Hi, I understand you cannot share the host address nor the certificate and that is fine. Can you make a certificate chain that reproduces this ?
Warm regards, Anthony
You are not logged in. Please login or register.
Please post questions or comments you have about wolfSSL products here. It is helpful to be as descriptive as possible when asking your questions.
ReferenceswolfSSL - Embedded SSL Library → Posts by anthony
Hi, I understand you cannot share the host address nor the certificate and that is fine. Can you make a certificate chain that reproduces this ?
Warm regards, Anthony
Hi Andrea,
My name is Anthony Hu and I am a member of the wolfSSL team.
> in particulare i get 8368 but in my main.cpp i get 8432.
This is a very big hint. You can see the definition of
struct RsaKey
in
wolfssl/wolfcrypt/rsa.h
It varies greatly based on what macros are defined. I noticed you have the following in your C file:
#include <wolfssl/options.h>
Can you please make sure it is exactly the same as the wolfssl/options.h file in your wolfssl source build directory?
If you would like to further discuss this issue, please open a ticket on our Technical Support system by sending a message to support@wolfssl.com
Warm regards, Anthony
Hi,
` -A certs/server_cert.pem` suggests it is a server certificate; not a root CA certificate.
Can yo please let us know a bit about yourself and your project. This helps us classify your inquiry.
Warm regards, Anthony
Hi Bahadirmaktav,
How are you today? My name is Anthony Hu and I am a member of the wolfSSL team. I have checked, and we do not support this particular flag in our OpenSSL compatibility layer. However, I will query my colleagues to see if there is a simple way for you to do this. Please stay tuned.
Warm Regards, Anthony
Hi David,
Thanks for reaching out!! The meaning of these flags are well documented here: https://www.wolfssl.com/documentation/m … able-spopt . Please have a look.
Note that `--enable-sp-asm` is enabled by default for the following architectures: x86_64/aarch64/amd64.
Here are some other Single-Precision flags that you might be interested in:
--enable-sp Enable Single Precision maths implementation
(default: disabled)
--enable-sp-math-all Enable Single Precision math implementation for full
algorithm suite (default: enabled)
--enable-sp-math Enable Single Precision math implementation with
restricted algorithm suite (default: disabled)
--enable-sp-asm Enable Single Precision assembly implementation
(default: enabled on x86_64/aarch64/amd64)
All of them are documented in the document I linked to above.
I hope this helps!
Warm regards, Anthony
Hi Michele,
I am aware that some of our customers call wolfSSL naively from swift. We have heard no problems from them. Perhaps you can try it out and if you find any issues, please do let me know.
Warm regards, Anthony
Hi Artur,
this seems more appropriate as a support question. Please copy and past this message into an email and send it to support@wolfssl.com so it can get assigned to an engineer for review.
Thanks!
The wolfSSL Support Team.
Hi Bluscape.
Just so you know, we accept certificates in both PEM and DER formats.
Here at wolfSSL we love to know what people are doing with our code. Can you let me understand a bit about yourself, your project and your goals? Are you doing this as a member of an academic or commercial organization or is it out of personal interest?
Warm regards, Anthony
Hello bluscape,
my name is Anthony and I am a member of the wolfSSL team. Please have a look at https://github.com/wolfSSL/wolfssl/blob … /dertoc.pl which comes with wolfSSL. its a great utility script for converting der files into arrays which can then be embedded into your source code.
Once you have them embedded into your application you can use the following APIs to pass them to wolfSSL:
wolfSSL_CTX_load_verify_buffer
wolfSSL_use_certificate_chain_buffer
wolfSSL_CTX_use_certificate_chain_buffer
wolfSSL_use_PrivateKey_buffer
wolfSSL_CTX_use_PrivateKey_buffer
Warm regards, Anthony
Hi Michele,
TLS 1.3 is supported and enabled by default for both FiPS and non-FIPS code. Can you please try removing the `-gu` parameters on your execution of `nm`?
> I am attaching my user_seettings.h file
Sorry, but I did not find any attachments on your latest message. Can you try again?
Warm regards, Anthony
Hi Michele,
For XCode instructions, please see https://github.com/wolfSSL/wolfssl/tree … /IDE/XCODE .
That will show you the README.md which will give you instructions regarding user_settings.h which refers to this file:
https://github.com/wolfSSL/wolfssl/blob … settings.h
You can add your macro defines and undefs in there.
Warm regards, Anthony
Hi,
currently for iOS we suggest XCode as you have noted in your previous message. Please see
https://www.wolfssl.com/documentation/m … -x-and-ios as well. Is swift a requirement? If so, this conversation would be more appropriate on our support@wolfssl.com alias. Please send a message there.
Warm regards, Anthony
Hi, Can you be more specific? Which semaphore?
Warm regards, Anthony
Hi Kalen, in order to avoid the filter problems, I suggest opening a support ticket instead. Can you send a clear report to support@wolfssl.com?
Hi, Kalen,
My name is Anthony Hu and I am a member of the wolfSSL team. Thanks for reaching out to us.
Can I ask, what should I replace googleapisurl_here with?
Also, you have a certificate in PEM format. I'm not sure what I'm supposed to do with that. I'm somewhat confused. Can you please help me by clarifying?
Warm regards, Anthony
I see the 5 0 bytes at the end. When you use the debugger, does your code that writes in the header, length and content get executed? If not, you need to figure out why.
Warm regards, Anthony
Hi Zihao,
You're very welcome. We'd still love to have a chat. If you have a chance, please send me a meeting invite to anthony@wolfssl.com.
Warm regards, Anthony
Hi,
I don't see your attachment.
You're probably going to need to run a debugger such as gdb to see if you are actually writing the extension as you expected.
Warm regards, Anthony
Hi Wang Zihao,
Thank you for confirming you got the same result.
Unfortunately, I don't think I got any message from you.
Did you send it to anthony@wolfssl.com ?
Can you please re-send to that address?
Warm regards, Anthony
Hi Wangzihao,
How are you? We would love to get on a call with you to better understand how you are using wolfSSL. Would you be open to such a call? Don't worry about potential language issues. I can speak Mandarin. Please let me know.
Warm regards, Anthony
Hi,
I've had a quick scan of your changes. nothing really jumps out as being wrong. Perhaps it would be a good idea to get wireshark to see and make sure you know the root cause.
Can you please let me know what wireshark shows you?
Warm regards, Anthony
Hi Wangzihao,
Thank you very much for using wolfSSL!
I tried reproducing what you are seeing. Here is what I did :
cd wolfssl
git checkout master
./autogen.sh
./configure --enable-static --enable-sp-math-all --enable-opensslall
make all
make check
sudo make install
I then copied the code supplied in your post into a file called `forum.c` and did the following:
g++ forum.cpp /usr/local/lib/libwolfssl.a -o forum
./forum
Here are the results I got:
get mp_int af: 0
get mp_int bf: 0
get mp_int prime: 0
get mp_int order: 0
get mp_int ra: 0
get mp_int s: 0
get ecc_point pointG: 0
point is on curve: 0
n3*G: 0
n1*G: 0
n2*B: 0
A is equal to C: 0
get mp_int ra1: 0
get mp_int ra2: 0
ra3*G: 0
ra1*G: 0
ra2*E: 0
D is equal to F: -1
Is this what you are seeing as well?
I will need to confer with my colleagues. Please stay tuned.
Warm regards, Anthony
Hello joseph.mazza,
I've put up a pull request on github: https://github.com/wolfSSL/wolfssl/pull/6276
Lets see how my colleagues feel about it in the review comments.
In the meantime, we love to know more about how our code is being use and by whom. To that end, I have a few questions.
Can you please let us know your location and any academic or professional affiliations? I'd also love to know about your project. Can you let us know what you are trying to do and your goals?
Warm regards, Anthony
Warm regards, Anthony
Hi,
I apologize for not getting you answer more promptly. I need to go back to my colleagues for this.
Warm regards, Anthony
Hello joseph.mazza,
It would seem you have found a bug. I apologize, however, it is quite late in my time zone so I will have ask you to be patient as I start my investigation tomorrow. In the meantime, please let me know your location and affiliated organization so that I may better prioritize your issue.
Warm regards, Anthony
wolfSSL - Embedded SSL Library → Posts by anthony
Powered by PunBB, supported by Informer Technologies, Inc.
Generated in 0.009 seconds (66% PHP - 34% DB) with 4 queries