wolfSSL/wolfssl
1
0
Fork 1
mirror of https://github.com/wolfSSL/wolfssl.git synced 2026-02-04 02:45:04 +01:00
Code Issues Packages Projects Releases Wiki Activity
11,174 Commits 12 Branches 184 Tags
314ff1137b0f16ad7dba50bc71febf20beb96892
Commit Graph

1720 Commits

Author SHA1 Message Date
Stanislav Klima
e19334266e This function is required by HAVE_PK_CALLBACKS option and it's used by server as well. 2020-04-15 14:43:12 +02:00
toddouska
f97a56b9ce Merge pull request #2905 from ejohnstown/dtls-fuzz 
DTLS Fuzz Fix
 2020-04-14 14:19:09 -07:00
John Safranek
70d03f3ba0 DTLS Fuzz Fix 
Only save a next epoch message if it is in the next epoch, not any future epoch.
 2020-04-14 10:13:37 -07:00
toddouska
ee0289bea6 Merge pull request #2825 from julek-wolfssl/self-include-options 
OpenVPN changes
 2020-04-13 13:11:18 -07:00
toddouska
cf8459e518 Merge pull request #2892 from SparkiDev/cppcheck_fixes_4 
Fixes from cppcheck
 2020-04-09 16:01:11 -07:00
Sean Parkinson
7001599782 Another place where TLS 1.3 capable check is required 2020-04-08 11:36:47 +10:00
Sean Parkinson
411aee6e05 Fixes from cppcheck 
Added PRIVATE_D version of rsa private key operation for SP
implementation for specific platforms.
WC_NO_RNG results in warnings when RNG calls don't do anything.
Added ifdef checks for variables not used otherwise.
Remove superfluous if statements like when checking ret == 0.
Change names of globals that are generic and are used locally before
global definition.
Remove definition of variable len that isn't used except as a
replacement for sz which is parameter.
Don't subtract two variables when one has just been assigned the value
of the other.
Fix shifting of signed value.
Fix parameter checking in aes.c and des3.c for platform specific code.
 2020-04-08 09:46:22 +10:00
toddouska
6e8d3f224d Merge pull request #2888 from SparkiDev/tls13_down_rand 
Fix downgrade fixed random to match spec
 2020-04-07 14:22:07 -07:00
toddouska
b6f98a3cde Merge pull request #2886 from kaleb-himes/ZD10106 
Avoid leak when HAVE_AESGCM and NO_AES_DECRYPT. Thanks to G.G. on ZD …
 2020-04-07 14:13:43 -07:00
toddouska
c002df4cce Merge pull request #2879 from ejohnstown/dtls-fix 
DTLS Fix
 2020-04-07 13:07:30 -07:00
Sean Parkinson
e6affa386f Fix downgrade fixed random to match spec 2020-04-07 09:42:08 +10:00
kaleb-himes
4ec0591e45 Avoid leak when HAVE_AESGCM and NO_AES_DECRYPT. Thanks to G.G. on ZD #10106 for the report 2020-04-06 09:43:24 -06:00
Juliusz Sosinowicz
06f23223e4 Allow wolfSSL to include options.h with EXTERNAL_OPTS_OPENVPN header 2020-04-06 15:06:15 +02:00
Sean Parkinson
c48ea3f567 When picking hash alg for ECC certs use key size 2020-04-02 11:53:35 +10:00
John Safranek
04dcb8f774 DTLS Fix 
If the finished message (well, next epoch handshake message) is received,
store it. Process it after a change cipher spec message.
 2020-04-01 17:17:51 -07:00
Sean Parkinson
e17e064ce2 Allow setting of MTU in DTLS 2020-03-18 12:36:11 +10:00
toddouska
bcc720ef68 Merge pull request #2773 from SKlimaRA/master 
Coverity issues fixes.
 2020-03-13 10:20:45 -07:00
Sean Parkinson
6fcfde0651 Fix to show the FFDHE group when negotiated 2020-03-05 12:37:49 +10:00
toddouska
9f6cf8a154 Merge pull request #2834 from dgarske/various_tls 
Fix for TLS server with TLSv1.2 or less `wolfSSL_get_curve_name`
 2020-03-04 16:24:28 -08:00
toddouska
9b54af199c Merge pull request #2822 from dgarske/notime_openssl 
Fixes for building NO_ASN_TIME with OPENSSL_EXTRA
 2020-03-04 16:22:18 -08:00
David Garske
c5b4fe1283 Fix for namedGroup missing. 2020-03-03 15:35:56 -08:00
David Garske
730c95cf38 Fix for TLS server incorrectly showing "FFDHE_2048" for "SSL curve name is" when using ECDHE and TLS v1.2 or less. The PickHashSigAlgo should be resetting ssl->namedGroup to indicate a named group was not used. 2020-03-03 09:20:58 -08:00
John Safranek
127e304901 DTLS Fix 
An endpoint's retransmit pool was being reset when receiving its peer's
change cipher spec message. When the finished message was lost, and
retransmits need to happen, they weren't available, so nothing happened.
Moved the reset to the finished case rather than CCS.
 2020-03-01 16:43:10 -08:00
Sean Parkinson
8cccb9008b Change to work for other TLS versions 
Send alert when client doesn't send a certificate on request.
 2020-03-02 08:50:57 +10:00
Sean Parkinson
6334dd9cb0 Allow mutual authentication to be required for TLS 1.3 2020-03-02 08:50:57 +10:00
David Garske
92114fef75 Fixes for building NO_ASN_TIME with OPENSSL_EXTRA. Fixes #2820. 
* `./configure --enable-opensslextra CFLAGS="-DNO_ASN_TIME"`
 2020-02-28 09:35:17 -08:00
Sean Parkinson
2c6eb7cb39 Add Curve448, X448, Ed448 implementations 2020-02-28 09:30:45 +10:00
Juliusz Sosinowicz
e6547c75cd Reimplement external data as it was before: a fixed size vector. This makes external data implementation easier as it doesn't require allocation or cleanup. Only zeroing the entire structure that it is in (which happens in all structures anyway) and then calling the appropriate getter and setter functions to manipulate external data. 2020-02-18 21:37:06 +01:00
toddouska
651ffe2c12 Merge pull request #2789 from JacobBarthelmeh/SanityChecks 
fix return with error on process peer cert
 2020-02-17 11:44:02 -08:00
toddouska
44c327ee14 Merge pull request #2795 from SparkiDev/tls13_secret_cb 
Call secret callback when TLS 1.3 secrets generated
 2020-02-17 11:41:16 -08:00
Sean Parkinson
614e675a00 Call secret callback when TLS 1.3 secrets generated 2020-02-14 08:42:47 +10:00
toddouska
b038e2e8f0 Merge pull request #2771 from JacobBarthelmeh/Windows 
change public Timeval to WOLFSSL_TIMEVAL
 2020-02-13 09:38:42 -08:00
Chris Conlon
61221742b7 Merge pull request #2734 from aaronjense/renesas-ra-port 
Renesas RA e2studio projects for Client, Server, Test and Benchmark
 2020-02-10 14:49:03 -07:00
Jacob Barthelmeh
17bedbac67 fix return with error on process peer cert 2020-02-06 11:53:42 -07:00
Sean Parkinson
55ea2facdd Changes to clear issues raised by cppcheck 2020-01-30 14:24:32 +10:00
Stanislav Klima
37386f5fb5 NULL dereference. 2020-01-29 17:34:19 +01:00
Jacob Barthelmeh
a9e9120fa0 change public Timeval to WOLFSSL_TIMEVAL 2020-01-28 17:11:46 -07:00
Aaron Jense
91a9117e1b Renesas RA e2studio projects for Client, Server, Test and Benchmark 2020-01-27 13:22:32 -07:00
David Garske
7707234901 Merge pull request #2743 from JacobBarthelmeh/Compatibility-Layer 
adjust set1 curves list function for TLS extension sent
 2020-01-20 16:19:55 -08:00
Jacob Barthelmeh
c581c56999 update return value of local GetCurveByOID 2020-01-20 10:40:56 -07:00
toddouska
66daac4c94 Merge pull request #2709 from JacobBarthelmeh/Testing 
set chacha20 similar to aes-ctr when handling leftover stream and add…
 2020-01-17 15:05:24 -08:00
Jacob Barthelmeh
c5932a9874 account for leantls and selftest builds 2020-01-17 13:32:59 -07:00
Jacob Barthelmeh
bd4a9c69dd convert name to oidsum to curve type for setting supported curves 2020-01-17 11:56:46 -07:00
JacobBarthelmeh
6b4551c012 Merge pull request #2654 from cariepointer/qt-512-513 
Add Qt 5.12 and 5.13 support
 2020-01-10 17:34:23 -07:00
Jacob Barthelmeh
a1944c477a set chacha20 counter in TLS AEAD use 2020-01-09 16:39:48 -07:00
toddouska
f3b2815e1f Merge pull request #2708 from julek-wolfssl/nginx-fix 
Nginx fix
 2020-01-09 15:00:59 -08:00
John Safranek
1f0f3eb97d Maintenance: Secure Renegotiation 
Allow sending application data during the secure renegotiation.
 2020-01-08 11:50:18 -08:00
Carie Pointer
b9c99709f7 Fixes from review 2020-01-08 12:48:01 -07:00
Carie Pointer
f13cee2689 Add comments above functions 2020-01-07 17:30:25 -07:00
Carie Pointer
28cf563c76 Fixes from PR review: styling and formatting, remove duplicate code 2020-01-07 17:01:53 -07:00