mirrors/wolfssl
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
9,954 Commits 5 Branches 162 Tags
Commit Graph

9954 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
John Safranek
dc71f957f3 RSA-Key Gen Speedup 
1. When doing the test divides on the first few primes, short circuit
out of the loop if the prospective possible prime divides evenly.
 2019-07-17 13:43:15 -07:00
toddouska
8b6e66f095
Merge pull request #2353 from SparkiDev/ecc_nonce 
Improve nonce use in ECC mulmod
 2019-07-17 11:23:12 -07:00
John Safranek
9a2f4bb8f8
Merge pull request #2333 from kaleb-himes/WCv4.0.1-stable-master 
WCv4.0.1-stable changes
 2019-07-17 10:14:40 -07:00
Jacob Barthelmeh
af8395b17b revert early free of OCSP buffer after finding it is revoked 2019-07-17 11:08:28 -06:00
JacobBarthelmeh
8bf8fcca60
Merge pull request #2352 from dgarske/async_v4.1 
Fixes for Asynchronous support in v4.1
 2019-07-16 17:32:18 -06:00
Sean Parkinson
483f6a5acd Improve nonce use in ECC mulmod 2019-07-17 09:27:29 +10:00
toddouska
5f3fd3ae86
Merge pull request #2348 from cconlon/scepchanges 
Changes to support SCEP Expansion
 2019-07-16 15:26:15 -07:00
kaleb-himes
fdeb65dec8 WCv4.0.1-stable changes 
CHAR_BIT to 8, simplify logic from peer review

Update build script
 2019-07-16 15:58:56 -06:00
JacobBarthelmeh
cb2ed60305
Merge pull request #2351 from ejohnstown/watch-chain-deux 
Sniffer Watch Cert Chain Part 2
 2019-07-16 15:04:32 -06:00
David Garske
7b021d68c3 Fixes for asynchronous support in v4.1: 
* Fixes PK callback null dereference.
* Fixes `DoCertificateVerify` verify handling.
* Fixes build issue with API tests.
 2019-07-16 11:56:02 -07:00
David Garske
5067d1fc10
Merge pull request #2328 from kaleb-himes/ZD-5373-TIRTOS 
Updating for TI hardware offload with latest version of wolfSSL
 2019-07-16 11:43:56 -07:00
toddouska
8b8ff2ac34
Merge pull request #2336 from kaleb-himes/ZD-5388-OCSP-STATUS-UNHONORED 
Honor the status from peer and do not do internal OCSP lookup regardless
 2019-07-16 11:32:34 -07:00
toddouska
99d3ea9e56
Merge pull request #2350 from SparkiDev/rsa_pss_fix 
Don't pick RSA PSS if not compiled in
 2019-07-16 11:28:50 -07:00
John Safranek
4b0bb75909 Sniffer Watch Cert Chain Part 2 
1. Check the sizes picked up out of the message against the expected
size of the record when looking at the certificate messages.
2. Renamed the cert and certSz in the watch callback with it being a
certChain.
 2019-07-16 09:54:45 -07:00
Chris Conlon
2e308ea82c
Merge pull request #2260 from JacobBarthelmeh/PKCS7 
PKSC7 firmware revision + callback / get SID
 2019-07-16 10:51:38 -06:00
JacobBarthelmeh
9f1aa1a27c
Merge pull request #2349 from ejohnstown/watch-chain 
Sniffer Watch Cert Chain
 2019-07-16 10:43:37 -06:00
Chris Conlon
d51b958334 use ForceZero instead of MEMSET in PKCS7 signed attribute handling 2019-07-16 08:13:47 -07:00
Sean Parkinson
8112c1236d Don't pick RSA PSS if not compiled in 2019-07-16 14:59:01 +10:00
Sean Parkinson
9af9941b90 Fixes for TLS 1.3 and OCSP Stapling 
Create the OCSP Response for Stapling and TLS 1.3 when parsing.
When parsing OCSP stapling extension with TLS 1.3, use a new extension
object if it was created.
Set the extension size to 0 before writing extensions when sending a TLS
1.3 Certificate message.
 2019-07-16 13:52:36 +10:00
toddouska
d620433d1d
Merge pull request #2209 from tmael/maintenanceDefects 
Increased ciphers buffer size for testsuite and ECC API for getting curve from dp
 2019-07-15 16:49:13 -07:00
toddouska
4e648dd35f
Merge pull request #2347 from JacobBarthelmeh/HardwareAcc 
adjust time.h for port due to tm struct change
 2019-07-15 15:27:58 -07:00
John Safranek
3cdb4f8bf0 Sniffer Watch Cert Chain 
Modifed the sniffer watch callback so it provides a SHA-256 hash of the
peer certificate, as before, and the entire certificate chain sent by
the server in the Certificate handshake message. The chain is taken
directly from the message payload, unprocessed. It'll be a list of pairs
of 24-bit certificate length and a DER encoded certificate, all in
network byte order.
 2019-07-15 14:07:22 -07:00
Chris Conlon
7367da3fb6 sort PKCS7 signed attributes when generating bundle 2019-07-15 13:27:49 -07:00
Jacob Barthelmeh
6e6c93624a free test RSA key after use 2019-07-15 12:32:19 -06:00
Jacob Barthelmeh
cba8a7f155 free buffer when using small stack 2019-07-15 12:32:19 -06:00
Jacob Barthelmeh
4362ce5f6b fix expected size and add sanity checks 2019-07-15 12:32:19 -06:00
Jacob Barthelmeh
a25d04044a save rid for kari callback 2019-07-15 12:32:19 -06:00
Jacob Barthelmeh
60fc9b3a1d add test for manual verify 2019-07-15 12:32:19 -06:00
Jacob Barthelmeh
d33a95352a fix check on ret value and add test case 2019-07-15 12:32:19 -06:00
Jacob Barthelmeh
f79a119c82 add storing sig/digest if no certs in bundle 2019-07-15 12:32:19 -06:00
Jacob Barthelmeh
d7a86de969 add wrap CEK callback, test, and adjustment for fwWrappedFirmwareKey 2019-07-15 12:32:19 -06:00
Jacob Barthelmeh
84653a7fb5 improvements on test code 2019-07-15 12:32:19 -06:00
Jacob Barthelmeh
a7a51d8f33 scan-build warnings / fixes 2019-07-15 12:32:19 -06:00
Jacob Barthelmeh
ab0029f9ac add setter function for ctx and pkcs7 callback, add test cases 2019-07-15 12:32:19 -06:00
Jacob Barthelmeh
2972b1c467 getter for signerinfo SID and decrypt callback 2019-07-15 12:26:11 -06:00
Chris Conlon
5743a1c80f
Merge pull request #2341 from miyazakh/fix_ricoh_buildfailure 
fix build failure when enabling MYSQL_COMPATIBLE
 2019-07-15 10:10:34 -06:00
Chris Conlon
9d9495f8b6 allow CSR challenge pass to be encoded as PrintableString 2019-07-12 16:23:48 -07:00
Jacob Barthelmeh
051112a101 adjust time.h for port due to tm struct change 2019-07-12 13:55:04 -06:00
toddouska
b4765a5c9e
Merge pull request #2340 from JacobBarthelmeh/Testing 
fsanitize report fixes
 2019-07-11 11:18:09 -07:00
toddouska
88f923a2a1
Merge pull request #2338 from ejohnstown/md5-null-suite 
RSA-NULL-MD5 cipher suite
 2019-07-11 11:15:48 -07:00
Hideki Miyazaki
3756a2c8c7 fix build failure when enabling MYSQL_COMPATIBLE 2019-07-11 09:00:03 +09:00
Jacob Barthelmeh
a6cc9af1fc free old peer RSA key in secure renegotiation when getting new one 2019-07-10 17:07:16 -06:00
Jacob Barthelmeh
6c9fac2a71 add wolfSSL_RAND_Cleanup to match wolfSSL_RAND_seed call on init 2019-07-10 16:43:44 -06:00
Jacob Barthelmeh
85ce959031 free peer cert overwritten by secure renegotiation 2019-07-10 16:04:42 -06:00
John Safranek
45b280a53e RSA Null MD5 cipher suite 
1. Add the cipher suite TLS_RSA_WITH_NULL_MD5 for use with the sniffer.
2. Added TLS_RSA_WITH_NULL_MD5 to the suite test.
 2019-07-10 14:32:14 -05:00
kaleb-himes
d7b50874f6 Fix leak in dh_test 2019-07-10 13:28:00 -06:00
toddouska
92bd585f25
Merge pull request #2329 from JacobBarthelmeh/SanityChecks 
scan-build fixes
 2019-07-10 10:23:39 -07:00
Chris Conlon
9cd6a992c5
Merge pull request #2295 from kojo1/RSA4096 
Static RSA4096
 2019-07-10 09:40:41 -06:00
toddouska
d88458a447
Merge pull request #2322 from SparkiDev/int_is_prime_fix 
Fix prime testing to do t iterations of random values in range
 2019-07-09 08:03:30 -07:00
toddouska
9daccb3300
Merge pull request #2320 from SparkiDev/tls_alerts 
Send more alerts as per TLS specification
 2019-07-09 08:02:32 -07:00