Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Split the language flags out of CXXFLAGS | Jack Lloyd | 2017-11-29 | 3 | -10/+15 |
| | | | | | Allows distributor to override CFLAGS without having to worry about what -std=c++xx options we are using. See GH #1237 | ||||
* | Update news | Jack Lloyd | 2017-11-28 | 1 | -2/+9 |
| | |||||
* | Merge GH #1316 Various TLS fixes | Jack Lloyd | 2017-11-28 | 7 | -25/+47 |
|\ | |||||
| * | Add an explicit catch for a server trying to negotiate SSLv3 | Jack Lloyd | 2017-11-28 | 1 | -1/+7 |
| | | | | | | | | | | | | | | This was already caught with the policy check later but it's better to be explicit. (And in theory an application might implement their policy version check to be "return true", which would lead to us actually attempting to negotiate SSLv3). | ||||
| * | Correct version selection logic in TLS server | Jack Lloyd | 2017-11-28 | 1 | -0/+5 |
| | | | | | | | | | | | | | | | | | | | | | | Due to an oversight in the logic, previously a client attempt to negotiate SSLv3 would result in the server trying to negotiate TLS v1.2. Now instead they get a protocol_error alert. Similarly, detect the the (invalid) case of a major number <= 2, which does not coorespond to any real TLS version. The server would again reply as a TLS v1.2 server in that case, and now just closes the connection with an alert. | ||||
| * | Tighten up checks on signature key exchange message | Jack Lloyd | 2017-11-28 | 1 | -1/+1 |
| | | | | | | | | An empty extension is not allowed, but was previously accepted. | ||||
| * | Return correct alert type on malformed DH/ECDH messages. | Jack Lloyd | 2017-11-28 | 1 | -7/+11 |
| | | | | | | | | | | | | | | | | In the client key exchange if the message was malformed (eg an completely empty ECDH share) a Decoding_Error would be thrown, then caught and a fake pre master secret generated. Move the parsing of the message out of the try/catch block, so the correct error is reported. | ||||
| * | Increase HMAC key size limit to 4096 bytes. | Jack Lloyd | 2017-11-28 | 2 | -5/+7 |
| | | | | | | | | | | The previous limit of 512 bytes meant that TLS was unable to negotiate using FFDHE-6144 or FFDHE-8192 groups. | ||||
| * | Correct definition of FFDHE 4096 group | Jack Lloyd | 2017-11-28 | 1 | -11/+16 |
| | | | | | | | | Was a copy+paste of FFDHE 3072 | ||||
* | | Run TLS hello random fields through SHA-256 | Jack Lloyd | 2017-11-28 | 1 | -1/+7 |
|/ | | | | Avoids exposing RNG output on the wire. Cheap precaution. | ||||
* | Fix Doxygen | Jack Lloyd | 2017-11-26 | 1 | -1/+1 |
| | |||||
* | Update news | Jack Lloyd | 2017-11-26 | 1 | -0/+10 |
| | |||||
* | Merge GH #1302 Add PSK database interface | Jack Lloyd | 2017-11-26 | 13 | -5/+853 |
|\ | |||||
| * | PSK Database | Jack Lloyd | 2017-11-26 | 13 | -5/+853 |
| | | |||||
* | | Merge GH #1315 Add tls_http_server command line util | Jack Lloyd | 2017-11-26 | 1 | -0/+543 |
|\ \ | |||||
| * | | Add tls_http_server cmd util | Jack Lloyd | 2017-11-26 | 1 | -0/+543 |
| | | | | | | | | | | | | | | | It parses just enough of an HTTP message that it can be used to test against a browser, or tlsfuzzer. | ||||
* | | | Throw a Decoding_Error if TLS AEAD packet is shorter than the tag. | Jack Lloyd | 2017-11-26 | 1 | -0/+3 |
|/ / | | | | | | | | | Otherwise this ended up as an assertion failure which translated to internal_error alert. | ||||
* | | Fix errors caught with tlsfuzzer | Jack Lloyd | 2017-11-26 | 4 | -10/+6 |
| | | | | | | | | | | | | | | | | | | | | | | Don't send EC point format extension in server hello unless an EC suite was negotiated *and* the client sent the extension. Fix server FFDHE logic, this effectively disabled DHE ciphersuites for clients without FFDHE extension. Use unexpected_message alert in case of an unexpected message. (Previously an internal_error alert was sent.) | ||||
* | | Merge #1313 Fix Doxygen comment on HashFunction::create_or_throw | Jack Lloyd | 2017-11-25 | 1 | -1/+1 |
|\ \ | |||||
| * | | Minor documentation fix in HashFunction::create_or_throw. | Marcus Brinkmann | 2017-11-26 | 1 | -1/+1 |
| | | | |||||
* | | | Merge #1312 Fix documentation of compression/decompression update function. | Jack Lloyd | 2017-11-25 | 1 | -2/+2 |
|\ \ \ | |||||
| * | | | Fix documentation of compression/decompression update function. | Marcus Brinkmann | 2017-11-26 | 1 | -2/+2 |
| |/ / | |||||
* | | | Merge #1311 Add create and create_or_throw factories for ↵ | Jack Lloyd | 2017-11-25 | 3 | -0/+127 |
|\ \ \ | |_|/ |/| | | | | | Compression_Algorithm and Decompression_Algorithm. | ||||
| * | | Documentation fix in compression create/create_or_throw functions. | Marcus Brinkmann | 2017-11-26 | 1 | -6/+4 |
| | | | |||||
| * | | Add create and create_or_throw factories for Compression_Algorithm and ↵ | Marcus Brinkmann | 2017-11-25 | 3 | -0/+129 |
| |/ | | | | | | | Decompression_Algorithm. | ||||
* | | Update news | Jack Lloyd | 2017-11-25 | 1 | -0/+4 |
| | | |||||
* | | Merge GH #1308/#1309 Fix Bzip2 compression issue | Jack Lloyd | 2017-11-25 | 3 | -21/+81 |
|\ \ | |/ |/| | |||||
| * | Fix bzip2 compression issue. | Jack Lloyd | 2017-11-25 | 3 | -24/+48 |
| | | | | | | | | | | | | When finishing, bzip2 returns BZ_STREAM_END when it has produced all output. If we end up calling the compression routine again (even with avail_in == 0), bzip2 returns an error. | ||||
| * | Add test case for bzip2 compression filter. | Marcus Brinkmann | 2017-11-25 | 1 | -0/+36 |
|/ | |||||
* | Update news | Jack Lloyd | 2017-11-24 | 1 | -38/+40 |
| | | | | Mention #1307 and reformat. | ||||
* | Merge GH #1307 Add Pipe::append_filter | Jack Lloyd | 2017-11-24 | 3 | -13/+36 |
|\ | |||||
| * | Add Pipe::append_filter | Jack Lloyd | 2017-11-24 | 3 | -13/+36 |
|/ | | | | | Similar to append but it only allows modfication before start_msg. See GH #1306 | ||||
* | Update support EOL dates | Jack Lloyd | 2017-11-24 | 2 | -13/+18 |
| | | | | | | | | | Extend lifetime of 1.10 through end of 2018; some of the slower distros are still shipping only 1.10 so we need to give some additional support coverage. Also add one year to expected 2.x lifetime, and add expected dates wrt botan-3. | ||||
* | Update Sonarcloud badge URLs [ci skip] | Jack Lloyd | 2017-11-22 | 1 | -3/+3 |
| | |||||
* | Update news | Jack Lloyd | 2017-11-21 | 1 | -0/+9 |
| | |||||
* | Merge GH #1304 Avoid infinite recursion on nested indefinite length constructs | Jack Lloyd | 2017-11-21 | 2 | -17/+69 |
|\ | |||||
| * | Avoid uncontrolled recusion on indefinite length encodings | Jack Lloyd | 2017-11-20 | 2 | -17/+69 |
| | | | | | | | | | | A sufficiently nested indefinite length construction would cause stack exhaustion and a crash. Found by OSS-Fuzz - issue 4353 | ||||
* | | Allow building asn1print even if PEM is disabled | Jack Lloyd | 2017-11-21 | 2 | -2/+12 |
| | | | | | | | | Just throws if --pem arg is used. | ||||
* | | Link to distro wiki page from index | Jack Lloyd | 2017-11-20 | 1 | -4/+4 |
|/ | | | | [ci skip] | ||||
* | Add keywrap documentation | Jack Lloyd | 2017-11-19 | 3 | -1/+62 |
| | |||||
* | Merge #1301 Add AES key wrap with padding | Jack Lloyd | 2017-11-19 | 11 | -75/+1008 |
|\ | |||||
| * | Add AES key wrap with padding | Jack Lloyd | 2017-11-19 | 11 | -75/+1008 |
|/ | |||||
* | Avoid OCSPing on the Let's Encrypt CA cert | Jack Lloyd | 2017-11-19 | 1 | -6/+2 |
| | | | | | | Their issuing CA seems to have some performance problems with OCSP (https://github.com/letsencrypt/boulder/issues/1929) and it's currently causing timeouts in the tests. | ||||
* | Constify variables in AES-NI code | Jack Lloyd | 2017-11-18 | 1 | -104/+104 |
| | |||||
* | Add a function for checking if poly_double_n supports a particular size | Jack Lloyd | 2017-11-18 | 3 | -6/+10 |
| | |||||
* | Allow parsing and printing certificates with unknown public key algos | Jack Lloyd | 2017-11-18 | 2 | -6/+31 |
| | |||||
* | Add timings for RFC 3394 keywrap | Jack Lloyd | 2017-11-18 | 1 | -0/+40 |
| | |||||
* | Add feature macro for Sqlite3 being enabled in build | Jack Lloyd | 2017-11-18 | 1 | -0/+3 |
| | |||||
* | Merge GH #1298 fix Python invocation for install script | Jack Lloyd | 2017-11-17 | 4 | -2/+5 |
|\ | | | | | | | Closes #1297 | ||||
| * | Prefix execution of install.py with Python binary | Jack Lloyd | 2017-11-16 | 4 | -2/+5 |
|/ | | | | | | | Fixes GH #1297 This is done even on GNU make builds, since the same issue affects MinGW |