WolfSSL
/
wolfssl
mirror of https://github.com/wolfSSL/wolfssl.git
1
0
Fork 0
Code Issues Releases Wiki Activity
8,195 Commits
4 Branches
160 Tags
401 MiB
Commit Graph

8195 Commits (4d6f43277eea652224a046419ab2a3a426feac49)

Author SHA1 Message Date
toddouska a3627106ea
Merge pull request #1753 from dgarske/gcc_arm_fips 
Enhancements to the GCC-ARM example
 2018-08-13 16:20:13 -07:00
John Safranek 91d2b17139 Scan-Build Fix 
1. Initialize the sz variable in wc_BerToDer().
 2018-08-13 14:37:04 -07:00
David Garske f44d42b1c8 Enhancements to the GCC-ARM example to support FIPS and additional build options. Added examples for memory overrides and standard library overrides. Fixes for building without test, benchmark or TLS. Changed the ARM startup code to only work for the Cortex M0 example using the define `USE_WOLF_ARM_STARTUP`. 2018-08-13 12:22:14 -06:00
John Safranek 5caaa94868
Merge pull request #1754 from dgarske/fix_fipsv2 
Fix for FIPS PRB error with CAVP test
 2018-08-13 11:18:33 -07:00
Jacob Barthelmeh b71c2ddf38 call hamc init with blake2 software test 2018-08-13 08:58:01 -06:00
David Garske 93a7b76da5 Fix missing `RSA_MIN_SIZE` and `RSA_MAX_SIZE` and case where `HAVE_FIPS_VERSION` is not defined. 2018-08-13 08:18:51 -06:00
David Garske 80e46253d9 Fix for FIPS v1 CAVP case so the `wc_RsaExportKey` and `wc_CheckProbablePrime` functions are available. Cleanup to remove unused ERROR_OUT. 2018-08-13 06:25:55 -06:00
Eric Blankenhorn bb574d28b2 Support for more cert subject OIDs and raw subject access (#1734) 
* Add businessCategory OID
* Raw subject support methods
* Support for jurisdiction OIDs
* Wrap in WOLFSSL_CERT_EXT
* Adding tests
 2018-08-12 12:53:29 -07:00
David Garske 6d10efe79c
Merge pull request #1752 from kaleb-himes/ocsp-stapling-pzero-take2 
Use port 0 (dynamic) solution on servers and clients in addition to ocsp responders. Fix for OCSP tests when running concurrently.
 2018-08-10 15:15:43 -07:00
kaleb-himes 280de47d06 Use pzero solutions on servers and clients in addition to ocsp responders 2018-08-10 14:17:17 -06:00
kaleb-himes c288a214b1 give servers time to shut-down after client connection 2018-08-10 11:57:35 -06:00
kaleb-himes ba3bc59771 further test control over ocsp-stapling tests 2018-08-10 11:44:16 -06:00
kaleb-himes 735e4a0986 ocsp stapling tests to wait until unit tests are complete 2018-08-10 11:18:04 -06:00
kaleb-himes 6113f68c21 make renewcerts-for-test use portable function declaration 2018-08-10 10:40:16 -06:00
kaleb-himes 35dbf9a6fe address file restoration issue present when git not available 2018-08-10 10:24:42 -06:00
JacobBarthelmeh a9a9dd257e
Merge pull request #1743 from kaleb-himes/ocsp-logic-update 
update ocsp test case for portability and informative updates on use …
 2018-08-08 10:45:26 -06:00
kaleb-himes c7f1d810c3 update ocsp test case for portability and informative updates on use of environment variable 2018-08-07 10:42:18 -06:00
toddouska cc1680dc98
Merge pull request #1741 from dgarske/verify_cb 
Refactor of the verify callback
 2018-08-06 13:12:54 -07:00
David Garske 56974c099e Improved the logic for `WOLFSSL_ALWAYS_VERIFY_CB` to be more explicit and updated comments. 2018-08-06 11:40:35 -07:00
David Garske c4ea50b956 Fix for issue with using `CopyDecodedToX509` again for existing X509 and freeing the altNames in original. Fix was to use the `ssl->peerCert` directly for the index 0 cert. Improvement to make sure ex_data is always populated. Added NULL arg check on `wolfSSL_get_peer_certificate`. 2018-08-06 11:40:35 -07:00
David Garske 7d39a897dc Refactor of the verify callback to eliminate duplicate code and provide consistency with various build options. Documented build options and added code comments in new DoVerifyCallback function. Added documentation in test.h `myVerify` function for arguments and return code. Fix from commit da1ac36 which added `current_cert` to `WOLFSSL_X509_STORE_CTX`, but is only required for ASIO compatibility and is not used. 2018-08-06 11:40:35 -07:00
David Garske 30d6c0c1fc
Merge pull request #1737 from ejohnstown/ocsp-free 
OCSP Free
 2018-08-06 09:08:01 -07:00
Jacob Barthelmeh 30e787b10c create buffer with structure copy and set fd after close 2018-08-03 16:46:15 -06:00
Jacob Barthelmeh 7726786998 fix comment and remove duplicate free 2018-08-03 15:04:37 -06:00
David Garske 738a121d61
Merge pull request #1740 from ejohnstown/null-check 
NULL Check
 2018-08-03 13:53:53 -07:00
toddouska b88d60ecbb
Merge pull request #1665 from ejohnstown/mr 
Prime Number Testing
 2018-08-03 12:50:27 -07:00
John Safranek f6a8a2f5bd NULL Check 
When using the async option, the RSA key is checked on the first call to
DoTls13CertificateVerify() when the async state machine is set up. On
the subsequent call, the pointer to the key isn't checked again. Added a
check. (This was from a static analysis report.)
 2018-08-03 11:09:43 -07:00
John Safranek 368b5b1072
Merge pull request #1729 from kaleb-himes/init-array 
Initialize array to zero(s)
 2018-08-02 16:33:37 -07:00
John Safranek f45dbed8f9 OCSP 
1. Modify the other OCSP Stapling scripts to better manage the OCSP responder.
2. Modify the client's W option to take:
 - 1 for Stapling v1
 - 2 for Stapling v2
 - 3 for Stapling v2 MULTI
3. Modify the client to disallow stapling v2 with TLSv1.3.
 2018-08-02 16:25:38 -07:00
David Garske a43d4d16ba
Merge pull request #1719 from MJSPollard/OpenSSLAllFix 
Added boost define and openssl bug fix with WOLFSSL_KEY_GEN
 2018-08-02 15:20:27 -07:00
David Garske a915c3a381
Merge pull request #1738 from ejohnstown/DH 
DH SP Fix
 2018-08-02 15:04:33 -07:00
Kaleb Himes 660c3300e1
Merge pull request #1730 from dgarske/dertoc 
Added handy script for converting DER file to C array
 2018-08-02 15:54:15 -06:00
John Safranek 5ae45436f4 OSCP 
1. Added a missed attr files for the OSCP status files. Bare minimum attr.
2. Added the attr files to the automake include.
3. Fix out of bounds read with the OCSP URL.
 2018-08-02 14:50:59 -07:00
JacobBarthelmeh 782ea74fbf
Merge pull request #1732 from kojo1/Ticket-4169-2 
Ticket 4169: eliminate ssl->CBIORecv/Send overwritten in SSL_set_bio
 2018-08-02 14:58:25 -06:00
JacobBarthelmeh 99b556c07d
Merge pull request #1735 from embhorn/zd4179 
Fix for resource leak
 2018-08-02 14:27:04 -06:00
John Safranek c71f730d67 OSCP 
1. Made killing the OCSP server process more reliable.
2. Added attr files for the OSCP status files. Bare minimum attr.
3. Added a NL to the error string from the client regarding external tests.
 2018-08-02 11:32:36 -07:00
kaleb-himes ddec878152 Disable external tests for OCSP scripts 2018-08-02 10:03:47 -06:00
Eric Blankenhorn b248af6f84 Update from review 2018-08-02 10:59:07 -05:00
kaleb-himes a178764a8b Portability and self-cleanup changes to ocsp test scripts 2018-08-02 09:47:13 -06:00
kaleb-himes 93c2f3b170 Initialize array to zero(s) 2018-08-02 09:21:09 -06:00
Takashi Kojo fd75f35801 fix cbioFlag check 2018-08-02 10:18:09 +09:00
John Safranek 6527c2a724 DH SP Fix 
When doing the sp_2048_mod_exp_*() is processed, one of the index
variables is masked with 0x1f when it was updated. Added the masking to
the initial set of the index.
 2018-08-01 16:32:22 -07:00
John Safranek c87d6b27e2 OCSP Free 
Free the OCSP request when creating the response only if there is an error making the request.
 2018-08-01 15:34:43 -07:00
David Garske 0ccdefb8d0
Merge pull request #1733 from ejohnstown/des-iv 
Fix DES IV value
 2018-08-01 14:57:26 -07:00
John Safranek 7647d52d77 Prime Number Testing 
1. Remove a copy-paste error when clearing up the RNG used to test a prime.
2. Tag a some const test values as static in the wolfCrypt test.
 2018-08-01 14:49:06 -07:00
JacobBarthelmeh 244d931e75
Merge pull request #1721 from kaleb-himes/cleanup-debug 
Cleanup debug errors
 2018-08-01 15:01:25 -06:00
Eric Blankenhorn ba2f0fd8fc Fix for zd4179, 4181, 4182 2018-08-01 15:56:15 -05:00
John Safranek 5ca2ff187b DES IV 
Change the DES_IV_SIZE back to 8 bytes, rather than 16.

DES/DES3 was passing the wolfCrypt test becuase the main DES code uses
the DES_BLOCK_SIZE when handling the IV. The TLS/SSL code uses the
DES_IV_SIZE when generating the session keys.
 2018-08-01 13:08:52 -07:00
Takashi Kojo 98f6ae16ca copy cbioFlag from ctx to ssl 2018-08-02 04:48:39 +09:00
toddouska 8bc5bc227d
Merge pull request #1634 from ejohnstown/gcc-8-fixes 
GCC-8 String Fixes
 2018-08-01 12:13:10 -07:00