aboutsummaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
* Use uint64_t to represent 32-bit number (fixes unittests)Krzysztof Kwiatkowski2017-05-031-1/+1
|
* Update copyright headersKrzysztof Kwiatkowski2017-05-032-2/+6
|
* Add vectors for HMAC backed SP800-56A KDFKrzysztof Kwiatkowski2017-05-031-2/+1417
|
* SP800-56A revision 2 implementationKrzysztof Kwiatkowski2017-05-033-29/+74
|
* Adds KDF based on SP 800-56A. Currently it is revision 1 (alternative 1). It ↵Krzysztof Kwiatkowski2017-05-036-1/+1549
| | | | should be extended to revision 2.
* Merge GH #1032 Throw exception with OpenSSL error message if OpenSSL API ↵Jack Lloyd2017-04-295-35/+65
|\ | | | | | | call fails
| * Throw OpenSSL exception if any OpenSSL function failed.Alexander Bluhm2017-04-295-35/+65
| | | | | | | | | | Checking for all failures helps to find problems early. The OpenSSL_Error() exception provides the OpenSSL error string.
* | Merge GH #1031 Show OpenSSL errors in case of test failureJack Lloyd2017-04-292-1/+10
|\ \
| * | Do not load OpenSSL error messages in library.Alexander Bluhm2017-04-281-1/+0
| | | | | | | | | | | | | | | | | | The function ERR_load_crypto_strings() should be called by the program or during library initializeation. Remove it from get_openssl_enc_pad(), this looks like an accident.
| * | Show OpenSSL error messages if test fails.Alexander Bluhm2017-04-281-0/+10
| |/ | | | | | | | | | | Call ERR_load_crypto_strings() during test initialization if the openssl provider is also tested. This gives human readable error messages.
* | Merge GH #1030 Mention LibreSSL is also supportedJack Lloyd2017-04-292-1/+2
|\ \ | |/ |/|
| * Mention LibreSSL in the docs.Alexander Bluhm2017-04-282-1/+2
|/ | | | | The --with-openssl compile option can also used with LibreSSL. Move the feature from the todo list to the documentation.
* Merge GH #1000 Support seeking in CTR modeJack Lloyd2017-04-274-25/+2858
|\
| * Refactor: remove big-endian addition code duplicationRené Meusel2017-04-132-18/+27
| |
| * add a line to news.rstRené Meusel2017-04-131-0/+2
| |
| * Refactor: use ::seek(0) in CTR_BE::set_iv()René Meusel2017-04-131-18/+1
| |
| * add test sets for CTR-BE(***)René Meusel2017-04-131-0/+2810
| |
| * Add implementation of CTR_BE::seek()René Meusel2017-04-132-2/+31
| |
* | Merge GH #1024 Further configure cleanups, make pylint mandatoryJack Lloyd2017-04-275-177/+216
|\ \
| * | Make configure script pylint2 complientSimon Warta2017-04-262-15/+18
| | |
| * | Put lint travis job into actionSimon Warta2017-04-262-4/+2
| | |
| * | Add .editorconfig to help writing pylint complient .py filesSimon Warta2017-04-261-0/+12
| | |
| * | ignore new pylint rule: no-else-returnSimon Warta2017-04-261-1/+2
| | |
| * | Refactor strip_header_goopSimon Warta2017-04-261-16/+24
| | |
| * | Simplify list emptyness checkSimon Warta2017-04-251-1/+1
| | |
| * | Let caller of _isa_specific_flags care for string representationSimon Warta2017-04-251-7/+10
| | |
| * | Remove extra code branch for house_ecc_curve_definesSimon Warta2017-04-251-5/+2
| | |
| * | Extract prepare_configure_build()Simon Warta2017-04-251-17/+23
| | |
| * | Split main method into main actionsSimon Warta2017-04-251-67/+78
| | |
| * | Rename info_* variables for consistencySimon Warta2017-04-251-11/+11
| | |
| * | Group info file loadingSimon Warta2017-04-251-12/+11
| | |
| * | Make argv non-optional in main()Simon Warta2017-04-251-8/+3
| | |
| * | Run --list-modules after options are checkedSimon Warta2017-04-251-5/+5
| | |
| * | Move Jython check to correct positionSimon Warta2017-04-251-3/+5
| | |
| * | Move os/cpu/cc detection to set_defaults_for_unset_optionsSimon Warta2017-04-251-38/+38
| | |
| * | Extract canonicalize_optionsSimon Warta2017-04-251-19/+22
| | |
| * | Move os and cc validation into validate_optionsSimon Warta2017-04-251-14/+12
| | |
| * | Move windows+gcc check to validate_optionsSimon Warta2017-04-251-3/+3
| | |
| * | Move policy option check into validate_optionsSimon Warta2017-04-251-10/+8
| | |
| * | Extract set_defaults_for_unset_optionsSimon Warta2017-04-251-5/+11
| | |
| * | Extract method validate_options()Simon Warta2017-04-251-8/+15
| | |
| * | Remove unused with_visibilitySimon Warta2017-04-251-12/+2
| | | | | | | | | | | | | | | | | | | | | | | | "Both flags can be removed, I think they were added in 8b2e5f9 because at the time some versions of GCC we supported (<= 3.4) did not support the visibility flags so there needed to be some way to disable it." Closes #1020
| * | Refactor: read_textfile()Simon Warta2017-04-251-7/+9
| | |
* | | Merge GH #1022 Support CBC ciphers via OpenSSLJack Lloyd2017-04-276-71/+344
|\ \ \
| * | | Implement cipher modes with OpenSSL.Alexander Bluhm2017-04-256-71/+344
| |/ / | | | | | | | | | | | | | | | Use the OpenSSL provider to implement AES CBC mode. Also pass down the provider to the encryption layer if there is no matching OpenSSL mode. Add a test with empty nonce.
* | | Merge GH #1017 Complete wildcard handling for X.509 certificatesJack Lloyd2017-04-273-4/+178
|\ \ \
| * | | Complete wildcard handling for X.509 certificatesRené Korthaus2017-04-203-4/+178
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Hostname validation is used to make sure the certificate hostname matches the hostname of the connected host. RFC 6125 allows one wildcard in the left-most label of a hostname. Up to now, we only supported only the wildcard as the left-most label, e.g., www.example.com would match *.example.com, but www.example.com would not match www*.example.com, although it is permitted. Also adds test vectors from RFC 6125 as well as the OpenSSL test suite.
* | | | Merge GH #1023 Add missing functions to TLS::Text_PolicyJack Lloyd2017-04-271-1/+13
|\ \ \ \
| * | | | Make it easier to customize Text_Policy when inheriting from itlouiz’2017-04-271-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This way, the library user can improve the class by adding missing functions or some other tweak they may find useful. Without any access to m_kv this is impossible.
| * | | | Add some missing function overrides in TLS::Text_Policylouiz’2017-04-251-0/+12
| | |/ / | |/| |