aboutsummaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
* Fix Windows build. Github issue 32lloyd2014-11-263-7/+4
|
* Add an implementation of McEliece encryption based on HyMESfstrenzke2014-11-2629-17/+3647
| | | | | | | (https://www.rocq.inria.fr/secret/CBCrypto/index.php?pg=hymes). The original version is LGPL but cryptsource GmbH has secured permission to release it under a BSD license. Also includes the Overbeck CCA2 message encoding scheme.
* On Windows fs::path::native() is a u16 stringlloyd2014-11-221-1/+1
|
* Cleanup PBES2 and add GCM supportlloyd2014-11-1913-468/+273
|
* Remove use of filters/pipelloyd2014-11-192-25/+13
|
* Add gzip compression transform and compress command line prog.lloyd2014-11-1910-76/+261
|
* Remove unused includeslloyd2014-11-187-7/+0
|
* Convert compression filters to in-place transforms and refactorlloyd2014-11-1826-1193/+1061
| | | | | to minimize the amount of logic needed in the files specific to each library.
* Fix warnings in Altivec header and add AltiVec detection for POWER8lloyd2014-11-163-40/+41
|
* Not helpfullloyd2014-11-161-1/+0
|
* Use the OCB test specified in RFC 7253 instead of the -03 draft versionlloyd2014-11-161-72/+50
|
* Add some util functions for timing attack countermeasures from Falkolloyd2014-11-154-1/+104
|
* A TLS Server can now process either TLS or DTLS but not either,lloyd2014-11-1513-101/+221
| | | | | with the setting set in the constructor. This prevents various surprising things from happening to applications and simplifies record processing.
* Fix relnotes index titlelloyd2014-11-151-0/+4
|
* Update relnoteslloyd2014-11-151-0/+15
|
* Add specialized reduction for P-521 along with 9x9 Comba routines.lloyd2014-11-1513-26/+479
| | | | | Roughly 35-50% faster on my laptop (depending on if mlock is enabled, the overhead in that allocator is becoming much more of a hotspot).
* Add missing filelloyd2014-11-121-0/+50
|
* Add a new Python install script and clean up the makefile templateslloyd2014-11-127-80/+210
|
* Command line prog cleanuplloyd2014-11-1231-522/+478
|
* RAII and m_ namespace cleanupslloyd2014-11-072-54/+46
|
* OCB cleanup and additional testslloyd2014-11-074-53/+152
|
* RAII cleanupslloyd2014-11-073-65/+57
|
* Replace Transformatio::nstart with start_raw so we can do a full setlloyd2014-11-0527-52/+72
| | | | of overloads in the base class with the same name.
* These should be template specializationslloyd2014-11-051-5/+7
|
* Add the script used to generate mp_comba.cpplloyd2014-11-041-0/+116
|
* Let TLS policy disable putting the timestamp in the hello random fieldslloyd2014-11-046-11/+25
|
* Use noexcept on swaplloyd2014-11-041-1/+1
|
* Remove pubkey filters, broken for a long time and not usefullloyd2014-11-043-214/+0
|
* Typolloyd2014-11-041-1/+1
|
* Avoid crashing if user types before handshake completeslloyd2014-11-031-8/+9
|
* Cleanup handling of TLS AEAD nonce sizes, push all knowledge of whatlloyd2014-11-037-189/+197
| | | | the nonce sizes should be down to the ciphersuite generating script.
* Various small fixes and cleanups, new is_prime utillloyd2014-11-0320-38/+116
|
* Windows/VC build fixeslloyd2014-10-312-13/+14
|
* Fix various warnings from VC++ 2014 and add missing includelloyd2014-10-3112-37/+39
|
* No need to pass version by referencelloyd2014-10-313-3/+4
|
* Add TLS fallback signalling (draft-ietf-tls-downgrade-scsv-00)lloyd2014-10-3111-31/+77
|
* Fix error in add_str2oid call, github pull req 28etcimon2014-10-311-1/+1
|
* Use -O2 instead of -O3 with GCC as it seems tree-vectorize in 4.9.0lloyd2014-10-311-2/+2
| | | | causes problems when it converts unaligned loads to aligned SSE loads.
* If the server offers us a SCSV instead of a real ciphersuite send a fatal alertlloyd2014-10-303-0/+17
|
* Correct documentationlloyd2014-10-141-1/+1
|
* Add some secp256k1 KATs and a randomized ECC test suggested inlloyd2014-10-105-3/+148
| | | | http://crypto.stackexchange.com/questions/784
* Some documentation updates WRT DTLS and X.509 cert path processinglloyd2014-10-062-25/+100
|
* Add support for DTLS handshake timeouts and retransmissions.lloyd2014-10-068-65/+224
|
* Specify version number in message when we reject due to policylloyd2014-10-062-2/+4
|
* Handle new source filelloyd2014-10-061-4/+0
|
* Fix decoding indefinite length BER constructs that contain a contextlloyd2014-09-272-1/+4
| | | | sensitive tag of zero. Github pull 26 from Janusz Chorko.
* Don't bother polling std:: clocks if we have clock_gettimelloyd2014-08-091-32/+22
|
* Asserts here are nicelloyd2014-08-091-2/+7
|
* Move mul and square operations on a elliptic curve to CurveGFp so welloyd2014-08-094-213/+279
| | | | | can use different representations/operations depending on the curve (eg, using a specialized version for P-256 reduction)
* Have clear_mem just be a plain memset and only call the (slow)lloyd2014-08-092-2/+2
| | | | | zero_mem just before a deallocation where we are actually at risk of the compiler eliding the writes.