Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Add armv7a as known alias for 32-bit ARM (GH #2540) | Jack Lloyd | 2020-12-11 | 1 | -0/+1 |
| | |||||
* | Merge GH #2539 Build unversioned shared objects on Android | Jack Lloyd | 2020-12-10 | 4 | -6/+13 |
|\ | |||||
| * | Fix building Android shared object | Jack Lloyd | 2020-12-09 | 4 | -6/+13 |
| | | | | | | | | Fixes #2502 | ||||
* | | Merge GH #2538 Add BoringSSL SSLv3 tests | Jack Lloyd | 2020-12-10 | 3 | -9/+6 |
|\ \ | |||||
| * | | Enable BoringSSL SSLv3 tests | Jack Lloyd | 2020-12-09 | 3 | -9/+6 |
| |/ | | | | | | | | | | | Previously these tested SSLv3 functionality but now BoringSSL has also removed SSLv3 so the remaining test is just to confirm that SSLv3 can't be negotiated. | ||||
* / | TLS SEED support is gone now [ci skip] | Jack Lloyd | 2020-12-09 | 1 | -2/+2 |
|/ | |||||
* | Merge GH #2536 Update the BoringSSL test suite | Jack Lloyd | 2020-12-05 | 12 | -42/+98 |
|\ | |||||
| * | Update the BoringSSL runner and update the shim | Jack Lloyd | 2020-12-05 | 12 | -42/+98 |
|/ | | | | | | | Notable changes are checking if a message is sent past a flight boundary, and some new policy logic to distinguish between signature algorithms that we will accept and signature algorithms which we are willing to use ourselves. | ||||
* | Merge GH #2535 SHA-2 SHA-NI/Aarch64 cleanups | Jack Lloyd | 2020-12-05 | 2 | -199/+187 |
|\ | |||||
| * | Cleanups in the Aarch64 SHA-2 code | Jack Lloyd | 2020-12-05 | 1 | -101/+88 |
| | | |||||
| * | Clean up the SHA-2 x86 SHA-NI implementation | Jack Lloyd | 2020-12-05 | 1 | -98/+99 |
|/ | |||||
* | Fix #2525 for Pwdhash interface | Jack Lloyd | 2020-12-05 | 1 | -2/+2 |
| | |||||
* | Update news | Jack Lloyd | 2020-12-05 | 1 | -0/+3 |
| | |||||
* | Merge GH #2534 Use smaller tables in Camellia, SEED, ARIA and DES | Jack Lloyd | 2020-12-05 | 8 | -1568/+668 |
|\ | |||||
| * | Remove cast_sboxes.h | Jack Lloyd | 2020-12-04 | 2 | -199/+181 |
| | | | | | | | | | | This was only in a header as these Sboxes were shared with CAST-256, which has been removed. | ||||
| * | Combine the DES tables into one | Jack Lloyd | 2020-12-04 | 1 | -30/+17 |
| | | | | | | | | Saves several cycles per byte | ||||
| * | Simplify Camellia key schedule a bit | Jack Lloyd | 2020-12-04 | 1 | -25/+29 |
| | | |||||
| * | Use smaller tables for DES | Jack Lloyd | 2020-12-04 | 3 | -389/+121 |
| | | | | | | | | Saves 6K, minimal performance impact | ||||
| * | Use smaller tables in Camellia, ARIA, and SEED | Jack Lloyd | 2020-12-04 | 3 | -955/+350 |
|/ | | | | | | | | This saves 15K in Camellia, 3K in ARIA and 3.5K in SEED, at the cost of somewhat slower implementation. ARIA and SEED see the worst hit because they never made any attempt at lessening impact of a cache based side channel. Camellia did, and the new implementation is much faster than the previous F_SLOW so perf impact there is minimal. | ||||
* | Merge GH #2532 Add arm32 and s390x builds back to Travis CI | Jack Lloyd | 2020-12-04 | 4 | -10/+22 |
|\ | |||||
| * | Update docs | Jack Lloyd | 2020-12-02 | 1 | -1/+9 |
| | | |||||
| * | Add back arm32 and s390x builds to Travis | Jack Lloyd | 2020-12-02 | 3 | -9/+13 |
| | | |||||
* | | Merge GH #2531 Improve installation checks | Jack Lloyd | 2020-12-04 | 5 | -60/+101 |
|\ \ | |/ |/| | |||||
| * | Improve checks and avoid hard-coding the major version number | Jack Lloyd | 2020-12-03 | 2 | -4/+16 |
| | | |||||
| * | Improve CI tests of the install target | Jack Lloyd | 2020-12-02 | 5 | -60/+89 |
|/ | | | | | | | | | | Verify we install exactly the includes we expect Verify we install at least one library that looks like our name. (This check could be tightened) Change the install target to take all values via the build_config.json instead of reflecting them through the makefile. | ||||
* | Merge GH #2350 Add a test that install target does something | Jack Lloyd | 2020-12-01 | 4 | -8/+66 |
|\ | |||||
| * | the linter is quite right | Hannes Rantzsch | 2020-12-01 | 1 | -2/+2 |
| | | |||||
| * | CI: validate installation after running make install | Hannes Rantzsch | 2020-12-01 | 4 | -8/+66 |
|/ | | | | See https://github.com/randombit/botan/pull/2526 for details | ||||
* | Merge GH #2529 Export list of includes into build_config.json | Jack Lloyd | 2020-12-01 | 2 | -13/+15 |
|\ | |||||
| * | Export the list of headers into build_config.json | Jack Lloyd | 2020-12-01 | 2 | -13/+15 |
| | | | | | | | | Then the install target can use that instead of listdir | ||||
* | | Remove ULL suffixes | Jack Lloyd | 2020-12-01 | 4 | -803/+803 |
|/ | | | | Not required anymore | ||||
* | Merge GH #2527 Add some more BLAKE2b MAC test vectors | Jack Lloyd | 2020-12-01 | 1 | -0/+39 |
|\ | |||||
| * | Some more blake2b mac test vectors from Linux kernel. | Tom | 2020-11-30 | 1 | -0/+39 |
| | | | | | | | | https://raw.githubusercontent.com/torvalds/linux/master/crypto/testmgr.h | ||||
* | | Switch MAC vs HMAC preference in KDF and PBKDF2 | Jack Lloyd | 2020-12-01 | 2 | -4/+4 |
| | | | | | | | | | | | | | | | | Adding BLAKE2b as a MAC caused "PBKDF2(BLAKE2b)" to become interpreted as PBKDF2 with keyed BLAKE, instead of the previous interpretation of PBKDF2 with BLAKE2/HMAC. (And similarly for HKDF, etc) Fixes #2525 | ||||
* | | Fix syntax error in KDF docs | Jack Lloyd | 2020-12-01 | 1 | -2/+2 |
|/ | | | | Fixes #2528 | ||||
* | Do not accept EC signatures when the public point is invalid | Jack Lloyd | 2020-11-30 | 4 | -2/+22 |
| | | | | | | | | | | Force g*x+p*y to the point at infinity if g or p is not a valid point. This does not seem to be a security issue since if you can control the public point you can just use a regular key and sign whatever you like. Still, it's odd to accept anything here, and easy to prevent it. Found by CryptoFuzz reported offline by @guidovranken | ||||
* | Add missing check for zero point during ECKCDSA verification | Jack Lloyd | 2020-11-30 | 1 | -0/+2 |
| | |||||
* | Make this comment easier to read | Jack Lloyd | 2020-11-30 | 1 | -1/+2 |
| | |||||
* | Break complicated expression down into several statements | Jack Lloyd | 2020-11-30 | 1 | -2/+6 |
| | |||||
* | Add a couple more BLAKE2b MAC tests (from OpenSSL) | Jack Lloyd | 2020-11-29 | 1 | -0/+11 |
| | |||||
* | Reformat | Jack Lloyd | 2020-11-29 | 1 | -37/+38 |
| | |||||
* | Update news | Jack Lloyd | 2020-11-29 | 1 | -0/+2 |
| | |||||
* | Merge GH #2524 Add support for keyed/MAC Blake2b | Jack Lloyd | 2020-11-29 | 7 | -5/+1225 |
|\ | |||||
| * | Add support for keyed Blake2b and also MAC via Blake2b. | Tom | 2020-11-29 | 7 | -5/+1225 |
| | | |||||
* | | Tighten up the check on feature macro datestamps | Jack Lloyd | 2020-11-29 | 1 | -1/+8 |
|/ | | | | Should be YYYYMMDD make some attempt to check this. | ||||
* | Update deprecated | Jack Lloyd | 2020-11-28 | 1 | -1/+1 |
| | |||||
* | Merge GH #2523 Remove KDF truncation behavior | Jack Lloyd | 2020-11-28 | 21 | -172/+236 |
|\ | |||||
| * | Remove the KDF truncation behavior | Jack Lloyd | 2020-11-28 | 21 | -172/+236 |
| | | | | | | | | Closes GH #2347 | ||||
* | | Merge GH #2522 Avoid duplicated hash_for_emsa call in DSA | Jack Lloyd | 2020-11-28 | 2 | -10/+2 |
|\ \ | |||||
| * | | Avoid a duplicated call of hash_for_emsa | Jack Lloyd | 2020-11-28 | 2 | -10/+2 |
| | | | | | | | | | | | | | | | We already invoke this in the PK_Signer superclass constructor so no need to repeat the work. |