2cf87a8049
Merge pull request #5084 from julek-wolfssl/zd14101-dtls-want-write
...
DTLS fixes with WANT_WRITE simulations
2022-05-12 09:36:40 -07:00
7316a275ae
Add EXTRA_DIST entry for include.am
2022-05-12 17:00:02 +01:00
c3d4c3086e
Add README to point to the new Python locations
2022-05-12 16:55:26 +01:00
05ce8329c9
Merge pull request #5067 from miyazakh/compat_altcertchain
...
"veify ok" if alternate cert chain mode is used
2022-05-12 08:54:51 -07:00
7a95be1a97
Merge pull request #5126 from JacobBarthelmeh/crl
...
do not error out on CRL next date if using NO_VERIFY
2022-05-12 08:44:29 -07:00
9ca1206bf3
Merge pull request #5131 from SparkiDev/sp_win_fixes_1
...
SP: Windows build fixes
2022-05-12 09:56:27 -05:00
44be4e1cc8
Reset ret in client and server after wolfSSL_dtls_got_timeout()
...
- Do UDP connect only with simulateWantWrite to accommodate macOS that doesn't like sendto being called on connected UDP sockets
- Call wolfSSL_dtls_get_current_timeout only on a DTLS connection
2022-05-12 16:48:04 +02:00
9914da3046
Fix resumption failure and use range in connect state logic
2022-05-12 15:46:08 +02:00
a31b76878f
DTLS fixes with WANT_WRITE simulations
...
- WANT_WRITE could be returned in unexpected places. This patch takes care of that.
- Change state after SendBuffered only if in a sending state to begin with.
- Adapt client and server to simulate WANT_WRITE with DTLS
2022-05-12 15:46:08 +02:00
829e9f5277
tls13: fix cookie has keyShare information check
...
Fix the check to see if the cookie has key_share information or not (needed to
reconstruct the HelloRetryRequest). At the moment, it looks like we never send a
cookie without KeyShare extension. Indeed the HelloRetryRequest is sent only
because the client didn't provide a good KeyShareEntry in the first
ClientHello. When we will support DTLSv1.3, the HelloRetryRequest will be used
as a return-routability check and it may be sent without the KeyShare extension.
2022-05-12 12:10:58 +02:00
8e3d7fc6f4
wolfcrypt: logging: use do{}while(0) to disable WOLFSSL_MSG* macro
...
otherwise statement of the type:
if (condtion)
WOLFSSL_MSG("");
after preprocessing will become:
if (condition)
;
The empty body emits a warning from the compiler.
2022-05-12 09:59:27 +02:00
798d81723b
Merge pull request #5128 from rizlik/dtls_bidrectional_shutdown
...
Support DTLS bidirectional shutdown in the examples
2022-05-11 17:00:44 -07:00
f5b0d3c0b4
SP: Windows build fixes
2022-05-12 08:25:46 +10:00
36575ff480
Merge pull request #5125 from douzzer/20220510-strncmp-misuse
...
s/strncmp/strcmp/g
2022-05-12 08:22:00 +10:00
5d93a48ddf
veify ok if alternate cert chain mode for verifyCallback
2022-05-12 06:15:18 +09:00
5caef7eaba
avoid dead store with test case
2022-05-11 11:53:17 -06:00
9bee0281cb
print out test errors to stderr instead of stdout
2022-05-11 11:40:54 -06:00
fd9e1e21ed
Remove the Python wrappers from wolfSSL source
...
The wolfCrypt and wolfSSL Python wrappers are maintained in the
wolfCrypt-py and wolfSSL-py trees respectively. The duplicates in this
tree are stale. The content has been checked and any important changes
have been ported over to their respective trees.
2022-05-11 15:02:51 +01:00
eb6f9152db
Revert modifications addressed by wolfSSL/scripts PR #235
2022-05-11 07:27:16 -06:00
761ab6b17a
tests: add bidirectional shutdown UDP tests
2022-05-11 13:27:37 +02:00
257c55a311
examples: allow bidirectional shutdown in UDP
...
This commit allows the examples to perform a bidirectional shutdown also when
using UDP. It is useful to test DTLS retransmission.
Signed-off-by: Marco Oliverio <marco@wolfssl.com >
2022-05-11 13:27:24 +02:00
27e73818c5
tests: run test_wolfSSL_dtls_export() over UDP instead of TCP
2022-05-11 12:20:15 +02:00
692a01238e
tests: support udp in test_server_nofail()
2022-05-11 12:19:09 +02:00
dca71d36f6
SP: Script changed, generated result update
2022-05-11 10:51:19 +10:00
d90a89898c
wolfssl/test.h:OCSPRespFreeCb(): fix non-void return of and from void function.
2022-05-10 15:14:21 -05:00
9fbb4a923f
src/internal.c:GetCipherKeaStr(): allow "ECDH" (in addition to "ECDHE") as a suite clause that maps to KEA "ECDH".
2022-05-10 15:12:00 -05:00
77fa0ccb82
src/tls.c:BuildTlsFinished(): work around false positive -Wmaybe-uninitialized.
2022-05-10 15:10:23 -05:00
531120131a
do not error out on CRL next date if using NO_VERIFY
2022-05-10 14:00:21 -06:00
26673a0f28
where appropriate, use strcmp/strcasecmp, not strncmp/strncasecmp;
...
add macro XSTRCASECMP();
update XSTRNCASECMP() for XC32 >= 1.00 to use strncasecmp.
2022-05-10 12:20:12 -05:00
cb6a138caf
Implement peer review feedback
2022-05-10 08:43:18 -06:00
f06ac9965c
internal.c: fix: plaintext check account for the current record only
2022-05-10 13:12:09 +02:00
db23d8a0cf
internal.c: don't skip records if we don't process early-data
...
If we don't process early data, we want to skip only the current record and not
all the received data
2022-05-10 13:04:43 +02:00
445c1e6ceb
internal.c: don't check TLS13 plaintext limit twice
...
Plaintext size is checked before decryption in TLS 1.3
2022-05-10 12:51:50 +02:00
0747a16893
Merge pull request #5119 from JacobBarthelmeh/fuzzing
...
adjust setting of input pointer with BER pkcs7 edge case
2022-05-10 09:40:51 +10:00
d5f7beefd4
Address issues ID'd by new windows multi-config test
2022-05-09 16:50:56 -06:00
063e757f6b
Merge pull request #5121 from miyazakh/sce_example_update2
2022-05-09 14:15:13 -06:00
d133fa6143
server: check that the first packet of udp connection is clientHello
...
Used to allow for bi-directional shutdown tests with UDP and DTLS
2022-05-09 13:45:27 +02:00
0c7e9a0104
internal.c: fix pad-size when more records are received at once
...
don't consider the end of the record the end of received data as more records
may be read at once when DTLS will be supported.
2022-05-09 11:00:31 +02:00
59fdf05155
Merge pull request #5111 from kaleb-himes/ABI-check-test-rev2
...
Refactor wolfSSL_ASN1_TIME_adj to use GetFormattedTimeString (new API)
2022-05-09 09:15:57 +10:00
d95b2e69b5
Merge pull request #5112 from JacobBarthelmeh/Testing
...
fix for indef buffer check with pkcs7
2022-05-09 09:03:10 +10:00
b76c70d969
Merge pull request #5120 from dgarske/v5.3.0_cubepack
2022-05-08 07:50:20 -06:00
75d90aaf2f
update key data and add fixes
...
Fix Aes gcm memory curruption
- fix delta size calculation
- add logging SEGGER printf for RA6M4
- update client example
Added test cases
- Fixed aes buffer overflow
- Fixed usable
- Fixed sce - no-sce use case
- Add logging SEGGER printf for RA6M4
2022-05-07 10:43:43 +09:00
421f54e60a
Merge pull request #5118 from douzzer/20220405-declaration-after-statement
...
20220405 declaration after statement
2022-05-06 16:16:52 -07:00
bc877dab2a
Changes to support v5.3.0 cube pack for ST.
2022-05-06 15:49:11 -07:00
1e1a722332
Merge pull request #5113 from JacobBarthelmeh/docs
...
fix markdown in readme notes
2022-05-06 14:20:16 -07:00
576f0aa045
adjust setting of input pointer with BER pkcs7 edge case
2022-05-06 14:22:53 -06:00
6be3dae6d3
Merge pull request #5104 from tmael/32_bit_ssize
...
Fix for stack and heap measurements of a 32-bit build
2022-05-06 14:32:06 -05:00
36877d78b4
Merge pull request #5078 from julek-wolfssl/wpas-tls13
...
Clean up wolfSSL_clear() and add some more logging
2022-05-06 11:45:43 -07:00
b59ac022c9
fix comment explaining ConstantCompare() in AES_GCM_decrypt_C().
2022-05-06 13:36:54 -05:00
ccc9b1535d
fix whitespace.
2022-05-06 13:34:32 -05:00
John Safranek
Andrew Hutchings
David Garske
Kaleb Himes
Juliusz Sosinowicz
Marco Oliverio
Sean Parkinson
Hideki Miyazaki
Jacob Barthelmeh
Daniel Pouzzner
Chris Conlon