aboutsummaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
* Merge GH #1302 Add PSK database interfaceJack Lloyd2017-11-2613-5/+853
|\
| * PSK DatabaseJack Lloyd2017-11-2613-5/+853
| |
* | Merge GH #1315 Add tls_http_server command line utilJack Lloyd2017-11-261-0/+543
|\ \
| * | Add tls_http_server cmd utilJack Lloyd2017-11-261-0/+543
| | | | | | | | | | | | | | | It parses just enough of an HTTP message that it can be used to test against a browser, or tlsfuzzer.
* | | Throw a Decoding_Error if TLS AEAD packet is shorter than the tag.Jack Lloyd2017-11-261-0/+3
|/ / | | | | | | | | Otherwise this ended up as an assertion failure which translated to internal_error alert.
* | Fix errors caught with tlsfuzzerJack Lloyd2017-11-264-10/+6
| | | | | | | | | | | | | | | | | | | | | | Don't send EC point format extension in server hello unless an EC suite was negotiated *and* the client sent the extension. Fix server FFDHE logic, this effectively disabled DHE ciphersuites for clients without FFDHE extension. Use unexpected_message alert in case of an unexpected message. (Previously an internal_error alert was sent.)
* | Merge #1313 Fix Doxygen comment on HashFunction::create_or_throwJack Lloyd2017-11-251-1/+1
|\ \
| * | Minor documentation fix in HashFunction::create_or_throw.Marcus Brinkmann2017-11-261-1/+1
| | |
* | | Merge #1312 Fix documentation of compression/decompression update function.Jack Lloyd2017-11-251-2/+2
|\ \ \
| * | | Fix documentation of compression/decompression update function.Marcus Brinkmann2017-11-261-2/+2
| |/ /
* | | Merge #1311 Add create and create_or_throw factories for ↵Jack Lloyd2017-11-253-0/+127
|\ \ \ | |_|/ |/| | | | | Compression_Algorithm and Decompression_Algorithm.
| * | Documentation fix in compression create/create_or_throw functions.Marcus Brinkmann2017-11-261-6/+4
| | |
| * | Add create and create_or_throw factories for Compression_Algorithm and ↵Marcus Brinkmann2017-11-253-0/+129
| |/ | | | | | | Decompression_Algorithm.
* | Update newsJack Lloyd2017-11-251-0/+4
| |
* | Merge GH #1308/#1309 Fix Bzip2 compression issueJack Lloyd2017-11-253-21/+81
|\ \ | |/ |/|
| * Fix bzip2 compression issue.Jack Lloyd2017-11-253-24/+48
| | | | | | | | | | | | When finishing, bzip2 returns BZ_STREAM_END when it has produced all output. If we end up calling the compression routine again (even with avail_in == 0), bzip2 returns an error.
| * Add test case for bzip2 compression filter.Marcus Brinkmann2017-11-251-0/+36
|/
* Update newsJack Lloyd2017-11-241-38/+40
| | | | Mention #1307 and reformat.
* Merge GH #1307 Add Pipe::append_filterJack Lloyd2017-11-243-13/+36
|\
| * Add Pipe::append_filterJack Lloyd2017-11-243-13/+36
|/ | | | | Similar to append but it only allows modfication before start_msg. See GH #1306
* Update support EOL datesJack Lloyd2017-11-242-13/+18
| | | | | | | | | Extend lifetime of 1.10 through end of 2018; some of the slower distros are still shipping only 1.10 so we need to give some additional support coverage. Also add one year to expected 2.x lifetime, and add expected dates wrt botan-3.
* Update Sonarcloud badge URLs [ci skip]Jack Lloyd2017-11-221-3/+3
|
* Update newsJack Lloyd2017-11-211-0/+9
|
* Merge GH #1304 Avoid infinite recursion on nested indefinite length constructsJack Lloyd2017-11-212-17/+69
|\
| * Avoid uncontrolled recusion on indefinite length encodingsJack Lloyd2017-11-202-17/+69
| | | | | | | | | | A sufficiently nested indefinite length construction would cause stack exhaustion and a crash. Found by OSS-Fuzz - issue 4353
* | Allow building asn1print even if PEM is disabledJack Lloyd2017-11-212-2/+12
| | | | | | | | Just throws if --pem arg is used.
* | Link to distro wiki page from indexJack Lloyd2017-11-201-4/+4
|/ | | | [ci skip]
* Add keywrap documentationJack Lloyd2017-11-193-1/+62
|
* Merge #1301 Add AES key wrap with paddingJack Lloyd2017-11-1911-75/+1008
|\
| * Add AES key wrap with paddingJack Lloyd2017-11-1911-75/+1008
|/
* Avoid OCSPing on the Let's Encrypt CA certJack Lloyd2017-11-191-6/+2
| | | | | | Their issuing CA seems to have some performance problems with OCSP (https://github.com/letsencrypt/boulder/issues/1929) and it's currently causing timeouts in the tests.
* Constify variables in AES-NI codeJack Lloyd2017-11-181-104/+104
|
* Add a function for checking if poly_double_n supports a particular sizeJack Lloyd2017-11-183-6/+10
|
* Allow parsing and printing certificates with unknown public key algosJack Lloyd2017-11-182-6/+31
|
* Add timings for RFC 3394 keywrapJack Lloyd2017-11-181-0/+40
|
* Add feature macro for Sqlite3 being enabled in buildJack Lloyd2017-11-181-0/+3
|
* Merge GH #1298 fix Python invocation for install scriptJack Lloyd2017-11-174-2/+5
|\ | | | | | | Closes #1297
| * Prefix execution of install.py with Python binaryJack Lloyd2017-11-164-2/+5
|/ | | | | | | Fixes GH #1297 This is done even on GNU make builds, since the same issue affects MinGW
* Fix encoding of subject key identifierJack Lloyd2017-11-165-23/+27
| | | | | | Changed in #884 - we were copying the entire public key as the public key id. Instead hash it with whatever hash we are using to sign the certificate.
* Optimize TwofishJack Lloyd2017-11-163-95/+159
| | | | | Interleaving two blocks is 40-50% faster for any mode that supports parallel operation.
* Fix path to cert test dataJack Lloyd2017-11-161-1/+1
|
* Merge GH #1296 Allow using secure_allocator with std::string under VC2013Jack Lloyd2017-11-161-5/+21
|\
| * Fix secure_allocator with std::string on VS2013Daniel Neus2017-11-161-5/+21
| | | | | | | | Closes #1295
* | Fix Python testsJack Lloyd2017-11-161-1/+1
| |
* | Move all the various X509 test data files under src/tests/data/x509Jack Lloyd2017-11-16659-41/+41
| |
* | Add todosJack Lloyd2017-11-161-0/+1
|/
* Fix a memory leak in the case where certificate extension decoding fails.Jack Lloyd2017-11-162-30/+33
| | | | | | Introduced in #884 Found by OSS-Fuzz (bug 4249)
* Correct CAST-128 decryption with more than 1 blockJack Lloyd2017-11-162-32/+36
|
* Optimizations for CAST-128Jack Lloyd2017-11-162-46/+136
| | | | | Similarly to Blowfish, 2x unrolling produces a 50-60% perf boost due to increased ILP.
* Optimize BlowfishJack Lloyd2017-11-162-42/+83
| | | | | | | Doing two blocks at a time exposes more ILP and substantially improves performance. Idea from http://jultika.oulu.fi/files/nbnfioulu-201305311409.pdf
generated by cgit v1.2.3 (git 2.39.1) at 2024-12-26 15:47:54 +0000