Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Test single amalgamation file | Jack Lloyd | 2018-10-05 | 1 | -0/+3 |
| | | | | Would have detected #1700 before release. | ||||
* | Update news | Jack Lloyd | 2018-10-05 | 1 | -0/+6 |
| | |||||
* | Fix single amalgamation file with AVX2 | Jack Lloyd | 2018-10-05 | 1 | -0/+2 |
| | | | | Closes #1700 | ||||
* | Add explicit AVX2 function annotations | Jack Lloyd | 2018-10-05 | 3 | -2/+30 |
| | | | | Needed for single amalagamation file with AVX2 enabled. | ||||
* | Add more SM2 signature tests | Jack Lloyd | 2018-10-05 | 1 | -0/+56 |
| | | | | | Using the standard SM2 and P-256 curves, instead of the SM2 test curve, for both SM3 and SHA-256 hashes. All values generated with GmSSL | ||||
* | Merge GH #1698 Resolve leak during ECDSA verify with old OpenSSL | Jack Lloyd | 2018-10-04 | 2 | -6/+24 |
|\ | |||||
| * | Resolve a leak in OpenSSL ECDSA verification for old OpenSSL | Jack Lloyd | 2018-10-03 | 2 | -6/+24 |
| | | | | | | | | | | | | The code was using the 1.0 API incorrectly and causing a leak. https://github.com/riboseinc/rnp/issues/757 | ||||
* | | Remove Travis notification emails [ci skip] | Jack Lloyd | 2018-10-03 | 1 | -3/+0 |
|/ | |||||
* | Bump version to 2.9 | Jack Lloyd | 2018-10-01 | 2 | -1/+6 |
| | |||||
* | Merge GH #1697 Remove Visual C++ 2013 support | Jack Lloyd | 2018-10-01 | 58 | -255/+156 |
|\ | |||||
| * | Make a few simple functions constexpr | Jack Lloyd | 2018-10-01 | 6 | -32/+29 |
| | | | | | | | | This is primarily just to verify that C++11 constexpr works. | ||||
| * | Remove support for Visual C++ 2013 | Jack Lloyd | 2018-10-01 | 53 | -224/+128 |
|/ | | | | Closes GH #1557 | ||||
* | Update for 2.8.0 release2.8.0 | Jack Lloyd | 2018-10-01 | 2 | -4/+4 |
| | |||||
* | Fix more MSVC warnings | Jack Lloyd | 2018-10-01 | 4 | -31/+56 |
| | |||||
* | With MSVC, use /arch:AVX for AVX2 enabled code | Jack Lloyd | 2018-10-01 | 1 | -1/+1 |
| | | | | | It seems otherwise VC generates a mix of SSE and AVX code resulting in lots of transition penalties. | ||||
* | Fix [ci skip] | Jack Lloyd | 2018-10-01 | 1 | -1/+1 |
| | |||||
* | Handle PPC crypto bit in tests [ci skip] | Jack Lloyd | 2018-10-01 | 2 | -1/+3 |
| | |||||
* | Fix some warnings in ARM specific code | Jack Lloyd | 2018-10-01 | 2 | -28/+34 |
| | |||||
* | Fix more MSVC warnings | Jack Lloyd | 2018-10-01 | 16 | -38/+61 |
| | |||||
* | Avoid a MSVC 2015 warning | Jack Lloyd | 2018-10-01 | 3 | -3/+3 |
| | |||||
* | Fix some MSVC warnings | Jack Lloyd | 2018-09-30 | 8 | -18/+18 |
| | |||||
* | Merge GH #1696 Fix bugs in UUID class | Jack Lloyd | 2018-09-30 | 6 | -106/+230 |
|\ | |||||
| * | Move UUID to utils, test it, and fix bugs. | Jack Lloyd | 2018-09-30 | 6 | -106/+230 |
| | | | | | | | | Fixes #1695 | ||||
* | | Add some tests of the versioning functions | Jack Lloyd | 2018-09-30 | 1 | -0/+46 |
|/ | |||||
* | Merge GH #1693 Refactor mode tests, fix CBC bugs | Jack Lloyd | 2018-09-30 | 13 | -125/+837 |
|\ | |||||
| * | Add more tests for CBC, CFB, OFB, CTR and GCM | Jack Lloyd | 2018-09-29 | 6 | -2/+635 |
| | | | | | | | | From NIST CAVP, OpenSSL test data, and elsewhere | ||||
| * | Refactor mode tests, and correct bugs found | Jack Lloyd | 2018-09-29 | 9 | -127/+206 |
|/ | | | | | | | | | | | | | | | | | | | Several problems in CBC found by adding tests - If you set a key, then set a nonce, then set a new key, you could encrypt without setting a new nonce. - It was possible to call CBC finish without setting a nonce, which would crash. - If you had an CBC decryption object, set a key, set a nonce, then reset message state, it should throw because no nonce is set. Instead it would carry on using an all-zero nonce. Disable CommonCrypto with PKCS7 padding as it seems to have some problem that I cannot figure out from the build logs. This work sponsored by Ribose Inc | ||||
* | Avoid null pointer write in FFI | Jack Lloyd | 2018-09-28 | 2 | -1/+7 |
| | | | | | | | | If a function returning variable length output was called with a null output buffer but a non-zero output buffer length, FFI layer would call memset(nullptr, 0, buffer_len) and crash. Caught by Coverity. | ||||
* | Use correct array length in Serpent AVX2 | Jack Lloyd | 2018-09-28 | 1 | -2/+2 |
| | | | | Not an actual problem, but flagged by Coverity | ||||
* | Minor update to goals text | Jack Lloyd | 2018-09-28 | 1 | -21/+21 |
| | |||||
* | Spell check the documentation | Jack Lloyd | 2018-09-28 | 37 | -104/+104 |
| | |||||
* | Skip using mmap allocation if mlock is not available. | Jack Lloyd | 2018-09-27 | 1 | -8/+4 |
| | | | | | Previously this would just mmap but pointlessly as the memory was not locked; might as well use the standard heap in that case. | ||||
* | Add OS::running_in_privileged_state | Jack Lloyd | 2018-09-27 | 4 | -17/+41 |
| | | | | | | | | Avoid any getenv toggles or reading /proc if we are setuid/setgid. It is possible there is or will someday be some file in /proc that is world-readable, but if read by a privileged user causes some side effect. | ||||
* | fileno is a macro on OpenBSD | Jack Lloyd | 2018-09-27 | 1 | -3/+4 |
| | |||||
* | Merge GH #1692 Fix test failure when http_util disabled | Jack Lloyd | 2018-09-26 | 1 | -1/+1 |
|\ | |||||
| * | Fix x509_path_x509test failing when http_util module was not enabled | Jose Pereira | 2018-09-25 | 1 | -1/+1 |
| | | |||||
* | | Small improvements to FFI docs | Jack Lloyd | 2018-09-25 | 1 | -3/+28 |
| | | |||||
* | | No need for an RNG object here [ci skip] | Jack Lloyd | 2018-09-25 | 1 | -2/+1 |
| | | |||||
* | | Change Clang fuzzing flags to avoid deprecated options. [ci skip] | Jack Lloyd | 2018-09-24 | 1 | -1/+1 |
| | | |||||
* | | Avoid some gcc warnings in mode padding fuzzer [ci skip] | Jack Lloyd | 2018-09-23 | 1 | -1/+5 |
| | | |||||
* | | Fix a crash in the mode padding fuzzer | Jack Lloyd | 2018-09-23 | 2 | -0/+5 |
| | | | | | | | | | | | | The reference version of 1and0 padding would crash on an all-zero input. OSS-Fuzz 10628 | ||||
* | | Update news | Jack Lloyd | 2018-09-22 | 1 | -0/+3 |
| | | |||||
* | | Add a fuzzer for OAEP unpadding | Jack Lloyd | 2018-09-22 | 3 | -10/+135 |
| | | | | | | | | This tests the delim scanning section which must be const time. | ||||
* | | Merge GH #1690 Fix bugs in CBC unpadding | Jack Lloyd | 2018-09-22 | 5 | -59/+312 |
|\ \ | |||||
| * | | Add fuzzer for mode unpadding, and fix bugs found thereby | Jack Lloyd | 2018-09-22 | 5 | -59/+312 |
|/ / | | | | | | | | | | | | | Both PKCS7 and X9.23 padding modes did not examine the first byte of the purported padding if the padding took an entire block. So for example for a 64-bit cipher, PKCS7 would accept XX08080808080808 as a valid padding for any byte value. | ||||
* | | Add a todo | Jack Lloyd | 2018-09-20 | 1 | -0/+1 |
| | | |||||
* | | Optimization for Poly1305 | Jack Lloyd | 2018-09-20 | 2 | -18/+25 |
| | | | | | | | | | | Rearranging this code seems to let both GCC and Clang do a little better on the core loop, 4-7% depending on buffer size on my i7-6700k | ||||
* | | Fix readme formatting [ci skip] | Jack Lloyd | 2018-09-20 | 1 | -1/+1 |
| | | |||||
* | | Add support for using Linux getrandom syscall | Jack Lloyd | 2018-09-20 | 4 | -1/+46 |
| | | | | | | | | Disabled by default as it requires a relatively recent kernel and glibc. | ||||
* | | Link to handbook in readme | Jack Lloyd | 2018-09-20 | 1 | -4/+5 |
| | |