arduino/esp8266
1
0
Fork 0
mirror of https://github.com/esp8266/Arduino.git synced 2025-10-15 11:26:40 +03:00
Code Activity
301 Commits 13 Branches 37 Tags
2213f304490e059d72fd511cd6548b23a685ee8f
Commit Graph

15 Commits

Author SHA1 Message Date
cameronrich
2213f30449 * X509 State, country and location are now used for verification and display. 
* SNI hostname memory is now managed by the calling application
* X509 version number is checked before processing v3 extensions.

git-svn-id: svn://svn.code.sf.net/p/axtls/code/trunk@272 9a5d90b5-6617-0410-8a86-bb477d3ed2e3
 2017-05-02 17:48:08 +08:00
cameronrich
425067abe6 * SNI added 
* Some non-C sample code updated.

git-svn-id: svn://svn.code.sf.net/p/axtls/code/trunk@271 9a5d90b5-6617-0410-8a86-bb477d3ed2e3
 2017-05-02 17:41:57 +08:00
AndreiD
feed1ca219 decrease RAM usage using PROGMEM 2017-04-29 18:42:22 +08:00
silbe
993a29f2b2 Add support for verifying SHA-256 hash of Subject Public Key Info (#31) 
For HTTP public key pinning (RFC7469), the SHA-256 hash of the Subject
Public Key Info (which usually only changes when the public key
changes) is used rather than the SHA-1 hash of the entire certificate
(which will change on each certificate renewal).
 2017-02-19 05:29:31 +03:00
slaff
cf4c0bba34 Added initial support for max fragment size extension. (#25) 
Refactored the code to support more SSL extensions in the future.
 2016-11-21 14:03:23 -06:00
Me No Dev
23d532ae2d add send packet size calculator 2016-08-27 18:47:02 +03:00
cameronrich
fc6b6b346f Server side v1.2 is basically working 
git-svn-id: svn://svn.code.sf.net/p/axtls/code/trunk@265 9a5d90b5-6617-0410-8a86-bb477d3ed2e3
 2016-08-19 00:22:57 +09:00
cameronrich
d476a79411 * Initial crack at TLS 1.2 client side only (server side is seriously broken). 
git-svn-id: svn://svn.code.sf.net/p/axtls/code/trunk@263 9a5d90b5-6617-0410-8a86-bb477d3ed2e3
 2016-08-19 00:21:01 +09:00
cameronrich
abda243710 Cleaned up alerts as per TLS v1.2 spec (7.2.2) 
git-svn-id: svn://svn.code.sf.net/p/axtls/code/trunk@262 9a5d90b5-6617-0410-8a86-bb477d3ed2e3
 2016-08-19 00:08:45 +09:00
Ivan Grokhotkov
139914f312 Add option for blocking reads 2016-05-10 23:17:44 +08:00
Ivan Grokhotkov
fe4518da8d Make SNI host name an ssl_client_new argument 
ssl_set_hostname was mostly useless, because it allowed setting host name of an existing SSL object. However SNI was sent as part of client_hello, which was done in ssl_client_new. So it wasn't possible to actually set host name before connection would start.
 2016-04-19 08:23:15 +03:00
Slavey Karadzhov
1154d0a985 Changed the code to reserve bytes for hostname only if needed. 2016-02-22 10:16:01 +01:00
Slavey Karadzhov
63da8991c2 Added SNI ( https://en.wikipedia.org/wiki/Server_Name_Indication ) support. 2016-02-19 16:48:58 +01:00
Ivan Grokhotkov
a069bc0eb6 Add function to match certificate fingerprint 2015-09-14 10:24:51 +03:00
Ivan Grokhotkov
4e0ccaf9b2 Import axTLS 1.4.9 2015-08-30 13:34:00 +03:00