wolfSSL/wolfssl
1
0
Fork 1
mirror of https://github.com/wolfSSL/wolfssl.git synced 2026-01-31 17:19:17 +01:00
Code Issues Packages Projects Releases Wiki Activity
9,596 Commits 12 Branches 184 Tags
6478f92e04d0f5ac07fbcedc72055ed93260c2d2
Commit Graph

3507 Commits

Author SHA1 Message Date
toddouska
6478f92e04 Merge pull request #2294 from dgarske/read_fixes 
Fixes to improve read error handling
 2019-06-26 09:17:20 -07:00
toddouska
eceb460cff Merge pull request #2287 from ejohnstown/sniffer-stats 
Sniffer Statistics
 2019-06-25 11:22:24 -07:00
David Garske
ef64cd300c Fixes to improve read error handling. 
* Improved `GetInputData` handling of non -1 return codes.
* Adds support for handling `WOLFSSL_CBIO_ERR_TIMEOUT` return code in non-DTLS case.
 2019-06-25 07:11:14 -07:00
toddouska
b957415609 Merge pull request #2245 from MKinclRA/coverity-issues 
Coverity issues
 2019-06-24 16:12:52 -07:00
toddouska
785d984a3c Merge pull request #2282 from SparkiDev/certvfy_tls13 
Free RSA key later in TLS v1.3 CertificateVerify
 2019-06-24 15:54:04 -07:00
toddouska
c7964b62c0 Merge pull request #2290 from kaleb-himes/ZD-5253-X25519 
Support CURVE25519 in `get_curve_name` when HAVE_ECC not defined
 2019-06-24 15:37:34 -07:00
toddouska
78956534f0 Merge pull request #2298 from SparkiDev/static_rsa 
Improve handling of static RSA's decrypted pre-master secret
 2019-06-24 15:24:18 -07:00
John Safranek
8439beb525 Sniffer Statistics 
1. Moved sslKeyFails.
2. Added sslEphemeralMisses, sslEncryptedConns, sslDecodeFails.
3. Removed the Rehandshake stats as the sniffer does not support rehandshaking.
4. Removed two of the per second stats as they seemed redundant.
5. Added a function to atomically read and reset the sniffer statistics.
 2019-06-24 09:54:42 -07:00
John Safranek
0203a25b60 Sniffer Statistics 
Added stats for encrypted and decrypted bytes and packet counts.
 2019-06-24 09:54:42 -07:00
John Safranek
9715431921 Sniffer Statistics 
1. Wrapped the added code for statistics in a preprocessor guard.
2. Added a check for the current cipher suite and if it is on the list
of allowed suites. Guarded by the statistics option.
3. Added more statistics from the list.
 2019-06-24 09:54:42 -07:00
John Safranek
c600f7659a Sniffer Statistics 
Added more of the statistics.
 2019-06-24 09:54:42 -07:00
John Safranek
2ee7d05dcc Sniffer Statistics 
1. Added a structure for all the statistics to be kept.
2. Added a global to track the statistics.
3. Added a copy function to get a copy of the statistics.
4. Added a reset function for the statistics.
5. Handle the alert messages in statistics.
 2019-06-24 09:54:42 -07:00
Sean Parkinson
f1f6ac9308 Improve handling of static RSA's decrypted pre-master secret 2019-06-24 17:09:22 +10:00
kaleb-himes
c114bcaead Addressed peer feedback, avoid double check when HAVE_CURVE25519 not set 2019-06-21 09:40:17 -06:00
kaleb-himes
49a631996c Check other names when FFDHE returns NULL 2019-06-21 09:27:15 -06:00
David Garske
2460effb0b Merge pull request #2285 from SparkiDev/tlsx_len 
Better checking of return values in TLSX for error codes.
 2019-06-20 10:10:31 -07:00
kaleb-himes
ce251417f5 curve25519 in get_curve_name when HAVE_ECC not defined. Thanks to C.B. for the report. 2019-06-20 10:57:07 -06:00
Sean Parkinson
e7b3b31d9f Change TLSX functions that return error with length to do so separately 2019-06-20 16:37:34 +10:00
Hideki Miyazaki
4581342fb0 fix make dist 2019-06-19 09:32:56 +09:00
Sean Parkinson
d378d3c009 Better checking of return values in TLSX for error codes. 2019-06-19 10:02:55 +10:00
Sean Parkinson
c500fd5a86 Free RSA key later in TLS v1.3 CertificateVerify 2019-06-19 08:47:40 +10:00
toddouska
2435ec2d6b Merge pull request #2275 from SparkiDev/sha512_arm32 
Add ARM32 NEON code for SHA-512/384
 2019-06-12 16:19:20 -07:00
Sean Parkinson
102ecac70c Merge pull request #2237 from julek-wolfssl/proper-arm-chacha-poly1305 
ARM Chacha20 assembly code
 2019-06-12 22:21:47 +10:00
Juliusz Sosinowicz
a48981c3c6 Chacha20 ARM optimization 2019-06-10 19:21:46 +02:00
Sean Parkinson
6a594218bc Add ARM32 NEON code for SHA-512/384 
Fix up ARM32 Curve25519 assembly code to use right directives.
Slight improvement to ARM64 SHA-512 assembly code.
Don't return error code from Transform functions - can't fail.
 2019-06-07 15:02:48 +10:00
David Garske
074e770c98 * Fix to ensure user_settings.h can be included for bio.c and evp.c when IDE or compiler tries to build it directly. Allows for wildcard .c include along with WOLFSSL_IGNORE_FILE_WARN. 
* Fix for building SP cortex M without RSA.
* Fix for type-cast warning with STSAFE-A100.
* Improved the RNG seed test to prevent type-case warning.
 2019-06-04 15:57:31 -07:00
toddouska
77248e4e2a Merge pull request #2255 from SparkiDev/sha512_arm 
SHA-512 optimised for ARM64
 2019-06-04 14:04:33 -07:00
John Safranek
978928be83 NetBSD Selftest, TLSv1.3, and wolfCrypt v4 
When building for TLSv1.3 and the NetBSD Selftest, need to use the old
pre-wolfCrypt v4 APIs for AES-GCM and AES-CCM.
 2019-06-03 09:40:00 -07:00
toddouska
19c348b5c7 Merge pull request #2256 from dgarske/blake2s 
Adds Blake2s support
 2019-05-30 15:08:59 -07:00
Sean Parkinson
173163d1a3 SHA-512 optimised for ARM64 2019-05-30 16:04:15 +10:00
David Garske
5ea13a09f6 Adds Blake2s support (--enable-blake2s), which provides 32-bit Blake2 support. 2019-05-28 10:30:19 -07:00
toddouska
263769765c Merge pull request #2246 from ejohnstown/sniffer-logging 
Sniffer Logging
 2019-05-24 15:36:11 -07:00
John Safranek
86b558300b Sniffer Logging 
1. When collecting the key size to log it, use the constant WOLFSSL_BIT_SIZE for the bytes->bits multiply.
2. When converting the size of the ECC key, break the steps out more explicitly. Also update the comment to be more accurate.
 2019-05-23 13:02:52 -07:00
toddouska
ac5a5dfd56 Merge pull request #2247 from SparkiDev/psk_once 
Use TLS v1.3 PSK callback in extension allow for one call in client
 2019-05-23 11:49:40 -07:00
toddouska
6fe4c3ff34 Merge pull request #2244 from dgarske/psk_pk 
Fix for static RSA cipher suite with PK callback and no loaded private key
 2019-05-23 11:43:20 -07:00
toddouska
cab4a8c9b1 Merge pull request #2240 from dgarske/x509small_showcerts 
Added support for `SHOW_CERTS` with `OPENSSL_EXTRA_X509_SMALL`
 2019-05-23 11:41:32 -07:00
toddouska
e7fdb1360a Merge pull request #2239 from JacobBarthelmeh/Fuzzer 
add sanity check on length of PSK identity
 2019-05-23 11:40:13 -07:00
toddouska
a742cf9bf8 Merge pull request #2234 from JacobBarthelmeh/Testing 
add sanity check on buffer index and regression tests
 2019-05-23 11:32:38 -07:00
toddouska
5b5d03d5ac Merge pull request #2232 from SparkiDev/curve25519_arm_2 
Add ARM32 asm code for X25519 and Ed25519
 2019-05-23 11:30:29 -07:00
Sean Parkinson
484f7a6c32 Merge pull request #2236 from tmael/sendAlertToTLSServer 
send handshake failure alert to a server
 2019-05-23 08:27:09 +10:00
Tesfa Mael
ec4dad76e2 send protocol_version fatal alert message 2019-05-21 16:15:27 -07:00
Tesfa Mael
295dd4ff21 send protocol_version fatal alert message 2019-05-21 16:08:25 -07:00
Sean Parkinson
1ce8e227d2 Use TLS v1.3 PSK callback in extension allow for one call in client 
New compile time option WOLFSSL_PSK_ONE_ID. Indicates one identity
available. No need for client to call callback when generating binder -
already cached.
 2019-05-17 08:01:40 +10:00
John Safranek
245db5d5ce Expand Sniffer Logging 
1. Moved the CopySessionInfo function to a better location for the additions.
2. Added accessors for a callback and application context data.
3. Added a callback that is called from ProcessClientKeyExchange when everything is known about the start of the current session.
4. Added the private key size and the server name indication to the SSLInfo record.
 2019-05-16 14:09:20 -07:00
John Safranek
1781a9fd76 Sniffer Logging 
1. Capture the SNI in the SSLInfo.
2. Save the private key length and capture it in the SSLInfo.
 2019-05-16 10:57:45 -07:00
Martin Kinčl
cae4d400b9 Removed dead code from wolfSSL_d2i_X509_fp_ex. 2019-05-16 16:54:40 +02:00
David Garske
fd50248139 Fix for static RSA cipher suite (AES128-GCM-SHA256) with PK callbacks and no private key set. ZD 5092 2019-05-15 19:35:30 -07:00
Jacob Barthelmeh
88bf5d9676 add sanity check on buffer index and regression tests 
macro guards on use case and adjustment for memory size

gcc-8 warning fix

adjustement to default memory bucket sizes
 2019-05-14 15:55:24 -06:00
John Safranek
a8b469eb7f Sniffer 
1. Refactor `ProcessClientKeyExchange()` so it can be expanded to handle ECC keys for ECDH support.
2. Add support to the sniffer for ECDH based cipher suites.
 2019-05-14 13:33:52 -07:00
David Garske
10dde24363 Added support for SHOW_CERTS with OPENSSL_EXTRA_X509_SMALL for embedded debugging of certs. Minor build warning fixes with OPENSSL_EXTRA and STM32_HASH on IAR. 2019-05-14 09:24:59 -07:00