arduino/esp8266
1
0
Fork 0
mirror of https://github.com/esp8266/Arduino.git synced 2025-10-15 11:26:40 +03:00
Code Activity
306 Commits 13 Branches 37 Tags
48d0f114bbdad41d280e2f0f741574a1b7811890
Commit Graph

306 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Ivan Grokhotkov
48d0f114bb Introduce HMAC functions operating on vectors 2017-05-09 02:00:23 -05:00
Ivan Grokhotkov
abec528002 readme: list supported cipher suites 2017-05-02 18:42:05 +08:00
Ivan Grokhotkov
25200d45e0 Update readme and version.h 2017-05-02 18:15:59 +08:00
cameronrich
acab61d0e0 * Basic constraint/key usage v3 extensions now supported 
* Test harness must now be run without built-in default cert

git-svn-id: svn://svn.code.sf.net/p/axtls/code/trunk@274 9a5d90b5-6617-0410-8a86-bb477d3ed2e3
 2017-05-02 17:52:44 +08:00
cameronrich
a2c7c7e40a * Basic constraint functionality added. 
git-svn-id: svn://svn.code.sf.net/p/axtls/code/trunk@273 9a5d90b5-6617-0410-8a86-bb477d3ed2e3
 2017-05-02 17:50:46 +08:00
cameronrich
2213f30449 * X509 State, country and location are now used for verification and display. 
* SNI hostname memory is now managed by the calling application
* X509 version number is checked before processing v3 extensions.

git-svn-id: svn://svn.code.sf.net/p/axtls/code/trunk@272 9a5d90b5-6617-0410-8a86-bb477d3ed2e3
 2017-05-02 17:48:08 +08:00
cameronrich
425067abe6 * SNI added 
* Some non-C sample code updated.

git-svn-id: svn://svn.code.sf.net/p/axtls/code/trunk@271 9a5d90b5-6617-0410-8a86-bb477d3ed2e3
 2017-05-02 17:41:57 +08:00
Ivan Grokhotkov
a68324f17c Update version numbers in readme and version.h 
Closes https://github.com/igrr/axtls-8266/issues/34
 2017-04-29 23:07:53 +08:00
Ivan Grokhotkov
bddda2a0cf Makefile: strip build path prefix from debug info 2017-04-29 22:52:55 +08:00
Ivan Grokhotkov
78c24497f9 Makefile: use -f{function,data}-sections, don’t rename sections 
Platform- and application-specific section placement is best done in
the application makefiles and linker scripts. On the other hand,
compiling with split sections allows code and data usage to be reduced
without tuning specific options in config file.
 2017-04-29 22:26:08 +08:00
cameronrich
da2dabf4ed * RC4 only used if PKCS12 is used. 
* Buffer sizes tightned up.
* Buffer check on client handshake due to some incompatibilities.

git-svn-id: svn://svn.code.sf.net/p/axtls/code/trunk@270 9a5d90b5-6617-0410-8a86-bb477d3ed2e3
 2017-04-29 22:09:38 +08:00
AndreiD
822e866d05 Prevent WDT reset while processing the certificates 2017-04-29 18:50:33 +08:00
AndreiD
feed1ca219 decrease RAM usage using PROGMEM 2017-04-29 18:42:22 +08:00
Myles Eftos
8afe55267a Prefixing max/min defines with axtls_ so they don't clash with other libraries that use the sam name 2017-04-27 09:12:47 -05:00
ADiea
47efb7adf4 use snprintf in print_blob (#40) 2017-03-13 02:39:00 -05:00
ADiea
33833fb3c6 Fix memleak in rsa.c (#35) 
* fix memleak in rsa.c

* don't alloc block from the start;check block;don't use goto

* fix whitespaces
 2017-03-13 02:36:51 -05:00
silbe
993a29f2b2 Add support for verifying SHA-256 hash of Subject Public Key Info (#31) 
For HTTP public key pinning (RFC7469), the SHA-256 hash of the Subject
Public Key Info (which usually only changes when the public key
changes) is used rather than the SHA-1 hash of the entire certificate
(which will change on each certificate renewal).
 2017-02-19 05:29:31 +03:00
slaff
d768568ae7 Memory optimization for static const data. (#30) 2016-12-11 09:48:15 -06:00
slaff
5282123a96 Updated Lwirax to its latest version. (#29) 2016-11-22 03:05:03 -06:00
slaff
cf4c0bba34 Added initial support for max fragment size extension. (#25) 
Refactored the code to support more SSL extensions in the future.
 2016-11-21 14:03:23 -06:00
slaff
aa87239cbd Moved the LWIP RAW compat module into a submodule. (#26) 2016-11-21 14:02:17 -06:00
anmaped
b20140f867 axTLS fails to aws iot with SSL_ERROR_INVALID_HANDSHAKE. It is a wrong OFFSET. (#27) 2016-10-14 20:39:10 -05:00
Ivan Grokhotkov
d94ccb9181 Merge pull request #24 from slaff/master 
Re-added the SNI extension.
 2016-09-16 00:12:26 +08:00
Slavey Karadzhov
fac976c5d5 Re-added the SNI extension. 
Add code for better handling of SSL extension types in the CLIENT_HELLO message.
 2016-09-15 17:59:08 +02:00
Ivan Grokhotkov
144994c4e4 Merge pull request #23 from me-no-dev/add-send-calculator 
add send packet size calculator
 2016-08-29 13:46:09 +08:00
Me No Dev
23d532ae2d add send packet size calculator 2016-08-27 18:47:02 +03:00
Ivan Grokhotkov
d26f23a1ce ssl: disable default cert, enable cert chain verification 2016-08-25 12:48:10 +08:00
Ivan Grokhotkov
f3e154b870 ssl: use malloc instead of alloca 2016-08-25 12:46:51 +08:00
Ivan Grokhotkov
a682206523 Merge pull request #19 from ikeyasu/merge-200 
Merging axtls 2.0.0
 2016-08-25 10:50:14 +08:00
Yasuki Ikeuchi
9ca7e76cf3 Fix build error on ESP8266 2016-08-20 12:32:42 +09:00
Yasuki Ikeuchi
ab9f8b53b7 Fix unused variable error 2016-08-20 10:27:09 +09:00
cameronrich
29b478f3cf * Put back TLS 1.0. 
git-svn-id: svn://svn.code.sf.net/p/axtls/code/trunk@268 9a5d90b5-6617-0410-8a86-bb477d3ed2e3
 2016-08-19 07:42:10 +09:00
cameronrich
f599ff830e * Tightened up the buffer sizes 
* Removed support for TLS1.0.

git-svn-id: svn://svn.code.sf.net/p/axtls/code/trunk@267 9a5d90b5-6617-0410-8a86-bb477d3ed2e3
 2016-08-19 07:41:33 +09:00
cameronrich
871a70e495 TLS 1.2 now passing a bunch of tests. 
git-svn-id: svn://svn.code.sf.net/p/axtls/code/trunk@266 9a5d90b5-6617-0410-8a86-bb477d3ed2e3
 2016-08-19 07:41:01 +09:00
cameronrich
fc6b6b346f Server side v1.2 is basically working 
git-svn-id: svn://svn.code.sf.net/p/axtls/code/trunk@265 9a5d90b5-6617-0410-8a86-bb477d3ed2e3
 2016-08-19 00:22:57 +09:00
cameronrich
09619c9340 Client side works with a certificate verify - still lots of work to go. 
git-svn-id: svn://svn.code.sf.net/p/axtls/code/trunk@264 9a5d90b5-6617-0410-8a86-bb477d3ed2e3
 2016-08-19 00:21:23 +09:00
cameronrich
d476a79411 * Initial crack at TLS 1.2 client side only (server side is seriously broken). 
git-svn-id: svn://svn.code.sf.net/p/axtls/code/trunk@263 9a5d90b5-6617-0410-8a86-bb477d3ed2e3
 2016-08-19 00:21:01 +09:00
cameronrich
abda243710 Cleaned up alerts as per TLS v1.2 spec (7.2.2) 
git-svn-id: svn://svn.code.sf.net/p/axtls/code/trunk@262 9a5d90b5-6617-0410-8a86-bb477d3ed2e3
 2016-08-19 00:08:45 +09:00
cameronrich
01a0531bc3 * Backed out code where close notify from other side closed the socket and ssl session. This needs to be done by the application. 
git-svn-id: svn://svn.code.sf.net/p/axtls/code/trunk@261 9a5d90b5-6617-0410-8a86-bb477d3ed2e3
 2016-08-19 00:08:15 +09:00
cameronrich
549bcb478e Tightened up closure alerts for v1.2 (7.2.1) 
git-svn-id: svn://svn.code.sf.net/p/axtls/code/trunk@260 9a5d90b5-6617-0410-8a86-bb477d3ed2e3
 2016-08-19 00:08:11 +09:00
cameronrich
106a59cf23 Removed some printfs in skeleton mode 
git-svn-id: svn://svn.code.sf.net/p/axtls/code/trunk@258 9a5d90b5-6617-0410-8a86-bb477d3ed2e3
 2016-08-19 00:08:06 +09:00
cameronrich
6d0a2c03c3 Fixed some skeleton mode warnings 
git-svn-id: svn://svn.code.sf.net/p/axtls/code/trunk@257 9a5d90b5-6617-0410-8a86-bb477d3ed2e3
 2016-08-19 00:08:00 +09:00
cameronrich
14d6809c0d removed endian.h from os_int.h as it is no longer needed and was causing issues with the micropython build 
git-svn-id: svn://svn.code.sf.net/p/axtls/code/trunk@256 9a5d90b5-6617-0410-8a86-bb477d3ed2e3
 2016-08-19 00:05:45 +09:00
cameronrich
a9eab10499 Now include os_port.h in tls1.h, but removed ax_malloc and friends 
git-svn-id: svn://svn.code.sf.net/p/axtls/code/trunk@255 9a5d90b5-6617-0410-8a86-bb477d3ed2e3
 2016-08-19 00:05:23 +09:00
cameronrich
acc38e3ab3 Can handle SSL chains which are out of order (thanks Paul Johnstone) 
git-svn-id: svn://svn.code.sf.net/p/axtls/code/trunk@254 9a5d90b5-6617-0410-8a86-bb477d3ed2e3
 2016-08-19 00:01:45 +09:00
cameronrich
0d6e51aae4 Removed RC4 from the list of negotiated ciphers as browsers don't support it anymore 
git-svn-id: svn://svn.code.sf.net/p/axtls/code/trunk@252 9a5d90b5-6617-0410-8a86-bb477d3ed2e3
 2016-08-19 00:00:39 +09:00
Ivan Grokhotkov
ab516f799d Purge certificates only when expanding plaintext buffer 2016-06-13 00:50:25 +08:00
Ivan Grokhotkov
f41146fb17 Merge pull request #16 from jmue/fix/doubled_code 
fix doubled code introduced with r231 - 97f9f969
 2016-06-01 18:11:09 +08:00
Ivan Grokhotkov
9a9be633f2 Merge pull request #17 from jmue/fix/memset_usage 
fix memset usage
 2016-06-01 18:11:02 +08:00
Ivan Grokhotkov
a2311331f9 Update README.md 2016-06-01 17:41:09 +08:00