aboutsummaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
* Convert PK operations to using Algo_Registry instead of Engine.lloyd2015-02-0351-1248/+879
| | | | Remove global PRNG.
* Add missing files. Remove cipher lookup from engine code.lloyd2015-02-0121-172/+284
|
* Use registry also for KDF, EMSA, and EMElloyd2015-01-3127-178/+175
|
* Use registry for streams and MACs. Start updating callers.lloyd2015-01-3138-253/+193
|
* Use Algo_Registry also for hashes.lloyd2015-01-2836-338/+183
|
* Add a runtime map of string->func() which when called returnlloyd2015-01-2889-1310/+835
| | | | | | | | | | | | | | | | | Transforms and BlockCiphers. Registration for all types is done at startup but is very cheap as just a std::function and a std::map entry are created, no actual objects are created until needed. This is a huge improvement over Algorithm_Factory which used T::clone() as the function and thus kept a prototype object of each type in memory. Replace existing lookup mechanisms for ciphers, AEADs, and compression to use the transform lookup. The existing Engine framework remains in place for BlockCipher, but the engines now just call to the registry instead of having hardcoded lookups. s/Transformation/Transform/ with typedefs for compatability. Remove lib/selftest code (for runtime selftesting): not the right approach.
* Add typedefs for function signatures/types used in TLS for easier readinglloyd2015-01-2716-135/+171
|
* Reference memset via std namespacelloyd2015-01-271-1/+1
|
* Don't define overloads if there is no native uint128_t. Github 47lloyd2015-01-271-0/+2
|
* Reference the EC point add and double algorithms usedlloyd2015-01-241-0/+8
|
* Handle repeated initializations of the library better and deal withlloyd2015-01-246-77/+68
| | | | initializations across multiple threads safely.
* Allow reducing the size of the allocated mlock pool via env variablelloyd2015-01-242-9/+36
| | | | | | (BOTAN_MLOCK_POOL_SIZE, specified in decimal KB). Currently we read this even when setuid as the worst a user could do is disable mlock, which they can already do via ulimits.
* Fix list formattinglloyd2015-01-241-20/+21
|
* Add Strict_Policy. Disable server initiated renegotiation by default.lloyd2015-01-233-18/+51
|
* Add support for configuring a TLS::Policy by text filelloyd2015-01-235-109/+202
|
* Avoid needless buffering when handling padding byteslloyd2015-01-231-4/+4
|
* Fix Clang compilelloyd2015-01-231-1/+1
|
* Centralize where string.h/cstring is included to mem_ops.hlloyd2015-01-2318-44/+32
| | | | See github 42 for background
* Amalgamation fixeslloyd2015-01-236-35/+18
|
* Remove memset_s, not implemented on any machine I can test on andlloyd2015-01-233-9/+13
| | | | | | | | problematic for requiring a special define before the first include of string.h. Instead optionally call memset via a volatile function pointer as a faster alternative to byte at a time writes. Github 42, 45
* Move version to 1.11.14lloyd2015-01-211-1/+1
|
* Update TLS OCB ciphersuites to match draft-zauner-tls-aes-ocb-00lloyd2015-01-217-20/+84
| | | | | and enable them in the default build, though still not enabled in the runtime policy.
* Save to file by defaultlloyd2015-01-211-5/+6
|
* Fix string formattinglloyd2015-01-121-1/+1
|
* Update for 1.11.13 release1.11.13lloyd2015-01-112-3/+3
|
* Fixes for Windows paths. Based on Github pull 41 from cdesjardinsgit2015-01-114-7/+9
| | | | with some modifications by randombit.
* Fixlloyd2015-01-111-2/+1
|
* Better to have a RNG state per connection and avoid lock contentionlloyd2015-01-111-18/+5
|
* Proxy tweakslloyd2015-01-111-3/+16
|
* Add SipHashlloyd2015-01-1110-8/+229
|
* Remove DES startup selftestslloyd2015-01-111-19/+0
|
* Remove SSLv3 and handling of SSLv2 client hellos.lloyd2015-01-1132-779/+59
|
* Clean up base64 handling. Github pull 40 from webmaster128lloyd2015-01-111-11/+10
|
* Have TLS server take certificate and key from command linelloyd2015-01-114-395/+119
|
* Support any key length for TLS session encryption by hashing with HMAClloyd2015-01-101-4/+16
|
* Create a combined news page for the websitelloyd2015-01-103-2/+3
|
* Convert the asio server from a weird example server to a generic proxy server.lloyd2015-01-104-334/+599
|
* Dead codelloyd2015-01-101-14/+0
|
* Move license text to a plain text file without ReST marketlloyd2015-01-105-61/+60
|
* Ensure all files have copyright and license info.lloyd2015-01-10767-748/+1066
| | | | | Update license header line to specify the terms and refer to the file, neither of which it included before.
* Add MCEIES, an integrated encryption system using McEliece and AES-256/OCBlloyd2015-01-085-47/+266
|
* This assumed other headers it did not includelloyd2015-01-081-1/+2
|
* No need to reseed RNG in DSA sign as RNG is no longer usedlloyd2015-01-081-4/+2
|
* Side channel commentarylloyd2015-01-082-0/+26
|
* Dist script now defaults to tgz onlylloyd2015-01-081-1/+1
|
* Joel also wrote Threaded_Forklloyd2015-01-081-0/+1
|
* Add a sketch of a support roadmaplloyd2015-01-081-0/+59
|
* Inline BigInt::get_bit and byte_atlloyd2015-01-082-23/+9
|
* Change TLS session encryption to use AES-256/GCM instead of CBC+HMAClloyd2015-01-087-211/+53
|
* Cleanuplloyd2015-01-081-7/+5
|
generated by cgit v1.2.3 (git 2.39.1) at 2024-12-02 09:24:44 +0000