mirrors/wolfssl
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
4,187 Commits 5 Branches 162 Tags
Commit Graph

4187 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
John Safranek
69e00a3f97 allow dtls timeout to be 0 in the recvfrom callback, set to 0 if the handshake is done 2016-02-22 21:13:05 -08:00
John Safranek
f621f81fa2 1. Some DTLS code was missing an ifdef. 
2. If receiving a handshake message that's already been processed,
    retransmit the previous message flight.
 2016-02-22 14:08:35 -08:00
toddouska
8dbef9b14b Merge pull request #318 from dgarske/BuildErrorNoFileSysWCerts 
Fixes build error with NO_FILESYSTEM and !NO_CERTS
 2016-02-22 12:12:24 -08:00
David Garske
731e13ecf2 Fixes issue with building crypt benchmark with only ED/Curve25519 enabled with static rng missing. 2016-02-22 16:46:13 +01:00
John Safranek
f6fafe6738 for DTLS, retain the handshake resources until peer sends application data record 2016-02-21 21:52:38 -08:00
Moisés Guimarães
46ade8f03f fixes ocsp dependency check on asn during configure. 2016-02-21 20:54:45 -03:00
David Garske
953a3bd01d Fixes build error with NO_FILESYSTEM and !NO_CERTS where the wolfssl/test.h load_buffer() function is passing non-existent enum value. Was renamed from CYASSL_ to WOLFSSL_. 2016-02-19 13:52:06 -08:00
David Garske
3fe5ee1a7c Refactor of the DER buffer handling. Added new DerBuffer struct that includes the type and heap ptr. Added new InitDer, AllocDer and FreeDer functions. Cleanup of some missing "heap" args on XMALLOC/XFREE. In FreeDer uses ForceZero if type is private key. 2016-02-18 22:42:15 -08:00
dgarske
b72c83e191 Merge pull request #315 from kaleb-himes/fix-no-sha 
update for configure option --disable-sha
 2016-02-16 13:08:59 -08:00
toddouska
c1ef4d4521 Merge pull request #313 from kaleb-himes/master 
wolfssl.com and google.com now differ in pre-reqs for external test
 2016-02-16 11:05:55 -08:00
kaleb-himes
24d93c90cd update for configure option --disable-sha 2016-02-16 12:03:37 -07:00
kaleb-himes
46b34c19d0 wolfssl.com and google.com now differ in pre-reqs for external test 2016-02-15 13:30:11 -07:00
toddouska
3d8f91d418 Merge pull request #302 from dgarske/EccOnlyNoSignVerify 
New ECC and ASN build options for reduce build size options
 2016-02-15 12:13:43 -08:00
toddouska
d7d2a6f565 Merge pull request #307 from JacobBarthelmeh/PSK 
New fail with no peer cert behavior and allow RSA signed ECC key certs
 2016-02-12 15:27:18 -08:00
JacobBarthelmeh
7de352a0e9 Merge pull request #311 from dgarske/FixSkipObjectIdWarn 
Fixes warning with SkipObjectId defined but not used.
 2016-02-12 15:04:04 -07:00
toddouska
951fe0a927 Merge pull request #310 from dgarske/CustRngGenBlock 
Added new CUSTOM_RAND_GENERATE_BLOCK option that allows override and …
 2016-02-12 13:51:06 -08:00
David Garske
a969dd8efd Fixed "error: unused function 'StoreRsaKey'" with NO_ASN_TIME and RSA enabled. 2016-02-12 13:19:58 -08:00
David Garske
aeaac15682 Fixed compile errors in signature.c if ECC on but ECC sign/verify disabled. Added new NO_ASN_TIME option to reduce ASN size for space constrained or missing RTC. Added check to make sure ASN is enabled if ECC sign/verify is enabled. 2016-02-12 13:16:39 -08:00
Jacob Barthelmeh
8073024ee7 fix formatting of .conf file so ephemeral port is used 2016-02-12 13:41:30 -07:00
David Garske
f328c6bdf7 Fixes warning with SkipObjectId defined but not used. 2016-02-12 12:34:22 -08:00
David Garske
08c663a4ac Added new CUSTOM_RAND_GENERATE_BLOCK option that allows override and disabling of the HASHDRBG for customers who have a HW RNG they would like to use instead. 
Examples:
"./configure --disable-hashdrbg CFLAGS="-DCUSTOM_RAND_GENERATE_BLOCK= custom_rand_generate_block".
OR
/* RNG */
//#define HAVE_HASHDRBG
extern int custom_rand_generate_block(unsigned char* output, unsigned int sz);
 2016-02-12 11:59:51 -08:00
David Garske
4872f2bc33 Added the following ECC optional config defines: HAVE_ECC_SIGN, HAVE_ECC_VERIFY, HAVE_ECC_DHE, HAVE_ECC_KEY_IMPORT and HAVE_ECC_KEY_EXPORT. Still working through issues with using ECC sign/verify with ASN disabled. Added documentation to top of ecc.c for all the ECC define options. 2016-02-12 11:07:50 -08:00
Tiago Duarte
8f5cd98857 Added tvos target to the xcode project 2016-02-12 10:23:23 +01:00
Jacob Barthelmeh
3e860107f3 remove extra cert and key, plus add new test 2016-02-11 13:49:07 -07:00
Jacob Barthelmeh
1197f88c4f add psk.test script for testing 2016-02-11 09:15:04 -07:00
toddouska
09f631238e Merge pull request #306 from kaleb-himes/master 
correct logic to allow for static RSA if ECC and no Curves
 2016-02-10 16:47:17 -08:00
dgarske
49a5ea18e8 Merge pull request #303 from ejohnstown/sniffer-check 
When loading a named key, check that the save buffer mallocs.
 2016-02-10 13:19:59 -08:00
dgarske
b0a51a22a1 Merge pull request #304 from cconlon/testh-fix 
Check build_addr() arguments for NULL
 2016-02-10 13:19:28 -08:00
David Garske
a83ff6aada Updated the configure.ac comments about big int being used for ECC and DH. Moved the checks for ecc/asn and psk/asn until after cryptonly value is set and fixed so those checks work for normal build and are excluded for crypt only builds. 2016-02-10 13:03:53 -08:00
Jacob Barthelmeh
9defe9b42b fix warning of unused variable and adjust debug statements 2016-02-10 13:57:10 -07:00
kaleb-himes
ffe7b38409 correct logic to allow for static RSA if ECC and no Curves 
use same coding standards as the rest of the libraries
 2016-02-10 13:39:59 -07:00
Jacob Barthelmeh
69fc400d28 add new certs to EXTRA_DIST 2016-02-10 13:26:03 -07:00
Jacob Barthelmeh
2f74706367 allow use of RSA signed ECC key certs 2016-02-10 13:26:03 -07:00
Jacob Barthelmeh
ff7a9d9f78 option for fail on no peer cert except PSK suites 2016-02-10 13:26:03 -07:00
Chris Conlon
3293857834 check build_addr() arguments for NULL before memset 2016-02-10 10:35:48 -07:00
David Garske
8d0d5a3f90 Fixes so ECC only build works. Fixes so ECC enabled with ASN disabled works and will prevent ECC sign/verify. 2016-02-10 08:53:09 -08:00
dgarske
9a5938432b Merge pull request #301 from kaleb-himes/master 
if connecting to google.com and using ECC need supported curves
 2016-02-10 08:42:28 -08:00
kaleb-himes
bf4d6454b1 if connection to google.com and using ECC need supported curves 2016-02-09 17:06:06 -07:00
John Safranek
ccffee1617 When loading a named key, check that the save buffer mallocs. It calls a library function that checks the pointer, but an application of the library shouldn't depend on side effects. This fixes #300. 2016-02-09 15:17:05 -08:00
Kaleb Joseph Himes
62a2efdacc Merge pull request #298 from kaleb-himes/master 
Avoid unnecessary assignments in client example
 2016-02-09 09:54:55 -08:00
toddouska
f30ef33d8b Merge pull request #295 from JacobBarthelmeh/master 
ECDHE-PSK and added cipher suites
 2016-02-09 09:40:13 -08:00
toddouska
66aa1da829 Merge pull request #299 from dgarske/MinGWFixes 
Fixes for warnings found using MinGW
 2016-02-09 09:32:18 -08:00
Kaleb Joseph Himes
2e88785358 Merge pull request #282 from dgarske/WinUserSettings 
Refactor of Visual Studio projects to centralize preprocessors into IDE/WIN/user_settings.h
 2016-02-09 09:27:32 -08:00
toddouska
014740eda0 Merge pull request #289 from dgarske/SigHashFixes 
Fixes/improvements to the signature and hash wrappers:
 2016-02-09 09:23:18 -08:00
David Garske
2af9fb91b3 Use += approach to detect "done" in example client for external tests. Cleaner and code is smaller to accomplish same thing. 2016-02-08 19:54:22 -08:00
David Garske
4ea76b8ac8 Fixes for warnings found using MinGW. Fixes for WOLFSSL_SOCKET_IS_INVALID and WOLFSSL_SOCKET_INVALID to use the SOCKET_T. 2016-02-08 15:44:22 -08:00
Jacob Barthelmeh
53162d5fc4 addjust size according to offset length and add PMS size comment 2016-02-08 15:22:49 -07:00
JacobBarthelmeh
f6bebc1cf4 Merge pull request #297 from dgarske/RemoveExeBitOnCFiles 
Removed the execute bit on all .c files
 2016-02-08 14:22:05 -07:00
David Garske
2e0d05f727 Fixes issues with new IDE/WIN/user_settings.h and FIPS. Fixed issue with using CYASSL_USER_SETTINGS in ctaocrypt/settings.h with FIPS by moving settings_comp.h to after user_settings.h. Fixed issue with non-existent ctaocrypt/signature.c file being included. Added the user_settings.h file to the FIPS project. 2016-02-08 12:22:20 -08:00
David Garske
09615c01cc Updated the naming for the new encoding DER signature enum and function. 2016-02-08 12:04:38 -08:00