Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | In X509_CA save the hash function used | Jack Lloyd | 2017-11-14 | 2 | -2/+11 |
| | |||||
* | Move X509_DN and AlternativeName from asn1 to x509 | Jack Lloyd | 2017-11-14 | 8 | -81/+118 |
| | |||||
* | Fix seek test with OpenSSL RC4 | Jack Lloyd | 2017-11-14 | 1 | -1/+1 |
| | |||||
* | Support seeking in Salsa20 | Jack Lloyd | 2017-11-14 | 8 | -9/+61 |
| | | | | Add a test that StreamCipher::seek throws if not keyed. | ||||
* | Add OIDS::oid2str and str2oid | Jack Lloyd | 2017-11-14 | 1 | -0/+10 |
| | | | | Using the name "lookup" for both directions is confusing. | ||||
* | Add a second constructor to Decoding_Error which takes an exception string. | Jack Lloyd | 2017-11-14 | 2 | -0/+5 |
| | |||||
* | Add <functional> include to TLS headers which use std::function | Jack Lloyd | 2017-11-14 | 2 | -0/+2 |
| | |||||
* | Compile fix | Jack Lloyd | 2017-11-14 | 1 | -2/+2 |
| | |||||
* | Correct issuer field of created CRLs | Jack Lloyd | 2017-11-14 | 2 | -6/+6 |
| | | | | Fixes GH #1242 | ||||
* | Use jom via botan-ci-tools repo | Jack Lloyd | 2017-11-13 | 1 | -2/+2 |
| | | | | download.qt.io seems to be down ... | ||||
* | Remove duplicated include | Jack Lloyd | 2017-11-13 | 1 | -1/+0 |
| | |||||
* | Remove final on TLS policy objects (GH #1292) | Jack Lloyd | 2017-11-13 | 2 | -4/+11 |
| | |||||
* | Deprecate TLS CCM-8 ciphersuites [ci skip] | Jack Lloyd | 2017-11-11 | 1 | -0/+2 |
| | |||||
* | Merge GH #1290 Add missing include | Jack Lloyd | 2017-11-11 | 1 | -0/+1 |
|\ | |||||
| * | Missing include: #include <cstdlib> is needed for std::free. | Yuri | 2017-11-11 | 1 | -0/+1 |
| | | |||||
* | | Update news [ci skip] | Jack Lloyd | 2017-11-10 | 1 | -0/+30 |
|/ | |||||
* | Merge GH #1287 #1289 Use UTF-8 encoding for ASN.1 strings | Jack Lloyd | 2017-11-10 | 17 | -173/+447 |
|\ | |||||
| * | rename cert containing UTF8String consistently | René Meusel | 2017-11-10 | 2 | -1/+1 |
| | | |||||
| * | TEST: read (self signed) cert containing BMPString fields | René Meusel | 2017-11-10 | 2 | -0/+52 |
| | | |||||
| * | Remove obsolete doc | Jack Lloyd | 2017-11-09 | 1 | -13/+0 |
| | | | | | | | | See also GH #1113 | ||||
| * | Switch test code to use big-endian UCS2/UCS4 | Jack Lloyd | 2017-11-09 | 1 | -13/+11 |
| | | | | | | | | | | | | Specifications are somewhat unclear but as best I can tell only big-endian codepoints are allowed and that follows OpenSSL and GnuTLS behavior. | ||||
| * | Remove use of transcode | Jack Lloyd | 2017-11-09 | 11 | -196/+140 |
| | | |||||
| * | FIX: linker error on windows (VSO#143857) | René Meusel | 2017-11-09 | 1 | -2/+14 |
| | | |||||
| * | FIX: test method namespacing | René Meusel | 2017-11-09 | 1 | -2/+2 |
| | | |||||
| * | FIX: coding style | Rene Meusel | 2017-11-09 | 1 | -94/+92 |
| | | |||||
| * | add tests for UCS-2/4 parsing | Rene Meusel | 2017-11-09 | 1 | -0/+65 |
| | | |||||
| * | add conversion from UCS-2/4 to UTF-8 | Rene Meusel | 2017-11-09 | 2 | -13/+47 |
| | | |||||
| * | introduce UNIVERSAL_STRING (UCS-4) | Rene Meusel | 2017-11-09 | 2 | -1/+3 |
| | | |||||
| * | add coding clarifications | Rene Meusel | 2017-11-09 | 1 | -2/+6 |
| | | |||||
| * | add test reading UTF-8 X509 cert | Rene Meusel | 2017-11-09 | 3 | -2/+61 |
| | | |||||
| * | allow encoding of UTF-8 strings | Rene Meusel | 2017-11-09 | 2 | -8/+70 |
| | | |||||
| * | switch to default utf-8 string in ASN1_String | Rene Meusel | 2017-11-09 | 2 | -8/+8 |
| | | |||||
| * | add a failing test for an UTF-8 string and a successful test for ASCII | Rene Meusel | 2017-11-09 | 1 | -0/+57 |
|/ | |||||
* | Merge GH #1286 Add UCS2 and UCS4 to UTF-8 conversion functions | Jack Lloyd | 2017-11-09 | 4 | -5/+131 |
|\ | |||||
| * | Add UCS-2 and UCS-4 to UTF-8 conversion functions | Jack Lloyd | 2017-11-09 | 4 | -5/+131 |
|/ | | | | | | Crosschecked by fuzzing and comparing with iconv Needed in #1250 | ||||
* | Add SHACAL2 test from Bouncy Castle | Jack Lloyd | 2017-11-05 | 1 | -0/+5 |
| | | | | [ci skip] | ||||
* | Additionally deprecate static RSA key exchange. | Jack Lloyd | 2017-11-05 | 1 | -3/+5 |
| | | | | | | | | It complicates the state machine and has severe security problems. (Not just missing PFS, but also exposing a decryption oracle that otherwise is not available.) [ci skip] | ||||
* | Fix shadow warning | Jack Lloyd | 2017-11-05 | 1 | -2/+3 |
| | | | | [ci skip] | ||||
* | Update news | Jack Lloyd | 2017-11-03 | 1 | -0/+3 |
| | |||||
* | Merge GH #1284 Add ARIA-GCM ciphersuites | Jack Lloyd | 2017-11-03 | 5 | -8/+32 |
|\ | |||||
| * | Add support for ARIA GCM ciphersuites | Jack Lloyd | 2017-11-03 | 5 | -8/+32 |
|/ | | | | Tested against OpenSSL master | ||||
* | Add some KDF2 values from Bouncy Castle | Jack Lloyd | 2017-11-02 | 1 | -0/+19 |
| | |||||
* | Format tweaks | Jack Lloyd | 2017-11-02 | 1 | -2/+2 |
| | |||||
* | Avoid using semicolon at and of do { } while(0) macro block. | Jack Lloyd | 2017-11-02 | 2 | -19/+19 |
| | | | | Clearly I have a tic for this. | ||||
* | Avoid saving a session to SQL database with empty hostname | Jack Lloyd | 2017-11-02 | 1 | -0/+3 |
| | | | | This happens if the hostname is unknown or specified as an IP. | ||||
* | Minor SIV/CMAC optimizations | Jack Lloyd | 2017-11-02 | 2 | -13/+17 |
| | |||||
* | speed: simplify some code | Jack Lloyd | 2017-11-02 | 1 | -167/+60 |
| | |||||
* | Merge GH #1282 Use simple non-cryptographic PRNG for tests | Jack Lloyd | 2017-10-30 | 4 | -123/+114 |
|\ | |||||
| * | Use a simple PRNG for the tests | Jack Lloyd | 2017-10-29 | 4 | -123/+114 |
|/ | | | | | | | | | | | Not cryptographically secure, but fast! Cuts several seconds off the test suite even on a very fast machine. Probably even more effective for 32-bit systems since the default for HMAC_DRBG is SHA-384. Also it means deterministic tests are used regardless of build configuration which is nice. Improve output for --test-runs which was useful for me when debugging SM2 encryption issue. | ||||
* | Update news | Jack Lloyd | 2017-10-29 | 1 | -1/+2 |
| |