aboutsummaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
* Further simplifications in SM2 codeJack Lloyd2018-02-182-14/+14
|
* Merge GH #1452 Add helpers to EC_Group to reduce mod group orderJack Lloyd2018-02-188-165/+218
|\
| * Add point_multiply operation to EC_GroupJack Lloyd2018-02-187-6/+19
| | | | | | | | Allows precomputations in the future.
| * Add functions to reduce integers mod the order to EC_GroupJack Lloyd2018-02-188-165/+205
|/ | | | | | This allows calculating the Barett reduction params just once, when the group is initialized, then sharing them across all operations which use that group.
* Wrap line for lint [ci skip]Jack Lloyd2018-02-181-1/+6
|
* Add a flag to disable use of ARMv8 crypto extensions [ci skip]Jack Lloyd2018-02-151-1/+1
|
* Tighten up RSA key validity testsJack Lloyd2018-02-131-3/+7
| | | | They allowed even e, another leftover from Rabin-Williams
* Remove handling of even e in RSA keygenJack Lloyd2018-02-131-5/+2
| | | | | This is a holdover from Rabin-Williams support and just confusing in RSA-specific code.
* Of course they are public member variables, not functions ...Jack Lloyd2018-02-135-7/+7
|
* Add BOTAN_DEPRECATED_PUBLIC_MEMBER_FUNCTIONSJack Lloyd2018-02-135-1/+14
| | | | | | Makes such things easier to find in the future. Also adds BOTAN_NO_DEPRECATED which causes them to be private instead.
* Enable VirtualLock on MinGW buildsJack Lloyd2018-02-131-2/+2
| | | | | For some reason one of the blocks was guarded to be MSVC only, but it works fine on MinGW also.
* Tiny optimization in BigInt::const_time_lookupJack Lloyd2018-02-131-1/+3
|
* Make FFI errors an enum, and add a function to translate to stringsJack Lloyd2018-02-072-54/+71
|
* Use new literal syntax for OIDsJack Lloyd2018-02-073-206/+215
| | | | Reduces size of oid_maps object file by a ~16K
* Merge GH #1444 Add (back) modifyable OID mapsJack Lloyd2018-02-075-414/+670
|\
| * Add previously removed OID testsNever2018-02-051-0/+109
| | | | | | | | Originally removed in 62e55f484a7a03e2532875696eb2479a577878e9
| * Reintroduce ability to register OIDs at runtimeNever2018-02-054-414/+561
| | | | | | | | | | | | This was removed in 62e55f484a7a03e2532875696eb2479a577878e9 in favor of a faster and smaller lookup. The ability is however required if we want to use custom curves at runtime.
* | Merge GH #1441 Add a shared registry of EC_Group objectsJack Lloyd2018-02-0712-403/+595
|\ \
| * | Alternate method of forcing allocator initializationJack Lloyd2018-02-043-1/+18
| | | | | | | | | | | | That doesn't require a malloc/free every time we call ec_group_data()
| * | Add hack to deal with initialization fiascoJack Lloyd2018-02-041-0/+6
| | |
| * | Create a persistent registry for ECC group dataJack Lloyd2018-02-0410-403/+572
| |/ | | | | | | Now a single copy is maintained of each EC group info
* | Merge GH #1443 Detect compiler target arch at configure time fixes #1442Jack Lloyd2018-02-072-19/+100
|\ \
| * | Detect compiler architecture at configure timeJack Lloyd2018-02-052-19/+100
| |/ | | | | | | Avoids build confusions like #1442
* / Fix compliation problem in PKCS11Jack Lloyd2018-02-076-1/+6
|/ | | | | | | | | ./configure.py --amal --mini --enable-modules=pkcs11 would fail to build because the guarded includes of pk_keys.h ended up hiding the declaration entirely. This is really a bug in how the amalgamation is generated but may be hard to fix in the general case.
* Move bundledcertdir to x509/miscJack Lloyd2018-02-022-1/+1
|
* Merge GH #1436 In Certificate_Store load multiple certs from fileJack Lloyd2018-02-023-2/+81
|\
| * Load every certificates of files found - fix test.Mathieu Souchaud2018-02-021-3/+0
| |
| * Load every certificates of files found - add test.Mathieu Souchaud2018-02-022-0/+69
| |
| * Load every certificates of files found.Mathieu Souchaud2018-02-011-2/+15
| |
* | Use -m32 for x86-32 builds with GCCJack Lloyd2018-02-021-0/+1
| | | | | | | | | | This used to not work but is fine with GCC 4.8 which is the minimum version we support. Fixes #1438
* | Increase default speed --msec to 300Jack Lloyd2018-02-021-1/+1
| | | | | | | | | | A good balance between being responsive and reasonable accurate. At 100 msec lots of errors wrt dynamic throttling etc.
* | Avoid deprecated functions in OpenSSL provider [ci skip]Jack Lloyd2018-02-011-3/+3
| |
* | Merge GH #1435 Use shared_ptr representation for EC_GroupJack Lloyd2018-02-0121-246/+480
|\ \
| * | Fix deprecation warningsJack Lloyd2018-02-012-11/+20
| | |
| * | Simplify ECC test OID lookupJack Lloyd2018-01-311-18/+17
| | |
| * | Avoid CurveGFp in EC_Group interfaceJack Lloyd2018-01-317-44/+125
| | |
| * | Use shared representation of EC_GroupJack Lloyd2018-01-3117-202/+347
| |/ | | | | | | Hide CurveGFp with an eye for eventual removal
* / Fix crash in x509_unit if any of DH, ECDH, or ElGamal were disabledJack Lloyd2018-02-012-5/+16
|/ | | | | | | | | | Introduced in bf1548695aea Was missed by CI because the BSI and NIST modules don't require x509, so none of the tests ran in that configuration. Explicitly add x509 for such builds. Fixes #1437
* Optimize SHA_3::expandJack Lloyd2018-01-311-15/+14
| | | | Noticable speedup for SHAKE esp with longer output lengths
* Add a few more tests of the test suite codeJack Lloyd2018-01-301-2/+56
|
* Fix copy paste errorJack Lloyd2018-01-302-2/+2
|
* Add function to query if filesystem support is enabled.Jack Lloyd2018-01-304-80/+63
| | | | Makes for much simpler code.
* Merge GH #1434 Avoid unnecessary allocations in SHA-3 finalizationJack Lloyd2018-01-305-71/+697
|\
| * WhitespaceJack Lloyd2018-01-301-5/+5
| |
| * Use copy_out_vec_le instead of explicit loop in SHA-3 and KeccakJack Lloyd2018-01-302-4/+2
| |
| * Reorganize SHA-3 source file [ci skip]Jack Lloyd2018-01-301-35/+35
| | | | | | | | Put all the statics at beginning followed by member functions.
| * Add a set of SHAKE-128 test vectors from NIST CAVSJack Lloyd2018-01-301-0/+627
| |
| * Avoid allocating zero bytes for SHA-3 paddingJack Lloyd2018-01-304-27/+28
| | | | | | | | Inspired by #1433
* | For hash/mac speed tests finalize the computation under the timerJack Lloyd2018-01-301-1/+6
| | | | | | | | | | | | Otherwise this misses the perf difference between SHAKE-128(512) and SHAKE-128(5120000) all the extra computation happens in the final function.
* | Have to remove sessions on client sideJack Lloyd2018-01-301-1/+1
|/ | | | | Clearing server side state doesn't help because we resume with a session ticket.