aboutsummaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
* Avoid referencing &vec[vec.size()] as this triggers iterator debugginglloyd2015-01-074-6/+6
| | | | asserts in MSVC 2013. Github pull 36 from Simon Warta.
* Support setting the number of pad bytes in a heartbeat message. Uselloyd2015-01-075-70/+86
| | | | | random instead of all-zero padding. Check on sanity of received pads to the extent possible. Bugzilla 269.
* Use RtlSecureZeroMemory or memset_s if availablelloyd2015-01-073-0/+15
|
* Add todo.rst derived from enhancement tickets in bugzillalloyd2015-01-071-0/+69
|
* The pkgconfig file should be installed relative to the library dirlloyd2015-01-072-13/+5
| | | | | | rather than the base destdir. Pointed out by hexchain in github pull 38. Version the docdir with the full version incl patch.
* Netsieben.com appears to be gone but there is a fork on githublloyd2015-01-061-1/+1
|
* Fix install script under Python3lloyd2015-01-064-15/+35
|
* Fix doc bugslloyd2015-01-052-2/+2
|
* Add Brainpool and secp160r1 ECDSA testslloyd2015-01-052-1/+153
|
* Update relnoteslloyd2015-01-041-0/+8
|
* If no certificate stores at all are available skip OCSP checkslloyd2015-01-041-5/+7
|
* Remove config used for testing DTLS-SRTPlloyd2015-01-041-3/+2
|
* Add DTLS-SRTP key establishment from RFC 5764 (required for WebRTC).lloyd2015-01-0412-138/+298
| | | | | | | | | | | | | | Github issue 27. Refactor server hello handling to make it easier to handle other extensions. The manual specified that 224 bit NIST primes were disabled by default for TLS but they were not. Additionaly disable the 256k1 curve and reorder the remaining curves by size. Rewrite the max fragment length extension code to roughly what an ideal compiler would have turned the original code into, using a switch instead of a lookup into a small constant std::map.
* Make the help output slightly more helpfullloyd2015-01-041-1/+1
|
* Put the includes in the right (versioned) subdir on installlloyd2015-01-041-12/+14
|
* Tick version to 1.11.13lloyd2015-01-034-2/+7
|
* Update for 1.11.12 release1.11.12lloyd2015-01-024-6/+10
|
* Point to github on index pagelloyd2015-01-021-3/+6
|
* Output tweakslloyd2015-01-022-6/+9
|
* Add ChaCha20Poly1305 TLS ciphersuites compatible with Google's implementationlloyd2014-12-3110-125/+149
|
* Add helper and update commentlloyd2014-12-311-2/+8
|
* Support the older ChaCha20Poly1305 AEAD from draft-agl-tls-chacha20poly1305-04lloyd2014-12-313-10/+42
| | | | | which we distinguish by the nonce size (always 64 bits in this format, always 96 bits in the CFRG document).
* Fix one past the end write in Poly1305 finishlloyd2014-12-311-1/+1
|
* More info on AEAD decryption handlinglloyd2014-12-311-0/+10
|
* Decruftlloyd2014-12-312-15/+1
|
* Add AEAD based on ChaCha20 and Poly1305 defined in ↵lloyd2014-12-296-2/+262
| | | | draft-irtf-cfrg-chacha20-poly1305-03
* Handle malformed info.txt filelloyd2014-12-291-0/+2
|
* Add Poly1305, based on poly1305-donna by Andrew Moon.lloyd2014-12-2912-12/+626
|
* Support 96 bit nonces in ChaCha20 as specified in ↵lloyd2014-12-293-3/+21
| | | | draft-irtf-cfrg-chacha20-poly1305-03
* All tests now share an RNG. Uses system RNG if availablelloyd2014-12-2823-53/+65
|
* Update algoslloyd2014-12-271-1/+2
|
* Provide a test reportlloyd2014-12-271-0/+2
|
* When encrypting McEliece or Curve25519 keys, default to GCM instead of CBC.lloyd2014-12-274-14/+31
| | | | Add OIDS for OCB mode with various ciphers.
* Add Curve25519 based on curve25519-donna by Adam Langley.lloyd2014-12-2716-0/+1024
| | | | | | This uses only the c64 version from curve25519-donna; on systems that don't have a native uint128_t type, a donna128 type stands in for just enough 128-bit operations to satisfy donna.cpp
* Mention github issueslloyd2014-12-271-4/+5
|
* Fix header guards for amalgamation (github issue 35)lloyd2014-12-224-31/+31
|
* Printing too earlylloyd2014-12-221-4/+4
|
* Update download link and tick version number.lloyd2014-12-224-3/+7
|
* Update for 1.11.11 release1.11.11lloyd2014-12-221-1/+4
|
* Fix a couple things pointed out by VC++ warnings.lloyd2014-12-222-8/+3
|
* Remove obsolete examplelloyd2014-12-221-103/+0
|
* Fix System_RNG for Windows, fix nmake clean targetlloyd2014-12-222-3/+3
|
* Enable system_rng on Windows and MinGW (untested)lloyd2014-12-216-5/+27
|
* Stack protector flags are required also at link time, at least on MinGWlloyd2014-12-211-3/+3
| | | | Github issue 34
* Always need boost_system in cmdline due to asiolloyd2014-12-201-1/+1
|
* Update TLS doclloyd2014-12-201-11/+26
|
* Add abstract database interface so applications can easily store infolloyd2014-12-2013-311/+455
| | | | | | in places other than sqlite3, though sqlite3 remains the only implementation. The interface is currently limited to precisely the functionality the TLS session manager needs and will likely expand.
* Correct commentlloyd2014-12-181-2/+2
|
* Add MinGW support for the CryptoAPI RNG. Also disable the dependencieslloyd2014-12-174-10/+3
| | | | | | | | in auto_rng for a working entropy source as in situations where it doesn't work almost none of the library builds. Disable boost by default from the library. Github issue 34. Unrelated - remove long dead Tru64 as a target.
* New download directory structure.lloyd2014-12-172-6/+7
| | | | Point users at github issues instead of bugzilla.