John Safranek
|
a695599667
|
bug fix in default ocsp lookup function
|
2013-01-03 17:58:45 -08:00 |
|
John Safranek
|
ac227910f1
|
modify OCSP to use a replacable callback to perform the OCSP transaction
|
2013-01-03 17:19:56 -08:00 |
|
toddouska
|
53e4c2ed72
|
fix pvs studio warnings
|
2013-01-02 11:39:12 -08:00 |
|
toddouska
|
acb3e446ab
|
typo
|
2012-12-29 13:33:13 -08:00 |
|
toddouska
|
27a7cf609b
|
only do Init once per compression rounds
|
2012-12-29 13:30:23 -08:00 |
|
toddouska
|
3d88d8851a
|
sslv3 may have bad padding, can't verify
|
2012-12-29 13:11:31 -08:00 |
|
toddouska
|
640a0cb0e3
|
fix stream hmac check on multi data
|
2012-12-28 18:55:18 -08:00 |
|
toddouska
|
44bf986827
|
no DTLS streaming checks
|
2012-12-28 17:54:19 -08:00 |
|
toddouska
|
4c453d4d69
|
have server side reply unexpected_message for hello_request
|
2012-12-28 14:36:19 -08:00 |
|
toddouska
|
f073f49ead
|
make sure handshake complete before sending encrypted alert
|
2012-12-28 14:29:15 -08:00 |
|
toddouska
|
6d3728fe61
|
fix ripemd compression round
|
2012-12-28 14:19:28 -08:00 |
|
toddouska
|
4c9595c419
|
bump version
|
2012-12-28 14:07:49 -08:00 |
|
toddouska
|
23ff36075b
|
check RSA explicit size
|
2012-12-28 12:28:25 -08:00 |
|
toddouska
|
09ea7169d7
|
use exisiting dummy data for compression round
|
2012-12-28 11:48:30 -08:00 |
|
John Safranek
|
7ac6a21af5
|
updated comment for aead in SanityCheckCipherText()
|
2012-12-27 19:51:06 -08:00 |
|
toddouska
|
561906cffd
|
Merge branch 'master' of github.com:cyassl/cyassl
|
2012-12-27 16:36:48 -08:00 |
|
toddouska
|
f0bc61a5d3
|
add more robust pad/verify checks
|
2012-12-27 16:35:43 -08:00 |
|
John Safranek
|
724297a127
|
asn should use the validate date macro, not call the function directly.
|
2012-12-27 11:57:41 -08:00 |
|
John Safranek
|
e70838e984
|
Merge branch 'ecc'
|
2012-12-27 11:41:20 -08:00 |
|
John Safranek
|
581f91b984
|
Merge branch 'master' of github.com:cyassl/cyassl
|
2012-12-27 11:40:17 -08:00 |
|
John Safranek
|
03f9cafa4b
|
ecc_verify_hash was leaking two mp_ints
|
2012-12-27 11:18:29 -08:00 |
|
John Safranek
|
0cfa423566
|
fixed mp_add_d overflow
|
2012-12-27 10:08:44 -08:00 |
|
Chris Conlon
|
60f4919ee6
|
add STM32 to README
|
2012-12-27 10:16:08 -07:00 |
|
Chris Conlon
|
254d53bb18
|
add CYASSL_STM32F2 define, LwIP errno.h
|
2012-12-27 10:06:29 -07:00 |
|
John Safranek
|
d993ee1969
|
Merge branch 'master' of github.com:cyassl/cyassl
|
2012-12-26 21:53:20 -08:00 |
|
John Safranek
|
baf9bef8a3
|
Revert "changed polarity on ocsp thisDate check to allow very timely responses"
This reverts commit afbc34f0e0 .
|
2012-12-26 21:41:12 -08:00 |
|
John Safranek
|
cf114b92df
|
made the ecc keys in the CYASSL struct dynamic
|
2012-12-26 16:39:19 -08:00 |
|
Chris Conlon
|
ea3dc3d834
|
add STM32F2 AES, DES, 3DES support
|
2012-12-26 15:18:57 -07:00 |
|
Chris Conlon
|
a7e0f4e483
|
add STM32F2 SHA1, MD5 support
|
2012-12-26 15:16:39 -07:00 |
|
Chris Conlon
|
acf1d07eea
|
add STM32F2 RNG support
|
2012-12-26 15:08:33 -07:00 |
|
John Safranek
|
6913a46331
|
Merge branch 'master' of github.com:cyassl/cyassl
|
2012-12-26 10:40:28 -08:00 |
|
toddouska
|
59419bef89
|
non block type ciphertext sanity checks
|
2012-12-26 10:11:15 -08:00 |
|
John Safranek
|
5bc976ee0f
|
free ecc keys at the end of handshaking
|
2012-12-26 09:49:53 -08:00 |
|
toddouska
|
dc88a7e8eb
|
Merge branch 'timing'
|
2012-12-24 15:41:23 -08:00 |
|
toddouska
|
9c58f70e29
|
add ciphertext size sanity checks
|
2012-12-24 15:40:09 -08:00 |
|
toddouska
|
6b15443a3b
|
fix clang using -pthreads flags on lion or greater
|
2012-12-24 14:37:03 -08:00 |
|
toddouska
|
76bbcbb7b2
|
fix clang warning on api test
|
2012-12-20 18:38:48 -08:00 |
|
toddouska
|
66a66c8905
|
valgrind needs .sh
|
2012-12-20 18:29:25 -08:00 |
|
John Safranek
|
831c760edc
|
Merge branch 'ocsp'
Fixes some bugs in the ocsp code, and adds a new option to skip nonces.
|
2012-12-20 16:26:49 -08:00 |
|
John Safranek
|
afbc34f0e0
|
changed polarity on ocsp thisDate check to allow very timely responses
|
2012-12-20 15:56:57 -08:00 |
|
John Safranek
|
5164c15216
|
fixed missed initialization when not using ocsp nonces
|
2012-12-20 15:29:15 -08:00 |
|
toddouska
|
541deaa0c0
|
release 2.4.6
|
2012-12-20 13:25:32 -08:00 |
|
toddouska
|
902069783e
|
allow leanpsk dist to build
|
2012-12-20 11:46:25 -08:00 |
|
John Safranek
|
51787db76b
|
changed ocsp lookup to use dynamic mem for request rather than stack
|
2012-12-19 18:09:05 -08:00 |
|
John Safranek
|
26cf98c878
|
removed check against producedAt date in ocsp, check not required
|
2012-12-19 11:28:33 -08:00 |
|
John Safranek
|
4e657debfc
|
added the ability to disable OCSP nonces
|
2012-12-19 10:18:11 -08:00 |
|
toddouska
|
96cc05b7b1
|
fix shadow warning
|
2012-12-18 11:40:45 -08:00 |
|
John Safranek
|
b36bc55197
|
Merge branch 'ocsp'
|
2012-12-17 22:23:31 -08:00 |
|
John Safranek
|
359e86adf6
|
1. When OCSP and CRL enabled, checks CRL if unable to contact OCSP responder
and OCSP was enabled.
2. Fixed a couple string typos.
3. Only check OCSP if cert successfully parsed.
|
2012-12-17 22:19:20 -08:00 |
|
toddouska
|
b25061844c
|
remove hmac array initializers to 0 when non full because of reported compiler weirdness from user
|
2012-12-14 16:47:03 -08:00 |
|