Hi jesussotofan,

the key must be modulo AES_SIZE (16). A byte array containing 1234567890abcdef is size 17 (array indexing if it contains 16 elements it's one larger for the '\0' or NULL character on the end of the string in c. Change your key to "234567890abcdef" and you test should work.

One other note you are printing out HEX values and looping 32 times. Each hex byte is 8 bytes long. You're working with an array of 32 8-byte elements and the print in the for loop prints out 2 8-bytes elements each loop. You should only loop 16 times, not 32. You're printing memory off the end of your buffers.

for(x=0; x<16; x++){
  Serial.print(plain[x], HEX);
  Serial.print(" ");
  }
Serial.println(" ");

ALSO it is highly recommended you check your return codes and you would have seen the error happening IE:

wc_AesSetKey(&enc, key, sizeof(key), iv, AES_ENCRYPTION);

SHOULD BE:

/* make an integer "ret" */
ret = wc_AesSetKey(&enc, key, sizeof(key), iv, AES_ENCRYPTION);
if (ret != 0) {
    Serial.println(" Aes Set Key Failed with error code: ");
    Serial.print(ret, INTEGER); /* or however you output an int I'm not familiar with this print functionality */
}

And do the same for other wolfSSL API's.

Regards,

Kaleb

Hi Stana,

1.

Warnings of this nature:

src\internal.c(13894): warning:  #1293-D: assignment in condition
              &&  !(ret = wc_Sha256Update(sha256, messageVerify, verifySz))) {

are thown by SOME but not all C compilers. Depending on the compiler this warning basically saying:

"Hey you have an if condition like this:

 if (x = 1) { do something; } 

"Did you really mean to do this?:

if (x == 1) { do something; }

It's a friendly reminder that you may have made a mistake but it does not mean it is incorrect. This is something we have evaluated internally in the past and we decided at that time it is not something we feel is necessary to change since all compilers (that we know of) that do throw this warning also provide an option to disable the warning.

That being said we have not discussed it in some time so I will voice your concern in our next meeting and see if the team still feels the same.

2. Could you send me the full list of enumerated type mixed with another type that you are seeing (kaleb@wolfssl.com) or is what you included the full list? We will evaluate these and see if there is any potential for undefined or dangerous behavior. Once evaluated I will post an update on this thread.

Thanks,

Kaleb

Hi sp,

This is indeed a strange warning. The reason we cast to void is there exists paths such that ticketLen may not be used. In that event we do not wish a compiler to throw a build time error/warning for "unused variable". By casting to void after declaration most C compilers see that it gets used at least once and will not complain. We have never seen a compiler throw a "used before set" on the void cast, that is new. Thank you for sharing.

You can resolve by setting it equal to 0, same as for "doDynamicCopy" variable.

Regards,

Kaleb

Hi jesussotofan,

Not a problem. Happy we could assist you with this project!

Regards,

Kaleb and the wolfSSL Team

Hi will,

Yes I believe you are correct here. The close notify signifies nothing particularly went wrong with the connection other than the server decided it was going to shut down and knew in advance so it sent out a notification to the client that it was shutting down the session. This could be for a few reasons:

1. The server expected a specific bit of information that it never got, eventually timed out and terminated the session.
2. The server expected a specific bit of information and incorrect information was sent. Not a true error, but not a successful exchange either.
3. The server was being shutdown for an update and termination procedures ensued (not as likely).
4. May be others but the above three are the most common reasons to send a "close notify".

If something went wrong during the handshake or the server just died you would likely see an "Alert Fatal Error" or a -308 "Error state on Socket"

If you have access to wireshark you might start it up, connect to the server again and capture the exchange, filter the report on your ip address

ip.addr==<your client ip>

and send us the trace. We could look at it more closely to determine if this is what happened or not.

Kind Regards,

Kaleb

Hi ravi.kumar,

Is there a reason you are working with such an outdated version of our library? v3.3.0 is very old at this point (Dec 5, 2014 nearly two years old). We have had two major and several minor updates to the ECC math libraries since then, one major update was to fix an issue when ECC_SHAMIR was not defined (got unexpected results as you describe) and another to defeat a side-channel cache attack (see more on this in our blog https://wolfssl.com/wolfSSL/Blog/Blog.html or in README.md). I can not guarantee but suspect you have encountered one of the issues that has since been fixed.

Please run your test against v3.9.10 and let us know if you observe the same behavior: https://wolfssl.com/wolfSSL/download/downloadForm.php

OR development branch here:
https://github.com/wolfSSL/wolfssl

Kind Regards,

Kaleb

Hi datorgalva,

Your initial issue was with MinGW(gcc). This looks like a screen shot from MicroSoft Visual Studio. Have you built our example projects (solution file located in <wolfssl-root>/wolfssl64.sln)?

If not please take a look at those projects and the pre-processor macros used. You will need to build with the same macros.

I see you've included <wolfssl/options.h> is this because you built with MinGw(gcc), were able to generate options.h with configure script and now are trying to build in VisualStudio using the MinGW(gcc) compiled library?

wolfssl/options.h is usually not available in windows environment unless you write it by hand. Instead we use the file <wolfssl-root>/IDE/WIN/user_settings.h to control our windows projects and we define "WOLFSSL_USER_SETTINGS" so that file gets pulled in.

I'll wait for your answers on my above questions.

Regards,

Kaleb

Hi stamp_age,

No problem, glad we could help!

- Kaleb

Hi stamp_age,

Yes I can. I believe you need to define "HAVE_ECC" in the pre-processor macros for VS2010 project to get same ciphers as supported in the TIRTOS project. Try that first and if it does not work we'll go from there.

Edit the file <wolfssl-root>\IDE\WIN\user_settings.h and add the following line at the top of the file just above the line with "/* Configurations */" comment (So both the library and the client/server build with this define):

#define HAVE_ECC

Now rebuild and try the connection again and let me know if that works.

Kind Regards,

Kaleb

Hi jesussotofan,

Could you tell me which board you are working with and what your available RAM and FLASH is?

For the AES algorithm to work unfortunately requires very large static tables (10280 bytes of RO or 10k). These can be viewed in <wolfssl-root>/wolfcrypt/src/aes.c under the define NEED_AES_TABLES. The only to get around using the tables in software is to have an AES hardware module on the board you're working with. It is very likely your board does not have that feature but it would not hurt to check.

If you do not have a hardware AES module and the tables will not fit into the available memory space... since this is a research project and you're probably not extremely concerned with bit-strength of the algorithm chosen... might I suggest instead using one of the following ciphers as alternates to AES:

wc_AesSetKey             [4338 bytes code size | 10280 bytes RO data] Very Big footprint

Non-Stream cipher:
wc_Des3_SetKey           [1560 bytes code size | 2200 bytes RO data]  Medium footprint

Stream ciphers:

wc_Chacha_SetKey         [1160 bytes code size | 32 bytes RO data  ] smaller footprint
wc_Arc4SetKey            [184  bytes code size | 0 bytes RO data   ] tiny footprint

All of these work fine on the Intel Gallileo, however if you platform is truely limited to 2k RAM as your error would indicate you will have to go with a much smaller algorithm.

Kind Regards,

Kaleb (AKA kalsheraut on pi forums)

Hi jesussotofan,

You're correct, wc_aes.c was a typo, should have been just aes.c.

Now that you have <path-to-arduino>/libraries/wolfssl/(bunch of stuff + aes.c, wc_port.c, coding.c, and error.c) you need to take the last step performed by the script which is to simply create a new file and call it "wolfssl.h" and put this line in it:

/* stub header file for Arduino compatibility */

arduino won't recognize it as a library without a header file with the same name as the directory (that's why I noted to rename wolfssl-x.x.x to simply wolfssl).

Regards,

Kaleb

Reviewing old blog posts and came across this. For completeness sake secure renegotiation was added for client side in release 3.3.0 (wolfSSL is now on stable release 3.9.10)

https://wolfssl.com/wolfSSL/Blog/Entrie … 3.3.0.html

NOTE: This is not secure despite the name "Secure Renegotiation" it is prone to MIM attacks.

See: CVE-2009-3555 ( https://cve.mitre.org/cgi-bin/cvename.c … -2009-3555 ) for further details. We provided this due to customer demand but we do not recommend it be used EVER!

Please keep in mind this feature will not be available in TLS1.3 which wolfSSL will implement as soon as the draft is finalized. (so plan accordingly)

Kind Regards,

Kaleb & the wolfSSL Team