Update wolfSSL to the latest version(v.4.4.0) (#186)

* deleted old version wolfSSL before updating * updated wolfSSL to the latest version(v4.4.0) * updated wolfSSL to the latest version(v4.4.0) * added macros for timing resistance Co-authored-by: RichardBarry <3073890+RichardBarry@users.noreply.github.com> Co-authored-by: Ming Yue <mingyue86010@gmail.com>
2025-12-16 00:25:07 -05:00 · 2020-08-08 07:58:14 +09:00 · 2020-08-08 07:58:14 +09:00 · 94aa31c3cb
commit 94aa31c3cb
parent 68518f5866
1185 changed files with 837519 additions and 72138 deletions
--- a/FreeRTOS-Plus/Source/WolfSSL/wrapper/python/wolfssl/test/test_client.py
+++ b/FreeRTOS-Plus/Source/WolfSSL/wrapper/python/wolfssl/test/test_client.py
@ -0,0 +1,66 @@
+# -*- coding: utf-8 -*-
+#
+# test_client.py
+#
+# Copyright (C) 2006-2020 wolfSSL Inc.
+#
+# This file is part of wolfSSL.
+#
+# wolfSSL is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License as published by
+# the Free Software Foundation; either version 2 of the License, or
+# (at your option) any later version.
+#
+# wolfSSL is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1335, USA
+#/
+
+# pylint: disable=missing-docstring, invalid-name, import-error
+# pylint: disable=redefined-outer-name
+
+import pytest
+
+HOST = "www.python.org"
+PORT = 443
+CA_CERTS = "certs/ca-digicert-ev.pem"
+
+@pytest.fixture(
+    params=["wrap_socket", "wrap_socket_with_ca",
+            "wrap_socket_from_context", "ssl_socket"])
+def secure_socket(request, ssl_provider, tcp_socket):
+    sock = None
+
+    if request.param == "wrap_socket":
+        sock = ssl_provider.wrap_socket(tcp_socket)
+
+    elif request.param == "wrap_socket_with_ca":
+        sock = ssl_provider.wrap_socket(
+            tcp_socket, cert_reqs=ssl_provider.CERT_REQUIRED, ca_certs=CA_CERTS)
+
+    elif request.param == "wrap_socket_from_context":
+        ctx = ssl_provider.SSLContext(ssl_provider.PROTOCOL_TLSv1_2)
+
+        ctx.verify_mode = ssl_provider.CERT_REQUIRED
+        ctx.load_verify_locations(CA_CERTS)
+
+        sock = ctx.wrap_socket(tcp_socket)
+
+    elif request.param == "ssl_socket":
+        sock = ssl_provider.SSLSocket(
+            tcp_socket, cert_reqs=ssl_provider.CERT_REQUIRED, ca_certs=CA_CERTS)
+
+    if sock:
+        yield sock
+        sock.close()
+
+def test_secure_connection(secure_socket):
+    secure_socket.connect((HOST, PORT))
+
+    secure_socket.write(b"GET / HTTP/1.1\n\n")
+    assert secure_socket.read(4) == b"HTTP"