WolfSSL
/
wolfssl
mirror of https://github.com/wolfSSL/wolfssl.git
1
0
Fork 0
Code Issues Releases Wiki Activity
11,628 Commits
27 Branches
168 Tags
358 MiB
Commit Graph

2101 Commits (b952f18eb414d632f157623333f4ba3e844523dd)

Author SHA1 Message Date
JacobBarthelmeh e194a11cb8 add wolfSSL_SESSION_new and change to peek error 2020-07-06 10:47:46 -06:00
JacobBarthelmeh df9a1a2a0e revert error peek function 2020-07-01 16:26:38 -06:00
JacobBarthelmeh e6746639af add SSL_SESSION_up_ref and fix for get lib 2020-06-30 13:16:28 -06:00
David Garske e2afbae6aa
Merge pull request #3054 from JacobBarthelmeh/CRL 
fix for x509 store add crl
 2020-06-25 09:52:12 -07:00
Jacob Barthelmeh b8b2f7ef7d vs build warning fixes 2020-06-24 10:57:31 -06:00
JacobBarthelmeh b88342eeaf memory handling fixes 2020-06-19 10:08:42 -07:00
JacobBarthelmeh 22d6774966
Merge pull request #2909 from SKlimaRA/SKlimaRA/crl-and-pkcb 
ParseCrl fix, GetPrivateKeySigSize moved from client only section and Coverity fixes.
 2020-06-19 10:51:50 -06:00
toddouska 248b8c9b62
Merge pull request #3057 from kaleb-himes/FIPSv2_plus_OPENSSLALL 
Resolve issues with FIPSv2 when opensslall set
 2020-06-18 10:12:06 -07:00
Jacob Barthelmeh 1e431e1ade add test case and fixes from review 2020-06-18 10:57:25 -06:00
kaleb-himes e2fb4c55b8 Resolve issues with FIPSv2 when opensslall set 2020-06-17 14:03:02 -06:00
Jacob Barthelmeh 82921f8650 fix for x509 store add crl 2020-06-17 11:30:18 -06:00
Sean Parkinson 6bb73fb25d Fix ED448 calls to use context and correct variable name 
Added basic test of OpenSSL compatability APIs:
  - wolfSSL_ED25519_generate_key
  - wolfSSL_ED25519_sign
  - wolfSSL_ED25519_verify
  - wolfSSL_ED2448_generate_key
  - wolfSSL_ED448_sign
  - wolfSSL_ED448_verify
 2020-06-17 10:05:50 +10:00
JacobBarthelmeh 7c6dccd4a0
Merge pull request #3038 from embhorn/zd10457 
Unused var error
 2020-06-16 14:10:54 -06:00
Chris Conlon b9f13dba61
Merge pull request #3030 from TakayukiMatsuo/usertime 
ASN1_TIME_new in correct macro condition
 2020-06-15 17:49:44 -05:00
toddouska 1e07563411
Merge pull request #2984 from julek-wolfssl/dtls-scr 
Add secure renegotiation to DTLS 1.2
 2020-06-12 11:22:55 -07:00
toddouska 6166902f66
Merge pull request #2990 from julek-wolfssl/fix-leak 
Fix leak in SetIndividualInternal
 2020-06-12 11:17:40 -07:00
toddouska 4c2dee77d8
Merge pull request #3028 from julek-wolfssl/CRYPTO_memcmp 
Implement CRYPTO_memcmp
 2020-06-12 11:16:18 -07:00
Eric Blankenhorn 0f36cdf066 Unused var error 2020-06-12 10:43:01 -05:00
Juliusz Sosinowicz ac028e551d Code Review 2020-06-12 11:36:43 +02:00
Juliusz Sosinowicz f2d2dadc89 ASYNC: Fix issues with TLS and DTLS 2020-06-12 11:36:43 +02:00
Juliusz Sosinowicz 7b604ad714 WIP 2020-06-12 11:36:43 +02:00
Juliusz Sosinowicz 73105305cf WIP 2020-06-12 11:36:43 +02:00
Juliusz Sosinowicz eb910a64d0 Comments and formatting 2020-06-12 11:36:43 +02:00
Juliusz Sosinowicz 651a7a97b9 Add secure renegotiation to DTLS 1.2 
- Hash of fragmented certificate was not calculated as a single message and instead we were hashing individual fragments which produced the wrong digest, shared secret, etc...
- Reset handshake number after server Finished packet is sent or received (depending on side)
- Reserve space in buffer for cipher stuff
- Take `DTLS_RECORD_EXTRA` and  `DTLS_HANDSHAKE_EXTRA` into size and offset calculations for DTLS path
- Fix renegotiation in DTLS with AES128-SHA
- Fix renegotiation in DTLS with AES-GCM
- Support HelloVerify request during secure renegotiation
- Save renegotiation handshake messages for retransmission in timeout
- Handle cipher parameters from different epochs. DTLS may need to resend and receive messages from previous epochs so handling different sets of encryption and decryption parameters is crucial.
 2020-06-12 11:36:43 +02:00
Juliusz Sosinowicz d5577c9404 Explicit convert 2020-06-10 18:43:27 +02:00
toddouska e993cb6cc0
Merge pull request #2942 from dgarske/tls13_on 
Enable TLS v1.3 by default
 2020-06-09 13:30:02 -07:00
toddouska 7a7bfce565
Merge pull request #3026 from cconlon/selftestfixes 
Fix warnings with NetBSD gcc compiler
 2020-06-09 13:18:44 -07:00
Tak b883617c0d Moved wolfSSL_ASN1_TIME_new() to under #ifndef NO_ASN_TIME condition 2020-06-08 14:10:20 +09:00
David Garske 3af4316cfd Fix for session test with TLS v1.3 and session tickets not enabled. Cleanups in `AddSession`. 2020-06-05 13:33:03 -07:00
Juliusz Sosinowicz a75f83c9f2 Implement CRYPTO_memcmp 2020-06-05 16:44:12 +02:00
David Garske 8823a581d0 Add PSK user context support (Fixes #2952.). 2020-06-04 15:31:18 -07:00
David Garske cd1c2d5fae Enable TLS v1.3 by default. Remove old TLS v1.3 draft build support. 2020-06-04 15:31:18 -07:00
toddouska 3529d9a40d
Merge pull request #3016 from kaleb-himes/FIPSv2-MAINTENANCE 
New OpenSSL features relying on changes in module files must account for locked FIPS versions of those files
 2020-06-04 15:08:17 -07:00
toddouska 23d1550439
Merge pull request #2989 from julek-wolfssl/openvpn 
Additional OpenSSL compat layer stuff
 2020-06-04 11:57:55 -07:00
kaleb-himes 5a4d84ecad Consolidate to one-line where possible 2020-06-03 16:19:34 -06:00
Chris Conlon 1c1a01fffe rename dup to resolve NetBSD global shadow warnings 2020-06-03 14:11:12 -06:00
kaleb-himes 6217118ee4 Account for unmodifiable FIPS module files when adding new OpenSSL functionality 2020-06-01 16:28:32 -06:00
David Garske e498e07390
Merge pull request #3005 from cconlon/608a 
ATECC608A improvements for use with Harmony 3 and PIC32MZ
 2020-05-28 16:10:39 -07:00
Chris Conlon 896fcd9aec add WOLFSSL_ATECC6088A, Trust&GO support, PIC32 HAL compatibility, 608A expansions 2020-05-27 16:49:29 -06:00
JacobBarthelmeh 8e9f518caa fix for gcc 10+ error on snprintf 2020-05-27 16:20:39 -06:00
toddouska e388885407
Merge pull request #2997 from kaleb-himes/ZD10356 
Fix a seg fault when cert not loaded prior to key check
 2020-05-26 16:19:43 -07:00
Kaleb Himes 5179503e8f
Merge pull request #2995 from julek-wolfssl/va-copy-check 
Enable wolfSSL_BIO_vprintf on Windows
 2020-05-26 08:58:05 -07:00
Chris Conlon 165fce7c57
Merge pull request #2988 from miyazakh/peakmem 
added WOLFSSL_LEAVE for measuring peak memory script
 2020-05-22 15:37:30 -06:00
kaleb-himes 53d2a17b43 Fix a seg fault when cert not loaded prior to key check 2020-05-22 15:03:11 -06:00
Juliusz Sosinowicz de61a8e5d3 Enable wolfSSL_BIO_vprintf on Windows 
Enable wolfSSL_BIO_vprintf use with WOLFSSL_BIO_MEMORY and WOLFSSL_BIO_SSL on Windows with the HAVE_VA_COPY flag
 2020-05-21 19:41:40 +02:00
Juliusz Sosinowicz a67e1fc2ad Fix implicit conversions 2020-05-21 13:20:42 +02:00
Juliusz Sosinowicz 70c55ce30a Set offset in cipher struct 2020-05-21 12:51:23 +02:00
Juliusz Sosinowicz 986c8f351c Fix leak in SetIndividualInternal 
SetIndividualInternal should not do mp_init on mpi since it should have been zero'ed during allocation and if it isn't zero'ed then it must mean that memory has already been allocated to it
 2020-05-20 20:34:45 +02:00
Juliusz Sosinowicz 5f7832909b BIO_new_mem_buf with negative len should take strlen of buf as len 2020-05-20 16:55:16 +02:00
Juliusz Sosinowicz 4a85bf8108 Additional OpenSSL compat layer stuff 
- Add X509_get0_notBefore and X509_get0_notAfter
- Implement EVP_PKEY_get0_DSA and DSA_bits
- OpenSSL_version now prints "wolfSSL $VERSION"
- Remove define guards in `wolfSSL_internal_get_version` as all protocols are defined regardless in `wolfssl/internal.h`and this function just returns the string description of the protocol
 2020-05-20 16:55:16 +02:00