aboutsummaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
* Add some KDF2 values from Bouncy CastleJack Lloyd2017-11-021-0/+19
|
* Format tweaksJack Lloyd2017-11-021-2/+2
|
* Avoid using semicolon at and of do { } while(0) macro block.Jack Lloyd2017-11-022-19/+19
| | | | Clearly I have a tic for this.
* Avoid saving a session to SQL database with empty hostnameJack Lloyd2017-11-021-0/+3
| | | | This happens if the hostname is unknown or specified as an IP.
* Minor SIV/CMAC optimizationsJack Lloyd2017-11-022-13/+17
|
* speed: simplify some codeJack Lloyd2017-11-021-167/+60
|
* Merge GH #1282 Use simple non-cryptographic PRNG for testsJack Lloyd2017-10-304-123/+114
|\
| * Use a simple PRNG for the testsJack Lloyd2017-10-294-123/+114
|/ | | | | | | | | | | Not cryptographically secure, but fast! Cuts several seconds off the test suite even on a very fast machine. Probably even more effective for 32-bit systems since the default for HMAC_DRBG is SHA-384. Also it means deterministic tests are used regardless of build configuration which is nice. Improve output for --test-runs which was useful for me when debugging SM2 encryption issue.
* Update newsJack Lloyd2017-10-291-1/+2
|
* Merge GH #1281 CRC24 optimizationsJack Lloyd2017-10-292-67/+213
|\
| * CRC24 performance improvement (32 bits in parallel)Krzysztof Kwiatkowski2017-10-292-67/+213
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Algorithm uses 4 tables of precalculated CRC24 values, thanks to which it can process in parallel 32 bits of data. This tric doubles performance Further improvements are possible. Results - (tested with RNP) processing 1GB armor data ``` OLD: rnp --enarmor=msg /tmp/1gb.rnd --output 4.48s user 0.89s system 98% cpu 5.429 total NEW: rnp --enarmor=msg /tmp/1gb.rnd --output 2.38s user 0.86s system 79% cpu 4.089 total OLD: rnp --dearmor out.xxx --output out.d 5.58s user 0.65s system 98% cpu 6.338 total NEW: rnp --dearmor out.xxx --output out.d 3.28s user 0.84s system 96% cpu 4.275 total ```
* | Another todoJack Lloyd2017-10-291-0/+5
| |
* | Include <memory> in base type headersJack Lloyd2017-10-294-0/+4
|/ | | | Needed for the create calls
* Remove needless virtual on GMAC destructorJack Lloyd2017-10-261-1/+1
|
* Update newsJack Lloyd2017-10-261-0/+4
|
* Merge GH #1279 Verify key is set before processing dataJack Lloyd2017-10-2640-30/+287
|\
| * Add checks that keyed algorithms are actually keyed before useJack Lloyd2017-10-2640-30/+287
|/ | | | | Previously calling update or encrypt without calling set_key first would result in invalid outputs or else crashing.
* Update newsJack Lloyd2017-10-261-1/+1
| | | | [ci skip]
* Add more SipHash testsJack Lloyd2017-10-261-0/+187
| | | | Generated by ref implementation
* Fix build on 32-bitJack Lloyd2017-10-261-1/+1
|
* Avoid invalid iterator woesJack Lloyd2017-10-261-8/+18
|
* Blake2b optimizationsJack Lloyd2017-10-263-133/+94
| | | | | Nothing major but does improve perf for large buffers from 910 MB/s to 970 MB/s on Skylake.
* Merge GH #1275 Avoid needless throw/catch during TLS handshakeJack Lloyd2017-10-261-1/+2
|\
| * Added missing include.Frank Schoenmann2017-10-251-0/+1
| |
| * Perform OIDS lookup before to prevent a guaranteed exception in EC_Group.Frank Schoenmann2017-10-251-1/+1
| |
* | Avoid sending OCSP status request on resumption client helloJack Lloyd2017-10-251-2/+0
| | | | | | | | | | | | | | Causes the connection to break for some servers. Fixes GH #1276 Also avoid setting the same extension twice in the initial connection case. The extensions code dedups it so this wasn't a problem, but confusing.
* | Round block cipher buffer sizes to multiple of block sizeJack Lloyd2017-10-251-2/+12
|/ | | | | | Previously --buf-size was taken as a multiple of the block size, ie --buf-size=5 tested over 5 blocks (rather than 5 bytes, as the output claimed.)
* Merge GH #1274 Improve bswap for ARMv7 and Windows 64-bitJack Lloyd2017-10-252-34/+15
|\
| * Skip ARM32 specific byteswap code, enable MSVC byteswap intrinsicsJack Lloyd2017-10-242-34/+15
|/ | | | | | | | | | While older versions of GCC did very badly with __builtin_bswap on ARM, I checked GCC 4.8 and it behaves correctly, emitting either rev or else the same optimal sequence as was used in the inline asm (depending on if ARMv7 is enabled or not.) Enable MSVC byteswap intrinsics, which (hopefully) work on all platforms. Drop the x86-32 specific asm for byteswap.
* Fix botan-test --helpJack Lloyd2017-10-243-36/+48
| | | | [ci skip]
* Update http:// links in the docsJack Lloyd2017-10-244-12/+12
| | | | [ci skip]
* Convert http:// links to https:// where possibleJack Lloyd2017-10-2417-21/+21
|
* Add header for std::minJack Lloyd2017-10-241-0/+1
|
* Tweak help output a bitJack Lloyd2017-10-244-35/+53
|
* Inline Test::run_test into only callerJack Lloyd2017-10-243-45/+21
|
* Merge GH #1273 Refactor test and cli runner codeJack Lloyd2017-10-2418-973/+1156
|\
| * Avoid using namespace, other cleanupsJack Lloyd2017-10-241-27/+24
| |
| * Refactor option parsing in cli and test codeJack Lloyd2017-10-2418-947/+1133
| | | | | | | | Allows cleaning up header includes, also somewhat smaller binaries.
* | In cipher tests count IV setup as part of the message costJack Lloyd2017-10-241-10/+2
| | | | | | | | Splitting this out gives a misleading perf measurement.
* | Avoid "using namespace" in test codeJack Lloyd2017-10-243-64/+51
|/
* Fix typoJack Lloyd2017-10-231-1/+1
| | | | [ci skip]
* Update newsJack Lloyd2017-10-221-3/+27
|
* Merge GH #1263 Support FFDHE negotiation in TLSJack Lloyd2017-10-2215-36/+371
|\
| * Remove check for negotiated DH group in TLS clientRené Korthaus2017-10-201-29/+0
| | | | | | | | | | | | | | The server may not support the supported groups extension and choose an arbitrary group. RFC 7919 permits clients to continue if the group is acceptable under local policy, which we do now.
| * Fall back to default group if client does not send any DH groupsRené Korthaus2017-10-202-2/+19
| |
| * Add allowed values for allowed groupsRené Korthaus2017-10-181-3/+13
| |
| * Add supported groups TLS extension (RFC 7919)René Korthaus2017-10-1716-35/+372
| |
* | Merge GH #1271 Deprecate some exception typesJack Lloyd2017-10-221-3/+3
|\ \
| * | deprecate exceptionsDaniel Neus2017-10-211-3/+3
| | |
* | | Merge GH #1270 Support verification of PSS X.509 objectsJack Lloyd2017-10-22239-11/+9131
|\ \ \ | |/ / |/| |
generated by cgit v1.2.3 (git 2.39.1) at 2024-12-28 16:25:03 +0000