aboutsummaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
* ECC private keys had two different constructors, one taking a grouplloyd2011-04-0842-556/+281
| | | | | | | | | | | | | | | | and a random number generator, and the other taking a group and a preset private key value. The DL private keys instead have on constructor for this; if the x value is zero, then a new random key is created. For consistency, do this with ECC as well. ECDH actually didn't have one of these constructors, forcing you to either load from PKCS #8 or else use a random key. Rename EC_Domain_Params to EC_Group, with a typedef for compatability. More doc updates. Update mtn ignores for Sphinx output
* Drop the GTK example; it probably makes more sense to use threadslloyd2011-04-085-708/+0
| | | | | for things like this, and the User_Interface class is going to die as soon as I can manage it, anyway.
* More pubkey doc updateslloyd2011-04-0868-97/+79
|
* Pile more doc updateslloyd2011-04-089-406/+634
|
* In X509_Certificate::to_string, don't print key ids if emptylloyd2011-04-062-3/+7
| | | | | | Reduce size of serial numbers of new certs from 256 to 128 bits; 2**64 certs is _probably_ sufficient, given that it would take hundreds of exabytes of storage to hold that many certificates. :)
* Call GCC's __get_cpuid macro from a function marked noinline to worklloyd2011-04-061-2/+9
| | | | | around a bug in GCC 4.[456] that prevents compilation when using optimization and PIC on 32-bit x86.
* Fix syntax highlightinglloyd2011-04-063-13/+15
|
* s/Release/Version/lloyd2011-04-062-153/+162
| | | | | Switch from ???? datss to the phrase 'Not Yet Released' which is perhaps less ambigious.
* I belive this check in fixes PR 113 by making shared library sonameslloyd2011-04-063-6/+7
| | | | match the norman Unix conventions.
* PR 145 was based around an easy misunderstanding of the CTR code.lloyd2011-04-052-10/+531
| | | | | | Add some comments to help explain what is going on. Also add a test using 512 blocks; all the existing ones were shorter, so increment was not being tested at all. :(
* Remove the socket wrapper code, as the SSL interface itselflloyd2011-04-0510-344/+227
| | | | doesn't actually care. Move it to examples/socket.h
* A bit more BigInt documentationlloyd2011-04-041-25/+64
|
* Avoid pyc file from running Sphinxlloyd2011-04-041-0/+4
|
* Refer the user to the Doxygen output as well.lloyd2011-04-042-148/+133
| | | | | Lots of cleanups in the certificate documentation, which was still just the raw output of my hacked up LaTeX to RST script.
* Put 'Release' in front of every version. This causes Sphinx tolloyd2011-04-041-150/+150
| | | | | | generate nice permalink ids like #release-1-9-15-2011-03-21, rather than #id3 (especially useless since those will change as new versions are added, making them transient permalinks)
* Convert most of the documentation to reStructured Text, addinglloyd2011-04-04102-5705/+5485
| | | | | | | | | | | | | | | | | | | a makefile to build it with Sphinx (http://sphinx.pocoo.org/). Previously credits.txt listed public domain code sources; instead directly credit the authors in the relevant files and delete that file. Drop the draft FIPS 140 security policy; I can't imagine FIPS 140 validation will ever happen, and if it does, I don't want anything to do with it. Also drop the internals doc, which was so out of date (and incomplete) as to be worthless. Move the tutorials and InSiTo pdfs into old/ for the time being, until anything relevant from them can be filtered out and converted into RST.
* These should be precisely 32 bitslloyd2011-04-041-2/+2
|
* Remove some old scripts. Move the PGP key to a txt file. Documentlloyd2011-03-247-338/+39
| | | | adding back the keylength query functions.
* Add back min_keylength_of, max_keylength_of, keylength_multiple_oflloyd2011-03-212-0/+87
| | | | functions for backwards compatability.
* Disable the by default strong key checking on loading a privatelloyd2011-03-212-1/+4
| | | | | | key. This slowed down loading private keys somewhat dramatically. Most people don't care, but both groups using botan for DNSSEC has performance problems due to it.
* Just use the plain textlloyd2011-03-211-1/+2
|
* At this point the 'old' one is still much more useful, out of date aslloyd2011-03-213-932/+932
| | | | it is.
* Tick to 1.9.16-devlloyd2011-03-213-8/+8
|
* Update notes, version, and readme for 1.9.15, first release candidate1.9.151.10.0-rc1lloyd2011-03-213-9/+17
| | | | for 1.10.0
* Indentlloyd2011-03-211-6/+6
|
* Print a warning when SSL is enabled, as it is new and mostlylloyd2011-03-212-2/+13
| | | | | unreviewed/untested at this point. Add support for a <comment> tag for this.
* Joel really was the driver behind Win32 DLLs in general, credit as suchlloyd2011-03-181-1/+1
|
* Prefer GCC builtin except on ARM, add comment as to whylloyd2011-03-141-6/+11
|
* merge of '2813f52a3bcb78c23217d8f1805860bfac4a7d00'lloyd2011-03-141-1/+1
|\ | | | | | | and '9d5726451d97eeba0dc6cf1f38e95860bc63af32'
| * Shared lib should be marked as a dev releaselloyd2011-03-141-1/+1
| |
* | Assume ARMs are little-endian by default; big-endian ARM seems to be a rarity.lloyd2011-03-142-20/+36
| | | | | | | | | | | | GCC 4.3 on ARM converts __builtin_bswap32 into a jump into libgcc rather than 4 simple instructions, so write it out using inline asm instead.
* | merge of '1bf20e797477a87c044a8fd74af47d872f630831'lloyd2011-03-141-2/+4
|\ \ | |/ |/| | | and '51e8d8cc3eb1c29e097bdc77e2773b0fe6d342af'
| * More noteslloyd2011-03-091-0/+4
| |
* | Use the same mesasge expansion trick in SHA-512. Performance onlloyd2011-03-133-121/+124
| | | | | | | | an i7-860 goes from 197 MiB/s to 256 - a 30% improvement!
* | Modify SHA-224/SHA-256 so that it does the message expansion inlloyd2011-03-123-107/+105
|/ | | | | | registers as needed (16 turns before the value is used), with indexes fully precomputed. On a Core i7-860 with GCC 4.5.2, performance went from 152 MiB/s to 167 MiB/s.
* Somewhat improved ARM support/autodetectionlloyd2011-03-092-18/+27
|
* Tick to 1.9.15-devlloyd2011-03-074-5/+9
|
* Split up deleting empty buffers with removing buffer slots from thelloyd2011-03-071-9/+10
| | | | | | deque. This allows removing empty queues even if there are earlier messages with outstanding data; the buffer slot remains so some memory is still used, but reduced to just the pointer.
* Update amalgamation copyright yearslloyd2011-03-021-1/+1
|
* Fix variable mask warning in Sun C++.lloyd2011-03-012-5/+7
| | | | Make comment clearer on how to enable stlport4 in Sun C++
* Tick version numbers for 1.9.14 release1.9.14lloyd2011-03-013-4/+4
|
* Add bcrypt and keywrap exampleslloyd2011-02-232-0/+83
|
* Fix PR 142: the zlib filters were not updated in 1.9.11 to use zeroiselloyd2011-02-183-15/+26
| | | | | | | | instead of clear, so the buffer ended up having size zero, which meant the compression library could never actually do anything, and we would infinite loop. Also add buffer clearing to bzip2, which was missing it entirely.
* Add a new option --link-method which allows the user to override thelloyd2011-02-181-5/+34
| | | | | method by which include files are linked into the build directory. Handy for working around bugs and corner cases.
* Typo fixlloyd2011-02-181-2/+2
|
* Canonicalize OS name for Cygwin; apparently platform will reportlloyd2011-02-181-0/+5
| | | | things like cygwin_nt-5.1 in some cases.
* Move password hashing schemes to src/passhashlloyd2011-02-177-2/+7
| | | | | Set the upper limit on bcrypt hashing to workfactor 18, which takes about 25 seconds to run on my desktop machine.
* Add support for bcrypt, the Blowfish-based password hashing schemelloyd2011-02-167-7/+317
| | | | | used in OpenBSD. Tested as compatible with a common Java implementation (http://www.mindrot.org/projects/jBCrypt/)
* Use size_t rather than u32bit for loop variableslloyd2011-02-164-20/+20
|
* Forward declare Algorithm_Factorylloyd2011-02-162-1/+3
|
generated by cgit v1.2.3 (git 2.39.1) at 2024-12-28 15:29:44 +0000