Commit Graph

2507 Commits

Author SHA1 Message Date
toddouska
d552390b39 allow sniffer muliple msgs per record to handle encrypted msgs too 2014-12-03 14:12:13 -08:00
toddouska
264e180147 allow sniffer to handle bundled record layer messages 2014-12-03 11:58:50 -08:00
toddouska
f1c6e901a4 allow user to set sniffer cache timeout at compile time w/ CYASSL_SNIFFER_TIMEOUT 2014-12-02 10:33:10 -08:00
toddouska
09d290f552 allow user to set session timeout at compile time w/ CYASSL_SESSION_TIMEOUT 2014-12-02 10:28:47 -08:00
toddouska
1688fd1670 help static anaylsis 2014-12-01 16:35:04 -08:00
toddouska
52c2c126c1 turncate hashSigAlgoSz to max buffer size 2014-12-01 15:53:59 -08:00
toddouska
09aeda2162 fix SetCipherList() possible 1 byte overrun 2014-12-01 14:34:48 -08:00
toddouska
295e65ca02 add sanity size check to iv fill in case block size is bad 2014-12-01 14:23:10 -08:00
toddouska
4954043def release lock on client side cache bad hash 2014-12-01 14:11:32 -08:00
John Safranek
1742e0ddb6 Merge in the ADH-AES128-SHA changes and add a check for it during the
packet order sanity checking.
2014-12-01 11:44:32 -08:00
toddouska
b2f9d62852 make HASH-DRBG default RNG w/ autoconf 2014-12-01 09:12:26 -08:00
toddouska
fe81c2855d sanity size check on handshake headers 2014-12-01 08:58:52 -08:00
toddouska
1f8d84553c add server_ready file to externally monitor example server for ready to accept, -r option 2014-11-26 12:13:47 -08:00
John Safranek
438cb515d5 added a make clean after updating the verify hash when running the fips check 2014-11-24 15:52:47 -08:00
John Safranek
98db39a913 fixed the check in commit-tests to see if FIPS test should run 2014-11-24 13:33:14 -08:00
John Safranek
f7235819d2 bugfix in the FIPS check script 2014-11-24 12:50:55 -08:00
toddouska
a352908c61 fix optimized fastmath read digit for explicit 32bit digits 2014-11-24 10:00:13 -08:00
John Safranek
65c0dd4f8a Added fips-check script when running commit-tests. 2014-11-19 12:00:04 -08:00
toddouska
17a4cc8239 fix ctaocrypt test RNG leak when using HASH-DRBG 2014-11-18 16:52:37 -08:00
toddouska
f1ab188949 disallow client to fast forward handshake messages 2014-11-18 16:27:39 -08:00
toddouska
25362268db Merge pull request #132 from tisb/master
Fix for TI-RTOS CyaSSL build errors
2014-11-17 17:16:11 -08:00
Vikram Adiga
9fd6e680a2 Removed extra comma to avoid TI compiler warnings. 2014-11-17 15:58:19 -08:00
Vikram Adiga
e0bec88f76 fixed build errors for TI-RTOS. 2014-11-17 15:58:05 -08:00
toddouska
59e62b7c49 Merge pull request #131 from lchristina26/master
add braces around empty if statements
2014-11-17 15:30:14 -08:00
toddouska
57522d217b disallow basic server fast forwards during handshake 2014-11-17 15:25:49 -08:00
toddouska
31858d2a34 move gotChangeCipher from options into msgsReceived 2014-11-17 13:11:45 -08:00
toddouska
5318b243ba add messages received framework, disallow duplicates 2014-11-17 12:55:07 -08:00
lchristina26
b3b0c8d1fc Add braces around empty if statements 2014-11-17 11:10:23 -07:00
toddouska
de388bf37f version 3.2.6 2014-11-14 11:49:14 -08:00
John Safranek
2c85756130 fixed carry error on array add in HashDRBG 2014-11-13 18:08:23 -08:00
toddouska
6c2a238c9b bump version 2014-11-13 10:19:03 -08:00
toddouska
730cede82d add HAVE_FORCE_FIPS_FAILURE for operational testing 2014-11-12 17:09:16 -08:00
John Safranek
6944eb69f6 added error code for AESGCM FIPS KAT test error 2014-11-10 15:38:41 -08:00
Chris Conlon
654c421441 fix benchmark error with NO_AES, jenkins found 2014-11-10 10:13:23 -07:00
John Safranek
eb59597fed fix bug in sniffer when using old client hellos where large hello message may
be ignored
2014-11-07 17:11:38 -08:00
John Safranek
54f678b9ee Merge branch 'master' of github.com:cyassl/cyassl 2014-11-07 17:06:04 -08:00
John Safranek
12a6978401 refactored HashDRBG to remove some redundant code 2014-11-07 17:05:18 -08:00
toddouska
eda2103dc3 add size check to fips core hash gen 2014-11-07 16:43:32 -08:00
toddouska
e6e24d92fb Merge branch 'master' of github.com:cyassl/cyassl 2014-11-07 16:23:56 -08:00
toddouska
81fd594c9f add fips get status functions 2014-11-07 16:23:19 -08:00
Chris Conlon
4d819dea87 fix hashType warning on Linux 2014-11-07 17:19:11 -07:00
John Safranek
138ce50bae Merge branch 'master' of github.com:cyassl/cyassl 2014-11-07 15:36:49 -08:00
John Safranek
00965d44dc fix sniffer bug with detecting old client hello 2014-11-07 15:35:36 -08:00
Chris Conlon
71da84122f expose EncodeSignature() for DER-encoded comparisons 2014-11-07 16:33:38 -07:00
John Safranek
a45a8f2cd8 Merge branch 'master' of github.com:cyassl/cyassl 2014-11-07 14:40:21 -08:00
John Safranek
d829b5f93b Allow sniffer to follow ports using STARTTLS. 2014-11-07 14:37:00 -08:00
Chris Conlon
233bca3346 add RsaPublicKeyDecodeRaw() to load key from existing n, e 2014-11-07 15:24:02 -07:00
toddouska
b36f823da5 only do fips verify core check on fips files 2014-11-07 13:09:32 -08:00
John Safranek
4441e3be1a HashDRBG continuity failure passed up to caller 2014-11-07 12:08:26 -08:00
John Safranek
3130145213 Added note to SSL_ResourceFree() 2014-11-06 16:07:05 -08:00