Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Fix pylint error | Jack Lloyd | 2017-12-21 | 1 | -0/+2 |
| | |||||
* | Update Windows build instructions | Jack Lloyd | 2017-12-21 | 2 | -9/+9 |
| | | | | Remove obsolete note about Windows 95 and NT4 support | ||||
* | Now dist script can run under python2 or python3 | Jack Lloyd | 2017-12-21 | 1 | -1/+1 |
| | |||||
* | Run dist.py script through pylint | Jack Lloyd | 2017-12-21 | 2 | -35/+32 |
| | | | | Python 2.7 has the io module so no need for StringIO | ||||
* | Binary file IO for the UTF-8 gods | Jack Lloyd | 2017-12-21 | 1 | -2/+2 |
| | | | | | When reading a binary file, unless 'b' is specified Python3 tries parsing the file as UTF-8 and gets cranky when it fails. | ||||
* | Remove use of Sphinx extlinks extension [ci skip] | Jack Lloyd | 2017-12-20 | 3 | -26/+6 |
| | |||||
* | Avoid test failures when PKCSv1.5 signatures are disabled in build | Jack Lloyd | 2017-12-20 | 4 | -10/+17 |
| | |||||
* | Update news | Jack Lloyd | 2017-12-20 | 1 | -3/+19 |
| | |||||
* | Fix some shadow and unused parameter warnings | Jack Lloyd | 2017-12-20 | 4 | -9/+11 |
| | |||||
* | Merge GH #1363 Fix various X509 path building and validation bugs | Jack Lloyd | 2017-12-20 | 445 | -228/+9715 |
|\ | |||||
| * | Fix various x509 path validation bugs + path building with ambiguous DNs | Fabian Weissberg | 2017-12-20 | 445 | -228/+9715 |
| | | | | | | | | Signed-off-by: Fabian Weissberg <[email protected]> | ||||
* | | Note deprecation of X509_Certificate info access via subject_info | Jack Lloyd | 2017-12-20 | 1 | -0/+5 |
| | | |||||
* | | Merge GH #1367 Correct AlgorithmParameters on ECC X.509 objects | Jack Lloyd | 2017-12-20 | 1 | -2/+5 |
|\ \ | |/ |/| | |||||
| * | Don't encode AlgorithmIdentifier parameters for ECDSA in X.509 objects | René Korthaus | 2017-12-20 | 1 | -2/+5 |
|/ | | | | | RFC 5758 and 4491 mandate that for DSA, ECDSA and GOST, the algorithm identifier "encoding MUST omit the parameters field". | ||||
* | Correct expected PSS error | Jack Lloyd | 2017-12-19 | 1 | -2/+2 |
| | |||||
* | Merge GH #1365 Always set domain encoding correctly when loading an ECC key | Jack Lloyd | 2017-12-19 | 2 | -0/+7 |
|\ | |||||
| * | Always set domain encoding correctly when loading an ECC key | René Korthaus | 2017-12-19 | 2 | -1/+7 |
| | | | | | | | | | | | | | | | | When loading an ECC key from file, the domain encoding was always set to explicit instead of depending on the encoded key file read. This resulted in different encodings and therefore different fingerprints of the same key when encoding the same key twice (once after generation, once after re-reading it). | ||||
* | | Merge GH #1364 Expose a function returning status when verifying X509 objects | Jack Lloyd | 2017-12-19 | 6 | -59/+99 |
|\ \ | |||||
| * | | Expose a function returning a status code for verifing X509 objects | Jack Lloyd | 2017-12-19 | 6 | -59/+99 |
| |/ | | | | | | | | | | | | | | | | | The versions returning bool just tell us if it could be verified but don't indicate the problem, everything got binned into "signature error" during verification. Now in the event that the params were invalid, or the signature algorithm couldn't be found, report that as a specific error. See GH #1362 | ||||
* | | Merge GH #1361 Cleanups in ASN.1 code | Jack Lloyd | 2017-12-19 | 23 | -186/+170 |
|\ \ | |/ |/| | |||||
| * | Add accessors to ASN1_Attribute and AlgorithmIdentifier | Jack Lloyd | 2017-12-19 | 18 | -72/+97 |
| | | |||||
| * | Fix some other copy+paste code in BER_Decoder | Jack Lloyd | 2017-12-19 | 4 | -77/+58 |
| | | |||||
| * | Simplify overloads in DER_Encoder | Jack Lloyd | 2017-12-19 | 2 | -37/+15 |
| | | |||||
* | | Enable processor specific code in module policies [ci skip] | Jack Lloyd | 2017-12-19 | 3 | -0/+15 |
|/ | | | | These were added more recently and weren't enabled in the policy files. | ||||
* | Avoid tying encoding of CRLs to the current system clock | Jack Lloyd | 2017-12-18 | 3 | -20/+68 |
| | |||||
* | Update news [ci skip] | Jack Lloyd | 2017-12-18 | 1 | -4/+23 |
| | |||||
* | Add a simple OpenSSL vs Botan benchmark script | Jack Lloyd | 2017-12-18 | 2 | -0/+217 |
| | |||||
* | Accept ChaCha20 as a name | Jack Lloyd | 2017-12-18 | 1 | -0/+6 |
| | |||||
* | Correct JSON output (trailing comma) and add byte-per-second value | Jack Lloyd | 2017-12-18 | 1 | -3/+10 |
| | |||||
* | Merge GH #1360 Add timeouts to HTTP socket operations | Jack Lloyd | 2017-12-18 | 14 | -351/+473 |
|\ | | | | | | | Fixes #1326 | ||||
| * | Windows has a different return type | Jack Lloyd | 2017-12-17 | 1 | -2/+4 |
| | | |||||
| * | Merge BSD and Winsock variations together | Jack Lloyd | 2017-12-17 | 1 | -105/+61 |
| | | |||||
| * | Try to debug Boost build failure - amalgamation problem? | Jack Lloyd | 2017-12-17 | 1 | -1/+1 |
| | | |||||
| * | Missing include | Jack Lloyd | 2017-12-17 | 1 | -0/+1 |
| | | |||||
| * | Expose timeouts on the freestanding OCSP request utils | Jack Lloyd | 2017-12-17 | 3 | -8/+27 |
| | | |||||
| * | Add an overall timeout to the HTTP request | Jack Lloyd | 2017-12-17 | 1 | -0/+8 |
| | | |||||
| * | Use HTTP level timeouts instead of polling on the std::future | Jack Lloyd | 2017-12-17 | 2 | -25/+8 |
| | | |||||
| * | Expose timeouts to the HTTP API | Jack Lloyd | 2017-12-17 | 3 | -13/+32 |
| | | |||||
| * | Handle timeouts in BSD sockets | Jack Lloyd | 2017-12-17 | 1 | -5/+61 |
| | | |||||
| * | Add timeouts to Asio sockets | Jack Lloyd | 2017-12-17 | 6 | -39/+117 |
|/ | |||||
* | Fix MSVC version detection | Jack Lloyd | 2017-12-17 | 1 | -1/+2 |
| | | | | | It has two flags for the preprocessor, and we were passing them as a single argument which made cl mad. | ||||
* | Pylint | Jack Lloyd | 2017-12-17 | 2 | -0/+3 |
| | |||||
* | More fixes with recent pylint | Jack Lloyd | 2017-12-17 | 1 | -1/+2 |
| | |||||
* | Latest pylint doesn't like these asserts | Jack Lloyd | 2017-12-17 | 1 | -2/+2 |
| | |||||
* | Mention enabling features in the distributor notes | Jack Lloyd | 2017-12-16 | 1 | -1/+8 |
| | |||||
* | Clean up XMSS self-benchmark | Jack Lloyd | 2017-12-16 | 1 | -6/+4 |
| | | | | Clang complained that the lambda was capturing unnecessary variables. | ||||
* | Avoid using @deprecated annotation here | Jack Lloyd | 2017-12-16 | 1 | -2/+4 |
| | | | | | | Clang's documentation checker complains since it's not actually annotated as deprecated. Change comment to just indicate that it is not a public API function and will be removed in the future. | ||||
* | Fix a bug in PEM decoding | Jack Lloyd | 2017-12-16 | 3 | -31/+79 |
| | | | | | | | | If the label param was set to a non-empty string, the decoding would treat it as part of the label and then end up throwing a decoding error. The key fix here is adding the clear() call in decode. Private bug report by email. Add some basic tests for the PEM decoder. | ||||
* | Merge GH #1357 Add ability to fingerprint public keys | Jack Lloyd | 2017-12-15 | 5 | -38/+79 |
|\ | |||||
| * | Add ability to fingerprint public keys | Jack Lloyd | 2017-12-14 | 5 | -38/+79 |
| | |