aboutsummaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
* wget it ourselves, and include the hash of the file in the outputlloyd2013-11-282-24/+57
|
* Fix file rename in info.txt and add a check for this in configurelloyd2013-11-282-1/+5
|
* TLS in-memory session manager now requires a rng object as alloyd2013-11-284-16/+31
| | | | | constructor argument, previously it used the global rng which caused a serialization point across server threads.
* Add a simple HTTP 1.0 GET using asio (for CRLs and OCSP)lloyd2013-11-276-2/+139
|
* Include Perl's build flags. Bug 254lloyd2013-11-231-1/+1
|
* merge of '68c716734951de7d2d263d5ed5162e963d6c32be'lloyd2013-11-206-55/+19
|\ | | | | | | and '714a603d145c840eec1464ea31d0d07c2bf640fa'
| * merge of '022cd3c92c37dee696d0c3c0c197f8df8981ccbb'lloyd2013-11-201-0/+5
| |\ | | | | | | | | | and '83151ac7a83013a2874f78978df5c4739b879775'
| | * Direct people interested in TLS to 1.11lloyd2013-11-201-0/+5
| | |
| * | Compile fixes for Python wrapperlloyd2013-11-205-55/+14
| | |
* | | Only service small allocations out of the mlock poollloyd2013-11-202-2/+5
| | |
* | | Add a basic DTLS policylloyd2013-11-201-0/+13
| | |
* | | Fix old style cast warningslloyd2013-11-201-30/+30
|/ /
* | Generalize file reading test runner, use it for KDF and PBKDFlloyd2013-11-1810-726/+1196
| |
* | Generalize the HKDF file readinglloyd2013-11-171-12/+30
| |
* | Add HKDFlloyd2013-11-178-0/+257
| |
* | Fix get_cipher_mode for OCB and GCM with short tagslloyd2013-11-171-2/+2
| |
* | Inline kdf.cpp as all are simple forwarding callslloyd2013-11-172-62/+24
| |
* | Enable all the GCC warning flags, as we now require at least GCC 4.7 anywaylloyd2013-11-168-9/+12
| | | | | | | | Fix a few nullptr and cast warnings.
* | Enable maintainer mode checks in all builds of non-release versions.lloyd2013-11-161-1/+10
| | | | | | | | Use new --release-mode option to disable.
* | Add includes needed by OS Xlloyd2013-11-121-0/+2
| |
* | Forgot to relnote thislloyd2013-11-101-0/+4
|/
* Remove download link to 1.8lloyd2013-11-101-8/+0
|
* Release 1.11.51.11.5lloyd2013-11-102-7/+7
|
* Split off Unix_EntropySource's fast_poll to a new sourcelloyd2013-11-103-25/+14
|
* Add 1.10.6 release noteslloyd2013-11-102-0/+49
|
* Avoid warninglloyd2013-11-091-1/+1
|
* Return a valuelloyd2013-11-091-1/+1
|
* Add to build.h templatelloyd2013-11-091-0/+7
|
* Remove decl of already removed functionlloyd2013-11-091-6/+0
|
* Move RNG reseed controls to build.hlloyd2013-11-091-9/+9
|
* Remove obsolete documentation on thread_safe param to lib initializerlloyd2013-11-091-9/+0
|
* Uninitialized pointerlloyd2013-11-091-1/+2
|
* In HMAC_RNG record number of bytes since last poll and reseed based onlloyd2013-11-092-17/+26
| | | | that rather than the counter.
* Include a timestamp as part of the HMAC_RNG PRF inputslloyd2013-11-091-0/+6
|
* Create RNG early so it is easy to check reseed timeslloyd2013-11-091-2/+2
|
* Don't actually deprecate AutoSeeded_RNGlloyd2013-11-091-1/+0
|
* Fix EGD settings. Some cleanup and renaming.lloyd2013-11-096-49/+46
|
* Make the process running entropy source much faster by running multiple commandslloyd2013-11-099-556/+429
| | | | | | | in parallel. On my laptop, a reseed using only process running takes .22 s wall clock in trunk and .06 s with this change - and that's after increasing the amount we read by 5 times (by reducing the entropy estimate per byte from .005 bits to 1/1024 bits).
* Use a page size buffer as we are reading from a pipelloyd2013-11-081-1/+1
|
* At least 128 bits, not at most 128lloyd2013-11-081-1/+1
|
* Previously, AutoRNG was just a reference to the global rng, which canlloyd2013-11-0816-564/+216
| | | | | | | | | | | cause a huge amount of lock contention in heavily multithreaded code. Now each AutoRNG is its own uniquely seeded HMAC_RNG. The set of entropy sources is shared rather than being per-RNG (so there is only one open fd to /dev/random, etc). So reseeding is still a global lock, but sharing the resources (open file descriptors, etc) across RNGs seems worth the contention. Remove Randpool, which was only used if HMAC_RNG was disabled at build.
* merge of '5e53891d2c77f27a22d07ed26923745f9a5f3336'lloyd2013-11-082-9/+32
|\ | | | | | | and 'a895552efd212665d83064e9517976ef63f41368'
| * Start updating release noteslloyd2013-11-081-7/+30
| |
| * Use BS constant where possiblelloyd2013-11-071-2/+2
| |
* | Use overridelloyd2013-11-081-1/+1
| |
* | Simplify device opening, and avoid leaking a file descriptor if it waslloyd2013-11-081-18/+14
| | | | | | | | | | | | too large to fit in an fd_set. Read at least 128 bits even if the poll is asking for less.
* | Add more possible clock typeslloyd2013-11-081-0/+12
| |
* | Avoid static const in GCM as welllloyd2013-11-071-1/+1
|/
* Work around a strange bug where Clang won't find CCM_Mode::BS unlesslloyd2013-11-071-1/+1
| | | | it is non-static.
* Poll all randomness devices instead of breaking out earlylloyd2013-11-062-85/+38
|