toddouska
65f0e9f6b9
add atomic user macencrypt cb
2013-08-09 17:27:15 -07:00
toddouska
16db0c234e
bump dev version
2013-08-06 15:08:05 -07:00
toddouska
3378f8f25e
add DTLS cookie ctx geter
2013-08-06 15:06:33 -07:00
toddouska
5c5cee0789
use external CYASSL_MAX_ERROR_SZ for buffer size
2013-08-06 11:48:00 -07:00
toddouska
427a421ec5
fix rpm with .pc install, from Brian
2013-08-06 11:29:37 -07:00
John Safranek
831d9cf640
SEP Profile
...
1. Changed session index shift values to constants.
2. Added bounds checking when retrieving a session.
3. Added function to retrieve the peer cert chain from
a CYASSL_SESSION record.
2013-08-02 16:03:41 -07:00
toddouska
3b4ff94931
add paramter validation to SSL I/O calls
2013-08-02 12:12:51 -07:00
John Safranek
1357cdb0e4
SEP Profile
...
1. Add session cache index to CYASSL structure.
2. Add accessor for cache index in CYASSL structure.
3. Add copy function for session cache item.
2013-07-28 17:11:22 -07:00
toddouska
505b1a8a67
fix ecc sign/hash truncation with odd bit sizes when hash length is longer than key size
2013-07-25 15:59:09 -07:00
Moisés Guimarães
55401c13dd
Truncated HMAC first part (protocol). Extension processing will be coded later.
2013-07-23 15:42:43 -03:00
toddouska
14b100fee6
fix savecert with no_skid, gcc warnings
2013-07-22 14:30:35 -07:00
toddouska
37a9a7a457
add IOCb Ctx getters
2013-07-22 11:01:00 -07:00
toddouska
1b5bc04e4a
Merge pull request #47 from kojo1/master
...
RTX aware flag for MDK-ARM projects
2013-07-18 08:49:36 -07:00
kojo
d04c915227
MKD-ARM proj name fixed
2013-07-18 09:39:20 +09:00
kojo
e6c80f0725
RTX aware flag for MDK-ARM projects
2013-07-18 09:25:49 +09:00
toddouska
5e633ea6fd
Merge pull request #45 from kojo1/master
...
MDK-ARM LCP43xx project fixed
2013-07-16 18:24:52 -07:00
kojo
37c5ba26bf
MDK-ARM LCP43xx project fixed
2013-07-17 09:34:06 +09:00
toddouska
7db3116ae4
update rpm version
2013-07-11 16:33:27 -07:00
Chris Conlon
f3a707724b
README typo fixes
2013-07-11 10:17:29 -06:00
John Safranek
43f320d5e2
SEP Extensions
...
1. Added configure option to enable SEP extensions.
2. Enabled KEEP_PEER_CERT for the SEP configuration.
3. Copy the Certificate Policy extension into the cert as the
device type.
4. Copy an other type Alt Name extension into the cert as the
hwType and hwSerialNumber, if the alt name has a
hardwareModuleName OID.
2013-07-09 13:23:56 -07:00
toddouska
99b6c1d3c3
fix GCC warning
2013-07-09 09:57:55 -07:00
toddouska
f9bf003718
allow NULL IVs for CBC mode, same as all zero IV
2013-07-08 11:52:00 -07:00
John Safranek
b66cb11cb8
Fixed bug in DecodeAltNames() where idx wasn't advanced past the length.
2013-07-05 10:10:38 -07:00
toddouska
705aa0f453
fix user malloc define w/ opensslextra
2013-07-05 09:42:49 -07:00
John Safranek
226f018829
Fixed memory leak of http buffer in OCSP lookup.
2013-07-02 17:35:30 -07:00
toddouska
b3d99f2d32
only have fastmath on by default on x86_64
2013-07-01 12:10:59 -07:00
Moisés Guimarães
593e466a44
limiting max_fragment API for client side only.
2013-07-01 10:13:43 -03:00
toddouska
98e6ad3ee9
add comverge switch for settings
2013-06-27 10:28:58 -07:00
toddouska
307c71d9cb
add CyaSSL_UnloadCertsKeys to free SSL certs and keys after handshake
2013-06-27 10:26:04 -07:00
John Safranek
773d0da1bc
Fixed issue with the DTLS EmbedReceiveFrom() callback using IPv6.
2013-06-26 17:40:21 -07:00
toddouska
fdb2416e49
Merge branch 'master' of github.com:cyassl/cyassl
2013-06-26 17:06:49 -07:00
toddouska
d0c2e9b7a2
switch comverge settings to ecc by default
2013-06-26 17:05:30 -07:00
John Safranek
29b32e582a
DTLS IPv6 Hello Cookie Update
...
1. Add support for IPv6 addresses when calculating DTLS Cookie.
2. Simplify cookie calculation.
2013-06-26 16:32:01 -07:00
John Safranek
0d0fc27e42
Fixed DecodeAuthKeyId fail case not returning.
2013-06-26 11:16:17 -07:00
toddouska
ed82f06382
Merge branch 'master' of github.com:cyassl/cyassl
2013-06-26 11:05:00 -07:00
toddouska
60c2388ae7
fix potential NetX packet memory leak
2013-06-26 11:03:54 -07:00
John Safranek
f3af0124e4
Fixed DecodeAltNames extension falling through to next case.
2013-06-25 13:37:43 -07:00
John Safranek
7fd3b8a993
Fixed error string for example server private key file failure.
2013-06-25 13:14:24 -07:00
toddouska
87eb94b7c4
Merge branch 'master' of github.com:cyassl/cyassl
2013-06-24 14:02:40 -07:00
toddouska
b51d6f3b8f
add NetX default IO context handling
2013-06-24 14:00:48 -07:00
toddouska
c3cb9b3b43
add IDE files to distribution
2013-06-24 12:00:21 -07:00
John Safranek
0c34ecb451
OCSP Updates
...
1. Add option to example server and client to check the OCSP responder.
2. Add option to example server and client to override the URL to use
when checking the OCSP responder.
3. Copy the certificate serial number correctly into OCSP request.
Add leading zero only if MS bit is set.
4. Fix responder address used when Auth Info extension is present.
5. Update EmbedOcspLookup callback to better handle the HTTP
response and obtain the complete OCSP response.
2013-06-24 10:47:24 -07:00
John Safranek
e0a84521c5
Make alert description and level enumerations public.
2013-06-21 14:56:42 -07:00
John Safranek
17ab84eb07
Update call to DoAlert()
...
When handling the alerts, the return code wasn't checked for error codes. A corrupted alert message could cause a control flow issue.
2013-06-19 15:01:13 -07:00
John Safranek
42a0f3500f
Update AES-GCM and AES-CCM to use AES-NI
...
1. Added the assembly functions to do AES-ECB.
2. Updated AesEncrypt and AesDecrypt to use the assembly functions
if available.
3. Modified the AES-GCM and AES-CCM key setup functions to use the
the AES-NI key setup if availble.
4. Added tests for the AES-ECB encrypt and decrypt.
5. Only include stdio.h for AES when DEBUG_AESNI is enabled
6. If using local key setup, skip using AES-NI for basic Encrypt
and Decrypt.
2013-06-19 14:52:58 -07:00
Moisés Guimarães
affbb3ef27
Merge branch 'master' of https://github.com/cyassl/cyassl
2013-06-19 17:20:48 -03:00
Moisés Guimarães
4502716fc4
Merge branch 'master' of https://github.com/cyassl/cyassl
2013-06-19 17:04:43 -03:00
toddouska
b5ba31501c
make stacksize more portable
2013-06-19 12:56:25 -07:00
Moisés Guimarães
25e910a0a9
max fragment length tests and fixes
2013-06-19 16:38:57 -03:00
Moisés Guimarães
5f3ee80407
added:
...
- max fragment length extension;
- CyaSSL_SNI_GetRequest() to get client's request at server side;
- Automated tests for SNI;
2013-06-19 15:45:06 -03:00