kaleb-himes
|
93a8f36530
Fix basic constraints extension present and CA Boolean not asserted
|
3 лет назад |
Sean Parkinson
|
a84f1c813a
TLS Session Ticket: Option to disable for TLS 1.2 and below
|
3 лет назад |
toddouska
|
9183c35fb8
Merge pull request #3446 from haydenroche5/client_want_write_sim
|
4 лет назад |
Hayden Roche
|
3d5c747ed5
Modify a couple tests to use WANT_WRITE simulation.
|
4 лет назад |
Daniel Pouzzner
|
7850d71ccb
add wolfSSL_get_cipher_suite_from_name(); add flags arg to GetCipherSuiteFromName(); fix GetCipherSuiteFromName() to prevent spurious substring matching; add SUITE_ALIAS() macros for use defining CipherSuiteInfo, and add CipherSuiteInfo.flags slot and associated logic, to allow alternative cipher names to be recognized; add "CCM8" cipher name variants wherever applicable, including the unit.test conf files, to recognize and test the OpenSSL variants; add tests in client_test() and server_test() to confirm correct forward and backward mapping of cipher names/aliases.
|
4 лет назад |
toddouska
|
65cf5a0d46
Merge pull request #2802 from embhorn/zd9764
|
4 лет назад |
Sean Parkinson
|
2c6eb7cb39
Add Curve448, X448, Ed448 implementations
|
4 лет назад |
Eric Blankenhorn
|
41d3ba0efa
Tests and examples for bidirectional shutdown
|
4 лет назад |
David Garske
|
3f1c3392e5
Fixes for build with opensslextra and 3072-bit cert buffers. Adds 3072-bit RSA public key der. Eliminates duplicate 3072-bit client cert/key.
|
4 лет назад |
John Safranek
|
8347d00bf2
Maintenance BLAKE2
|
5 лет назад |
toddouska
|
8246e02756
Merge pull request #2502 from cariepointer/gcm-tls10-fix
|
5 лет назад |
Carie Pointer
|
39eaaddeae
Add tests for AEAD cipher suites with TLSv1.1 and TLSv1.0
|
5 лет назад |
kaleb-himes
|
306b280ccd
Add test cases and implement peer suggestions
|
5 лет назад |
Carie Pointer
|
5adcee9f2c
Update testsuite to expect ADH-AES256-GCM-SHA384 to fail with TLSv1.0 and TLSv1.1
|
5 лет назад |
Sean Parkinson
|
a975ba9e97
Disallow SHA-2 ciphersuites from TLS 1.0 and 1.1 handshakes
|
5 лет назад |
Sean Parkinson
|
24e98dd05e
Add support for Encrypt-Then-MAC to TLS 1.2 and below
|
5 лет назад |
John Safranek
|
45b280a53e
RSA Null MD5 cipher suite
|
5 лет назад |
John Safranek
|
cb57a5f3ed
Added a test case for TrustedCA to the unit test.conf file.
|
6 лет назад |
John Safranek
|
39626bb349
1. Add a newline to the client's "non-blocking socket and renegotiation" notice.
|
5 лет назад |
David Garske
|
59a3b4a110
New tests for cert chains, alternate cert chains, trusted peer certs and DH prime cleanup:
|
5 лет назад |
John Safranek
|
a47e08c49e
DHE Speed Up
|
6 лет назад |
John Safranek
|
fa0b4cd2d5
DHE Speed Up
|
6 лет назад |
David Garske
|
3be7eacea9
Added client/server certs and keys for P-384-bit signed by P-384 CA. Fix for broken certs/ecc/genecc.sh script. Added simple P-384 cipher suite test.
|
6 лет назад |
David Garske
|
24f9f12844
Fix for the curve logic to pick the hightest strength, not just the default 256-bit. Added test for setting user curve. `./examples -H useSupCurve`.
|
6 лет назад |
David Garske
|
d2b9b230a0
Added additional verify callback override test cases.
|
6 лет назад |
David Garske
|
b369e524d4
Fix for the ECDSA verify callback override test case. Switched to AES128-GCM cipher suite (better cipher suite overall).
|
6 лет назад |
David Garske
|
3d0d10345a
Added test cases for ensuring forced error fails on client and server. Added test cases to ensure bad certificate can be overriden.
|
6 лет назад |
John Safranek
|
adb3cc5a5a
Subject Alt Name Matching
|
6 лет назад |
Jacob Barthelmeh
|
d3cd0b6b2e
disable CRL with additional cn/alt test certs
|
6 лет назад |
David Garske
|
61056829c5
Added success test cases for domain name match (SNI) in common name and alternate name.
|
6 лет назад |