David Garske
|
d2b9b230a0
Added additional verify callback override test cases.
|
6 years ago |
David Garske
|
b369e524d4
Fix for the ECDSA verify callback override test case. Switched to AES128-GCM cipher suite (better cipher suite overall).
|
6 years ago |
David Garske
|
3d0d10345a
Added test cases for ensuring forced error fails on client and server. Added test cases to ensure bad certificate can be overriden.
|
6 years ago |
John Safranek
|
adb3cc5a5a
Subject Alt Name Matching
|
6 years ago |
Jacob Barthelmeh
|
d3cd0b6b2e
disable CRL with additional cn/alt test certs
|
6 years ago |
David Garske
|
61056829c5
Added success test cases for domain name match (SNI) in common name and alternate name.
|
6 years ago |
David Garske
|
1f16b36402
Fixes for `MatchDomainName` to properly detect failures:
|
6 years ago |
David Garske
|
89a4c98670
* Added support for expected fail test cases with example client/server and suites unit test.
|
6 years ago |
thivyaashok
|
7d425a5ce6
Added support for an anonymous cipher suite (#1267)
|
6 years ago |
David Garske
|
024c8725ad
Testing improvements for cert gen and TLS cert validation:
|
7 years ago |
Sean Parkinson
|
f724206e37
Add test for 3072-bit RSA and DH and fix modexp
|
7 years ago |
David Garske
|
df119692d1
Fixes for using async with `HAVE_MAX_FRAGMENT` or `--enable-maxfragment` which affected TLS 1.2/1.3. Added TLS 1.2 test for using max fragment.
|
7 years ago |
Sean Parkinson
|
13c4fe6cc4
Add test
|
7 years ago |
Sean Parkinson
|
613d30bcae
ED25519 TLS support
|
7 years ago |
David Garske
|
2efa7d5b8b
Fix for verify callback override, peerVerifyRet code on success and ensuring DOMAIN_NAME_MISMATCH error gets passed down in ECDSAk case. Added unit test case to verify callback override works. Fixes issue #905 and issue #904. Fix for async build goto label typo.
|
7 years ago |
David Garske
|
b14da2622e
Fix InitSuites to allow old TLS for DHE_RSA with AES 128/256 for SHA256. Reverted changes to test.conf and test-dtls.conf.
|
7 years ago |
David Garske
|
4dcad96f97
Added test for server to use the default cipher suite list using new “-U” option. This allows the InitSuites logic to be used for determining cipher suites instead of always overriding using the “-l” option. Now both versions are used, so tests are done with wolfSSL_CTX_set_cipher_list and InitSuites. Removed a few cipher suite tests from test.conf that are not valid with old TLS. These were not picked up as failures before because wolfSSL_CTX_set_cipher_list matched on name only, allowing older versions to use the suite.
|
7 years ago |
John Safranek
|
2f9c9b9a22
Add cipher suite ECDHE-ECDSA-AES128-CCM
|
8 years ago |
Jacob Barthelmeh
|
38bbd41f99
add EDH-RSA-AES256-SHA, used in one mysql test
|
8 years ago |
Jacob Barthelmeh
|
3ce64da44c
ChaCha20-Poly1305 PSK cipher suites
|
8 years ago |
Jacob Barthelmeh
|
5a9175a758
add cipher suite ECDHE-PSK-AES128-SHA256 and adjustments to ECDHE-PSK
|
8 years ago |
Jacob Barthelmeh
|
d04a7e802a
add ECDHE-PSK and cipher suite ECDHE-PSK-NULL-SHA256
|
8 years ago |
Jacob Barthelmeh
|
93c54c07ea
cipher suite ECDHE-ECDSA-NULL-SHA
|
8 years ago |
Jacob Barthelmeh
|
7d71d756f3
update ChaCha20-Poly1305 to most recent RFCs
|
9 years ago |
Ludovic FLAMENT
|
f68400da40
add IDEA cipher (ECB and CBC mode)
|
9 years ago |
Jacob Barthelmeh
|
e7dd5c4b8f
add setting client cipher list
|
9 years ago |
Jacob Barthelmeh
|
df8b48cd0f
NTRU suites from earlier code
|
9 years ago |
Jacob Barthelmeh
|
14723b7e65
QSH (quantum-safe handshake) extension
|
9 years ago |
John Safranek
|
1742e0ddb6
Merge in the ADH-AES128-SHA changes and add a check for it during the
|
10 years ago |
JacobBarthelmeh
|
b77a1fdbbb
refactoring
|
10 years ago |