aboutsummaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
...
| * | | Add ability to specify iterations when encrypting a private keyJack Lloyd2017-02-267-38/+390
| | | | | | | | | | | | | | | | GH #896
* | | | Document new C APIs added in GH #946Jack Lloyd2017-03-291-5/+186
| | | |
* | | | Merge GH #946 Expose multiple precision integers in C interfaceJack Lloyd2017-03-295-27/+731
|\ \ \ \
| * | | | Expose BigInt API subset to C APIJack Lloyd2017-03-285-27/+731
| | | | | | | | | | | | | | | | | | | | Also adds RSA key constructors using BN
* | | | | Merge GH #947 Add support for getentropy syscallJack Lloyd2017-03-295-1/+79
|\ \ \ \ \
| * | | | | Use getentropy(2) as random source.Alexander Bluhm2017-03-295-1/+79
| | |_|_|/ | |/| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Gather entropy from system call getentropy(2). This is available since in OpenBSD 5.6 and Solaris 11.3. It can provide up to 256 bytes entropy from the kernel without blocking. As a system call it does not need a file descriptor and works in chroot(2) environments without device nodes.
* | | | | Merge GH #945 Remove old timing test suiteJack Lloyd2017-03-2919-610/+5
|\ \ \ \ \ | |/ / / / |/| | | |
| * | | | Remove old timing test suiteJack Lloyd2017-03-2819-610/+5
| |/ / / | | | | | | | | | | | | Replaced by version in cli added in #894
* | | | Update release notesJack Lloyd2017-03-281-0/+15
| | | | | | | | | | | | | | | | [ci skip]
* | | | Note that bcrypt bug was introduced in 1.11.0Jack Lloyd2017-03-281-2/+4
|/ / / | | | | | | | | | | | | | | | | | | | | | | | | Specifically 9644a3ecebb15. So 1.10 was not affected, as it instead throws an exception for passwords longer than 56 chars, which is incompatible with other bcrypt APIs but does not introduce any security problems. [ci skip]
* | | Merge GH #944 Add check_key to C APIJack Lloyd2017-03-284-2/+28
|\ \ \
| * | | Expose PK::check_key functions in C interfaceJack Lloyd2017-03-274-2/+28
| | | |
* | | | Merge GH #942 Avoid passing IP as hostname in tls_client command line utilJack Lloyd2017-03-282-1/+15
|\ \ \ \
| * | | | Add documentation that SNI must be FQDN.Alexander Bluhm2017-03-271-0/+4
| | | | | | | | | | | | | | | | | | | | server_info parameter of TLS::Client must not be an IP address.
| * | | | tls_client must not pass an IP address as server informationAlexander Bluhm2017-03-251-1/+11
| |/ / / | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | RFC 6066 section 3 says: Literal IPv4 and IPv6 addresses are not permitted in "HostName". But if a user passes an IP address to botan tls_client as connect address, this is also used for SNI. Some TLS server like libtls from the LibreSSL project check that a provided hostname is a DNS name. The TLS connection attempt from botan is rejected with a fatal alert.
* | | | Merge GH #938 Fix incorrect bcrypt truncationJack Lloyd2017-03-286-15/+341
|\ \ \ \
| * | | | Avoid long tests for each bcrypt passwordJack Lloyd2017-03-241-2/+22
| | | | |
| * | | | Add relnotes and CVEJack Lloyd2017-03-242-1/+5
| | | | |
| * | | | Fix incorrect password truncation in bcrypt password hashing.Jack Lloyd2017-03-245-14/+316
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | The 56 char bound is bogus; Blowfish itself allows at most 448 bits in the key schedule, but Bcrypt's modification allows up to 72 chars for the password. Bug pointed out by Solar Designer. Also reject work factors 0...3 since all other extant bcrypt implementations require at least work factor 4. Adds more bcrypt tests generated by crypt_bcrypt and OpenBSD's version.
* | | | | Merge GH #936 Fix pkg-config with --build-dirJack Lloyd2017-03-282-17/+14
|\ \ \ \ \ | |_|/ / / |/| | | |
| * | | | Fix build variable botan_pkgconfigSimon Warta2017-03-251-8/+2
| | | | | | | | | | | | | | | | | | | | | | | | | This avoids an extra "hello/" path segment when configured with `./configure.py --with-build-dir hello`
| * | | | Use JSON to store build configSimon Warta2017-03-252-3/+6
| | | | | | | | | | | | | | | | | | | | to improve debuggability
| * | | | configure: write if condition positiveSimon Warta2017-03-251-6/+6
|/ / / /
* / / / shellcheck fix in website.shJack Lloyd2017-03-241-5/+3
|/ / / | | | | | | | | | [ci skip]
* | | Release notes for Botan 2.1Jack Lloyd2017-03-231-0/+50
| | | | | | | | | | | | | | | | | | GH #866 [ci skip]
* | | Merge GH #937 Fix pdf download URL [ci skip]Jack Lloyd2017-03-232-11/+9
|\ \ \
| * | | Use a hardcoded URL for the PDF downloadRené Korthaus2017-03-232-11/+9
|/ / /
* | | Fix some compiler warnings.Jack Lloyd2017-03-223-3/+3
| | |
* | | Remove duplicate include GH #928Jack Lloyd2017-03-221-1/+0
| | |
* | | Merge GH #929 Add ppc64le target [ci skip]Jack Lloyd2017-03-221-0/+22
|\ \ \
| * | | Add ppc64le (POWER8 little endian) as supported cpuGustavo Serra Scalet2017-03-201-0/+22
| | | |
* | | | Merge GH #897 Add generic memory type BER decoderJack Lloyd2017-03-221-0/+32
|\ \ \ \
| * | | | Add generic memory type value BER decoderNuno Goncalves2017-03-071-0/+32
| | | | | | | | | | | | | | | | | | | | Signed-off-by: Nuno Goncalves <[email protected]>
* | | | | Merge GH #923 Build PDF handbookJack Lloyd2017-03-222-1/+17
|\ \ \ \ \
| * | | | | Provide the handbook as a PDF downloadRené Korthaus2017-03-162-1/+17
| | |/ / / | |/| | | | | | | | | | | | | | | | | | | | | | | | | | | | Extends the website script to include a link to the manual as a PDF file for download. Also includes links to search and index only for html, as it does not work for latex.
* | | | | Merge GH #931 Add support for reaching IPv6 hosts in the tls_client CLIJack Lloyd2017-03-221-20/+26
|\ \ \ \ \
| * | | | | Add support for reaching IPv6 hosts in the tls_client CLIRené Korthaus2017-03-211-20/+26
| | | | | |
* | | | | | Merge GH #932 Guard filters tests with all necessary macrosJack Lloyd2017-03-221-12/+32
|\ \ \ \ \ \
| * | | | | | Guard filters tests with all necessary macrosRené Korthaus2017-03-211-12/+32
| |/ / / / / | | | | | | | | | | | | | | | | | | | | | | | | The filters tests were missing many BOTAN_HAS guards for hash functions, MACs and ciphers used.
* | | | | | Merge GH #933 Allow years past 2037 for 64-bit time_tJack Lloyd2017-03-223-5/+10
|\ \ \ \ \ \ | |/ / / / / |/| | | | |
| * | | | | Fix #917: calendar_point::to_std_timepoint() does not support years after 2037Daniel Neus2017-03-213-5/+10
|/ / / / / | | | | | | | | | | | | | | | Only throw on systems where 32 bit std::time_t is used.
* | | | | Fix DragonflyBSD fs accessJack Lloyd2017-03-191-0/+2
| | | | | | | | | | | | | | | | | | | | GH #887
* | | | | Merge GH #915 Fix OS::get_processor_timestamp()Jack Lloyd2017-03-191-1/+2
|\ \ \ \ \
| * | | | | Fix OS::get_processor_timestamp() testsDaniel Neus2017-03-141-1/+2
| | |/ / / | |/| | |
* | | | | Merge GH #906 Refactoring in configure to resolve pylint warningsJack Lloyd2017-03-192-187/+266
|\ \ \ \ \
| * | | | | pylint: reduce lifespan of unchecked LexResult object in ModulePolicyInfoSimon Warta2017-03-081-4/+8
| | | | | |
| * | | | | pylint: reduce lifespan of unchecked LexResult object in OsInfoSimon Warta2017-03-081-21/+43
| | | | | |
| * | | | | pylint: reduce lifespan of unchecked LexResult object in ArchInfoSimon Warta2017-03-081-13/+18
| | | | | |
| * | | | | pylint: reduce lifespan of unchecked LexResult object in CompilerInfoSimon Warta2017-03-081-50/+66
| | | | | |
| * | | | | pylint: use LexResult to store result of lexerSimon Warta2017-03-082-21/+16
| | | | | |
generated by cgit v1.2.3 (git 2.39.1) at 2024-12-03 14:19:43 +0000