| Commit message (Collapse) | Author | Age | Files | Lines |
| |
|
|\
| |
| |
| |
| |
| | |
cfb19182987fc95b2a8885584a38edb10b4709b3)
to branch 'net.randombit.botan.c++0x' (head 1570877c463fed4b632bc49a5b5ee27c57de2cb5)
|
| |
| |
| |
| | |
included. Threads are a smarter approach, in retrospect.
|
|\|
| |
| |
| |
| |
| | |
ac888e57b614c623590d79ab615353ad7c76ef68)
to branch 'net.randombit.botan.c++0x' (head 9bf78ed7e2521a328f6db7acbc1cd81b07718230)
|
| |
| |
| |
| | |
onto other CCNs with valid checksums.
|
| |\
| | |
| | |
| | |
| | |
| | | |
586495311cff277e7a24b4116c987b79036d94e6)
to branch 'net.randombit.botan.fpe' (head c6e8324b12e509ac1303078d5e716f08c53acff5)
|
| | |
| | |
| | |
| | |
| | |
| | | |
Format-Preserving Encryption (http://eprint.iacr.org/2009/251). This
doesn't implement the rank functions which are necessary for the actual
format-preserving part, though that would be nice to add to the example.
|
| | | |
|
| | |
| | |
| | |
| | | |
which is currently just a stub returning false.
|
| | |
| | |
| | |
| | | |
testing with Intel's emulator shows all green.
|
| |/
| |
| |
| |
| |
| |
| | |
the user to specify the hash function to use, instead of always using SHA-1.
This was a sensible default a few years ago, when there wasn't a ~2^60 attack
on SHA-1 and support for SHA-2 was pretty much nil, but using something else
makes a lot more sense these days.
|
|\ \
| |/
|/|
| |
| |
| | |
2773c2310e8c0a51975987a2dd6c5824c8d43882)
to branch 'net.randombit.botan.c++0x' (head f13cf5d7e89706c882604299b508f356c20aae3a)
|
| |\
| | |
| | |
| | |
| | |
| | | |
139d6957d20f0b1202e0eacc63cb011588faffde)
to branch 'net.randombit.botan.c++0x' (head c16676fa6c393bc3f46a044755ce525a013380a6)
|
| | |\
| | | |
| | | |
| | | |
| | | |
| | | | |
8a5eb02c2e451fc983f234f7ba2f023f5a7d294f)
to branch 'net.randombit.botan.c++0x' (head e18cd411269e15638df3298d6a4165446e7ca529)
|
| | | |\
| | | | |
| | | | |
| | | | |
| | | | |
| | | | | |
b9ca6596a127964cb9795d22bc2a5642fab5de84)
to branch 'net.randombit.botan.c++0x' (head 3c769a81bd357a14f8aca4502b67e8465cee0947)
|
| | | | |
| | | | |
| | | | |
| | | | | |
timers.
|
| | | | |
| | | | |
| | | | |
| | | | |
| | | | | |
Relies on mfspr emulation/trapping by the kernel, which works on (at least)
Linux and NetBSD.
|
|/ / / / |
|
|/ / / |
|
| |/
|/| |
|
|/ |
|
| |
|
| |
|
| |
|
|
|
|
|
|
|
|
|
|
| |
in a reasonable way. Low on features, which is rather intentional. There
is a version code included in the format so further extensions are possible, if
warranted.
Inspired by the n-th mailing list request for such a class. Realized it was
probably better that I design such code than random people who just want
'something that works'.
|
| |
|
|
|
|
| |
Patch from David X Callaway.
|
| |
|
|
|
|
|
| |
of 64 bytes. Not ideal but at least gives a sense of what it is putting
out.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Combine the fast and slow polls, into a single poll() operation.
Instead of being given a buffer to write output into, the EntropySource is
passed an Entropy_Accumulator. This handles the RLE encoding that xor_into_buf
used to do. It also contains a cached I/O buffer so entropy sources do not
individually need to allocate memory for that with each poll. When data
is added to the accumulator, the source specifies an estimate of the number
of bits of entropy per byte, as a double. This is tracked in the accumulator.
Once the estimated entropy hits a target (set by the constructor), the
accumulator's member function predicate polling_goal_achieved flips to true.
This signals to the PRNG that it can stop performing polling on sources,
also polls that take a long time periodically check this flag and return
immediately.
The Win32 and BeOS entropy sources have been updated, but blindly; testing
is needed.
The test_es example program has been modified: now it polls twice and outputs
the XOR of the two collected results. That helps show if the output is consistent
across polls (not a good thing). I have noticed on the Unix entropy source,
occasionally there are many 0x00 bytes in the output, which is not optimal.
This also needs to be investigated.
The RLE is not actually RLE anymore. It works well for non-random inputs
(ASCII text, etc), but I noticed that when /dev/random output was fed into
it, the output buffer would end up being RR01RR01RR01 where RR is a random
byte and 00 is the byte count.
The buffer sizing also needs to be examined carefully. It might be useful
to choose a prime number for the size to XOR stuff into, to help ensure an
even distribution of entropy across the entire buffer space. Or: feed it
all into a hash function?
This change should (perhaps with further modifications) help WRT the
concerns Zack W raised about the RNG on the monotone-dev list.
|
|
|
|
| |
and slow) and prints the data it gets back to the screen for inspection.
|
| |
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
EAX mode taking a BlockCipher* instead of a name.
PK_Signer taking an EMSA* instead of a name.
generate_dsa_primes using an Algorithm_Factory
Changes to how new algorithms are added (look_add.h is gone entirely,
replaced by Algorithm_Factory calls) in xor_ciph. Also update for new
stream cipher key schedule function name and new directory for base
class decl.
|
| |
|
|
|
|
| |
implementation and then setting it as the default.
|
| |
|
| |
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
| |
out of tree builds.
Also rename the generated botan-config script so that it is, like the
pkg-config settings, namespaced by the major and minor version numbers
(eg, botan-17-config). This is useful in particular for distros like
Debian which ship both stable and unstable versions. Currently Debian
is actually the only distro I know of shipping 1.7 as well as 1.6, but
I would certainly like to encourage more in the future by making it
easy to do.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Add a new class AutoSeeded_RNG that is a RandomNumberGenerator that wraps
up the logic formerly in RandomNumberGenerator::make_rng. make_rng in
fact now just returns a new AutoSeeded_RNG object.
AutoSeeded_RNG is a bit more convenient because
- No need to use auto_ptr
- No need to dereference (same syntax everywhere - it's an underestimated
advantage imo)
Also move the code from timer/timer_base to timer/
|
| |
|
| |
|
| |
|
| |
|
|
|
|
|
|
|
|
|
|
|
| |
wanted ECC_TESTDATA/EMSA1_BSI(SHA-224), while Botan is providing
ECDSA/EMSA1_BSI(SHA-224) which seems more useful anyway.
Also reindent the code to match more or less the convention in the
rest of the codebase.
At this point all ECDSA tests are pasing. (That probably just means
there aren't enough ECDSA tests)
|
| |
|
| |
|
| |
|
| |
|