Sean Parkinson
|
0b47811c46
Changes for interop and performance
|
6 years ago |
David Garske
|
6de8348918
Fixes for various build configurations. Added `--enable-enckeys` option to enable support for encrypted PEM private keys using password callback without having to use opensslextra. Moved ASN `CryptKey` function to wc_encrypt.c as `wc_CryptKey`. Fixup some missing heap args on XMALLOC/XFREE in asn.c.
|
6 years ago |
David Garske
|
412d4d76ee
Fix for `HAVE_EXT_CACHE` callbacks not being available without `OPENSSL_EXTRA` defined. Added tests for external cache callbacks.
|
6 years ago |
David Garske
|
dbb34126f6
* Added support for not loading a private key for server or client when `HAVE_PK_CALLBACK` is defined and the private PK callback is set. Tested with all cipher suites, TLS 1.2/1.3, client/server certs, RSA/ECC/ED25519.
|
6 years ago |
David Garske
|
fa73f7bc55
Fix for handling OCSP with non-blocking. The HashInput function was being called on the re-entry, which produced a bad mac response from server. Also cleanup for some of the WC_PENDING_E logic for the non-async cases to reduce code size.
|
6 years ago |
John Safranek
|
ecb2463bbe
modify the client external test list to skip the test case when aes and aes-gcm are disabled
|
6 years ago |
Sean Parkinson
|
da4024b46a
Fix downgrading from TLS v1.3 to TLS v1.2
|
6 years ago |
Sean Parkinson
|
a3a4f2d59c
Minimal implementation of MP when using SP.
|
6 years ago |
toddouska
|
2efe7f6d96
Merge pull request #1319 from JacobBarthelmeh/Compatibility-Layer-Part5
|
6 years ago |
Jacob Barthelmeh
|
60b329f7e5
fix example client error print out and ASN1_TIME_print after rebase
|
6 years ago |
Jacob Barthelmeh
|
990e1f3ddf
implement wolfSSL set msg callback function
|
7 years ago |
Takashi Kojo
|
8c000c05ee
refactor MDK options in client/server.c
|
6 years ago |
Takashi Kojo
|
76e1a34fd0
update SimpleClient example
|
6 years ago |
Moisés Guimarães
|
263525d812
enables OCSPStapling CM for ocspstapling2
|
6 years ago |
Moisés Guimarães
|
43c234029b
adds a call to wolfSSL_CTX_EnableOCSPStapling() on client.c to fix ocspstapling2 tests and removes unnecessary 'kill ' from the test scripts
|
6 years ago |
David Garske
|
4712376ce1
Fix for OCSP non-blocking with check all flag set.
|
6 years ago |
David Garske
|
de05c563b6
Fix to handle non-blocking OCSP when `WOLFSSL_NONBLOCK_OCSP` is defined and not using async. OCSP callback should return `OCSP_WANT_READ`. Added ability to simulate non-blocking OCSP using `TEST_NONBLOCK_CERTS`.
|
6 years ago |
dgarske
|
8c15c65343
Merge pull request #1216 from abrahamsonn/windows-errors
|
6 years ago |
abrahamsonn
|
f17470b42b
Added more of the requested changes & made an attempt to remove merge conflicts
|
6 years ago |
David Garske
|
d5cc3ca198
Disable TLS v1.0 by default. Added new `--enable-tlsv10` option to force enable (only works if --enable-oldtls is set, which is on by default).
|
6 years ago |
David Garske
|
5a5fea7b46
Add `USE_SLOW_SHA256` and `USE_SLOW_SHA512` options for reduced code size of SHA. Existing `USE_SLOW_SHA2` applies for SHA512 only. Cleanup formatting of the sha256.c and sha512.c code. Added new `./configure --lowresource` option, which defines the memory reduction defines. Fix for `make check` resume.test scipt with `NO_SESSION_CACHE` defined.
|
6 years ago |
David Garske
|
0e34f35c08
Increase the static memory pool in client to better support ECC or session certs.
|
7 years ago |
David Garske
|
6369794b6f
Fixes for static memory with `-r` session resumption option on client. Fix for possible failed InitSSL cleanup using NULL ssl->ctx for static memory.
|
7 years ago |
David Garske
|
a4f94366a4
Added static memory code to client example.
|
7 years ago |
toddouska
|
8a01d725da
Merge pull request #1177 from dgarske/certreq_tests
|
7 years ago |
David Garske
|
911b6f95f8
Release v3.12.2 (lib 14.0.0). Updated copywright.
|
7 years ago |
David Garske
|
024c8725ad
Testing improvements for cert gen and TLS cert validation:
|
7 years ago |
David Garske
|
c9558ee27b
Updated a few more old names. Added PR for new configs to Jenkins.
|
7 years ago |
David Garske
|
6021c37ec7
Refactor `WOLF_SSL_` to `WOLFSSL_` (much better).
|
7 years ago |
David Garske
|
6707be2b0e
Added new `--disable-oldnames` option to allow for using openssl along-side wolfssl headers (without OPENSSL_EXTRA). Add `--enable-opensslcoexist` which makes sure `oldnames` is disabled. Refactor of `SSL_` to `WOLF_SSL_`. Refactor of `SHA`, `MD5`, `SHA224`, `SHA256`, `SHA512` and `SHA384` to `WC_` naming.
|
7 years ago |