John Safranek
|
85e8f1988a
|
leanpsk build removes cert code, moved ctaocrypt error strings to own file
|
2012-11-01 12:36:47 -07:00 |
|
toddouska
|
0e2c236e77
|
fix x64 windows warnings, make sure word is 64bit
|
2012-11-01 12:21:47 -07:00 |
|
Chris Conlon
|
f6304ae37a
|
add support for Freescale MQX
|
2012-11-01 11:23:42 -06:00 |
|
toddouska
|
01138a5c53
|
fix stack-check warnings for newer versions but fastmath still has some so take away warning for now
|
2012-10-30 17:35:12 -07:00 |
|
toddouska
|
f175bd302d
|
bump dev version
|
2012-10-30 16:23:59 -07:00 |
|
John Safranek
|
174618ebfb
|
added build option for leanPSK
|
2012-10-29 15:39:42 -07:00 |
|
toddouska
|
35b4f08049
|
add CyaSSL_send()/recv() with flags parameter
|
2012-10-26 15:09:58 -07:00 |
|
toddouska
|
d4d5243f4d
|
add user ability to set IO read/write flags
|
2012-10-25 14:17:11 -07:00 |
|
toddouska
|
0bbbea20be
|
switch sniffer buffers to dynamic, reduce holding memory if large number of sessions cached
|
2012-10-24 17:37:57 -07:00 |
|
toddouska
|
f969bc3645
|
if sniffer sees ACK for missing packet(s) set to error, can't recover
|
2012-10-24 13:33:11 -07:00 |
|
toddouska
|
3461c12083
|
Brian's c++/clang fixes, minor adjustments
|
2012-10-22 11:37:46 -07:00 |
|
toddouska
|
cb08eb672e
|
Merge branch 'master' of https://github.com/BrianAker/cyassl
|
2012-10-22 10:56:53 -07:00 |
|
Brian Aker
|
ac998a0f7c
|
Remove version (it is a generated file), also updated how visibility is done.
|
2012-10-20 21:24:28 -04:00 |
|
John Safranek
|
a92b639155
|
add optional null cipher support for RSA
|
2012-10-19 20:52:22 -07:00 |
|
Brian Aker
|
1bc0dc53f9
|
Fixes for hardening flags.
Additional fixes for using C++ compiler to compile.
Include file pcap.h now gates sniffer for build.
|
2012-10-19 22:00:17 -04:00 |
|
toddouska
|
c974d77213
|
add shorten 64 to 32 warnings back on with fixes
|
2012-10-19 12:44:23 -07:00 |
|
John Safranek
|
346a52a58c
|
add optional null cipher support for PSK
|
2012-10-19 10:37:21 -07:00 |
|
toddouska
|
e3f54f332e
|
Merge branch 'master' of github.com:cyassl/cyassl
|
2012-10-17 13:38:58 -07:00 |
|
toddouska
|
cc0c89b02d
|
psk test warning fixes
|
2012-10-17 13:38:49 -07:00 |
|
John Safranek
|
454bfa4abd
|
Merge branch 'master' of github.com:cyassl/cyassl
|
2012-10-17 13:14:34 -07:00 |
|
John Safranek
|
fe632a3f77
|
added non-blocking and session resume as example server and client command line options
|
2012-10-17 13:13:58 -07:00 |
|
toddouska
|
ef47f1a25e
|
fix with libz dynamic type
|
2012-10-17 10:09:28 -07:00 |
|
toddouska
|
c11620f9b4
|
Merge branch 'master' of github.com:cyassl/cyassl
|
2012-10-17 10:05:05 -07:00 |
|
toddouska
|
dc708f4f5b
|
turn on webserver build for some settings
|
2012-10-17 10:04:44 -07:00 |
|
John Safranek
|
8760e6ac3e
|
fixed build warnings & aes-gcm/ni conflict
|
2012-10-10 12:15:13 -07:00 |
|
John Safranek
|
a503f13321
|
update readme and version number
|
2012-10-10 08:55:53 -07:00 |
|
John Safranek
|
e673b1852a
|
fixed windows build warnings
|
2012-10-09 16:13:05 -07:00 |
|
John Safranek
|
400b1f1ae6
|
test client and server use select in non-blocking mode
|
2012-10-08 15:49:30 -07:00 |
|
John Safranek
|
397fbb743f
|
Merge branch 'master' of github.com:cyassl/cyassl
|
2012-10-03 15:33:23 -07:00 |
|
toddouska
|
e970cdfbc0
|
init cipher specs, check client key exchange state b4 process
|
2012-10-03 11:57:20 -07:00 |
|
John Safranek
|
f7c740df8f
|
Merge branch 'master' of github.com:cyassl/cyassl
|
2012-10-03 09:36:43 -07:00 |
|
toddouska
|
5f598e2649
|
SIGPIPE ignore if no SO_NOSIGPIPE
|
2012-10-02 22:02:50 -07:00 |
|
John Safranek
|
9bbca6acfb
|
Merge branch 'master' of github.com:cyassl/cyassl
|
2012-10-02 14:42:06 -07:00 |
|
John Safranek
|
6d1e485ef4
|
DTLS to use recvfrom and sendto in embed recv and send callbacks. Added support for storing dtls peer address.
|
2012-10-02 09:15:50 -07:00 |
|
toddouska
|
e0413df92a
|
add key setup flag for malicious or misbehaving handshake messages with new memory system
|
2012-10-01 11:32:05 -07:00 |
|
toddouska
|
2c25481e7d
|
add AesSetKeyDirect for Ctr and Direct when also using aesni
|
2012-09-28 15:01:07 -07:00 |
|
John Safranek
|
07c37ed50c
|
Merge branch 'master' of github.com:cyassl/cyassl
|
2012-09-27 11:42:57 -07:00 |
|
toddouska
|
d5d24df32a
|
nonblocking warning fixes
|
2012-09-27 10:31:38 -07:00 |
|
John Safranek
|
dfb84dff37
|
added accessors for CYASSL members for use in send/recv callbacks
|
2012-09-25 15:51:56 -07:00 |
|
John Safranek
|
cd0226924a
|
Merge branch 'master' of github.com:cyassl/cyassl
|
2012-09-21 16:37:34 -07:00 |
|
John Safranek
|
9643e58dad
|
fixed bug for Windows build
|
2012-09-21 16:36:48 -07:00 |
|
toddouska
|
4e19c234f4
|
fix new warnings on linux64
|
2012-09-21 13:29:04 -07:00 |
|
toddouska
|
7716da0881
|
warn fix
|
2012-09-20 15:39:15 -07:00 |
|
toddouska
|
19e50cd46a
|
fix old-style warnings
|
2012-09-20 12:11:42 -07:00 |
|
Brian Aker
|
5fce4edb68
|
This adds more compiler hardening flags (and fixes all of the issues
found in the process).
|
2012-09-19 23:38:41 -07:00 |
|
John Safranek
|
d1baa9f541
|
Merge branch 'master' of github.com:cyassl/cyassl
|
2012-09-18 08:46:11 -07:00 |
|
toddouska
|
53ccbddd01
|
allow meta PEM data at end of file too
|
2012-09-17 17:25:38 -07:00 |
|
John Safranek
|
40eb5b3cc5
|
DTLS resend allocates only enough buffer when needed
|
2012-09-17 09:52:20 -07:00 |
|
John Safranek
|
40972868ce
|
fix merge conflicts
|
2012-09-14 21:19:06 -07:00 |
|
John Safranek
|
7899252104
|
dtls handshake improvement
|
2012-09-14 19:30:50 -07:00 |
|
John Safranek
|
56ee2eaba8
|
added dtls message retry
|
2012-09-14 09:35:34 -07:00 |
|
John Safranek
|
97ca8439a4
|
Merge branch 'master' of github.com:cyassl/cyassl
|
2012-09-07 08:30:03 -07:00 |
|
John Safranek
|
407397e8be
|
adding DTLS retry timeout, added CYASSL pointer to recv/send callbacks
|
2012-09-06 22:41:55 -07:00 |
|
toddouska
|
8c32a5a2ed
|
make RNG in ssl dynamic, release after hs if stream or < tls1.1
|
2012-09-05 16:18:29 -07:00 |
|
toddouska
|
9ddf43268d
|
use dynamic memory for ssl ciphers, only use what needed
|
2012-09-05 12:30:51 -07:00 |
|
toddouska
|
c47afaf84f
|
make suites object dynamic, only use during handshake
|
2012-09-05 10:17:48 -07:00 |
|
toddouska
|
43a0a21fb6
|
add GetOjbectSize for CYASSL*
|
2012-09-05 08:26:08 -07:00 |
|
toddouska
|
6943229f87
|
reduce client key exchange stack use in non NTRU mode
|
2012-09-04 15:56:52 -07:00 |
|
toddouska
|
1ba8aff525
|
don't allow corrupted change cipher (fix by antoxa), don't allow multiple decryptions of corrupted messages
|
2012-09-04 11:37:47 -07:00 |
|
toddouska
|
2bee126062
|
clang scan-build fixes
|
2012-09-04 10:48:26 -07:00 |
|
John Safranek
|
6ce42706fe
|
Merge branch 'master' of github.com:cyassl/cyassl
|
2012-08-28 15:58:38 -07:00 |
|
toddouska
|
bdac618c3a
|
track version.h for pure windows build
|
2012-08-28 12:48:19 -07:00 |
|
John Safranek
|
820d934ae8
|
Merge branch 'master' of github.com:cyassl/cyassl
|
2012-08-28 09:37:02 -07:00 |
|
toddouska
|
0534d44c9e
|
don't assume non-Intel CodeWarrior BigEndian anymore
|
2012-08-23 17:05:58 -07:00 |
|
John Safranek
|
457e214777
|
Merge branch 'master' of github.com:cyassl/cyassl
|
2012-08-23 16:05:09 -07:00 |
|
John Safranek
|
561a7fc35d
|
drop out of order dtls packets
|
2012-08-23 15:50:56 -07:00 |
|
toddouska
|
f8ffb086ec
|
tcp errno for SafeRTOS/lwip
|
2012-08-23 09:45:23 -07:00 |
|
John Safranek
|
f6cca6049f
|
Merge branch 'master' of github.com:cyassl/cyassl
|
2012-08-22 16:16:49 -07:00 |
|
toddouska
|
87762e9012
|
SafeRTOS client test fixes
|
2012-08-22 11:07:40 -07:00 |
|
toddouska
|
7a12fb3e6b
|
IAR inlining and enum warning off
|
2012-08-20 16:58:11 -07:00 |
|
toddouska
|
f1ed3cefc4
|
SafeRTOS memory macros
|
2012-08-20 16:38:43 -07:00 |
|
John Safranek
|
c20eb88d3d
|
Merge branch 'master' of github.com:cyassl/cyassl
|
2012-08-17 14:21:17 -07:00 |
|
toddouska
|
690938ffd4
|
lsr fs macros
|
2012-08-17 13:45:31 -07:00 |
|
toddouska
|
03356be00b
|
fix verify_callback local declaration after beginning
|
2012-08-17 12:51:37 -07:00 |
|
toddouska
|
925ddb6626
|
Merge branch 'master' of github.com:cyassl/cyassl
|
2012-08-15 17:00:34 -07:00 |
|
toddouska
|
05692e1d6a
|
IAR fixes, SafeRTOS port, better LWIP support
|
2012-08-15 17:00:11 -07:00 |
|
John Safranek
|
c42792e0f1
|
fix compiler warnings
|
2012-08-14 13:51:56 -07:00 |
|
John Safranek
|
9d912970c8
|
Merge branch 'master' of github.com:cyassl/cyassl
|
2012-08-13 17:33:20 -07:00 |
|
Chris Conlon
|
7ec04c16b6
|
EBSnet RTIP support
|
2012-08-13 17:10:05 -06:00 |
|
John Safranek
|
70552ef8e1
|
added DTLS handshake message defragmentation
|
2012-08-10 10:24:31 -07:00 |
|
John Safranek
|
11df1d25d4
|
fixed the dtls handshake header handling
|
2012-08-09 13:27:30 -07:00 |
|
toddouska
|
18c3679444
|
fix DLTS cookieSz init problem
|
2012-08-08 16:56:19 -07:00 |
|
toddouska
|
08ff33894f
|
add ECDH static cipher suite tests including RSA signed ECDH, clean up code with haveECDSA -> haveECDSAsig
|
2012-08-08 15:09:26 -07:00 |
|
toddouska
|
d494254864
|
Merge branch 'master' of github.com:cyassl/cyassl
|
2012-08-08 11:36:08 -07:00 |
|
toddouska
|
eedc2f3e47
|
fix SESSION_CERTS and SHOW_CERTS example with CyaSSL API
|
2012-08-08 11:35:39 -07:00 |
|
John Safranek
|
3747246133
|
added the generation, verification, and client usage of DTLS handshake cookies
|
2012-08-08 10:38:12 -07:00 |
|
toddouska
|
706bd8a910
|
add cipher suite client/server driver
|
2012-08-06 17:14:31 -07:00 |
|
toddouska
|
644726a3fc
|
fix clang warnings on test.h
|
2012-08-02 17:37:08 -07:00 |
|
toddouska
|
bdf11587c2
|
Merge branch 'master' of github.com:cyassl/cyassl
|
2012-08-02 11:55:07 -07:00 |
|
toddouska
|
90446c3c5f
|
add -u for DTLS UPD command line client/server examples
|
2012-08-02 11:54:49 -07:00 |
|
Chris Conlon
|
afa27f0021
|
FreeRTOS threads support, windows simulator support
|
2012-08-02 09:54:41 -06:00 |
|
toddouska
|
90385bb4b3
|
fix windows build with command line examples
|
2012-08-01 17:33:49 -07:00 |
|
toddouska
|
aecdb33e4e
|
Merge branch 'master' of github.com:cyassl/cyassl
|
2012-08-01 12:55:32 -07:00 |
|
toddouska
|
68e5124644
|
change example client to command line options too, same as server
|
2012-08-01 12:55:13 -07:00 |
|
John Safranek
|
b8b5e7b873
|
Merge branch 'master' of github.com:cyassl/cyassl
|
2012-07-31 18:42:44 -07:00 |
|
toddouska
|
a5af2e3d51
|
add altname retrieval from peer cert
|
2012-07-31 17:45:48 -07:00 |
|
John Safranek
|
368afbb815
|
Merge branch 'master' of github.com:cyassl/cyassl
|
2012-07-31 10:11:21 -07:00 |
|
John Safranek
|
e716380bad
|
fixed a bug where aes-gcm required opensslExtra at build configure
|
2012-07-31 10:07:33 -07:00 |
|
John Safranek
|
9b8c5fb40e
|
aes-gcm: modified to use sequence number rather that a random explicit IV
|
2012-07-31 09:32:29 -07:00 |
|
toddouska
|
3401bba8a2
|
Merge branch 'master' of github.com:cyassl/cyassl
|
2012-07-30 11:59:11 -07:00 |
|
toddouska
|
f904c598ed
|
make server example more generic with short command opts
|
2012-07-30 11:58:57 -07:00 |
|
toddouska
|
e0328ef78a
|
allow zero legnth asn names, remove weird subjectcn len as zero means we own, use stored flag instead
|
2012-07-27 16:51:46 -07:00 |
|
toddouska
|
85889f7fb9
|
add md2 signature hash support
|
2012-07-27 14:01:02 -07:00 |
|
toddouska
|
e2eb1b78cc
|
Merge branch 'master' of github.com:cyassl/cyassl
|
2012-07-27 12:32:42 -07:00 |
|
toddouska
|
6e84ab1271
|
add max chain depth unique error, increase depth to 6
|
2012-07-27 12:32:22 -07:00 |
|
John Safranek
|
3cd231bdfc
|
Merge branch 'master' of github.com:cyassl/cyassl
|
2012-07-24 15:04:16 -07:00 |
|
toddouska
|
6d3c7d8c59
|
allow bigger MTU record for sniffer
|
2012-07-20 13:04:03 -07:00 |
|
John Safranek
|
489fbf17fe
|
Merge branch 'master' of github.com:cyassl/cyassl
|
2012-07-19 17:22:16 -07:00 |
|
John Safranek
|
cb178856a8
|
added 64-bit (default), 32-bit version, and 8-bit table based AES-GCM for faster operation. Selection made at configure.
|
2012-07-19 14:44:08 -07:00 |
|
toddouska
|
d408f01863
|
add mystrnstr for buffer searching of PEM with no null terminator
|
2012-07-17 12:01:37 -07:00 |
|
toddouska
|
d607ffaf02
|
fix MAX_MSG_EXTRA for SHA-256 digest with IV with dynamic buffers
|
2012-07-17 11:52:13 -07:00 |
|
John Safranek
|
ac79d3b145
|
replaced magic numbers with named constants, renamed some constants
|
2012-07-17 10:00:45 -07:00 |
|
John Safranek
|
87a8cfadd3
|
Used consistent constants.
|
2012-07-12 15:20:56 -07:00 |
|
John Safranek
|
aaad893804
|
fixed merge conflict
|
2012-07-12 08:39:57 -07:00 |
|
toddouska
|
1f0a32a7e3
|
use internal enum for cipher requires, move external enums back to starting at zero
|
2012-07-11 17:00:16 -07:00 |
|
John Safranek
|
1ac6db9d1d
|
added basic hello extension support for TLSv1.2, renumbered the algorithm enumerations to match RFC
|
2012-07-09 10:02:34 -07:00 |
|
John Safranek
|
eb302b91b0
|
Merge branch 'master' of github.com:cyassl/cyassl
|
2012-06-30 16:29:10 -07:00 |
|
toddouska
|
638c095737
|
better error output for temp keys or compression on sniffer
|
2012-06-29 10:59:48 -07:00 |
|
toddouska
|
22cb11f304
|
add hello_request and session_ticket handling to sniffer
|
2012-06-28 13:37:19 -07:00 |
|
John Safranek
|
00cda6ab72
|
tied SHA-384 into TLSv1.2 as appropriate
|
2012-06-27 14:41:16 -07:00 |
|
John Safranek
|
c2cf1fb708
|
added HMAC-SHA-384
|
2012-06-27 10:34:43 -07:00 |
|
John Safranek
|
3a9a195683
|
Initial draft of AES GCM cipher suites. Missing SHA-384 support.
|
2012-06-26 09:30:48 -07:00 |
|
John Safranek
|
918ea3a074
|
added the library framework for handling aes-gcm in TLS
|
2012-06-18 15:57:37 -07:00 |
|
John Safranek
|
e39e27bb5b
|
implemented AES-GCM Decrypt
|
2012-06-15 15:12:56 -07:00 |
|
John Safranek
|
76bb3b2558
|
added stubs for AES-GCM processing and build option
|
2012-06-13 21:31:32 -07:00 |
|
John Safranek
|
87b3df8621
|
Merge branch 'master' of github.com:cyassl/cyassl
|
2012-06-01 11:57:09 -07:00 |
|
John Safranek
|
6120f03173
|
ocsp response date checking
|
2012-06-01 11:57:03 -07:00 |
|
toddouska
|
6dd7eff1a8
|
add 64 bit misc prototypes for NO_INLINE
|
2012-06-01 11:07:29 -07:00 |
|
John Safranek
|
ca7bf0d01e
|
Merge branch 'master' of github.com:cyassl/cyassl
|
2012-05-31 17:29:41 -07:00 |
|
John Safranek
|
6d76b2f247
|
dynamic allocation of OCSP responses, response signature check
|
2012-05-31 17:29:32 -07:00 |
|
toddouska
|
fbc5c8d6dc
|
add SSL set version, different from ctx version
|
2012-05-31 15:24:25 -07:00 |
|
toddouska
|
f528f5a7d3
|
add CertManager Verify with Buffer
|
2012-05-29 12:04:48 -07:00 |
|
John Safranek
|
4b8bb6cdfe
|
fixed merge conflicts
|
2012-05-29 09:19:53 -07:00 |
|
John Safranek
|
9818fe4f55
|
changed DN hashing to cover the whole DER encoding per OCSP-RFC, OCSP changes towards dynamic storage of responses
|
2012-05-29 09:11:37 -07:00 |
|
toddouska
|
6a62623c64
|
verify suite validity before server picks
|
2012-05-25 12:18:18 -07:00 |
|
toddouska
|
3f35c86520
|
crl signature check, be sure to load CAs first
|
2012-05-24 15:49:38 -07:00 |
|
John Safranek
|
0a31dc3a37
|
renumbered new error codes and dynamic data types
|
2012-05-24 14:36:40 -07:00 |
|
toddouska
|
baddc07300
|
check next crl date status
|
2012-05-24 14:07:59 -07:00 |
|
John Safranek
|
f2110487b6
|
added dynamic types for OCSP data
|
2012-05-24 14:07:11 -07:00 |
|
toddouska
|
2b48f248c4
|
crl dir monitoring for linux and mac
|
2012-05-22 17:25:15 -07:00 |
|
John Safranek
|
708f38ac8d
|
added OCSP error codes
|
2012-05-22 15:52:08 -07:00 |
|
John Safranek
|
e48f5a31d6
|
Merge branch 'master' of github.com:cyassl/cyassl
|
2012-05-21 14:21:34 -07:00 |
|
Chris Conlon
|
4c79ac1f88
|
windows build fix
|
2012-05-21 15:13:11 -06:00 |
|
John Safranek
|
8bf2d13f89
|
Merge branch 'master' of github.com:cyassl/cyassl
|
2012-05-18 15:33:54 -07:00 |
|
toddouska
|
7e322558ef
|
windows build fixes
|
2012-05-18 11:48:38 -07:00 |
|
toddouska
|
fd70122378
|
add external der CRL checker
|
2012-05-18 11:03:44 -07:00 |
|
toddouska
|
26153ffad6
|
add crl monitor flag, handle no revoked case
|
2012-05-18 10:52:32 -07:00 |
|
John Safranek
|
a3e94f335b
|
fixed merge conflict
|
2012-05-18 10:25:16 -07:00 |
|
John Safranek
|
4b3a362705
|
adding OcspRequest data, check OCSP nonce extension, made ConfirmSignature generic, bug fixes
|
2012-05-18 10:18:56 -07:00 |
|
toddouska
|
5bc728b882
|
fix lots o warnings
|
2012-05-17 17:44:54 -07:00 |
|