mirrors/wolfssl
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
2,445 Commits 5 Branches 162 Tags 807 MiB
26a2688f0e
Commit Graph

454 Commits

Author SHA1 Message Date
John Safranek
0fd6aed9b6 Save more decoded data from certificate for later use with X.509 functions. 2013-11-19 14:44:55 -08:00
Chris Conlon
c0007ad6b3 move Coldfire SEC specific DES/3DES header sections into define 2013-11-19 14:34:05 -07:00
toddouska
d91e8ab38e add cert gen for ecc certs 2013-11-14 20:34:39 -08:00
toddouska
a7bcca84c3 add ecdsa cert signing 2013-11-14 15:00:22 -08:00
Chris Conlon
7a1fb428d1 fix ecc_set_type member name conflict 2013-11-14 11:10:29 -07:00
toddouska
cf4230b073 add ecc encrypt secure message exchange, hide ecEncCtx 2013-11-13 17:53:11 -08:00
toddouska
0ef44329ef add thread local storage to ecc fp cache, no locking required but cache is per thread, higher conncurrent performance but more memory needed 2013-11-11 17:00:35 -08:00
Takashi Kojo
23cada35ba Catch up master 2013-11-10 21:06:34 +09:00
toddouska
c2f9064ae4 Merge branch 'master' of github.com:cyassl/cyassl 2013-11-07 16:00:34 -08:00
toddouska
554adff672 add basic ecc encrypt/decrypt 2013-11-07 15:59:31 -08:00
Takashi Kojo
16bda74536 For MDK5 Pack 2013-11-07 10:29:01 +09:00
Takashi Kojo
f26cf50ff2 Merge branch 'master' of https://github.com/cyassl/cyassl into MDK5 2013-11-06 10:22:21 +09:00
John Safranek
913e200cd0 X.509 Additions: 
* CyaSSL_X509_d2i()
* CyaSSL_X509_d2i_fp()
* CyaSSL_X509_version()
* CyaSSL_X509_get_notBefore()
* CyaSSL_X509_get_notAfter()
* CyaSSL_X509_STORE_new()
* CyaSSL_X509_STORE_free()
* CyaSSL_X509_STORE_add_cert()
* CyaSSL_X509_STORE_set_default_paths()
* CyaSSL_X509_get_pubkey()
* CyaSSL_EVP_PKEY_free()
* CyaSSL_X509_NAME_get_text_by_NID()
* CyaSSL_X509_NAME_entry_count()
* CyaSSL_X509_verify_cert()
* CyaSSL_X509_STORE_CTX_new()
* CyaSSL_X509_STORE_CTX_init()
* CyaSSL_X509_STORE_CTX_free()
 2013-11-04 11:02:17 -08:00
toddouska
5e00d62ea3 add HMAC-KDF 2013-10-31 18:03:00 -07:00
toddouska
f402d7eed9 add ecc export pirvate only 2013-10-29 16:44:33 -07:00
toddouska
9438d0d41b add Microchip MPLAB Harmony support 2013-10-28 11:03:50 -07:00
Takashi Kojo
b4a03de8ee port.h for MDK5 2013-10-24 20:55:21 +09:00
Takashi Kojo
558735c862 port.[ch] for MDK5 2013-10-24 20:33:36 +09:00
Takashi Kojo
2f98233825 For MDK5 2013-10-24 18:50:26 +09:00
toddouska
c039b0106a add HC-128 Blake2b 256 cipher suite for speed test 2013-10-23 17:13:54 -07:00
Chris Conlon
f45d0709b3 case insensitivity fix for domain name check 2013-10-18 15:17:19 -06:00
John Safranek
33bcc76a07 Merge branch 'master' of github.com:cyassl/cyassl 2013-10-02 15:27:10 -07:00
Chris Conlon
3e12f43342 add CyaSSL_GetHmacMaxSize for JNI wrapper 2013-09-25 14:20:36 -06:00
toddouska
363f157f50 fix sniffer build w/o fastmath 2013-09-23 13:37:04 -07:00
toddouska
bdb8b9396c Merge branch 'master' of github.com:cyassl/cyassl 2013-09-20 10:37:16 -07:00
toddouska
d1fcce2f73 more settings 2013-09-20 10:36:05 -07:00
John Safranek
5e4ca53496 clean up Windows build issues with OCSP 2013-09-18 14:47:51 -07:00
John Safranek
b0f94a34e6 Deleted stray semicolon from struct Des definition 2013-09-17 16:42:52 -07:00
Chris Conlon
ee78b108cf CTaoCrypt test mods for MQX 2013-09-16 15:48:36 -06:00
John Safranek
e564b614bf Decode the serialNumber field in the X.509 names 2013-09-15 22:10:58 -07:00
toddouska
74e7ba8536 fix Kojo-san pull errors 2013-09-11 10:07:33 -07:00
kojo
0869da34a0 Coldfire SEC 2013-09-11 17:06:28 +09:00
John Safranek
03d7c694e8 Merge branch 'master' of github.com:cyassl/cyassl 2013-09-10 16:49:40 -07:00
John Safranek
d3db1a42de Added GMAC wrapper functions around AES-GCM 2013-09-10 16:47:39 -07:00
toddouska
bab790ab87 add port.c to visual studio builds 2013-09-09 13:48:28 -07:00
toddouska
6e05d4317f add proper locking to fp ecc 2013-09-06 16:53:33 -07:00
toddouska
a14af5f0b0 move mutex to port layer at crypto level 2013-09-06 16:38:27 -07:00
toddouska
782cb0e077 Merge branch 'master' of github.com:cyassl/cyassl 2013-09-06 14:25:51 -07:00
toddouska
46be3b8508 add fixed point ecc cache, --enable-fpecc, add locking down to crypt level next 2013-09-06 14:24:31 -07:00
Moisés Guimarães
d7a08b1a76 centralizing MAX_DIGEST_SIZE definition in hmac.h 2013-09-06 15:53:46 -03:00
John Safranek
f2c75a9e87 ECDSA signatures need a zero padding for the ASN.1 storage of the R and S values 2013-09-05 15:00:01 -07:00
toddouska
e93a0640f1 break up huge math into individual parts so can add piece by piece, e.g., ECC256 2013-09-03 13:13:13 -07:00
toddouska
e98f5f95c2 add public key callbacks for ecc sign/verify, examples 2013-08-22 18:19:39 -07:00
toddouska
5c5cee0789 use external CYASSL_MAX_ERROR_SZ for buffer size 2013-08-06 11:48:00 -07:00
toddouska
505b1a8a67 fix ecc sign/hash truncation with odd bit sizes when hash length is longer than key size 2013-07-25 15:59:09 -07:00
John Safranek
43f320d5e2 SEP Extensions 
1. Added configure option to enable SEP extensions.
2. Enabled KEEP_PEER_CERT for the SEP configuration.
3. Copy the Certificate Policy extension into the cert as the
   device type.
4. Copy an other type Alt Name extension into the cert as the
   hwType and hwSerialNumber, if the alt name has a
   hardwareModuleName OID.
 2013-07-09 13:23:56 -07:00
toddouska
98e6ad3ee9 add comverge switch for settings 2013-06-27 10:28:58 -07:00
toddouska
d0c2e9b7a2 switch comverge settings to ecc by default 2013-06-26 17:05:30 -07:00
toddouska
b51d6f3b8f add NetX default IO context handling 2013-06-24 14:00:48 -07:00
toddouska
85d25798a5 update ntru cert expires dates, update crls while at it, don't turn on skid for crls since openssl/firefox don't use by default and cyassl needs crl extension parsing 2013-06-17 14:48:51 -07:00
toddouska
7f7c595d10 differentiate between THREADX and RTP_SYS 2013-06-14 13:45:25 -07:00
toddouska
8df0e43384 fix merge differences from this week 2013-05-22 15:50:13 -07:00
toddouska
d2003bb8b7 merge in sni 2013-05-21 14:37:50 -07:00
Chris Conlon
a4c6ed0dda add support for Microchip TCP/IP 6.0 beta 2013-05-17 10:59:18 -06:00
toddouska
cfdfa7b2b3 pull in Kojo MDK-ARM projects, changes 2013-05-16 09:47:27 -07:00
Chris Conlon
091c7a7ef3 separate STM32F2 hardware hash support, disable by default 2013-05-15 10:48:35 -06:00
toddouska
32705fb380 make sure pwdbased w/o fastmath works like fastmath define wise 2013-05-10 11:00:37 -07:00
toddouska
a0c630b4ee add cert cache persistence 2013-05-02 11:34:26 -07:00
John Safranek
d2d25b9b83 refine the SKID/AKID support 2013-04-29 17:09:15 -07:00
John Safranek
87048698e5 use subject key id and authentication key id to ID CA certs in the signers list instead of subject name hashes. 2013-04-29 12:08:16 -07:00
toddouska
05dd84598b turn CA signer list into CA signer hash table, defaults CA_TABLE_SIZE to 11 2013-04-25 15:36:33 -07:00
toddouska
9dbf6a5e10 fix Signer hash size w/o SHA, fix GetCA caList b4 lock 2013-04-25 14:47:09 -07:00
John Safranek
8e5532eb42 Merge branch 'master' of github.com:cyassl/cyassl 2013-04-24 10:37:55 -07:00
John Safranek
c27ebe546d find the subject id and authority subject id extentions when decoding a certificate 2013-04-24 10:37:11 -07:00
toddouska
bad1c32df2 add session cert conversion to x509, and free x509 for dynamic variety 2013-04-23 11:50:06 -07:00
toddouska
71a1abebf5 break up sig confirm errors into no sig, crl, and ocsp specific 2013-04-18 08:38:28 -07:00
toddouska
f8ba117cef cleanup 64/128bit type decls for big int libs 2013-04-17 17:26:33 -07:00
Chris Conlon
62a071262c move CYASSL_USER_IO back to MICROCHIP_PIC32 2013-04-17 10:19:18 -06:00
toddouska
8eee0b1d4c add blake2 headers to dist 2013-04-15 13:22:11 -07:00
John Safranek
a74ac2b22c added case to DerToPem() to add EC header and footer to the PEM output 2013-04-11 14:03:18 -07:00
toddouska
a2bd6e786d fix leanpsk NO_SHA build 2013-04-10 12:42:51 -07:00
Chris Conlon
27d6c727e0 add MICROCHIP_TCPIP 2013-04-10 09:16:11 -06:00
John Safranek
2dd22938d6 rearranged the HMAC header to tolerate having missing hash types 2013-04-03 17:33:50 -07:00
John Safranek
bf69de7054 if using SHA-512 but not SHA-384, fix so that HMAC still works 2013-04-03 16:41:44 -07:00
toddouska
332fd68347 add lowmem to stacksize build 2013-03-28 11:38:27 -07:00
toddouska
f396de1191 add DTLS support for alignment 2013-03-27 16:58:27 -07:00
toddouska
8a2936ebd4 Merge branch 'master' of github.com:cyassl/cyassl 2013-03-27 15:12:44 -07:00
toddouska
82e3c00075 add CYASSL_GENERAL_ALIGNMENT detection and setting for TLS alignment attempt 2013-03-27 15:11:49 -07:00
John Safranek
2f6636559d Merge branch 'master' of github.com:cyassl/cyassl 2013-03-27 10:22:56 -07:00
John Safranek
7d287a6ba9 modified test port number to allow concurrent testing 2013-03-26 22:00:39 -07:00
toddouska
14b4bb3b0f change rabbit and hc128 to return values for key and process, will add error rets for alignment issues 2013-03-26 14:42:09 -07:00
toddouska
f601b7bfda move aesni cbc encrypt align check down to crypto layer 2013-03-26 14:13:01 -07:00
toddouska
6bc7ba1592 change AesCBC end/dec to return status, will add failure cases with align checks 2013-03-26 12:36:39 -07:00
toddouska
72926b1eed make sure blake2 calls denote it's the 'b' version, blake2b 2013-03-25 11:35:33 -07:00
toddouska
d7c01be8bb blake2 ctc api, test vecs 2013-03-22 13:30:44 -07:00
toddouska
d8b85da693 remove c++ comments, switch to c 2013-03-22 12:10:53 -07:00
toddouska
d6deb690e6 Merge branch 'master' into blake2 2013-03-22 10:20:01 -07:00
toddouska
ae9265fa44 add macpi huffman 2013-03-20 14:37:05 -07:00
toddouska
7d7a72f2a6 add hmac sha512 2013-03-20 12:26:55 -07:00
John Safranek
692dc09d10 Merge branch 'compress' 2013-03-20 10:05:49 -07:00
John Safranek
615f652bd0 filled out our Compress and DeCompress functions, updated the test case 2013-03-20 09:58:31 -07:00
John Safranek
fc928e7725 added stubs and a test for ctaocrypt compress 2013-03-19 16:25:58 -07:00
toddouska
4f9e915bc1 add KEEP_PEER_CERT flag for non opensslextra peer cert storage, ssn3 2013-03-19 12:18:52 -07:00
toddouska
2dfec3c6f1 add CYASSL prefix to WORD/BIT enums 2013-03-13 16:49:20 -07:00
toddouska
b9a7407d31 make sure FreeRTOS defines aren't redefs 2013-03-13 13:14:01 -07:00
toddouska
dbe83c7405 fix typos 2013-03-12 15:56:58 -07:00
toddouska
a868451d72 add NO_64BIT flag to normal and fastmath to use a 32 bit accumulator for multiply when 64 bit actually slows it down 2013-03-12 15:52:47 -07:00
toddouska
ec0a4d45cb add --enable-memory, build, disable runtime memory cbs, check leanpsk 2013-03-12 13:31:14 -07:00
toddouska
f232ff84b4 add --enable-pwdbased and build, opensslextra needs 2013-03-11 17:01:05 -07:00
toddouska
85b3346bbf NO_RSA build, cipher suite tests need work for this build optoin, ssn2 2013-03-07 17:44:40 -08:00
toddouska
43b8300896 windows shadow fix 2013-03-04 12:30:36 -08:00
toddouska
98e766e770 our type changes 2013-02-28 17:51:35 -08:00
toddouska
e947c86e67 add license, bring up to date 2013-02-22 15:52:20 -08:00
toddouska
48303918c2 Merge branch 'master' into blake2 2013-02-22 15:22:02 -08:00
John Safranek
6ff39cffe4 Merge branch 'dtls' 
Conflicts:
	cyassl/ctaocrypt/types.h
 2013-02-20 17:08:22 -08:00
John Safranek
982b72796e added list for DTLS handshake datagram reordering 2013-02-07 11:26:02 -08:00
toddouska
44e0d7543c change copyright name with name change 2013-02-05 12:44:17 -08:00
toddouska
f4f13371f9 update copyright date 2013-02-04 14:51:41 -08:00
Todd Ouska
44b6593fe5 add cavium ciphers to SSL, and example client 2013-02-01 12:21:38 -08:00
Todd Ouska
01703281cc add cavium RSA to ctaocrypt 2013-01-31 15:55:29 -08:00
Chris Conlon
5d29bf1e49 add MPLAB X projects, PIC32 GenerateSeed() 2013-01-30 18:02:18 -07:00
Todd Ouska
a361f5c4bf initial cavium, crypto only, no rsa 2013-01-29 16:22:49 -08:00
toddouska
9f77aea1f8 Merge branch 'master' into blake2 2013-01-21 10:56:46 -08:00
John Safranek
2e2de4cf4d added the cammelia cipher, updated the test cases 2013-01-18 17:26:49 -08:00
John Safranek
b8b968d77f added tests for setting Camellia key and IV 2013-01-18 13:48:30 -08:00
John Safranek
f65b0fc092 brought the camellia interface to match AES's more 2013-01-18 09:57:41 -08:00
John Safranek
d5bf944630 enabled the proper Camellia test, but mocked the encrypt and decrypt functions to pass the test 2013-01-17 22:09:55 -08:00
John Safranek
425d418dee added stubs, tests, and benchmark for Camellia to ctaocrypt 2013-01-17 21:52:31 -08:00
toddouska
fe0772bcbf Merge branch 'master' into blake2 2013-01-17 16:08:47 -08:00
John Safranek
eb221238c2 separated TLS-AEAD and AES-GCM so TLS-AEAD can also use AES-CCM 2013-01-14 15:59:53 -08:00
John Safranek
d1515f8ee6 Merge branch 'ccm' 2013-01-10 16:42:03 -08:00
John Safranek
05165bc09e Added AES-CCM encrypt/decrypt, test fuction, benchmark function. 2013-01-10 16:38:52 -08:00
John Safranek
e85caee845 added tests, prototypes, and stubs for AES-CCM 2013-01-08 12:16:53 -08:00
toddouska
eeb11a6e51 fix rabbit and hc128 CTaoCrypt test buffers for aligned access only, allow TLS on intel w/o aligned stream buffers, otherwise align 2013-01-07 14:06:58 -08:00
John Safranek
ac227910f1 modify OCSP to use a replacable callback to perform the OCSP transaction 2013-01-03 17:19:56 -08:00
toddouska
0c363a17f1 init blake2 2012-12-31 13:10:47 -08:00
John Safranek
e70838e984 Merge branch 'ecc' 2012-12-27 11:41:20 -08:00
John Safranek
581f91b984 Merge branch 'master' of github.com:cyassl/cyassl 2012-12-27 11:40:17 -08:00
Chris Conlon
254d53bb18 add CYASSL_STM32F2 define, LwIP errno.h 2012-12-27 10:06:29 -07:00
John Safranek
d993ee1969 Merge branch 'master' of github.com:cyassl/cyassl 2012-12-26 21:53:20 -08:00
John Safranek
cf114b92df made the ecc keys in the CYASSL struct dynamic 2012-12-26 16:39:19 -08:00
Chris Conlon
ea3dc3d834 add STM32F2 AES, DES, 3DES support 2012-12-26 15:18:57 -07:00
Chris Conlon
a7e0f4e483 add STM32F2 SHA1, MD5 support 2012-12-26 15:16:39 -07:00
John Safranek
4e657debfc added the ability to disable OCSP nonces 2012-12-19 10:18:11 -08:00
John Safranek
f71376a42b Merge branch 'master' of github.com:cyassl/cyassl 2012-11-30 15:48:56 -08:00
John Safranek
8c97675979 Lean PSK trimming 
1. leave out memory and io callback functions, expect user supplied
2. leave out cert and DTLS related functions
3. SHA-1 compile option to use slower, rolled-up transform
 2012-11-30 15:45:43 -08:00
toddouska
f23013b8a7 remove runtime memory callback use for leanpsk 2012-11-30 15:41:01 -08:00
John Safranek
66a3ce2ec1 added SHA-256 based RNG when setting NO_RC4 compile flag 2012-11-27 22:17:25 -08:00
John Safranek
f8f7f69f48 compile option to leave out MD5 and SSL code 2012-11-26 18:40:43 -08:00
Chris Conlon
11c8e5afb8 add support for Kinetis K70 HW RNGA 2012-11-02 17:49:30 -06:00
John Safranek
9aa8b71525 Merge branch 'nocerts' 2012-11-01 15:47:02 -07:00
John Safranek
134c6b8b1b cleaning warnings in OCSP build 2012-11-01 15:03:29 -07:00
toddouska
ae905d70c4 crl warning fixes 2012-11-01 14:14:40 -07:00
toddouska
0e2c236e77 fix x64 windows warnings, make sure word is 64bit 2012-11-01 12:21:47 -07:00
Chris Conlon
f6304ae37a add support for Freescale MQX 2012-11-01 11:23:42 -06:00
toddouska
01138a5c53 fix stack-check warnings for newer versions but fastmath still has some so take away warning for now 2012-10-30 17:35:12 -07:00
John Safranek
174618ebfb added build option for leanPSK 2012-10-29 15:39:42 -07:00
toddouska
ef47f1a25e fix with libz dynamic type 2012-10-17 10:09:28 -07:00
toddouska
c11620f9b4 Merge branch 'master' of github.com:cyassl/cyassl 2012-10-17 10:05:05 -07:00
toddouska
dc708f4f5b turn on webserver build for some settings 2012-10-17 10:04:44 -07:00
John Safranek
8760e6ac3e fixed build warnings & aes-gcm/ni conflict 2012-10-10 12:15:13 -07:00
John Safranek
9bbca6acfb Merge branch 'master' of github.com:cyassl/cyassl 2012-10-02 14:42:06 -07:00
John Safranek
6d1e485ef4 DTLS to use recvfrom and sendto in embed recv and send callbacks. Added support for storing dtls peer address. 2012-10-02 09:15:50 -07:00
toddouska
2c25481e7d add AesSetKeyDirect for Ctr and Direct when also using aesni 2012-09-28 15:01:07 -07:00
toddouska
4e19c234f4 fix new warnings on linux64 2012-09-21 13:29:04 -07:00
John Safranek
40972868ce fix merge conflicts 2012-09-14 21:19:06 -07:00
John Safranek
56ee2eaba8 added dtls message retry 2012-09-14 09:35:34 -07:00
toddouska
8c32a5a2ed make RNG in ssl dynamic, release after hs if stream or < tls1.1 2012-09-05 16:18:29 -07:00
toddouska
9ddf43268d use dynamic memory for ssl ciphers, only use what needed 2012-09-05 12:30:51 -07:00
toddouska
c47afaf84f make suites object dynamic, only use during handshake 2012-09-05 10:17:48 -07:00
toddouska
2bee126062 clang scan-build fixes 2012-09-04 10:48:26 -07:00
toddouska
0534d44c9e don't assume non-Intel CodeWarrior BigEndian anymore 2012-08-23 17:05:58 -07:00
toddouska
f8ffb086ec tcp errno for SafeRTOS/lwip 2012-08-23 09:45:23 -07:00
toddouska
87762e9012 SafeRTOS client test fixes 2012-08-22 11:07:40 -07:00
toddouska
7a12fb3e6b IAR inlining and enum warning off 2012-08-20 16:58:11 -07:00
toddouska
f1ed3cefc4 SafeRTOS memory macros 2012-08-20 16:38:43 -07:00
toddouska
690938ffd4 lsr fs macros 2012-08-17 13:45:31 -07:00
toddouska
925ddb6626 Merge branch 'master' of github.com:cyassl/cyassl 2012-08-15 17:00:34 -07:00
toddouska
05692e1d6a IAR fixes, SafeRTOS port, better LWIP support 2012-08-15 17:00:11 -07:00
Chris Conlon
7ec04c16b6 EBSnet RTIP support 2012-08-13 17:10:05 -06:00
Chris Conlon
afa27f0021 FreeRTOS threads support, windows simulator support 2012-08-02 09:54:41 -06:00
John Safranek
b8b5e7b873 Merge branch 'master' of github.com:cyassl/cyassl 2012-07-31 18:42:44 -07:00
toddouska
a5af2e3d51 add altname retrieval from peer cert 2012-07-31 17:45:48 -07:00
John Safranek
368afbb815 Merge branch 'master' of github.com:cyassl/cyassl 2012-07-31 10:11:21 -07:00
John Safranek
9b8c5fb40e aes-gcm: modified to use sequence number rather that a random explicit IV 2012-07-31 09:32:29 -07:00
toddouska
e0328ef78a allow zero legnth asn names, remove weird subjectcn len as zero means we own, use stored flag instead 2012-07-27 16:51:46 -07:00
toddouska
85889f7fb9 add md2 signature hash support 2012-07-27 14:01:02 -07:00
John Safranek
489fbf17fe Merge branch 'master' of github.com:cyassl/cyassl 2012-07-19 17:22:16 -07:00
John Safranek
cb178856a8 added 64-bit (default), 32-bit version, and 8-bit table based AES-GCM for faster operation. Selection made at configure. 2012-07-19 14:44:08 -07:00
toddouska
d408f01863 add mystrnstr for buffer searching of PEM with no null terminator 2012-07-17 12:01:37 -07:00
John Safranek
87a8cfadd3 Used consistent constants. 2012-07-12 15:20:56 -07:00
John Safranek
00cda6ab72 tied SHA-384 into TLSv1.2 as appropriate 2012-06-27 14:41:16 -07:00
John Safranek
c2cf1fb708 added HMAC-SHA-384 2012-06-27 10:34:43 -07:00
John Safranek
e39e27bb5b implemented AES-GCM Decrypt 2012-06-15 15:12:56 -07:00
John Safranek
76bb3b2558 added stubs for AES-GCM processing and build option 2012-06-13 21:31:32 -07:00
John Safranek
87b3df8621 Merge branch 'master' of github.com:cyassl/cyassl 2012-06-01 11:57:09 -07:00
John Safranek
6120f03173 ocsp response date checking 2012-06-01 11:57:03 -07:00
toddouska
6dd7eff1a8 add 64 bit misc prototypes for NO_INLINE 2012-06-01 11:07:29 -07:00
John Safranek
6d76b2f247 dynamic allocation of OCSP responses, response signature check 2012-05-31 17:29:32 -07:00
John Safranek
4b8bb6cdfe fixed merge conflicts 2012-05-29 09:19:53 -07:00
John Safranek
9818fe4f55 changed DN hashing to cover the whole DER encoding per OCSP-RFC, OCSP changes towards dynamic storage of responses 2012-05-29 09:11:37 -07:00
toddouska
3f35c86520 crl signature check, be sure to load CAs first 2012-05-24 15:49:38 -07:00
John Safranek
0a31dc3a37 renumbered new error codes and dynamic data types 2012-05-24 14:36:40 -07:00
toddouska
baddc07300 check next crl date status 2012-05-24 14:07:59 -07:00
John Safranek
f2110487b6 added dynamic types for OCSP data 2012-05-24 14:07:11 -07:00
toddouska
2b48f248c4 crl dir monitoring for linux and mac 2012-05-22 17:25:15 -07:00
John Safranek
8bf2d13f89 Merge branch 'master' of github.com:cyassl/cyassl 2012-05-18 15:33:54 -07:00
toddouska
26153ffad6 add crl monitor flag, handle no revoked case 2012-05-18 10:52:32 -07:00
John Safranek
a3e94f335b fixed merge conflict 2012-05-18 10:25:16 -07:00
John Safranek
4b3a362705 adding OcspRequest data, check OCSP nonce extension, made ConfirmSignature generic, bug fixes 2012-05-18 10:18:56 -07:00
toddouska
5bc728b882 fix lots o warnings 2012-05-17 17:44:54 -07:00
toddouska
839b5a4478 add set dates from buffer 2012-05-17 14:41:45 -07:00
toddouska
08d9e57bf6 add crl missing url callback 2012-05-16 17:35:51 -07:00
toddouska
c4ea674fc8 Merge branch 'master' of github.com:cyassl/cyassl 2012-05-16 17:05:03 -07:00
toddouska
3ec2b9dbbc crl stage 2 2012-05-16 17:04:56 -07:00
John Safranek
43592def99 Certificate extension parsing addition 2012-05-14 15:38:59 -07:00
John Safranek
ea2585963f flattens the serial number 2012-05-08 19:02:25 -07:00
John Safranek
4feeeeda55 OCSP request creation almost complete, added ocsp revoke error code 2012-05-08 18:32:57 -07:00
John Safranek
81a6ed4577 added the hash of the issuer's public key to the decoded cert 2012-05-08 15:12:33 -07:00
John Safranek
5aad32eb28 Merge branch 'master' of github.com:cyassl/cyassl 2012-05-07 17:02:47 -07:00
toddouska
2a817adfcc ssh non ecc 2012-05-07 16:35:23 -07:00
John Safranek
f9985f5399 merge fix 2012-05-05 14:49:17 -07:00
toddouska
4fe81df45c basic extneral cert manager added 2012-05-03 18:07:31 -07:00
toddouska
a54f51d886 first static ECDH suite 2012-05-03 08:18:59 -07:00
John Safranek
7ee09ea23c Merge branch 'master' of github.com:cyassl/cyassl 2012-05-02 21:59:54 -07:00
toddouska
2a5db9371c BN help 2012-05-02 15:11:20 -07:00
John Safranek
9c5bcca1ab updates to OCSP 2012-05-02 14:45:30 -07:00
John Safranek
ec5b3fe313 Merge branch 'master' of github.com:cyassl/cyassl 2012-04-27 15:46:27 -07:00
John Safranek
3fdca1f714 added sha384 and sha512 to certificate checking 2012-04-27 13:49:35 -07:00
John Safranek
f987da38d8 Merge branch 'master' of github.com:cyassl/cyassl 2012-04-27 10:08:09 -07:00
toddouska
81be167ee2 init ssh changes 2012-04-26 16:27:27 -07:00
toddouska
dd431dbeff merge conflict 2012-04-26 15:01:00 -07:00
toddouska
0f5b0ff8c3 sha384 plus merge changes 2012-04-26 14:58:29 -07:00
John Safranek
27f9cf01af Changed the OCSP fcn protos to be LOCAL, not API 2012-04-26 14:16:34 -07:00
John Safranek
cbde04a06b added OCSP Response simple parsing 2012-04-26 13:52:48 -07:00
toddouska
3001804c51 make SetAltNames optional since need bigger buffer with -DCYASSL_ALT_NAMES 2012-04-05 12:48:28 -07:00
toddouska
f8e610493c add ability to set Temp EC-DHE key size in octets for ctx or ssl, 20 - 66 allowed for 160bit - 521bit 2012-02-14 12:46:32 -08:00
toddouska
84614da13e increase copyright date 2012 2012-02-13 11:54:10 -08:00
toddouska
bce2508878 add path handling (basic) for load_verify_locations() 2012-02-08 18:07:20 -08:00
toddouska
f5e53de098 export Base64_Encode for general use 2012-01-27 10:10:07 -08:00
toddouska
247d5b5609 some root CAs loaded by user won't have basic constraint, allow 2011-12-06 15:17:10 -08:00
toddouska
e82516ad2a fix ecc pkcs8 import 2011-12-01 13:10:01 -08:00
toddouska
f4a9002bdb ecc fixed point compile fixes, still need ecc_mul2add 2011-11-23 16:11:56 -08:00
toddouska
3dd338a062 add aes counter mode 2011-11-22 17:02:36 -08:00
toddouska
185e23fc58 microchip pic32 port 2011-11-09 17:32:24 -08:00
toddouska
c603efd023 normal math default mp_digit to 32 bit int instead of long 2011-11-07 11:52:17 -08:00
toddouska
11d15f32b9 check basic contsraint CA flag before adding as signer even if explicit add 2011-11-02 14:57:14 -07:00
toddouska
f97759c9e1 hostapd adds 2011-10-31 17:33:40 -07:00
toddouska
3ac390c147 add direct AES one block access and ECB DES for compatibility 2011-10-26 17:10:44 -07:00
toddouska
d3bb4bf4d4 move signature algo types to public header and have test cert gen use SHA256wRSA as example 2011-10-26 13:23:03 -07:00
toddouska
494d048980 warning fixes 2011-10-11 12:06:04 -07:00
toddouska
2021461d7c add alt name copying for cert gen 2011-10-07 16:50:32 -07:00
toddouska
340f275a8a add fastmath to bump, add fastmath FP_MAX_BITS runtime check 2011-10-04 12:29:59 -07:00
Todd A Ouska
762d6a3e00 fix up for pending release 2011-09-23 10:37:26 -07:00
Todd A Ouska
526fe9b6d6 have connect_cert verify 2011-09-07 18:06:21 -07:00
Todd A Ouska
d29d9b73e1 conditional byte typedef 2011-09-07 16:03:17 -07:00
Todd A Ouska
1f2109e5fd add cert gen CA extenstion basic constraint true 2011-09-06 17:30:57 -07:00
Todd A Ouska
3eb3a70074 try to set sizeof long / long long if user doesn't set 2011-08-29 15:37:12 -07:00
Todd A Ouska
dbbdd83a57 check sizeof long / long long against 64 bit width for mismatch 2011-08-29 11:11:55 -07:00
Todd A Ouska
d0193ba8eb add math library runtime settings check 2011-08-29 10:39:40 -07:00