Marco Oliverio
Marco Oliverio
# Description This PR adds initial partial support for ConnectionID as described by RFC9146 and RFC9147. TLDR; A pair of "labels" (the ConnectionIDs) is negotiated in the handshake and the...
# Description Support for arbitrary-sized tickets nonces. Ticket nonces are sent together with session tickets in TLSv1.3, and they are used to compute the PSK associated with the ticket. WolfSSL...
# Description - Drop alerts before verified ClientHello - Drop any bad packet after handshake - Drop unencrypted message during the encrypted phase of the handshake - Send protcol_version alerts...
- port of improvements and bugfix of x86 FSP code - cleaning of qemu x86 fsp scripts and documentation notes: - last "pure" backport commit is: 09a2c216e8201c6d6ff8f0cdbf6bca49991a3686 (non-complete) list of...
adding the necessary script to create FSP binaries to boot qemu x86 q35 machine from the resect vector. It uses the wolfBoot PR: https://github.com/wolfSSL/wolfBoot/pull/274
# Description Update BUFFER_ERROR to the more descriptive NO_CERT_ERROR in case the Server tries to handshake without a certificate set. Fixes zd#17927
# Description On the server side, OpenSSL offloads the creation and the verification of the ocsp response to staple to the user application. This commit moves the invocation point of...
Fixes: - make wolfssl_is_init_finished() return true only after the last server ACK. - always send AKCs when we detect a rtx from the other peer. Otherwise the connection can stall...
# Description wip: TODO: consolidate CID size computation between dtls v1.2 and dtls v1.3. closes https://github.com/wolfSSL/wolfssl/issues/8939
Server-side accept (TLS 1.3/DTLS 1.3) could lose the early-data shortcut whenever sending the Finished flight first hit WANT_WRITE. The buffered data advanced acceptState past TLS13_ACCEPT_FINISHED_SENT as soon as it flushed,...