aboutsummaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
* Improve test coverage. Fix Argon2 default paramsJack Lloyd2019-05-294-15/+32
|
* Add missing includeJack Lloyd2019-05-291-0/+1
|
* Argon2: PasswordHash, documentation, hash formattingJack Lloyd2019-05-2910-7/+595
|
* Merge GH #1974 Add ability to set max allowed age for an OCSP responseJack Lloyd2019-05-2811-25/+287
|\
| * test all combinations of next_update and max_age similarlyPatrick Schmidt2019-05-281-16/+101
| |
| * OCSP timeout test uses response w/o 'next_update'René Meusel2019-05-285-14/+144
| |
| * add 'OCSP_IS_TOO_OLD' to Botan::to_string()René Meusel2019-05-281-0/+2
| |
| * add optional max_age for ocsp checksPatrick Schmidt2019-05-276-14/+59
| |
* | Merge GH #1982 Ask for updated cert status during a TLS resumptionJack Lloyd2019-05-282-1/+3
|\ \
| * | Ask for certificate status even on a resumption attemptJack Lloyd2019-05-282-1/+3
| | | | | | | | | | | | | | | This makes sense to do since if the server doesn't resume, we would like to see a updated status message.
* | | Update newsJack Lloyd2019-05-281-0/+2
| | |
* | | Merge GH #1981 Add Argon2Jack Lloyd2019-05-288-9/+886
|\ \ \ | |/ / |/| |
| * | Fix problem in TLS message parsing testsJack Lloyd2019-05-272-4/+4
| | | | | | | | | | | | | | | | | | | | | This started failing due to use of store_be in Buffered_Computation::update_be in this PR. The hello request cookie generation depended on the size of size_t, however the lib code and test had the same bug so it was missed. Force the lengths to be 64 bit.
| * | Add Argon2Jack Lloyd2019-05-276-5/+882
|/ / | | | | | | Closes GH #459
* | Merge GH #1978 TLS refactoringsJack Lloyd2019-05-2514-109/+126
|\ \
| * | Merge AEAD and CBC codepaths hereJack Lloyd2019-05-251-5/+8
| | |
| * | Return reference hereJack Lloyd2019-05-252-13/+16
| | |
| * | TweakJack Lloyd2019-05-252-12/+13
| | |
| * | More record layer refactoringsJack Lloyd2019-05-244-74/+56
| | |
| * | Simplification in record layerJack Lloyd2019-05-244-10/+34
| | |
| * | Make it possible to regen tls_suite_info.cpp with recent tls-parameters.txtJack Lloyd2019-05-242-6/+6
| | |
| * | Remove bogus commentJack Lloyd2019-05-242-2/+0
| | |
| * | Add reminder comments re enum classJack Lloyd2019-05-244-0/+6
|/ /
* | Merge GH #1858 Update XMSS to conform to RFC 8391Jack Lloyd2019-05-2421-624/+2520
|\ \
| * | Fix param names to match RFCJack Lloyd2019-05-135-43/+43
| | |
| * | Fix param namesJack Lloyd2019-05-104-29/+29
| | |
| * | Serialize XMSS leaf index as four bytesMatthias Gierlings2019-05-066-1082/+1078
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Internally XMSS uses a 64 Bit type for the leaf index. This patch removes the four leading zero bytes from the XMSS leaf index and serializes it as a four byte value as described in RFC 8391. Test cases are adjusted accordingly. The 64 Bit type is kept internally which potentially allows for code reuse when implementing XMSS^MT on top of the current XMSS code.
| * | Adds new test casesMatthias Gierlings2019-05-064-453/+2356
| | | | | | | | | | | | | | | | | | | | | - Replaces XMSS test vectors with new vectors that were generated using Bouncy Castle's XMSS implementation. - Adjusts the XMSS test bench to recognize the new XMSS algorithm naming scheme.
| * | Updates copyright noticesMatthias Gierlings2019-05-0611-11/+11
| | |
| * | Updates XMSS manual entryMatthias Gierlings2019-05-061-19/+26
| | |
| * | Updates references to XMSS the standard documentMatthias Gierlings2019-05-0611-47/+37
| | |
| * | Updates XMSS parameters corresponding to RFC 8391Matthias Gierlings2019-05-065-94/+94
| | | | | | | | | | | | | | | Changes XMSS and XMSS WOTS algorithm names and OIDs to correspond to RFC 8391.
* | | Fix another warning in BoGo shimJack Lloyd2019-05-241-1/+1
| | | | | | | | | | | | | | | On Linux x86-64 this complains because time_t is unsigned long not unsigned long long. Just cast it.
* | | Merge GH #1977 Fix warning in BoGo shimJack Lloyd2019-05-241-1/+1
|\ \ \
| * | | Bogo shim warning build fixDavid Carlier2019-05-241-1/+1
|/ / /
* | | Update newsJack Lloyd2019-05-241-0/+2
| | |
* | | Merge GH #1976 Add supported_versions extensionJack Lloyd2019-05-2414-111/+259
|\ \ \
| * | | Let TLS serialization know which side we are sending asJack Lloyd2019-05-246-60/+57
| | | | | | | | | | | | | | | | Since this matters for some extensions
| * | | Add support for supported versions extension from TLS 1.3Jack Lloyd2019-05-2413-68/+219
|/ / /
* | | Allow servers to prohibit renegotiation with fatal alertJack Lloyd2019-05-243-3/+7
| | |
* | | Merge GH #1975 Add script for running tlsfuzzerJack Lloyd2019-05-249-30/+141
|\ \ \
| * | | Add script for running TLS fuzzerJack Lloyd2019-05-246-6/+111
| | | | | | | | | | | | | | | | Fix a few minor issues found thereby
| * | | Avoid unnecessary copies during TLS handshakeJack Lloyd2019-05-243-24/+28
| | | |
| * | | Avoid warningsJack Lloyd2019-05-241-0/+2
| | | |
* | | | Remove hack for signature preferencesJack Lloyd2019-05-241-8/+1
|/ / /
* | | Build fixJack Lloyd2019-05-241-2/+2
| | |
* | | Avoid erroring out on a short readJack Lloyd2019-05-241-6/+22
| | | | | | | | | | | | Can't replicate this locally but it just caused a failure on Travis.
* | | Merge GH #1972 Fix more BoGo DTLS testsJack Lloyd2019-05-242-20/+11
|\ \ \
| * | | Fix DTLS alertsJack Lloyd2019-05-232-20/+11
| | | | | | | | | | | | | | | | | | | | For some reason doing two writes here ends up with the second (the payload) being lost due to socket closure.
* | | | Merge GH #1971 Add error_type for database errorJack Lloyd2019-05-245-62/+81
|\ \ \ \
generated by cgit v1.2.3 (git 2.39.1) at 2024-12-18 08:23:04 +0000