David Garske 1f16b36402 Fixes for MatchDomainName to properly detect failures: ...

* Fix `MatchDomainName` to also check for remaining len on success check.
* Enhanced `DNS_entry` to include actual ASN.1 length and use it thoughout (was using XSTRLEN).

Added additional tests for matching on domain name:
* Check for bad common name with embedded null (CN=localhost\0h, Alt=None) - Note: Trouble creating cert with this criteria
* Check for bad alternate name with embedded null (CN=www.nomatch.com, Alt=localhost\0h)
* Check for bad common name (CN=www.nomatch.com, Alt=None)
* Check for bad alternate name (CN=www.nomatch.com, Alt=www.nomatch.com)
* Check for good wildcard common name (CN=*localhost, Alt=None)
* Check for good wildcard alternate name (CN=www.nomatch.com, Alt=*localhost)

2018-06-12 14:15:34 -07:00

..

bio.c

Updates from code review

2018-04-06 17:29:27 -05:00

crl.c

Merge pull request #1569 from kojo1/openSSL-Compat-CRL-STORE

2018-05-29 09:47:22 -06:00

include.am

AES assembly file name change

2018-04-12 16:47:58 -07:00

internal.c

Fixes for MatchDomainName to properly detect failures:

2018-06-12 14:15:34 -07:00

keys.c

Allow TLS 1.2 to be compiled out.

2018-05-25 11:00:00 +10:00

ocsp.c

Added a new --enable-opensslall option, which ensures all openssl features are enabled. Documented and tested building the various open source defines we support in our build.

2018-04-11 13:54:07 -07:00

sniffer.c

* Added support for disabling PEM to DER functionality using WOLFSSL_PEM_TO_DER. This allows way to use with DER (ASN.1) certificates only in an embedded environment. This option builds, but internal make check requires PEM support for tests.

2018-04-09 13:28:15 -07:00

ssl.c

rebase with master branch and fix some code.

2018-05-30 17:15:07 +09:00

tls13.c

Remove execute bit from a few files.

2018-05-31 10:14:47 -07:00

tls.c

Remove execute bit from a few files.

2018-05-31 10:14:47 -07:00

wolfio.c

Fix TCP with Timeout

2018-05-23 11:29:16 -07:00