John Safranek
|
00cda6ab72
|
tied SHA-384 into TLSv1.2 as appropriate
|
2012-06-27 14:41:16 -07:00 |
|
John Safranek
|
c2cf1fb708
|
added HMAC-SHA-384
|
2012-06-27 10:34:43 -07:00 |
|
John Safranek
|
4e3d7f494b
|
AES-GCM: fixed the encryption/decryption bug
|
2012-06-26 15:51:40 -07:00 |
|
John Safranek
|
3a9a195683
|
Initial draft of AES GCM cipher suites. Missing SHA-384 support.
|
2012-06-26 09:30:48 -07:00 |
|
John Safranek
|
737cd127e8
|
Changed AesGcmEncrypt and Decrypt to allow the same pointer to write and read buffers.
|
2012-06-26 09:29:48 -07:00 |
|
John Safranek
|
918ea3a074
|
added the library framework for handling aes-gcm in TLS
|
2012-06-18 15:57:37 -07:00 |
|
John Safranek
|
4e73ad8547
|
AES-GCM requires SHA-384, configure adds it automatically
|
2012-06-18 14:31:46 -07:00 |
|
John Safranek
|
eecdfe1648
|
added test case for AES-GCM
|
2012-06-15 16:05:47 -07:00 |
|
John Safranek
|
e39e27bb5b
|
implemented AES-GCM Decrypt
|
2012-06-15 15:12:56 -07:00 |
|
John Safranek
|
bac34015cc
|
implemented AES-GCM Encrypt
|
2012-06-15 14:38:11 -07:00 |
|
John Safranek
|
76bb3b2558
|
added stubs for AES-GCM processing and build option
|
2012-06-13 21:31:32 -07:00 |
|
toddouska
|
31bf833239
|
have separate --enable-crl-monitor
|
2012-06-05 11:31:00 -07:00 |
|
John Safranek
|
59e4c346f0
|
Merge branch 'master' of github.com:cyassl/cyassl
|
2012-06-05 10:38:46 -07:00 |
|
John Safranek
|
c08486e5e2
|
bump library version number
|
2012-06-05 10:38:39 -07:00 |
|
John Safranek
|
8f30850840
|
CRL fix label in debug output
|
2012-06-05 10:35:30 -07:00 |
|
toddouska
|
cb3d998301
|
asn checks
|
2012-06-01 15:55:41 -07:00 |
|
toddouska
|
3d91a55b88
|
tls sanity check
|
2012-06-01 15:37:51 -07:00 |
|
toddouska
|
ba2d7f590e
|
internal sanity checks on memcmp
|
2012-06-01 15:25:46 -07:00 |
|
toddouska
|
217053a780
|
integer comba array sanity check
|
2012-06-01 14:49:07 -07:00 |
|
toddouska
|
32fc5daf43
|
64 decoding sanity checks
|
2012-06-01 14:37:59 -07:00 |
|
toddouska
|
8a52cd3780
|
byte warning casts
|
2012-06-01 14:37:39 -07:00 |
|
toddouska
|
7edd1bd843
|
don't use -Warray-bounds except on linux with lots-o-warnings
|
2012-06-01 12:14:30 -07:00 |
|
John Safranek
|
87b3df8621
|
Merge branch 'master' of github.com:cyassl/cyassl
|
2012-06-01 11:57:09 -07:00 |
|
John Safranek
|
6120f03173
|
ocsp response date checking
|
2012-06-01 11:57:03 -07:00 |
|
toddouska
|
6dd7eff1a8
|
add 64 bit misc prototypes for NO_INLINE
|
2012-06-01 11:07:29 -07:00 |
|
John Safranek
|
ca7bf0d01e
|
Merge branch 'master' of github.com:cyassl/cyassl
|
2012-05-31 17:29:41 -07:00 |
|
John Safranek
|
6d76b2f247
|
dynamic allocation of OCSP responses, response signature check
|
2012-05-31 17:29:32 -07:00 |
|
toddouska
|
fbc5c8d6dc
|
add SSL set version, different from ctx version
|
2012-05-31 15:24:25 -07:00 |
|
toddouska
|
a1157da304
|
move HAVE_OCSP to top of source for different build envs
|
2012-05-30 14:40:25 -07:00 |
|
toddouska
|
458302f9fe
|
warning cast
|
2012-05-30 10:03:05 -07:00 |
|
toddouska
|
f528f5a7d3
|
add CertManager Verify with Buffer
|
2012-05-29 12:04:48 -07:00 |
|
John Safranek
|
4b8bb6cdfe
|
fixed merge conflicts
|
2012-05-29 09:19:53 -07:00 |
|
John Safranek
|
9818fe4f55
|
changed DN hashing to cover the whole DER encoding per OCSP-RFC, OCSP changes towards dynamic storage of responses
|
2012-05-29 09:11:37 -07:00 |
|
John Safranek
|
c2292c31b0
|
fixed ASN.1 decoding bug in the basic ca constraint certificate extension
|
2012-05-25 16:32:10 -07:00 |
|
toddouska
|
28fb9fb0f7
|
new dev version
|
2012-05-25 14:43:36 -07:00 |
|
toddouska
|
02079a2f79
|
c++ cast fix
|
2012-05-25 13:38:44 -07:00 |
|
toddouska
|
82a56daaaf
|
ecc crls
|
2012-05-25 13:26:28 -07:00 |
|
toddouska
|
a1bb4e3f93
|
gcc-lots-o-warnings fixes
|
2012-05-25 13:09:27 -07:00 |
|
toddouska
|
6a62623c64
|
verify suite validity before server picks
|
2012-05-25 12:18:18 -07:00 |
|
toddouska
|
7332b4843c
|
remove hard tabs, bad sublime setting
|
2012-05-24 20:10:38 -07:00 |
|
toddouska
|
3f35c86520
|
crl signature check, be sure to load CAs first
|
2012-05-24 15:49:38 -07:00 |
|
John Safranek
|
0a31dc3a37
|
renumbered new error codes and dynamic data types
|
2012-05-24 14:36:40 -07:00 |
|
John Safranek
|
e8e575fd58
|
public OCSP functions are available, just return errors when OCSP not compiled in
|
2012-05-24 14:12:28 -07:00 |
|
toddouska
|
baddc07300
|
check next crl date status
|
2012-05-24 14:07:59 -07:00 |
|
John Safranek
|
f2110487b6
|
added dynamic types for OCSP data
|
2012-05-24 14:07:11 -07:00 |
|
toddouska
|
73ddd32539
|
add crl checkall processing
|
2012-05-24 12:45:10 -07:00 |
|
toddouska
|
db7773aa54
|
linux crl dir monitoring fixes
|
2012-05-23 16:55:26 -07:00 |
|
toddouska
|
0aea2607b5
|
don't install example certs and keys
|
2012-05-23 10:28:02 -07:00 |
|
toddouska
|
2b48f248c4
|
crl dir monitoring for linux and mac
|
2012-05-22 17:25:15 -07:00 |
|
John Safranek
|
97042d8661
|
OCSP use URL from cert as appropriate
|
2012-05-22 15:54:27 -07:00 |
|