
|
David Garske
|
197b959916
|
Merge pull request #4177 from SparkiDev/ecc_exp_point_size
ECC: validate ordinate length before export
|
2021-07-01 17:07:35 -07:00 |
|
David Garske
|
d16e374972
|
Merge pull request #4160 from JacobBarthelmeh/fuzzing
better checking on length of streaming buffer
|
2021-07-01 17:04:49 -07:00 |
|
David Garske
|
43f8c5ba1b
|
Merge pull request #4121 from JacobBarthelmeh/PKCS7
wc_PKCS7_DecodeCompressedData optionally handle a packet without cont…
|
2021-07-01 17:03:56 -07:00 |
|
JacobBarthelmeh
|
9b8142c1ff
|
Merge pull request #4174 from SparkiDev/zephyr_2_6_99
Zephyr Project: update port to work with latest
|
2021-07-02 03:23:10 +07:00 |
|
Daniel Pouzzner
|
e9e41d3344
|
Merge pull request #4070 from elms/fsanitize/undefined_fixes
address errors with `-fsanitize=undefined`
|
2021-07-01 13:00:06 -05:00 |
|
JacobBarthelmeh
|
45486ac904
|
Merge pull request #4166 from miyazakh/supportedversion_ex_mindowngrade
not include smaller versions than minimum downgrade
|
2021-07-01 21:00:20 +07:00 |
|
JacobBarthelmeh
|
7a42096643
|
Merge pull request #4175 from SparkiDev/sp_thumb_clang
SP: Thumb implementaton that works with clang
|
2021-07-01 20:39:06 +07:00 |
|
Sean Parkinson
|
a992480f91
|
ECC: validate ordinate length before export
|
2021-07-01 15:50:04 +10:00 |
|
Elms
|
75e807abc6
|
Fixes for gcc-10 and -fsanitize=undefined for rabbit.c
* One introduced in #4156
* One from previous commit in this PR
|
2021-06-30 22:20:17 -07:00 |
|
Sean Parkinson
|
6694775d4b
|
Changes to compile without XTREAM_ALIGN
Use macro to load 32 bits from input parameters key in hc128.c and input
in rabbit.c
Also fix warning about string copy.
|
2021-06-30 21:58:30 -07:00 |
|
Elms
|
56d879f422
|
address scan-build issues for clang 6 and 10
|
2021-06-30 21:58:30 -07:00 |
|
Elms
|
c9597ea735
|
sha3: align data for Sha3Update
|
2021-06-30 21:58:30 -07:00 |
|
Elms
|
dc7beab784
|
address errors with -fsanitize=undefined
- fix null dereferences or undefined `memcpy` calls
- fix alignment in `myCryptoDevCb`
- fix default dtls context assignment
- add align configure option to force data alignment
TESTED:
`./configure CFLAGS=-fsanitize=undefined\ -DWOLFSSL_GENERAL_ALIGNMENT=1 --enable-all`
|
2021-06-30 21:58:30 -07:00 |
|
David Garske
|
f9cd83743a
|
Fix include.am typo.
|
2021-06-30 08:42:15 -07:00 |
|
David Garske
|
23b573c70a
|
Autoconf Include.am fixes, spelling and copyright.
|
2021-06-30 08:38:17 -07:00 |
|
David Garske
|
c820b5679a
|
Merge pull request #4173 from SparkiDev/sp_int_mingw64
|
2021-06-30 06:57:58 -07:00 |
|
Jacob Barthelmeh
|
893b71e8c1
|
remove dead code
|
2021-06-30 19:54:25 +07:00 |
|
Jacob Barthelmeh
|
23eededc36
|
simplify and fix max stream buffer length
|
2021-06-30 15:26:44 +07:00 |
|
Hideki Miyazaki
|
b0688688c1
|
addressed review comments
|
2021-06-30 13:52:46 +09:00 |
|
Sean Parkinson
|
60a520c525
|
SP: Thumb implementaton that works with clang
|
2021-06-30 13:10:29 +10:00 |
|
Sean Parkinson
|
d1fb736136
|
Zephyr Project: update port to work with latest
|
2021-06-30 10:29:54 +10:00 |
|
Sean Parkinson
|
36d534034c
|
SP math: cast number to sp_digit rather than declare as long
|
2021-06-30 09:28:51 +10:00 |
|
David Garske
|
ae68de060a
|
Merge pull request #4171 from SparkiDev/sp_small_fast_modexp
SP: allow fast mod_exp to be compiled for small C code
|
2021-06-29 13:32:55 -07:00 |
|
David Garske
|
0d1672dfee
|
Merge pull request #4170 from SparkiDev/sp_mingw64
SP: Don't cast number to sp_digit rather than declare as long
|
2021-06-29 13:32:28 -07:00 |
|
Chris Conlon
|
9179071af5
|
Merge pull request #4153 from JacobBarthelmeh/Testing
fix for keyid with ktri cms
|
2021-06-29 11:40:00 -06:00 |
|
David Garske
|
e59cc79a1f
|
Document new WOLFSSL_SP_FAST_MODEXP option.
|
2021-06-29 09:16:27 -07:00 |
|
David Garske
|
a748b5264e
|
Fix for wolfcrypt/src/sp_int.c:2720:34: error: left shift count >= width of type with mingw64.
|
2021-06-29 09:13:32 -07:00 |
|
David Garske
|
b0e9531f26
|
Merge pull request #4169 from SparkiDev/dh_anon_tls12
TLS: Get DH anon working TLS 1.2 and below
|
2021-06-29 08:53:44 -07:00 |
|
Sean Parkinson
|
303f944935
|
SP: allow fast mod_exp to be compiled for small C code
|
2021-06-29 12:51:21 +10:00 |
|
Sean Parkinson
|
08e560e0a7
|
SP: Don't cast number to sp_digit rather than declare as long
mingw64 has numbers as 32-bit type when declarted long.
Fixup some line lengths.
|
2021-06-29 11:07:47 +10:00 |
|
Sean Parkinson
|
f56bf3d8ee
|
TLS: Get DH anon working TLS 1.2 and below
Send the server DH parameters in ServerKeyExchange.
./configure '--enable-anon' '--disable-rsa' '--enable-oldtls'
|
2021-06-29 10:29:39 +10:00 |
|
David Garske
|
0bb66f3023
|
Merge pull request #4167 from danielinux/pka_readme
port/st: added mention of the PKA support in README
|
2021-06-28 10:35:32 -07:00 |
|
Eric Blankenhorn
|
33174cec5c
|
Merge pull request #4161 from dgarske/ssl_doxy
Added inline documentation for `wolfSSL_CTX_load_verify_buffer_ex`
|
2021-06-28 12:35:11 -05:00 |
|
Daniele Lacamera
|
15080317ce
|
port/st: added mention of the PKA support in README
|
2021-06-28 14:39:58 +02:00 |
|
David Garske
|
80480e5d1f
|
Merge pull request #4163 from lealem47/rsa-test
Rsa test
|
2021-06-25 13:12:58 -07:00 |
|
David Garske
|
5adbcfb3be
|
Merge pull request #4151 from SparkiDev/sp_math_all_base10
SP math all: fix read radix 10
|
2021-06-25 09:37:05 -07:00 |
|
David Garske
|
63ad5d58a2
|
Merge pull request #4162 from ejohnstown/abi-update
ABI Update
|
2021-06-25 08:36:07 -07:00 |
|
John Safranek
|
5437883da7
|
Merge pull request #4164 from dgarske/async_frag
Fix for async with fragmented packets
|
2021-06-25 08:33:50 -07:00 |
|
David Garske
|
74b9b5a8cd
|
Merge pull request #4156 from SparkiDev/regression_fixes_1
Regression test fixes
|
2021-06-25 07:48:02 -07:00 |
|
Lealem Amedie
|
729fea6b71
|
unused variable fix in rsa_oaep_padding_test fix
|
2021-06-25 08:39:44 -06:00 |
|