wolfSSL/wolfssl
1
0
Fork 1
mirror of https://github.com/wolfSSL/wolfssl.git synced 2026-01-31 09:29:15 +01:00
Code Issues Packages Projects Releases Wiki Activity
12,812 Commits 12 Branches 184 Tags
d75a983766592f9ca2de75abe798294d2e02c0af
Commit Graph

12812 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
toddouska
d75a983766 Merge pull request #3527 from SparkiDev/ecc_safe 
ECC add and dbl point: always use safe add and dbl
 2020-12-02 13:28:10 -08:00
toddouska
0be45e731b Merge pull request #3529 from SparkiDev/ocsp_single_ext 
OCSP: Handle extensions in singleResponse
 2020-12-02 13:26:46 -08:00
Kaleb Himes
fd158411e8 Merge pull request #3494 from JacobBarthelmeh/CSharp 
pin the C# verify callback
 2020-12-02 06:08:41 -07:00
Sean Parkinson
9b5b9fd85d OCSP: Handle extensions in singleResponse 2020-12-01 16:41:20 +10:00
John Safranek
6fc64263f2 Merge pull request #3519 from julek-wolfssl/scr-timeout 
Adapt wolfSSL_dtls_got_timeout to secure renegotiation usage
 2020-11-30 11:40:35 -08:00
Sean Parkinson
6bb38a1066 ECC add and dbl point: always use safe add and dbl 
Can be using basepoint or public key at any time. Can't tell difference.
Always use the safe versions.
For private key operations, only working on the basepoint and will never
do any timinig different operations.
No impact on performance.
 2020-11-30 11:44:50 +10:00
toddouska
84a9e16805 Merge pull request #3388 from SparkiDev/aesgcm_4bit_table 
AES-GCM: GMULT using 4-bit table
 2020-11-25 15:45:28 -08:00
toddouska
86bbaad7fa Merge pull request #3505 from kojo1/EVP-gcm 
set tag for zero inl case 2
 2020-11-25 15:43:27 -08:00
toddouska
dc76a4d522 Merge pull request #3511 from cconlon/zd11268 
return err from fp_invmod_slow() when fp_add() fails
 2020-11-25 15:41:12 -08:00
toddouska
e882159a02 Merge pull request #3516 from cconlon/zd11287 
wc_ecc_rs_to_sig(): move r and s zero check before StoreECC_DSA_Sig()
 2020-11-25 15:36:30 -08:00
David Garske
9f07f3e96e Merge pull request #3520 from ejohnstown/vrf-fix 
Verify Callback Fix
 2020-11-25 11:37:06 -08:00
JacobBarthelmeh
1668b7060c Merge pull request #3500 from cconlon/zd11011v2 
PKCS#7: verify extracted public key in wc_PKCS7_InitWithCert
 2020-11-26 02:26:08 +07:00
JacobBarthelmeh
719403cd0c Merge pull request #3509 from kojo1/openssl-version 
OPENSSL_VERSION_NUMBER to be defined by the user
 2020-11-26 02:10:24 +07:00
toddouska
a0cd75081d Merge pull request #3514 from SparkiDev/aesni_sse4 
AESNI compile flags: clang doesn't need -msse4
 2020-11-25 08:55:35 -08:00
Sean Parkinson
ca5ffc0743 AESNI compile flags: clang can't have -msse4 
Setting the SSE4 architecture with clang creates executables that can't
run on old machines.
 2020-11-25 10:32:42 +10:00
Sean Parkinson
d0703f8931 AES-GCM: GMULT using 4-bit table 
When 64-bit data type available and not big endian code is faster.
--enable-aesgcm=4bit
 2020-11-25 08:47:50 +10:00
John Safranek
4baf923218 Verify Callback Fix 
1. Removed a flag set that would force all certificates in a chain
   to be verified. There was a compile time option to make that happen
   already.
2. Replace some options for some test failure test cases that were added
   and immediately removed.
(ZD 11292)
 2020-11-24 11:46:10 -08:00
Juliusz Sosinowicz
95132b1c55 Make renegotiation information available outside of OPENSSL_EXTRA 2020-11-24 17:03:40 +01:00
Juliusz Sosinowicz
41d58465c0 Adapt wolfSSL_dtls_got_timeout to secure renegotiation usage 
Reset DTLS stored messages on a FreeHandshakeResources call even if secure renegotiation is enabled. Without this, in a server initiated rehandshake, the server would keep old messages (ChangeCipherSpec and Finished) even when it sent a HelloRequest message.
 2020-11-24 16:06:35 +01:00
John Safranek
f5c2bef78f Merge pull request #3492 from julek-wolfssl/dtls-scr-optimizations 
Save the HelloRequest message just like other handshake mesasges
 2020-11-20 11:50:51 -08:00
Juliusz Sosinowicz
69bea008dd Save the HelloRequest message just like other handshake mesasges 
Implement a timeout mechanism for non-blocking sockets
 2020-11-20 11:41:19 +01:00
John Safranek
2d79e38436 Merge pull request #3485 from julek-wolfssl/dtls-scr-seq-correct-num 
Fix overlapping sequence number error.
 2020-11-19 14:19:13 -08:00
Chris Conlon
64429693ff add MP_ZERO_E unit tests for wc_ecc_rs_to_sig() 2020-11-19 14:41:02 -07:00
Chris Conlon
f8fd3f8bc1 wc_ecc_rs_to_sig: check r,s for zero before StoreECC_DSA_Sig() 2020-11-19 14:35:35 -07:00
Chris Conlon
1d599272e7 add unit test for wc_PKCS7_InitWithCert() with malformed cert 2020-11-19 14:19:55 -07:00
David Garske
d4c59e369e Merge pull request #3335 from julek-wolfssl/RSA-PSS-padding-in-EVP_Digest-API 
Enable RSA-PSS padding in EVP_Digest* API
 2020-11-19 09:31:12 -08:00
toddouska
43f8eac8ba Merge pull request #3362 from SparkiDev/sp_math_all 
Implement all relevant mp functions in sp_int
 2020-11-19 08:10:11 -08:00
Sean Parkinson
91d23d3f5a Implement all relevant mp functions in sp_int 2020-11-19 11:58:14 +10:00
toddouska
aa9ed17afa Merge pull request #3512 from dgarske/openssl_pem 
Fix for missing `wolfSSL_PEM_write_bio_PrivateKey` with WebRTC
 2020-11-18 16:17:46 -08:00
toddouska
de6f1c1ae2 Merge pull request #3508 from JacobBarthelmeh/DH 
fix for no filesystem build with DH test case
 2020-11-18 16:15:42 -08:00
toddouska
3808865f57 Merge pull request #3504 from SparkiDev/fp_div_oob_read 
TFM div: fix initial value of size in q so clamping doesn't OOB read
 2020-11-18 16:15:08 -08:00
toddouska
ca281f976e Merge pull request #3493 from dgarske/zd11245 
Sniffer fixes for handling TCP `out-of-range sequence number`
 2020-11-18 16:14:09 -08:00
Takashi Kojo
7c68136a8b OPENSSL_VERSION_NUMBER to be defined by the user 2020-11-19 09:13:05 +09:00
toddouska
a280df1892 Merge pull request #3488 from kabuobeid/x509_objtxt_lname 
Return long names instead of short names in wolfSSL_OBJ_obj2txt().
 2020-11-18 16:10:46 -08:00
toddouska
6860d419c6 Merge pull request #3483 from SparkiDev/mp_rshb_word 
rshb: handle cases of shift amount being multiple of DIGIT_BIT
 2020-11-18 16:07:57 -08:00
toddouska
b0979f4225 Merge pull request #3476 from dgarske/sniffer_hrr 
Fixes for TLS sniffer with v1.3 (HRR and Certs)
 2020-11-18 16:07:11 -08:00
toddouska
3adeff672b Merge pull request #3472 from SparkiDev/pickhashsigalgo_rework 
TLS PickHashSigAlgo: rework
 2020-11-18 15:58:59 -08:00
toddouska
dedde4c058 Merge pull request #3456 from JacobBarthelmeh/Certs 
strict certificate version allowed from client
 2020-11-18 15:55:50 -08:00
toddouska
9183c35fb8 Merge pull request #3446 from haydenroche5/client_want_write_sim 
Add an option to the example client to simulate WANT_WRITE errors.
 2020-11-18 15:54:09 -08:00
toddouska
9bde34ef5b Merge pull request #3438 from douzzer/harmonize-CCM8-cipher-names 
add "CCM8" variants to cipher_names "CCM-8" ciphers, for OpenSSL compat
 2020-11-18 15:52:52 -08:00
Chris Conlon
f02187eef7 fix additional err returns in fp_invmod_slow() 2020-11-18 16:29:13 -07:00
Chris Conlon
fa08930921 Merge pull request #3498 from ethanlooney/30th_branch 
Added unit tests for blake2b
 2020-11-18 13:34:21 -07:00
David Garske
4cfe5a1bc1 Fix for missing wolfSSL_PEM_write_bio_PrivateKey with WebRTC. If keygen or certgen is not specified this was incorrectly being excluded with opensslextra or opensslall. 2020-11-18 11:30:53 -08:00
Chris Conlon
68744c4da0 return err from fp_invmod_slow() when fp_add() fails 2020-11-18 10:25:15 -07:00
tmael
3b552fecc9 Merge pull request #3481 from dgarske/no_ecc 
Fixes for various build configurations
 2020-11-17 17:11:27 -08:00
Sean Parkinson
c17f8b58e4 Merge pull request #3506 from dgarske/sp_check_ecc 
Fixes for SP math only with ECC check key
 2020-11-18 09:19:54 +10:00
Ethan Looney
3692c760b9 Changed key to size BLAKE2B_KEYBYTES 2020-11-17 14:03:08 -07:00
Chris Conlon
3640bf241c Merge pull request #3507 from ethanlooney/32nd_branch 
Doxygen - Removed link/button to annotated.html page as it is currently broken
 2020-11-17 13:40:27 -07:00
Juliusz Sosinowicz
a0a3a2b74c Review changes 2020-11-17 19:15:12 +01:00
David Garske
508ba85b69 Fixes for SP math only with ECC check key. Fix SP math when loading an ECC public only and calling wc_ecc_check_key. Fix for missing ecc_check_privkey_gen with SP math only. Applies to: /configure --enable-sp --enable-sp-math CFLAGS="-DWOLFSSL_VALIDATE_ECC_IMPORT". 2020-11-17 08:13:08 -08:00