Chris Conlon
a7e0f4e483
add STM32F2 SHA1, MD5 support
2012-12-26 15:16:39 -07:00
Chris Conlon
acf1d07eea
add STM32F2 RNG support
2012-12-26 15:08:33 -07:00
John Safranek
831c760edc
Merge branch 'ocsp'
...
Fixes some bugs in the ocsp code, and adds a new option to skip nonces.
2012-12-20 16:26:49 -08:00
John Safranek
afbc34f0e0
changed polarity on ocsp thisDate check to allow very timely responses
2012-12-20 15:56:57 -08:00
John Safranek
5164c15216
fixed missed initialization when not using ocsp nonces
2012-12-20 15:29:15 -08:00
toddouska
902069783e
allow leanpsk dist to build
2012-12-20 11:46:25 -08:00
John Safranek
26cf98c878
removed check against producedAt date in ocsp, check not required
2012-12-19 11:28:33 -08:00
John Safranek
4e657debfc
added the ability to disable OCSP nonces
2012-12-19 10:18:11 -08:00
toddouska
726d686b07
fix clang scan-build problems
2012-12-12 18:03:32 -08:00
John Safranek
ed39a1652c
deleted a stray index increment throwing off DecodeResposeData processing
2012-12-12 09:21:57 -08:00
toddouska
87fbf7df80
fix libtool leftovers for distclen when shared mode
2012-12-06 17:52:36 -08:00
John Safranek
8c97675979
Lean PSK trimming
...
1. leave out memory and io callback functions, expect user supplied
2. leave out cert and DTLS related functions
3. SHA-1 compile option to use slower, rolled-up transform
2012-11-30 15:45:43 -08:00
toddouska
c50f73b4cb
fix valgrind leanpsk read error
2012-11-29 17:18:41 -08:00
John Safranek
77bf77dfd7
Merge branch 'master' of github.com:cyassl/cyassl
2012-11-27 22:19:01 -08:00
John Safranek
66a3ce2ec1
added SHA-256 based RNG when setting NO_RC4 compile flag
2012-11-27 22:17:25 -08:00
toddouska
f5590f0abd
crl unused fix
2012-11-27 11:13:28 -08:00
John Safranek
7d4a5a6ec8
added a missed break to a switch case
2012-11-26 21:49:31 -08:00
John Safranek
f8f7f69f48
compile option to leave out MD5 and SSL code
2012-11-26 18:40:43 -08:00
John Safranek
f046e1d0be
Merge branch 'new-random'
2012-11-26 16:31:33 -08:00
John Safranek
8b8c6bfa0f
optionally remove MD5 benchmark
2012-11-26 16:28:22 -08:00
John Safranek
699b794a4a
Added tests for HMAC-SHA256 and HMAC-SHA384
2012-11-21 14:30:20 -08:00
John Safranek
b96f0c6386
added HMAC-SHA test cases, made the HMAC-MD5 test cases conditional on NO_MD5 flag
2012-11-21 14:02:47 -08:00
toddouska
da386691a1
allow no end of line on last line of PEMs
2012-11-20 12:45:24 -08:00
toddouska
3130f0da28
allow ecc.c to read settings
2012-11-14 17:55:20 -08:00
toddouska
5767db4cb5
minor warnings fixes
2012-11-13 18:32:13 -08:00
John Safranek
d6c4b37112
Merge branch 'nopb'
2012-11-06 14:33:56 -08:00
toddouska
21768d9626
test cert tmp fix
2012-11-05 14:15:38 -08:00
John Safranek
b8c9247769
for lean-psk build: remove big int math, MD4, error strings
2012-11-02 16:49:31 -07:00
Chris Conlon
11c8e5afb8
add support for Kinetis K70 HW RNGA
2012-11-02 17:49:30 -06:00
John Safranek
917bc83c60
Merge branch 'master' of github.com:cyassl/cyassl
2012-11-01 16:52:26 -07:00
John Safranek
a8c0351fe4
added pragma to new errors.c to hush a warning in Windows build
2012-11-01 16:40:59 -07:00
Chris Conlon
b21bf90e1b
update CTaoCrypt test for MQX example
2012-11-01 17:08:07 -06:00
John Safranek
9aa8b71525
Merge branch 'nocerts'
2012-11-01 15:47:02 -07:00
John Safranek
134c6b8b1b
cleaning warnings in OCSP build
2012-11-01 15:03:29 -07:00
toddouska
ae905d70c4
crl warning fixes
2012-11-01 14:14:40 -07:00
John Safranek
85e8f1988a
leanpsk build removes cert code, moved ctaocrypt error strings to own file
2012-11-01 12:36:47 -07:00
Chris Conlon
dc83cc6a0e
fix VS2008 asn.c warning, CTaoCrypt RSA test
2012-11-01 11:29:11 -06:00
Chris Conlon
f6304ae37a
add support for Freescale MQX
2012-11-01 11:23:42 -06:00
toddouska
905cf9c018
fix valgrind warnings from yesterday changes
2012-10-31 12:54:56 -07:00
toddouska
01138a5c53
fix stack-check warnings for newer versions but fastmath still has some so take away warning for now
2012-10-30 17:35:12 -07:00
John Safranek
174618ebfb
added build option for leanPSK
2012-10-29 15:39:42 -07:00
toddouska
01ae0696af
shorten64 fixes for key-gen/cert-gen
2012-10-25 12:31:11 -07:00
toddouska
1cb2f28308
align rabbit test keys and ivs
2012-10-23 13:48:16 -07:00
toddouska
aef97af361
make rabbit optional with configure option
2012-10-22 17:28:46 -07:00
toddouska
cb08eb672e
Merge branch 'master' of https://github.com/BrianAker/cyassl
2012-10-22 10:56:53 -07:00
toddouska
b09d902ef4
add in ecc impl
2012-10-22 10:37:40 -07:00
Brian Aker
1bc0dc53f9
Fixes for hardening flags.
...
Additional fixes for using C++ compiler to compile.
Include file pcap.h now gates sniffer for build.
2012-10-19 22:00:17 -04:00
toddouska
c974d77213
add shorten 64 to 32 warnings back on with fixes
2012-10-19 12:44:23 -07:00
Brian Aker
afe043ee6c
This should fix the issue around compiling cyassl with a C++ compiler.
2012-10-19 00:30:21 -04:00
John Safranek
d99c5d8e06
fixed aes-ctr test case
2012-10-10 14:07:10 -07:00
John Safranek
8760e6ac3e
fixed build warnings & aes-gcm/ni conflict
2012-10-10 12:15:13 -07:00
toddouska
6abadd2f2a
fix ecc warnings
2012-10-09 14:04:27 -07:00
toddouska
b76c42da7b
fix bump test warnings
2012-10-09 11:33:09 -07:00
toddouska
2c25481e7d
add AesSetKeyDirect for Ctr and Direct when also using aesni
2012-09-28 15:01:07 -07:00
John Safranek
c9617e86d6
fix bug with aesgcm and aesni conflict
2012-09-27 14:38:48 -07:00
toddouska
d0affb0d0e
fix snifftest and aesni with new warnings
2012-09-25 11:14:21 -07:00
toddouska
4e19c234f4
fix new warnings on linux64
2012-09-21 13:29:04 -07:00
toddouska
4433fde099
c++ warning fix
2012-09-20 15:42:18 -07:00
toddouska
7716da0881
warn fix
2012-09-20 15:39:15 -07:00
toddouska
19e50cd46a
fix old-style warnings
2012-09-20 12:11:42 -07:00
Brian Aker
5fce4edb68
This adds more compiler hardening flags (and fixes all of the issues
...
found in the process).
2012-09-19 23:38:41 -07:00
toddouska
afb559fddb
allow huge Cert Names, just don't copy into name buffer past max
2012-09-19 10:24:34 -07:00
toddouska
2bee126062
clang scan-build fixes
2012-09-04 10:48:26 -07:00
toddouska
69afab58a5
don't include stdio.h unless debug output
2012-08-28 16:46:27 -07:00
toddouska
30a264eb65
make sure mp_init return always checked
2012-08-27 11:30:22 -07:00
toddouska
87762e9012
SafeRTOS client test fixes
2012-08-22 11:07:40 -07:00
toddouska
925ddb6626
Merge branch 'master' of github.com:cyassl/cyassl
2012-08-15 17:00:34 -07:00
toddouska
05692e1d6a
IAR fixes, SafeRTOS port, better LWIP support
2012-08-15 17:00:11 -07:00
Chris Conlon
7ec04c16b6
EBSnet RTIP support
2012-08-13 17:10:05 -06:00
toddouska
90385bb4b3
fix windows build with command line examples
2012-08-01 17:33:49 -07:00
John Safranek
b8b5e7b873
Merge branch 'master' of github.com:cyassl/cyassl
2012-07-31 18:42:44 -07:00
toddouska
a5af2e3d51
add altname retrieval from peer cert
2012-07-31 17:45:48 -07:00
John Safranek
368afbb815
Merge branch 'master' of github.com:cyassl/cyassl
2012-07-31 10:11:21 -07:00
John Safranek
9b8c5fb40e
aes-gcm: modified to use sequence number rather that a random explicit IV
2012-07-31 09:32:29 -07:00
toddouska
e0328ef78a
allow zero legnth asn names, remove weird subjectcn len as zero means we own, use stored flag instead
2012-07-27 16:51:46 -07:00
toddouska
85889f7fb9
add md2 signature hash support
2012-07-27 14:01:02 -07:00
John Safranek
07ca2bce56
added endinanness protection to AES-GCM
2012-07-19 17:19:39 -07:00
John Safranek
cb178856a8
added 64-bit (default), 32-bit version, and 8-bit table based AES-GCM for faster operation. Selection made at configure.
2012-07-19 14:44:08 -07:00
John Safranek
ac79d3b145
replaced magic numbers with named constants, renamed some constants
2012-07-17 10:00:45 -07:00
John Safranek
87a8cfadd3
Used consistent constants.
2012-07-12 15:20:56 -07:00
John Safranek
1f6c24f15a
added aes-gcm to the benchmark tests
2012-06-30 16:55:29 -07:00
John Safranek
9295917ef2
Separated out the AES-GCM test as its own test case.
2012-06-28 11:28:41 -07:00
John Safranek
00cda6ab72
tied SHA-384 into TLSv1.2 as appropriate
2012-06-27 14:41:16 -07:00
John Safranek
c2cf1fb708
added HMAC-SHA-384
2012-06-27 10:34:43 -07:00
John Safranek
4e3d7f494b
AES-GCM: fixed the encryption/decryption bug
2012-06-26 15:51:40 -07:00
John Safranek
737cd127e8
Changed AesGcmEncrypt and Decrypt to allow the same pointer to write and read buffers.
2012-06-26 09:29:48 -07:00
John Safranek
eecdfe1648
added test case for AES-GCM
2012-06-15 16:05:47 -07:00
John Safranek
e39e27bb5b
implemented AES-GCM Decrypt
2012-06-15 15:12:56 -07:00
John Safranek
bac34015cc
implemented AES-GCM Encrypt
2012-06-15 14:38:11 -07:00
John Safranek
76bb3b2558
added stubs for AES-GCM processing and build option
2012-06-13 21:31:32 -07:00
toddouska
cb3d998301
asn checks
2012-06-01 15:55:41 -07:00
toddouska
217053a780
integer comba array sanity check
2012-06-01 14:49:07 -07:00
toddouska
32fc5daf43
64 decoding sanity checks
2012-06-01 14:37:59 -07:00
John Safranek
6120f03173
ocsp response date checking
2012-06-01 11:57:03 -07:00
John Safranek
6d76b2f247
dynamic allocation of OCSP responses, response signature check
2012-05-31 17:29:32 -07:00
John Safranek
4b8bb6cdfe
fixed merge conflicts
2012-05-29 09:19:53 -07:00
John Safranek
9818fe4f55
changed DN hashing to cover the whole DER encoding per OCSP-RFC, OCSP changes towards dynamic storage of responses
2012-05-29 09:11:37 -07:00
John Safranek
c2292c31b0
fixed ASN.1 decoding bug in the basic ca constraint certificate extension
2012-05-25 16:32:10 -07:00
toddouska
02079a2f79
c++ cast fix
2012-05-25 13:38:44 -07:00
toddouska
a1bb4e3f93
gcc-lots-o-warnings fixes
2012-05-25 13:09:27 -07:00
toddouska
3f35c86520
crl signature check, be sure to load CAs first
2012-05-24 15:49:38 -07:00
John Safranek
0a31dc3a37
renumbered new error codes and dynamic data types
2012-05-24 14:36:40 -07:00
toddouska
baddc07300
check next crl date status
2012-05-24 14:07:59 -07:00
John Safranek
8bf2d13f89
Merge branch 'master' of github.com:cyassl/cyassl
2012-05-18 15:33:54 -07:00
toddouska
7e322558ef
windows build fixes
2012-05-18 11:48:38 -07:00
toddouska
26153ffad6
add crl monitor flag, handle no revoked case
2012-05-18 10:52:32 -07:00
John Safranek
a3e94f335b
fixed merge conflict
2012-05-18 10:25:16 -07:00
John Safranek
4b3a362705
adding OcspRequest data, check OCSP nonce extension, made ConfirmSignature generic, bug fixes
2012-05-18 10:18:56 -07:00
toddouska
5bc728b882
fix lots o warnings
2012-05-17 17:44:54 -07:00
toddouska
7c91372621
skip crl revoked entry extensions
2012-05-17 15:16:53 -07:00
toddouska
839b5a4478
add set dates from buffer
2012-05-17 14:41:45 -07:00
toddouska
146e7ff1f4
c++ build fixes
2012-05-17 10:05:24 -07:00
toddouska
c4ea674fc8
Merge branch 'master' of github.com:cyassl/cyassl
2012-05-16 17:05:03 -07:00
toddouska
3ec2b9dbbc
crl stage 2
2012-05-16 17:04:56 -07:00
John Safranek
43592def99
Certificate extension parsing addition
2012-05-14 15:38:59 -07:00
John Safranek
07990acaa6
fixed off-by-one bug when encoding serial number as ASN.1
2012-05-09 16:40:36 -07:00
John Safranek
ea2585963f
flattens the serial number
2012-05-08 19:02:25 -07:00
John Safranek
4feeeeda55
OCSP request creation almost complete, added ocsp revoke error code
2012-05-08 18:32:57 -07:00
John Safranek
81a6ed4577
added the hash of the issuer's public key to the decoded cert
2012-05-08 15:12:33 -07:00
John Safranek
5aad32eb28
Merge branch 'master' of github.com:cyassl/cyassl
2012-05-07 17:02:47 -07:00
toddouska
2a817adfcc
ssh non ecc
2012-05-07 16:35:23 -07:00
John Safranek
f9985f5399
merge fix
2012-05-05 14:49:17 -07:00
toddouska
4fe81df45c
basic extneral cert manager added
2012-05-03 18:07:31 -07:00
toddouska
a54f51d886
first static ECDH suite
2012-05-03 08:18:59 -07:00
John Safranek
7ee09ea23c
Merge branch 'master' of github.com:cyassl/cyassl
2012-05-02 21:59:54 -07:00
toddouska
2a5db9371c
BN help
2012-05-02 15:11:20 -07:00
John Safranek
9c5bcca1ab
updates to OCSP
2012-05-02 14:45:30 -07:00
John Safranek
ec5b3fe313
Merge branch 'master' of github.com:cyassl/cyassl
2012-04-27 15:46:27 -07:00
John Safranek
3fdca1f714
added sha384 and sha512 to certificate checking
2012-04-27 13:49:35 -07:00
John Safranek
f987da38d8
Merge branch 'master' of github.com:cyassl/cyassl
2012-04-27 10:08:09 -07:00
toddouska
81be167ee2
init ssh changes
2012-04-26 16:27:27 -07:00
toddouska
dd431dbeff
merge conflict
2012-04-26 15:01:00 -07:00
toddouska
0f5b0ff8c3
sha384 plus merge changes
2012-04-26 14:58:29 -07:00
John Safranek
cbde04a06b
added OCSP Response simple parsing
2012-04-26 13:52:48 -07:00
toddouska
8fe36b417f
add cpuid asm for Windows, aes-ni .s still needs work
2012-04-25 15:17:25 -07:00
toddouska
607fcb2f3d
allow peer cert get even on fatal verify
2012-04-09 11:56:28 -07:00
toddouska
3001804c51
make SetAltNames optional since need bigger buffer with -DCYASSL_ALT_NAMES
2012-04-05 12:48:28 -07:00
toddouska
53c7f4d5a9
fix strict C++ compiling linkage
2012-03-23 12:20:26 -07:00
toddouska
36529ad873
DevStudio 10 patches
2012-03-23 10:42:07 -07:00
toddouska
3744e2122f
fix digest hiLen using modded loLen on greater than 2^29 bits
2012-03-02 11:16:12 -08:00
toddouska
4c948e2ef7
don't allow zero length asn names in certs
2012-03-01 16:46:24 -08:00
toddouska
7b529249af
extra checks on rsa test for easier porting into
2012-02-17 14:05:50 -08:00
toddouska
84614da13e
increase copyright date 2012
2012-02-13 11:54:10 -08:00
toddouska
07ed8a5a84
fix aes ctr cast
2012-01-09 09:53:37 -08:00
toddouska
e3e8bd1de4
add ecc benchmarking
2011-12-22 14:59:57 -08:00
toddouska
1bb8c1f696
remove extra aes ctr test
2011-12-22 13:08:17 -08:00
toddouska
0254194e20
lean and mean windows fix
2011-12-15 11:42:31 -08:00
toddouska
6e47e33ded
pkcs8 ecc convert cert fix
2011-12-09 10:54:52 -08:00
toddouska
247d5b5609
some root CAs loaded by user won't have basic constraint, allow
2011-12-06 15:17:10 -08:00
toddouska
e82516ad2a
fix ecc pkcs8 import
2011-12-01 13:10:01 -08:00
toddouska
f4a9002bdb
ecc fixed point compile fixes, still need ecc_mul2add
2011-11-23 16:11:56 -08:00
toddouska
a72ff97e1c
ecc extensions fix for ca
2011-11-23 13:15:29 -08:00
toddouska
3dd338a062
add aes counter mode
2011-11-22 17:02:36 -08:00
toddouska
185e23fc58
microchip pic32 port
2011-11-09 17:32:24 -08:00
toddouska
11d15f32b9
check basic contsraint CA flag before adding as signer even if explicit add
2011-11-02 14:57:14 -07:00
toddouska
8ddd2185c2
warning fixes, 2.0.1 pre
2011-11-01 16:17:45 -07:00
toddouska
948a901cfc
add DH param setting by file and buffer, by ctx too
2011-11-01 14:05:14 -07:00
toddouska
f97759c9e1
hostapd adds
2011-10-31 17:33:40 -07:00
toddouska
3ac390c147
add direct AES one block access and ECB DES for compatibility
2011-10-26 17:10:44 -07:00
toddouska
d3bb4bf4d4
move signature algo types to public header and have test cert gen use SHA256wRSA as example
2011-10-26 13:23:03 -07:00
toddouska
42b7eefbee
for cert gen make start day yesterady for bad clocks
2011-10-25 12:30:49 -07:00
toddouska
1cd6935dc9
change all test keys to 2048 bit, all sigs to SHA-1
2011-10-24 11:41:25 -07:00
toddouska
133b38caa6
change default cert gen to SHAwRSA, add SHA256wRSA gen
2011-10-21 10:45:04 -07:00
toddouska
494d048980
warning fixes
2011-10-11 12:06:04 -07:00
toddouska
2021461d7c
add alt name copying for cert gen
2011-10-07 16:50:32 -07:00
toddouska
340f275a8a
add fastmath to bump, add fastmath FP_MAX_BITS runtime check
2011-10-04 12:29:59 -07:00
toddouska
27d35d50cc
lots o warning fixes for rc3
2011-09-28 13:19:05 -07:00
Todd A Ouska
c8714efc98
more CYASSL_SMALL_STACK adds for integer.c
2011-09-27 11:25:50 -07:00
Todd A Ouska
d99932962a
change Visual Studio files to use new CyaSSL headers and layout, have examples and testsuite try to change to CyaSSL Home dir if not
2011-09-23 16:13:02 -07:00
Todd A Ouska
8f81bf3526
add CYASSL_SMALL_STACK define for normal math word array into dynamic memory
2011-09-19 13:02:51 -07:00
Todd A Ouska
1f2109e5fd
add cert gen CA extenstion basic constraint true
2011-09-06 17:30:57 -07:00
Todd A Ouska
c52d2481b1
rename cyassl-memory.c
2011-08-29 10:42:18 -07:00
Todd A Ouska
d0193ba8eb
add math library runtime settings check
2011-08-29 10:39:40 -07:00
Todd A Ouska
d2de4875fe
fix new files make dist
2011-08-26 15:36:26 -07:00
Todd A Ouska
9d7c016cdb
move cyassl headers out of openssl dir
2011-08-25 14:28:57 -07:00
Todd A Ouska
5619fa81fa
remove ctc_ prefix and cyassl_ prefix since all includes now specify dir
2011-08-25 12:41:19 -07:00
Todd A Ouska
5876f4acf2
fix sniffer and hc128 builds
2011-08-24 17:39:23 -07:00
Todd A Ouska
000ffa54a4
add check around config.h for non autoconf systems
2011-08-24 16:37:16 -07:00
Todd A Ouska
5d49bf7cb0
Brian Aker commits plus some minor changes like AM_CFLAGS getting AC_SUBST and --enable-xxx #ifdef to new header layout
2011-08-24 15:54:58 -07:00
Todd A Ouska
e11fd002ce
add SetIssuer and SetSubject from buffers
2011-08-22 15:32:04 -07:00
Todd A Ouska
ad2f66ad57
add set subject name from cert file
2011-08-17 13:07:52 -07:00
Todd A Ouska
9b02ec95ef
make sure logging enabled for all output
2011-08-16 17:18:12 -07:00
Todd A Ouska
27ad8abf52
in 32 bit mode use 32 bit digits (even if on 64 bit processors), use 64 bit digits on x86_64 even if not using asm
2011-08-10 13:35:49 -07:00
Todd A Ouska
5f59e469d2
fix NO_SHA256 build problem, and NO_SHA256 trying to use TLS 1.2 bug
2011-08-05 13:09:54 -07:00
Todd A Ouska
07dd300100
remove autoconf generated files from tracking that keep changing when people have different versions of the toolset
2011-08-04 16:31:12 -07:00
Chris Conlon
ebc52e6941
Corrected spelling mistakes, formatting
2011-08-04 16:42:55 -06:00
Todd A Ouska
3ea834ee2d
add --enable-noInline option for easier testing of it
2011-08-03 10:59:08 -07:00
Todd A Ouska
b2b7de1539
don't ignore .sh file changes now that we have some
2011-08-02 21:18:37 -07:00
Todd A Ouska
44cbf19863
don't error out on cert name lacking set header
2011-08-01 14:07:38 -07:00
Todd A Ouska
487c2b6e23
older xcode autoconf
2011-07-26 13:42:40 -07:00
Chris Conlon
667162df1b
Add headers to examples and .i files
2011-07-26 13:27:22 -07:00
Todd A Ouska
7ecb76d455
warnings
2011-07-13 12:51:04 -07:00
Todd A Ouska
9cd322ba91
remove logging statics if not in debug mode, minor warning fixes
2011-07-13 12:25:08 -07:00
Todd A Ouska
2b01ccd57d
GAMER big endian check
2011-07-12 21:30:24 -07:00
Todd A Ouska
0867da038f
Warning Level 4 MSVC fixes except while (1) which causes bugs sometimes if for(;;) is used instead
2011-07-12 16:43:40 -07:00
Todd A Ouska
015960e6a2
rsa warning changes, submitted by Kevin Baca
2011-07-12 13:53:45 -07:00
Todd A Ouska
c194dc87af
pwdbased warning changes, submitted by Kevin Baca
2011-07-12 13:51:39 -07:00
Todd A Ouska
b9e1e876a4
hmac warning changes, submitted by Kevin Baca
2011-07-12 13:29:43 -07:00
Todd A Ouska
b16d620919
asn warning changes, submitted by Kevin Baca
2011-07-12 12:46:04 -07:00
Todd A Ouska
8dddcfac17
arc4 warning changes, submitted by Kevin Baca
2011-07-12 12:39:16 -07:00