aboutsummaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
* In X509_CA save the hash function usedJack Lloyd2017-11-142-2/+11
|
* Move X509_DN and AlternativeName from asn1 to x509Jack Lloyd2017-11-148-81/+118
|
* Fix seek test with OpenSSL RC4Jack Lloyd2017-11-141-1/+1
|
* Support seeking in Salsa20Jack Lloyd2017-11-148-9/+61
| | | | Add a test that StreamCipher::seek throws if not keyed.
* Add OIDS::oid2str and str2oidJack Lloyd2017-11-141-0/+10
| | | | Using the name "lookup" for both directions is confusing.
* Add a second constructor to Decoding_Error which takes an exception string.Jack Lloyd2017-11-142-0/+5
|
* Add <functional> include to TLS headers which use std::functionJack Lloyd2017-11-142-0/+2
|
* Compile fixJack Lloyd2017-11-141-2/+2
|
* Correct issuer field of created CRLsJack Lloyd2017-11-142-6/+6
| | | | Fixes GH #1242
* Use jom via botan-ci-tools repoJack Lloyd2017-11-131-2/+2
| | | | download.qt.io seems to be down ...
* Remove duplicated includeJack Lloyd2017-11-131-1/+0
|
* Remove final on TLS policy objects (GH #1292)Jack Lloyd2017-11-132-4/+11
|
* Deprecate TLS CCM-8 ciphersuites [ci skip]Jack Lloyd2017-11-111-0/+2
|
* Merge GH #1290 Add missing includeJack Lloyd2017-11-111-0/+1
|\
| * Missing include: #include <cstdlib> is needed for std::free.Yuri2017-11-111-0/+1
| |
* | Update news [ci skip]Jack Lloyd2017-11-101-0/+30
|/
* Merge GH #1287 #1289 Use UTF-8 encoding for ASN.1 stringsJack Lloyd2017-11-1017-173/+447
|\
| * rename cert containing UTF8String consistentlyRené Meusel2017-11-102-1/+1
| |
| * TEST: read (self signed) cert containing BMPString fieldsRené Meusel2017-11-102-0/+52
| |
| * Remove obsolete docJack Lloyd2017-11-091-13/+0
| | | | | | | | See also GH #1113
| * Switch test code to use big-endian UCS2/UCS4Jack Lloyd2017-11-091-13/+11
| | | | | | | | | | | | Specifications are somewhat unclear but as best I can tell only big-endian codepoints are allowed and that follows OpenSSL and GnuTLS behavior.
| * Remove use of transcodeJack Lloyd2017-11-0911-196/+140
| |
| * FIX: linker error on windows (VSO#143857)René Meusel2017-11-091-2/+14
| |
| * FIX: test method namespacingRené Meusel2017-11-091-2/+2
| |
| * FIX: coding styleRene Meusel2017-11-091-94/+92
| |
| * add tests for UCS-2/4 parsingRene Meusel2017-11-091-0/+65
| |
| * add conversion from UCS-2/4 to UTF-8Rene Meusel2017-11-092-13/+47
| |
| * introduce UNIVERSAL_STRING (UCS-4)Rene Meusel2017-11-092-1/+3
| |
| * add coding clarificationsRene Meusel2017-11-091-2/+6
| |
| * add test reading UTF-8 X509 certRene Meusel2017-11-093-2/+61
| |
| * allow encoding of UTF-8 stringsRene Meusel2017-11-092-8/+70
| |
| * switch to default utf-8 string in ASN1_StringRene Meusel2017-11-092-8/+8
| |
| * add a failing test for an UTF-8 string and a successful test for ASCIIRene Meusel2017-11-091-0/+57
|/
* Merge GH #1286 Add UCS2 and UCS4 to UTF-8 conversion functionsJack Lloyd2017-11-094-5/+131
|\
| * Add UCS-2 and UCS-4 to UTF-8 conversion functionsJack Lloyd2017-11-094-5/+131
|/ | | | | | Crosschecked by fuzzing and comparing with iconv Needed in #1250
* Add SHACAL2 test from Bouncy CastleJack Lloyd2017-11-051-0/+5
| | | | [ci skip]
* Additionally deprecate static RSA key exchange.Jack Lloyd2017-11-051-3/+5
| | | | | | | | It complicates the state machine and has severe security problems. (Not just missing PFS, but also exposing a decryption oracle that otherwise is not available.) [ci skip]
* Fix shadow warningJack Lloyd2017-11-051-2/+3
| | | | [ci skip]
* Update newsJack Lloyd2017-11-031-0/+3
|
* Merge GH #1284 Add ARIA-GCM ciphersuitesJack Lloyd2017-11-035-8/+32
|\
| * Add support for ARIA GCM ciphersuitesJack Lloyd2017-11-035-8/+32
|/ | | | Tested against OpenSSL master
* Add some KDF2 values from Bouncy CastleJack Lloyd2017-11-021-0/+19
|
* Format tweaksJack Lloyd2017-11-021-2/+2
|
* Avoid using semicolon at and of do { } while(0) macro block.Jack Lloyd2017-11-022-19/+19
| | | | Clearly I have a tic for this.
* Avoid saving a session to SQL database with empty hostnameJack Lloyd2017-11-021-0/+3
| | | | This happens if the hostname is unknown or specified as an IP.
* Minor SIV/CMAC optimizationsJack Lloyd2017-11-022-13/+17
|
* speed: simplify some codeJack Lloyd2017-11-021-167/+60
|
* Merge GH #1282 Use simple non-cryptographic PRNG for testsJack Lloyd2017-10-304-123/+114
|\
| * Use a simple PRNG for the testsJack Lloyd2017-10-294-123/+114
|/ | | | | | | | | | | Not cryptographically secure, but fast! Cuts several seconds off the test suite even on a very fast machine. Probably even more effective for 32-bit systems since the default for HMAC_DRBG is SHA-384. Also it means deterministic tests are used regardless of build configuration which is nice. Improve output for --test-runs which was useful for me when debugging SM2 encryption issue.
* Update newsJack Lloyd2017-10-291-1/+2
|