aboutsummaryrefslogtreecommitdiffstats
path: root/doc/relnotes
Commit message (Collapse)AuthorAgeFilesLines
* Add ChaChalloyd2014-01-311-0/+12
|
* Fix Skein_512::clearlloyd2014-01-181-0/+5
|
* Remove PBES1 entirelylloyd2014-01-181-0/+5
|
* Website tweaks. Rename TLS suite script options.lloyd2014-01-111-1/+1
|
* Fix link. Release 1.11.71.11.7lloyd2014-01-101-1/+1
|
* Split up docs into the reference manual, the website, and everything else.lloyd2014-01-106-27/+33
| | | | | | | | | | | Add `website` target to makefile. Some progress towards fixing minimized builds. TLS now hard requires ECDSA and GCM since otherwise a minimized build has only insecure options. Remove boost_thread dependency in command line tool
* Move lib into srclloyd2014-01-101-5/+0
|
* Split up test vectors into per-algo files and app into botan-test forlloyd2014-01-101-9/+19
| | | | the tests and botan for everything else.
* Fix include path of example sources in docslloyd2014-01-061-0/+1
|
* Add 1.10.7 release noteslloyd2014-01-061-0/+4
|
* Split up public key tests and data, use new test frameworklloyd2014-01-051-0/+17
|
* Move Sphinx configlloyd2014-01-021-1/+1
|
* Update for 1.11.6 release1.11.6lloyd2013-12-291-0/+1
|
* Add 1.10.7 release noteslloyd2013-12-293-9/+16
|
* Make Boost easier to disable with minimal feature losslloyd2013-12-281-9/+9
|
* Move clmul to its own file (for abi flags)lloyd2013-12-271-0/+2
|
* Add Threefish-512 in AVX2lloyd2013-12-241-7/+9
| | | | Tested using Intel's SDE, but no idea how fast it will be on hardware.
* merge of 'c55938af0026b98297194116c1553d467104b41a'lloyd2013-12-191-1/+2
|\ | | | | | | and 'd0c532af92ea0940685dd0e99d2946329efbc917'
| * Have default TLS policy reject SSLv3. Add TLS::Policy::acceptable_ciphersuitelloyd2013-12-101-1/+2
| | | | | | | | | | to allow either party to filter out specific ciphersuites they don't wish to support for whatever reason.
* | Fix OAEP key size check during encoding, and an array over-read whenlloyd2013-12-061-0/+5
|/ | | | | decoding a message that was so large we decided it was invalid and truncated it.
* Add SIVlloyd2013-12-051-1/+3
|
* Disable RC4 in TLS by defaultlloyd2013-11-291-0/+2
|
* TLS in-memory session manager now requires a rng object as alloyd2013-11-281-0/+3
| | | | | constructor argument, previously it used the global rng which caused a serialization point across server threads.
* Add a simple HTTP 1.0 GET using asio (for CRLs and OCSP)lloyd2013-11-271-1/+2
|
* Add HKDFlloyd2013-11-171-0/+3
|
* Enable all the GCC warning flags, as we now require at least GCC 4.7 anywaylloyd2013-11-161-0/+2
| | | | Fix a few nullptr and cast warnings.
* Forgot to relnote thislloyd2013-11-101-0/+4
|
* Release 1.11.51.11.5lloyd2013-11-101-1/+1
|
* Add 1.10.6 release noteslloyd2013-11-102-0/+49
|
* Previously, AutoRNG was just a reference to the global rng, which canlloyd2013-11-081-1/+6
| | | | | | | | | | | cause a huge amount of lock contention in heavily multithreaded code. Now each AutoRNG is its own uniquely seeded HMAC_RNG. The set of entropy sources is shared rather than being per-RNG (so there is only one open fd to /dev/random, etc). So reseeding is still a global lock, but sharing the resources (open file descriptors, etc) across RNGs seems worth the contention. Remove Randpool, which was only used if HMAC_RNG was disabled at build.
* Start updating release noteslloyd2013-11-081-7/+30
|
* Add CCM modelloyd2013-09-051-0/+2
|
* Support 64 and 96 bit tags in OCB, using the nonce formatting rulelloyd2013-08-261-0/+2
| | | | added in the latest CFRG internet draft.
* Update build version to 1.11.5 prelloyd2013-08-191-0/+6
|
* Avoid undefined operation in rotation operationslloyd2013-07-311-0/+11
|
* Update for 1.11.4 release1.11.4lloyd2013-07-251-1/+1
|
* Change default policy to prohibit DTLS to minimize surprise.lloyd2013-07-102-4/+20
| | | | | | | | | | Allow applications to send arbirary alert messages. Add a new optional parameter to Channel which specifies how large to make the IO buffers by default. Add Channel::reset_state, and reset the IO buffers and cipher specs after a fatal alert.
* Rename ARC4 to RC4lloyd2013-04-191-0/+2
|
* Initial notes for 1.11.4lloyd2013-04-181-0/+17
|
* Always include modules requiring ISA extensions as long as thelloyd2013-04-171-0/+3
| | | | | | | | | | | compiler and target platform might support it. For instance the AES SSSE3 code is now always in any x86 build, with just that specific file being compiled with -mssse3. Since we'll only call that code if cpuid confirms it works at runtime, we don't have portability issues, and it can be safely included in generic builds (eg for distributions). Tweak how machine specific compiler flags are generated to be a bit easier to maintain.
* Update for 1.11.3 release1.11.3lloyd2013-04-111-1/+1
|
* Add support for AEAD modes in TLS. Add GCM ciphersuites.lloyd2013-04-111-0/+2
|
* Basic docs for AEAD_Modelloyd2013-03-271-3/+5
|
* merge of '767ce7b733ad25a056a4609645dbb0418fed5c91'lloyd2013-03-211-0/+7
|\ | | | | | | and '8795500927af6dc6c8a74d6868d002712f971a2f'
| * Finish the note on removing Turing+WiderWAKElloyd2013-03-191-1/+2
| |
| * Remove the Turing and WiderWAKE4+1 stream cipher implementations.lloyd2013-03-191-0/+2
| | | | | | | | Both never saw much deployment or analysis.
| * Add an interface to Keyed_Filter returning a Key_Length_Specificationlloyd2013-03-171-0/+4
| | | | | | | | | | so the full details of what keylength(s) the filter supports are now available.
* | Move Monotone info to vcs.rstlloyd2013-03-212-2/+2
| | | | | | | | | | | | Fix some syntax errors in misc docs. Use mtn.randombit.net hostname
* | Add TLS::Policy::server_uses_own_ciphersuite_preferences()lloyd2013-03-211-0/+7
|/ | | | | | Previously the server always took its most-preferred cipher out of the client's list, but this policy allows telling a server to follow the client's preferences insetad.
* Relnote GCM supportlloyd2013-03-161-2/+2
|