mirrors/wolfssl
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
13,149 Commits 5 Branches 162 Tags
Commit Graph

13149 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Daniel Pouzzner
eeefe043ec scripts/: nix timeout wrappers in ocsp-stapling.test and ocsp-stapling2.test, for portability. 2020-12-16 17:31:53 -06:00
Chris Conlon
7e1a066963
Merge pull request #3555 from kojo1/doc-PSS_Sign-Verify 
Doc wc_RsaPSS_Sign/Verify/CheckPadding
 2020-12-16 15:18:24 -07:00
David Garske
51c3f87811 Fix for wc_SetAltNamesBuffer broken in PR #2728. The SetAltNames was changed in PR 2728 to rebuild the SAN OID, so only the flattened list of DNS entries is required. Fix is in SetAltNamesFromDcert to use already has a parsed DecodedCert and flatten the alt names DNS_Entry list. ZD 11381 2020-12-16 12:28:28 -08:00
Chris Conlon
502e471cde fix spelling of Nitrox in configure option summary 2020-12-16 13:08:32 -07:00
Chris Conlon
f375cff685 enable AES-CTR for libsignal build 2020-12-16 12:44:01 -07:00
Chris Conlon
16ce8e077a only call wolfSSL_UseKeyShare() in example client with TLS 1.3 2020-12-16 12:06:35 -07:00
Jacob Barthelmeh
9a968bdf53 disable XChaCha with armasm 2020-12-17 01:58:36 +07:00
Jacob Barthelmeh
a948066f86 some infer fixes 2020-12-17 01:49:48 +07:00
JacobBarthelmeh
f6c3eae1de g++ build fix 2020-12-16 15:05:33 -05:00
toddouska
5f30727b32
Merge pull request #3531 from vppillai/patch-1 
support TNGTLS certificate loading for Harmony3
 2020-12-16 09:21:28 -08:00
toddouska
7f20b97927
Merge pull request #3569 from SparkiDev/cppcheck_fixes_5 
cppcheck: fixes
 2020-12-16 09:04:59 -08:00
toddouska
cee91c91f5
Merge pull request #3532 from julek-wolfssl/nginx-1.7.7 
Changes for Nginx 1.7.7
 2020-12-16 09:01:27 -08:00
toddouska
b0464c93e2
Merge pull request #3542 from SparkiDev/sp_mod_odd 
SP: ensure modulus/prime is odd before performing RSA/DH/ModExp ops
 2020-12-16 08:51:10 -08:00
Vysakh P Pillai
3063264f00
formatting updates 2020-12-16 18:05:58 +05:30
Vysakh P Pillai
63f8fbe92f
update formatting 2020-12-16 17:59:36 +05:30
Sean Parkinson
6dc06993bf SP: ensure modulus/prime is odd before performing RSA/DH/ModExp ops 2020-12-16 21:49:09 +10:00
Sean Parkinson
75c062a298 cppcheck: fixes 2020-12-16 17:28:20 +10:00
Takashi Kojo
010c8db54e duplicated \ingroup, missing closing comment 2020-12-16 08:52:12 +09:00
Sean Parkinson
922ca916a9
Merge pull request #3554 from ejohnstown/psk-fix 
PSK Alert
 2020-12-16 09:40:04 +10:00
toddouska
bab2f55661
Merge pull request #3563 from SparkiDev/base64_cr 
Base64: Cache attack resistant decode
 2020-12-15 15:16:09 -08:00
Hayden Roche
c47b98bca1 Allow OCSP stapling and NO_WOLFSSL_CLIENT to coexist. 2020-12-15 16:56:21 -06:00
Hayden Roche
eb6473b00f Fix bugs that made it so client side wasn't verifying certificate status. 2020-12-15 16:56:21 -06:00
Hayden Roche
801aa18b9e Fix bug where OCSP stapling wasn't happening even when requested by client. 
The OCSP request that we created didn't have a URL for the OCSP responder, so
the server couldn't reach out to the responder for its cert status.
 2020-12-15 16:56:21 -06:00
Daniel Pouzzner
7f44247954
Merge pull request #3567 from SparkiDev/sp_math_fix 
SP math all: fixes for different compilers and configs
 2020-12-15 15:37:25 -06:00
Juliusz Sosinowicz
575f4ba140 Nginx 1.7.7 changes 
- Push error when decryption fails
- If wolfSSL_CTX_use_certificate keeps passed in cert then it should either copy it or increase its reference counter
- Make wolfSSL_PEM_read_bio_DHparams available with FIPS
 2020-12-15 19:32:55 +01:00
JacobBarthelmeh
e0b0c329b3 build fix for --enable-afalg 2020-12-15 10:50:57 -07:00
Jacob Barthelmeh
c048ce5f99 build fix for --enable-ip-alt-name 2020-12-15 23:56:04 +07:00
toddouska
38a11368e0
Merge pull request #3557 from JacobBarthelmeh/Cert-Report2 
Strict alt names check with DIR name constraint
 2020-12-15 08:51:55 -08:00
toddouska
f362c6ecf5
Merge pull request #3562 from SparkiDev/session_mutex 
SESSION mutex: copying a session overwrote mutex
 2020-12-15 08:50:57 -08:00
Vysakh P Pillai
aa2e02807d
Avoid conversions to PEM and register DER certificate chain 2020-12-15 16:15:36 +05:30
Sean Parkinson
356b419532 SP math all: fixes for different compilers and configs 2020-12-15 17:37:59 +10:00
Sean Parkinson
972d6cfefc Base64: Cache attack resistant decode 2020-12-15 17:22:02 +10:00
Sean Parkinson
52f63ca44b SESSION mutex: copying a session overwrote mutex 
New session creation function, NewSession, that doesn't initialize
mutex.
Calling functions, wolfSSL_SESSION_new() and wolfSSL_SESSION_copy(),
initialize the mutex.
 2020-12-15 17:20:40 +10:00
Sean Parkinson
65d0cc62fd
Merge pull request #3566 from douzzer/STACK_SIZE_CHECKPOINT_WITH_MAX_CHECK-decl-order 
C89 decl order in STACK_SIZE_CHECKPOINT_WITH_MAX_CHECK()
 2020-12-15 17:01:22 +10:00
WKJay
4f15cfde16 Add rt-thread porting files 2020-12-15 14:49:49 +08:00
Daniel Pouzzner
87e5b55033 don't special case get_digit_count for SP, i.e. eliminate sp_get_digit_count(), to fix -Waddress in sp_get_digit_count macro use in api.c:test_get_digit_count() (sp_get_digit_count() was a non-inline function before commit 91d23d3f5a (sp-math-all)). 2020-12-14 20:14:39 -06:00
John Safranek
123c713658
Key Change 
Move the setting of the key in the handshake from right before
sending the finished message to between building change cipher spec
and sending it. This way there won't be any opportunity to send a
message after the change cipher spec that won't be encrypted.
 2020-12-14 18:13:26 -08:00
John Safranek
f8e674e45d
PSK Alert 
When the server cannot match the client's identity, the server sends a unknown_psk_identity alert to the client.
 2020-12-14 17:56:19 -08:00
toddouska
7fe24daf6c
Merge pull request #3561 from dgarske/st_cube_rel 
ST Cube Pack Fixes
 2020-12-14 16:20:18 -08:00
toddouska
3f6a444bef
Merge pull request #3564 from SparkiDev/tls13_add_sess 
TLS 1.3: Don't add a session without a ticket
 2020-12-14 16:09:52 -08:00
toddouska
43182b9389
Merge pull request #3548 from gstrauss/HAVE_SNI 
put all SNI code behind simpler preprocessor directive HAVE_SNI
 2020-12-14 16:08:53 -08:00
Daniel Pouzzner
70808647ef move decl of _ret to top in STACK_SIZE_CHECKPOINT_WITH_MAX_CHECK(), for C89 happiness. 2020-12-14 17:50:28 -06:00
toddouska
bd871280d7
Merge pull request #3497 from elms/erf32/se_acceleration 
ERF32: HW acceleration
 2020-12-14 15:43:15 -08:00
toddouska
56e2c0e268
Merge pull request #3534 from douzzer/linuxkm-cryptonly 
--enable-linuxkm --enable-cryptonly
 2020-12-14 15:14:54 -08:00
David Garske
428c6b4301
Merge pull request #3523 from SparkiDev/pkcs11_fixes_2 
Pkcs11 fixes 2
 2020-12-14 14:09:26 -08:00
David Garske
032b289835
Merge pull request #3559 from tmael/cc310_ecc_k 
Fix Cryptocell ecc build err
 2020-12-14 10:50:30 -08:00
Sean Parkinson
fb5b415e83 TLS 1.3: Don't add a session without a ticket 
TLS 1.3 doesn't support resumption with PSK (session ticket or with the
PSK callback).
 2020-12-14 14:03:31 +10:00
David Garske
337e95e52b Fix for AES GCM with hardware crypto and missing wc_AesSetKeyLocal. Broken in PR #3388. 2020-12-13 13:59:30 -08:00
David Garske
757c07801a Updates to v4.5.1. 2020-12-13 13:59:30 -08:00
Takashi Kojo
203b7739c9 fix paths, add download site in README 2020-12-13 19:42:20 +09:00