MirrorSave
/
nodemcu-firmware
mirror of https://github.com/nodemcu/nodemcu-firmware.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
nodemcu-firmware/app
History
Nathaniel Wesley Filardo 6e95d74fbd Update TLS protocol support (#2587) 
* Update TLS protocol support

TLS1.0 is past PCI's EOL; BEAST is no more
Enable elliptic curve key exchanges
	Do not enable the smallest ECs for security
	Do not enable the largest ECs for computational time
	Do not enable 25519 (sad) because it doesn't go across the wire
Drop non-PFS key exchanges
Drop ARC4, Blowfish, DES, genprime, XTEA code
Drop renegotiation support completely
	It takes so much heap that it's not likely to work out well

Tidy handling of SSL_BUFFER_SIZE

Update docs
Drop mention of startcom, since they are no more, for letsencrypt

* Update mbedtls to 2.7.7

Preserve our vsnprintf and platform hacks

* Introduce TLS maximum fragment size knob

Reduce buffer size to 4Ki by default and advertize that.  That's the
largest we can advertize with the TLS MFL extension, so there's no
point in making them larger.  The truly adventurous can re-raise
SSL_BUFFER_SIZE and undefine the SSL_MAX_FRAGMENT_LENGTH_CODE and get
back to the earlier behavior.

* Default to mbedTLS debug with DEVELOP_VERSION
 		2019-01-15 17:02:32 +01:00
..
coap LFS patch updates following review II and testing 2018-06-22 22:29:16 +01:00
crypto Fixed alignment assumptions in SHA2 update. (#2034) 2017-07-31 14:12:34 +02:00
dht Alpha working wersion for third party evaluation 2018-03-17 00:43:52 +00:00
driver Merge branch 'dev' into dev-LFS 2018-04-19 16:43:55 +01:00
esp-gdbstub LFS patch updates following review II and testing 2018-06-22 22:29:16 +01:00
fatfs remove inline declarations 2018-01-20 19:42:55 +01:00
http Better fix for HTTP header decode (#2491) 2018-09-21 11:57:52 +02:00
include Update TLS protocol support (#2587) 2019-01-15 17:02:32 +01:00
libc LFS patch updates following review II and testing 2018-06-22 22:29:16 +01:00
lua fix number2integer conversion in ESP8266 for floating-point builds (#2609) 2019-01-15 13:00:37 +00:00
lwip Espressif SDK v2.2.1 (#2401) 2018-07-20 23:07:16 +02:00
mbedtls Update TLS protocol support (#2587) 2019-01-15 17:02:32 +01:00
modules Update TLS protocol support (#2587) 2019-01-15 17:02:32 +01:00
mqtt Handle large/chunked/fragmented MQTT messages properly (#2571) 2018-11-30 22:12:46 +01:00
net Refactor timer suspend portion of node.sleep (pmsleep) (#2287) 2018-04-13 21:41:14 +02:00
pcm Alpha working wersion for third party evaluation 2018-03-17 00:43:52 +00:00
platform establish delay as event to trigger flushing of spi buffer (#2517) 2018-11-13 13:18:03 +01:00
pm Changed out of memory response from system halt to system restart 2018-04-22 22:18:36 -07:00
sjson Cleaned up sjson module build. 2017-07-03 13:35:45 +10:00
smart Refactor timer suspend portion of node.sleep (pmsleep) (#2287) 2018-04-13 21:41:14 +02:00
spiffs New version of spiffs (#2172) 2017-12-03 13:14:22 +01:00
sqlite3 Merge pull request #2269 from nwf/for-upstream-sdk22 2018-03-20 21:02:20 +01:00
task Add New Tasking I/F and rework GPIO, UART, etc to support it 2016-02-17 17:13:17 +00:00
tsl2561 Merge branch 'dev' into dev-LFS 2018-04-19 16:43:55 +01:00
u8g2lib u8g2: include "large" fonts (#2531) 2018-10-24 22:48:50 +02:00
ucglib Submodulify ucg and update to v1.5.2 (#2503) 2018-10-19 21:18:50 +01:00
user Update TLS protocol support (#2587) 2019-01-15 17:02:32 +01:00
uzlib Reduce default make verbosity (#2583) 2018-12-09 21:39:43 +01:00
websocket Refactor timer suspend portion of node.sleep (pmsleep) (#2287) 2018-04-13 21:41:14 +02:00
.gitignore seperate user_config.h to speed-up compile when modules disabled/enabled 2015-03-06 11:59:04 +08:00
Makefile Always compile `app/crypto` folder (#2573) 2018-11-28 14:03:33 +01:00