 Anthony Hu
|
0e80923fb3
Unit tests for post-quantum groups.
|
пре 3 година |
 Anthony Hu
|
33cb823148
Remove legacy NTRU and OQS (#4418)
|
пре 3 година |
 Sean Parkinson
|
142c7a9892
cppcheck fixes and a config fix
|
пре 3 година |
 Daniel Pouzzner
|
186ff2b365
make -DNO_ED25519_KEY_{IMPORT,EXPORT} buildable, and fix api.c and suites.c so that -DNO_ED*_KEY_{IMPORT,EXPORT} pass make check.
|
пре 3 година |
|
Daniel Pouzzner
|
9b43e57ccf
ED: add streaming API to the ED verify routines: wc_ed*_verify_msg_init(), wc_ed*_verify_msg_update(), wc_ed*_verify_msg_final();
|
пре 3 година |
 David Garske
|
2e4e65f518
Asynchronous support for TLS v1.3 TLSX ECC/DH key generation and key agreement
|
пре 3 година |
 Tesfa Mael
|
0c16ef4b29
Check for TLS downgrade
|
пре 3 година |
 Juliusz Sosinowicz
|
70a3857ae8
Fragmentation for ServerKeyExchange and CeriticateVerify
|
пре 3 година |
 Jacob Barthelmeh
|
c729318ddd
update copyright date
|
пре 3 година |
|
Juliusz Sosinowicz
|
d4302cc71b
Correctly reset the Tx sequence number
|
пре 3 година |
|
Jacob Barthelmeh
|
97bc5e870c
fix for default OCSP cmp value and fix for WOLFSSL_NO_CLIENT_AUTH build
|
пре 3 година |
 toddouska
|
367f28b917
Merge pull request #3443 from SparkiDev/tls13_psk_no_dhe
|
пре 3 година |
|
Sean Parkinson
|
d8b58286d1
TLS 1.3: PSK only
|
пре 4 година |
|
Daniel Pouzzner
|
7850d71ccb
add wolfSSL_get_cipher_suite_from_name(); add flags arg to GetCipherSuiteFromName(); fix GetCipherSuiteFromName() to prevent spurious substring matching; add SUITE_ALIAS() macros for use defining CipherSuiteInfo, and add CipherSuiteInfo.flags slot and associated logic, to allow alternative cipher names to be recognized; add "CCM8" cipher name variants wherever applicable, including the unit.test conf files, to recognize and test the OpenSSL variants; add tests in client_test() and server_test() to confirm correct forward and backward mapping of cipher names/aliases.
|
пре 4 година |
|
David Garske
|
10f459f891
Added TLS v1.2 and v1.3 test cases for ECC Koblitz and Brainpool curves (both server auth and mutual auth). Cipher suites: `ECDHE-ECDSA-AES128-GCM-SHA256`, `ECDH-ECDSA-AES128-GCM-SHA256` and `TLS13-AES128-GCM-SHA256`.
|
пре 4 година |
|
Daniel Pouzzner
|
eb7a79aa5e
misc fixes for coverage and buildability: add MD2 to --enable-all*; fix spelling of "Sno" to "no" for $ENABLED_BLAKE2S default; when ENABLED_QSH add -DWOLFSSL_STATIC_DH -DWOLFSSL_STATIC_PSK (relates to ZD11073); add missing gating for !defined(WOLFSSL_DEVCRYPTO) in api.c:test_wc_Sha256FinalRaw(); fix tests/api.c:IsValidCipherSuite() to build under gcc10 (relates to ZD11073).
|
пре 4 година |
|
Sean Parkinson
|
d63ff07edc
TLS 1.3: Fix P-521 algorithm matching
|
пре 4 година |
|
Sean Parkinson
|
89b9a77eca
Get builds with WOLFSSL_NO_CLIENT_AUTH compiling and testing
|
пре 4 година |
 John Safranek
|
98ae3a2352
Added a suite test use case to cover the new error check. Also fixed and issue with passing a couple flags to the test case runner, and some other changes to support the new test.
|
пре 4 година |
|
toddouska
|
925e9d9213
Merge pull request #3075 from julek-wolfssl/dtls-no-cookie
|
пре 4 година |
|
David Garske
|
667d9ca896
Fix to catch the issue in this PR with alt cert chains, which only happens if the verify callback is used and the chain is long enough. Cleanup of the myVerify callback to allow specific actions. Fix the suites.c to not crash if no newline at end of file. Added helpful debug message to show that a CA was found.
|
пре 4 година |
|
David Garske
|
9be61c61f5
Add alternate chain test case where peer presents chain (INT -> INT2 -> PEER) and only INT2 is loaded as trusted. Update existing alternate chain partial test cases to use INT2. Fix for test suite to allow extra newlines in .test files.
|
пре 4 година |
|
Juliusz Sosinowicz
|
03c5359fcd
Add session resumption testing for DTLS
|
пре 4 година |
|
Juliusz Sosinowicz
|
d88f6f1156
DTLS test cases
|
пре 4 година |
|
toddouska
|
29bdc7d8b5
Merge pull request #3015 from tmael/cov-fix
|
пре 4 година |
|
David Garske
|
7879e83ae0
Fixes for building with `./configure --enable-tls13 --disable-rsa --disable-ecc --enable-psk`. Fix to properly detect if missing a asymmetric key algorithm (required by TLS v1.3).
|
пре 4 година |
|
Tesfa Mael
|
d000ceb495
Resolve Warnings
|
пре 4 година |
|
Tesfa Mael
|
d5241bbcc6
Coverity fix
|
пре 4 година |
|
Sean Parkinson
|
2c6eb7cb39
Add Curve448, X448, Ed448 implementations
|
пре 4 година |
 Chris Conlon
|
45c5a2d39c
update copyright to 2020
|
пре 4 година |
