wolfssl

Author	SHA1	Message	Date
toddouska	66db74d827	Merge pull request #2313 from SparkiDev/tls13_reneg Fix for TLS 1.3 and secure renegotiation	2019-07-08 12:56:02 -07:00
toddouska	406ff31fc8	Merge pull request #2311 from SparkiDev/tls12_ffdhe_fix Better support for TLS 1.2 and FFDHE	2019-07-08 12:55:03 -07:00
toddouska	1070aba5e2	Merge pull request #2308 from SparkiDev/resumption_fix Don't resume if stored session's ciphersuite isn't in client list	2019-07-08 12:52:59 -07:00
toddouska	2610d9ce94	Merge pull request #2307 from SparkiDev/pick_hash_sig Improve hash and signature algorithm selection	2019-07-08 12:51:36 -07:00
toddouska	74324bb1b5	Merge pull request #2305 from SparkiDev/doalert_fix Better handling of alerts	2019-07-08 12:50:26 -07:00
toddouska	60d6d71636	Merge pull request #2304 from SparkiDev/tls_sha224 Support to TLS for RSA SHA-224 signatures	2019-07-08 12:47:56 -07:00
toddouska	2a4b935e07	Merge pull request #2299 from JacobBarthelmeh/DTLS-MultiCore DTLS export/import state only	2019-07-08 12:47:13 -07:00
toddouska	cc453c6c12	Merge pull request #2262 from ejohnstown/sniffer-watch Sniffer watch	2019-07-08 12:45:35 -07:00
David Garske	964dac96a7	Merge pull request #2321 from kaleb-himes/ARDUINO-UPDATE Remove redundent setting WOLFSSL_ARDUINO and add guards	2019-07-05 11:35:30 -07:00
David Garske	c9f18bfe3b	Merge pull request #2326 from SparkiDev/sp_update_1 Changes to other SP implementations based on recent changes	2019-07-05 11:19:01 -07:00
John Safranek	0b5ee1b633	Merge pull request #2324 from dgarske/cryptocb_3des Crypto callback DES3 support	2019-07-03 10:17:23 -07:00
Sean Parkinson	7c393edf49	Changes to other SP implementations based on recent changes	2019-07-03 09:37:31 +10:00
David Garske	58fe2781f1	Fix for `wc_CryptoCb_AesCbcEncrypt` with improper find device logic. Fix for HMAC scan-build with `ret`. Cleanup of HMAC formatting.	2019-07-02 14:08:59 -07:00
David Garske	d5f3fa2ff8	Added DES3 Crypto callback support.	2019-07-02 10:15:53 -07:00
Sean Parkinson	0e33e2d9ee	Check PickHashSigAlgo return when doing CerticateRequest Only check picking the hash and signature algorithm functions return when a certificate is available to send to peer. Include the ECC signature and hash algorithms in available list even when using ECDSA certificates signed with RSA. List is of capabilities not what is in certificate. Certificate request sent to peer doesn't have to be an ECDSA certificate signed with RSA. Same treatment for RSA.	2019-07-02 11:53:04 +10:00
Sean Parkinson	28aa99c3e3	Always have support for SHA-224 signatures when SHA-224 built-in	2019-07-02 08:27:04 +10:00
John Safranek	21afcf17a8	Sniffer Watch Mode 1. Split the function ssl_SetWatchKey() into ssl_SetWatchKey_file() which loads the key from a named file and ssl_SetWatchKey_buffer() which loads the key from a provided buffer. file() uses buffer().	2019-07-01 13:50:28 -07:00
John Safranek	b02e1e8d59	Sniffer Watch Mode Added some statistics tracking to the watch mode.	2019-07-01 13:50:28 -07:00
John Safranek	8be6c0c08c	Sniffer Watch Mode Add some tests for the Watch mode that will also work with static ECDH.	2019-07-01 13:50:28 -07:00
John Safranek	b61803f165	Sniffer Watch Mode Added the build option for the Watch mode for the sniffer. Instead of setting a set of IP addresses and keys, you set a callback function. When any TLS connection is started, the hook is called and a hash of the peer certificate is given to the callback function. It has a chance to load a private key into the sniffer session. Enable this option with the build flag "WOLFSSL_SNIFFER_WATCH".	2019-07-01 13:50:28 -07:00
toddouska	3652929573	Merge pull request #2310 from SparkiDev/alpn_sni_parse ALPN and SNI Extension parsing improvements	2019-07-01 08:57:39 -07:00
toddouska	4500f2d773	Merge pull request #2309 from SparkiDev/fallback_scsv Fallback SCSV (Signaling Cipher Suite Value) support on Server only	2019-07-01 08:55:02 -07:00
toddouska	08bd5000f1	Merge pull request #2306 from SparkiDev/tls_long_msg Add detection of oversized encrypted data and plaintext	2019-07-01 08:51:20 -07:00
kaleb-himes	db17fce49a	Remove redundent setting WOLFSSL_ARDUINO and add guards	2019-07-01 09:02:21 -06:00
Sean Parkinson	60af8bdb7c	Fix for TLS 1.3 and secure renegotiation	2019-07-01 09:26:05 +10:00
Sean Parkinson	e96ede65ce	Don't resume if stored session's ciphersuite isn't in client list Turn this check off with NO_RESUME_SUITE_CHECK.	2019-06-28 16:23:41 +10:00
Sean Parkinson	46a2a437d4	Better support for TLS 1.2 and FFDHE If not FFDHE parameters in list then use existing. If FFDHE parameters present but none matching then let the ciphersuite match process fail when DHE must be used.	2019-06-28 16:12:23 +10:00
Sean Parkinson	1592d6f856	ALPN and SNI Extension parsing improvements SNI will not have more than one type, only one entry in the list per type and therefore no need to loop. ALPN error checks improved.	2019-06-28 15:52:51 +10:00
Sean Parkinson	a3e4a2fd6e	Fallback SCSV (Signaling Cipher Suite Value) support on Server only	2019-06-28 15:35:56 +10:00
Sean Parkinson	8312ceb14c	Improve hash and signature algorithm selection Return error when no hash-signature algorithm is possible.	2019-06-28 14:31:40 +10:00
Sean Parkinson	5f9a851adb	Add detection of oversized encrypted data and plaintext	2019-06-28 12:01:35 +10:00
Sean Parkinson	7d2ac604f5	Better handling of alerts Better checking of encrypted alerts - check unencrypted data size correctly before using data. Send an alert if the alert isn't the right size. Send an alert if the maximum alert count has been reached - but don't send it if seeing close_notify alert.	2019-06-28 11:53:33 +10:00
Sean Parkinson	8a0c058782	Support to TLS for RSA SHA-224 signatures	2019-06-28 10:26:48 +10:00
Chris Conlon	f51a8fffde	Merge pull request #2265 from JacobBarthelmeh/Testing fix check on ret value and add test case	2019-06-27 14:02:01 -06:00
Sean Parkinson	8bea016d69	Merge pull request #2277 from julek-wolfssl/arm-poly1305 ARM Poly1305	2019-06-27 09:21:09 +10:00
Jacob Barthelmeh	e7fd45537d	update comments for DEGENERATE_SID use	2019-06-26 11:58:53 -06:00
Chris Conlon	7520137601	Merge pull request #2297 from miyazakh/esp_random fix ed25519 sign msg test failure in ESP32	2019-06-26 11:54:34 -06:00
toddouska	da5357cadd	Merge pull request #2301 from SparkiDev/dh_pubval_check Simple checks of DH public value from peer.	2019-06-26 09:20:49 -07:00
toddouska	0dbba5f056	Merge pull request #2300 from ejohnstown/fips-hash FIPS Hash	2019-06-26 09:18:48 -07:00
toddouska	6478f92e04	Merge pull request #2294 from dgarske/read_fixes Fixes to improve read error handling	2019-06-26 09:17:20 -07:00
Jacob Barthelmeh	cb4f9afd6d	free memory in test case	2019-06-25 15:24:39 -06:00
John Safranek	3a378520c0	FIPS Hash Add the fips-hash.sh script to the Automake distribution.	2019-06-25 11:38:09 -07:00
toddouska	53c1a6c264	Merge pull request #2283 from dgarske/extern_c Fixes for cpp extern c	2019-06-25 11:25:39 -07:00
toddouska	eceb460cff	Merge pull request #2287 from ejohnstown/sniffer-stats Sniffer Statistics	2019-06-25 11:22:24 -07:00
David Garske	ef64cd300c	Fixes to improve read error handling. * Improved `GetInputData` handling of non -1 return codes. * Adds support for handling `WOLFSSL_CBIO_ERR_TIMEOUT` return code in non-DTLS case.	2019-06-25 07:11:14 -07:00
David Garske	dcdd6d6d6f	Cleanup around include of wolfmath.h and shared math macros. Fix for SP math case with `WOLFSSL_BIGNUM`.	2019-06-25 07:06:33 -07:00
David Garske	a9fff57063	Add extern "C" to headers. Some files are missing this, which can cause issues with some compilers when using the C++ mode.	2019-06-25 07:05:46 -07:00
Sean Parkinson	ee023c6bf4	Simple checks of DH public value from peer. Add test for wc_DhCheckPubValue	2019-06-25 11:12:33 +10:00
Hideki Miyazaki	da6ed416be	use len for copy-length instead of sz	2019-06-25 08:39:46 +09:00
John Safranek	26384d4936	Sniffer Stats Upgrade the sniffer stats to unsigned long ints.	2019-06-24 16:16:05 -07:00

1 2 3 4 5 ...

9648 Commits