wolfSSL/wolfssl
1
0
Fork 1
mirror of https://github.com/wolfSSL/wolfssl.git synced 2026-01-30 03:12:13 +01:00
Code Issues Packages Projects Releases Wiki Activity
13,661 Commits 12 Branches 184 Tags
fceba6eb6fa315aef1e7890fcace6dbe3ea28522
Commit Graph

4923 Commits

Author SHA1 Message Date
John Safranek
fceba6eb6f Merge pull request #3860 from julek-wolfssl/scr-hello-verify 
SCR cookie exchange shouldn't change seq and epoch numbers
 2021-03-10 16:11:03 -08:00
toddouska
72eebd6e75 Merge pull request #3795 from JacobBarthelmeh/CAAM 
Addition of QNX CAAM driver
 2021-03-10 15:04:21 -08:00
toddouska
44c5ca9d39 Merge pull request #3825 from julek-wolfssl/openssl-key-wrap 
Implement `AES_wrap_key` and `AES_unwrap_key`
 2021-03-10 15:01:51 -08:00
toddouska
0bcde126d9 Merge pull request #3791 from TakayukiMatsuo/ZD11641 
Causes SSL_CTX_load_verify_locations and X509_LOOKUP_load_file to return zero on failure if WOLFSSL_ERR_CODE_OPENSSL is defined
 2021-03-10 14:54:14 -08:00
Juliusz Sosinowicz
26fb658206 SCR cookie exchange shouldn't change seq and epoch numbers 2021-03-10 18:34:09 +01:00
JacobBarthelmeh
4ad1b52108 Merge pull request #3824 from julek-wolfssl/ssl-bio-use-chain 
WOLFSSL_BIO_SSL BIO should use remaining chain for IO
 2021-03-10 18:21:09 +07:00
Juliusz Sosinowicz
d7838155e5 WOLFSSL_BIO_SSL BIO should use remaining chain for IO 
This is accomplished by passing the next BIO in the chain in to the `wolfSSL_set_bio` API.
 2021-03-10 10:13:42 +01:00
Chris Conlon
23396a94c4 Merge pull request #3822 from TakayukiMatsuo/os_ecdh 
Add CTX_set_ecdh_auto
 2021-03-09 15:15:38 -07:00
Juliusz Sosinowicz
d4302cc71b Correctly reset the Tx sequence number 
All DTLS records after the ClientHello should try to start from the sequence number of the ClientHello if it is available.
 2021-03-09 18:30:10 +01:00
TakayukiMatsuo
153859f2b2 Merge remote-tracking branch 'upstream/master' into os_ecdh 
# Conflicts:
#	tests/api.c
 2021-03-09 12:00:15 +09:00
Chris Conlon
7b2aa54044 Merge pull request #3801 from TakayukiMatsuo/os_bio 
Add wolfSSL_BIO_tell
 2021-03-08 09:56:01 -07:00
TakayukiMatsuo
feeb0ceb96 Change macro name to WS_RETURN_CODE and add more comments. 2021-03-08 11:57:36 +09:00
Hideki Miyazaki
3b768bcb5e addressed review comments 2021-03-06 10:18:31 +09:00
Hideki Miyazaki
896245cae7 addressed jenkins cavp test failure 2021-03-05 08:19:25 +09:00
Hideki Miyazaki
464f82a575 addressed jenkins failure part4 2021-03-05 08:19:24 +09:00
Hideki Miyazaki
302c6dfe11 addressed jenkins failure part3 2021-03-05 08:19:22 +09:00
Hideki Miyazaki
9bae05525c addressed review comments 2021-03-05 08:19:22 +09:00
Hideki Miyazaki
cd26444e01 addressed jenkins failure part1 2021-03-05 08:19:21 +09:00
Hideki Miyazaki
5fb9aa3f9b implemented SHA512_Transform and unit test 2021-03-05 08:19:20 +09:00
Hideki Miyazaki
82fb498ed5 Implemented MD5 unit tests 2021-03-05 08:19:19 +09:00
Hideki Miyazaki
525d28f38f Implemented MD5_Transform 2021-03-05 08:19:18 +09:00
Hideki Miyazaki
502e1458f9 Implemented SHA one shot 
Implemented SHA_Transform
 2021-03-05 08:19:17 +09:00
Hideki Miyazaki
95cf3675e9 implemented SHA256_Transform 
WIP SHA512_Transform
 2021-03-05 08:19:17 +09:00
Hideki Miyazaki
cb3fa8ff9e SHA224 implementation 2021-03-05 08:19:16 +09:00
Hideki Miyazaki
141d07e21b addressed pre-review comments 2021-03-05 08:19:16 +09:00
Hideki Miyazaki
e39477c531 initial implement SSL_get_early_data_status 2021-03-05 08:19:15 +09:00
Hideki Miyazaki
44a20c8ce6 add more unit test case for load_crl_file 2021-03-05 08:19:14 +09:00
Hideki Miyazaki
544ed32893 implemented X509_load_crl_file 2021-03-05 08:19:14 +09:00
Hideki Miyazaki
2e223fb101 implemeted wolfSSL_CTX_get0/set1_param, and corresponding to sub-methods 2021-03-05 08:19:13 +09:00
toddouska
b8235649ea Merge pull request #3812 from haydenroche5/get-certs-refactor 
Improve wolfSSL_CertManagerGetCerts.
 2021-03-04 11:14:05 -08:00
toddouska
12d5c6d416 Merge pull request #3783 from haydenroche5/socat 
Add support for OpenSSL compatibility function SSL_CTX_get_min_proto_…
 2021-03-04 11:10:17 -08:00
toddouska
90d45028cc Merge pull request #3781 from fabiankeil/NO_WOLFSSL_STUB-build-fix 
Fix build with  NO_WOLFSSL_STUB
 2021-03-04 11:07:26 -08:00
TakayukiMatsuo
871933e3e8 Add s comment to wolfSSL_BIO_tell 2021-03-04 15:41:03 +09:00
TakayukiMatsuo
b141c2f4f2 Add comment for each added function 2021-03-04 15:02:53 +09:00
Jacob Barthelmeh
26a6643383 fix typo on black keymod size and set devid default with TLS 2021-03-03 18:45:40 +07:00
Jacob Barthelmeh
ffbd565285 fix for cryptocb with private key check 2021-03-03 18:45:40 +07:00
Jacob Barthelmeh
49aeafaa8d adjust dist files and fix warning 2021-03-03 18:45:40 +07:00
Jacob Barthelmeh
749425e1e8 first pre alpha code for QNX + CAAM 
manual run of RNG init and JDKEK print

job ring does initial rng

is successful on some red key blob operations

caam red key blob test pass

ecdsa sign/verify

ecdsa ecdh/sign/verify with black secure key

ecdsa ecdh/sign/verify with black secure key

initial cmac addition

initial cmac addition

black blob encap

black keys with cmac

add invalidate memory

refactoring and clean up

more code cleanup

add files for dist and remove some printf's

remove unneeded macro guard

use resource manager
 2021-03-03 18:45:40 +07:00
TakayukiMatsuo
bbf1284112 Replace immediate value "0" with WOLFSSL_FAILURE and add comment to the RETURN_CODE macro 2021-03-03 11:23:11 +09:00
Juliusz Sosinowicz
39a28eeec2 Add RSA_NO_PADDING to wolfSSL_RSA_private_encrypt 2021-03-01 13:21:26 +01:00
Hayden Roche
265b456cac Improve wolfSSL_CertManagerGetCerts. 
- Use wolfSSL_d2i_X509. wolfSSL_CertManagerGetCerts duplicated a lot of work
that wolfSSL_d2i_X509 can do for us.
- This function gets the caLock from the CertManager and then calls ParseCert.
Ultimately, ParseCert calls GetCA, which attempts to acquire the same caLock.
Deadlock ensues. The solution is to get the caLock, make a copy of all the
certs, and release the lock. Then, we use the copy of the certs to build up
the stack of X509 objects. What happens if one of the certs is removed from
the CertManager between our copying and calling wolfSSL_d2i_X509? Nothing of
consequence for this use case. ParseCertRelative won't set the DecodedCert's ca
field, but we don't need that to be set here.
 2021-02-26 10:45:27 -06:00
TakayukiMatsuo
ec471af9c5 Add following stub funcs: 
- wolfSSL_THREADID_current
- wolfSSL_THREADID_hash
- wolfSSL_CTX_set_ecdh_auto
 2021-02-26 11:26:10 +09:00
toddouska
2d13a43e71 Merge pull request #3819 from elms/fix/nightly_g++ 
ssl: fix g++ compile warning with explicit cast
 2021-02-25 16:04:05 -08:00
Hayden Roche
10181b7bbf Add support for OpenSSL compatibility function SSL_CTX_get_min_proto_version. 
This is needed by socat-1.7.4.1.
 2021-02-25 17:04:41 -06:00
Juliusz Sosinowicz
2eb253330f Implement AES_wrap_key and AES_unwrap_key 
Add `wc_AesKeyWrap_ex` and `wc_AesKeyUnWrap_ex` API to accept an `Aes` object to use for the AES operations
 2021-02-25 20:01:51 +01:00
Elms
afbe3607d7 ssl: fix g++ compile warning with explicit cast 
cast OpenSSL callback to `void*` for storage as context to be used by
static callback
 2021-02-25 11:01:16 -08:00
Sean Parkinson
d271092aef ASN: move wolfSSL_i2d_X509_NAME to ssl.c 
Move WOLFSSL_X509_NAME APIs out of asn.[ch].
 2021-02-25 11:45:12 +10:00
toddouska
94a23c1d48 Merge pull request #3646 from julek-wolfssl/nginx-1.19.6 
Add support for Nginx 1.19.6
 2021-02-24 12:21:51 -08:00
Eric Blankenhorn
1d16af4f32 Warnings and error fixes 2021-02-24 09:08:15 -06:00
toddouska
e471cba8df Merge pull request #3780 from SparkiDev/tls13_key_up_resp 
TLS 1.3: add API to tell if a KeyUpdate response is required
 2021-02-23 11:57:10 -08:00