3b74dbf86a
Merge pull request #1609 from SparkiDev/tls13_time
...
Don't include sys/time.h explicitly in tls13.c
2018-06-12 08:27:43 -07:00
2c8f89ae33
Merge pull request #1611 from kaleb-himes/AN_UP2
...
Allow for wc_SetAltNamesBuffer call with larger than 16384 bytes
2018-06-12 08:26:58 -07:00
49b82456eb
Merge pull request #1618 from cconlon/opensslcompat
...
Align return values for EVP_DigestUpdate/Final for OpenSSL Compatibility
2018-06-12 08:25:18 -07:00
29410ada1e
Merge pull request #1595 from SparkiDev/tls13_cipher_down
...
Fix for downgrading from TLS 1.3 due to old cipher suite
2018-06-12 08:24:26 -07:00
f2a20c4232
Merge pull request #1573 from SparkiDev/tls_pad_vfy
...
Constant time padding and HMAC verification in TLS
2018-06-12 08:22:32 -07:00
22ddd41b61
Merge pull request #1581 from ejohnstown/update-configure
...
Update configure.ac
2018-06-12 08:17:35 -07:00
b7caab938e
Fix post authentication for TLS 1.3
2018-06-12 09:49:23 +10:00
7827712fcc
FIPS Revalidation (acceptance fixes)
...
1. The Windows 10 wolfcrypt test project was missing the flag for USE_CERT_BUFFERS_256.
2. Add note to fips-check about using linuxv2 with Win10.
2018-06-11 15:27:52 -07:00
35c8ba3188
Merge pull request #1601 from SparkiDev/ecdsa_sign
...
Change ECDSA signing to use blinding.
2018-06-11 14:13:24 -07:00
637eaa08ba
Merge pull request #1614 from SparkiDev/tls13_log_file
...
Remove log file and change location to local
2018-06-11 13:51:51 -07:00
a472325f89
return WOLFSSL_FAILURE on error from EVP_DigestUpdate() and EVP_DigestFinal()
2018-06-11 14:27:08 -06:00
7e5c41ca35
Fixes for some async issues in FIPSv2.
2018-06-11 12:41:15 -07:00
10070bb5fd
FIPS Revalidation (acceptance fixes)
...
1. Backed out some changes to AES-GCM with respect PIC32 only code. (This change will not be in the FIPS boundary.)
2018-06-11 10:21:19 -07:00
74d4a02542
Remove log file and change location to local
2018-06-11 15:00:17 +10:00
cf9c352d91
Fixes for Arduino. Don't use C99 for Arduino. Enhanced the script to create as new folder in IDE/ARDUINO/wolfSSL. Updated README.md.
2018-06-08 14:27:54 -07:00
ce2f393bc7
Autoconf Update
...
1. Remove many redundant macros.
2. Reorder several macros to more appropriate locations.
3. Several macros take lists of items to process, not just individual items. Combined duplicated macros' parameters into lists.
4. Some macros had unnecessary parameters.
5. Added some AX_REQUIRE_DEFINED() checks for the macros used.
6. Add cyassl/options.h to the AC_CONFIG_FILES list. It will be recreated from the template when running config.status the same as wolfssl/options.h
7. Remove the dist-dir rule from Makefile.am. This is prefering the process rather than automating that one step. Make dist will not run config.status.
* AC_PROG_CC must be before any macros that will try to compile for tests.
* AC_CHECK_SIZEOF takes a single type, no size values.
* Only one of the AC_CANONICAL_X macros are expanded. Removed AC_CANONICAL_BUILD since it is never actually used.
* Removed the AC_PROG_CXX and anything C++ related.
* Removed LT_LANG([C]) as it is the default and the C doesn't do anything.
2018-06-08 10:47:14 -07:00
df6fe0b07c
FIPS Revalidation (acceptance fixes)
...
1. Update the fips-check script to pull the FIPSv2 code from the main repositories.
2. Script cleanup.
3. Disable the api.test check of wc_ecc_mulmod() when WOLFSSL_VALIDATE_ECC_IMPORT is enabled.
2018-06-08 10:36:28 -07:00
e99fc3026d
Fixed issue with MatchDomainName. Fixes issue #1606 . This is a valid and confirmed bug report in v3.15.0. Applies to ./configure --enable-sni case with wolfSSL_CTX_UseSNI where common name has wildcards. Pushing fix for visibility now and will add test case.
2018-06-08 10:09:53 -07:00
1123beb2d2
Allow for wc_SetAltNamesBuffer call with larger than 16384 buffers at user discretion
2018-06-08 10:16:40 -06:00
bea0e6142a
Merge pull request #1608 from dgarske/maxcerfix
...
Resolves issue with reassembling large certificates
2018-06-08 08:25:14 -07:00
5547a7b4bd
Fix private-only keys and make them script generated
2018-06-08 17:38:11 +10:00
587f4ae79e
Don't include sys/time.h explicitly in tls13.c
2018-06-08 09:00:12 +10:00
00ddeb07d8
Resolves issue with reassembling large certificates. The ProcessPeerCerts function was using the wrong max size check for certs. Built and test with ./configure CFLAGS="-DMAX_CERTIFICATE_SZ=20000".
2018-06-07 15:56:37 -07:00
391d1953fa
FIPS Revalidation (acceptance fixes)
...
1. Add a couple of missing options to user_settings.h for Win10 and configure.ac.
2. Clear the execute flag from the ecc.h.
2018-06-07 10:57:46 -07:00
c6e2585fbc
added check for AMD processor to asm.c
2018-06-07 10:35:54 -06:00
020b69aba0
Return TLS 1.3 draft version in ServerHello
2018-06-07 22:01:42 +10:00
234228e5af
FIPS Revalidation (acceptance fixes)
...
1. Fixed some whitespace in api.c.
2018-06-06 17:50:55 -07:00
e673cdf2d2
Merge pull request #1594 from kojo1/openSSL-Compat-CRL-STORE
...
FILE* to XFILE
2018-06-06 16:34:59 -07:00
596cedc226
Merge pull request #1603 from ejohnstown/add-changelog
...
Add ChangeLog
2018-06-06 16:32:18 -07:00
59067825fc
Update cpuid.c to optimize intelasm for performance
2018-06-06 16:44:46 -06:00
a6dd93aa2e
Removed replaced the last two references to "CYASSL" macros with "WOLFSSL" in the example server.
2018-06-06 13:14:06 -07:00
7e9a32fffd
FIPS Revalidation
...
Merge branch 'master' into fipsv2. Using a merge instead of a rebase to retain commit IDs and tags.
2018-06-06 12:43:15 -07:00
e9d9e7c37c
replaced NEWS.md in Makefile.am with ChangeLog.md
2018-06-06 10:56:24 -07:00
9b9568d500
Change ECDSA signing to use blinding.
2018-06-06 11:52:04 +10:00
1c17f55ee4
updated the readme/changelog with the correct release date
2018-06-05 16:10:08 -07:00
0c966d7700
Update ChangeLog and NEWS
...
While the GNU coding standard states that the NEWS file should be a list of the high level changes and the ChangeLog should be every change in detail, our public source repository contains the detailed log of all changes and the name "ChangeLog" makes more sense to me than "NEWS". Instead of keeping two copies of the README, one in plain text and one in MarkDown, only keeping the MarkDown copy. It displays better in the source repository, it is still plain text, and we aren't keeping two separate copies of the files.
2018-06-05 16:07:53 -07:00
ab319ae599
Fixed a couple of places in PKCS7 error cases where key free (wc_FreeRsaKey or wc_ecc_free) might not be called.
2018-06-05 14:32:17 -07:00
b63d3173a1
update change log ( #1597 )
2018-06-05 12:42:43 -07:00
4ac34b74bd
Fix test to work with configurations not including AES-GCM
2018-06-05 10:30:15 +10:00
ab5eeb9f79
Merge pull request #1596 from dgarske/leakfixes
...
Fix for possible leak with normal math and ECC verify fail for R and S
2018-06-04 13:30:09 -07:00
5eca844e01
Fix for possible leak with normal math and verify fail for R and S in ECC verify.
2018-06-04 11:05:14 -07:00
fcd2234841
Fix for downgrading from TLS 1.3 due to old cipher suite
...
TLS 1.3 specification doesn't allow downgrading based on cipher suite.
2018-06-04 12:42:41 +10:00
caf88c81c2
Merge pull request #1593 from ejohnstown/fix-cert-includes
...
Fix Cert Includes
2018-06-01 11:32:18 -07:00
f1588e0ad9
Fix Cert Includes
...
1. Added files that were missing from the certs directory include.am files.
2. Fixed the duplicate items in the certs directory's include.am files.
3. Reorganized the certs directory include.am files to be a tree.
2018-05-31 17:38:47 -07:00
3ff8c45aa8
FILE to XFILE
2018-06-01 09:30:20 +09:00
1cc6042f01
exlude unneeded files with Nucleus build
2018-05-31 15:27:37 -06:00
0c2199084e
single threaded wolfcrypt only Nucleus port
2018-05-31 15:04:44 -06:00
70b3ba1c04
Merge pull request #1591 from ejohnstown/release-3.15.0
...
Release v3.15.0 Preparation
2018-05-31 12:07:43 -07:00
c43a84547a
Merge pull request #1572 from dgarske/cryptodev
...
Added crypto device framework
2018-05-31 10:28:58 -07:00
dfca1beff0
Touch the version number on the library filename in the rpm spec.
2018-05-31 10:20:18 -07:00
toddouska
Sean Parkinson
John Safranek
Chris Conlon
David Garske
kaleb-himes
Tim Parrish
Tim
Takashi Kojo
Jacob Barthelmeh