Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Add ChaCha | lloyd | 2014-01-31 | 1 | -0/+12 |
| | |||||
* | Fix Skein_512::clear | lloyd | 2014-01-18 | 1 | -0/+5 |
| | |||||
* | Remove PBES1 entirely | lloyd | 2014-01-18 | 1 | -0/+5 |
| | |||||
* | Website tweaks. Rename TLS suite script options. | lloyd | 2014-01-11 | 1 | -1/+1 |
| | |||||
* | Fix link. Release 1.11.71.11.7 | lloyd | 2014-01-10 | 1 | -1/+1 |
| | |||||
* | Split up docs into the reference manual, the website, and everything else. | lloyd | 2014-01-10 | 6 | -27/+33 |
| | | | | | | | | | | | Add `website` target to makefile. Some progress towards fixing minimized builds. TLS now hard requires ECDSA and GCM since otherwise a minimized build has only insecure options. Remove boost_thread dependency in command line tool | ||||
* | Move lib into src | lloyd | 2014-01-10 | 1 | -5/+0 |
| | |||||
* | Split up test vectors into per-algo files and app into botan-test for | lloyd | 2014-01-10 | 1 | -9/+19 |
| | | | | the tests and botan for everything else. | ||||
* | Fix include path of example sources in docs | lloyd | 2014-01-06 | 1 | -0/+1 |
| | |||||
* | Add 1.10.7 release notes | lloyd | 2014-01-06 | 1 | -0/+4 |
| | |||||
* | Split up public key tests and data, use new test framework | lloyd | 2014-01-05 | 1 | -0/+17 |
| | |||||
* | Move Sphinx config | lloyd | 2014-01-02 | 1 | -1/+1 |
| | |||||
* | Update for 1.11.6 release1.11.6 | lloyd | 2013-12-29 | 1 | -0/+1 |
| | |||||
* | Add 1.10.7 release notes | lloyd | 2013-12-29 | 3 | -9/+16 |
| | |||||
* | Make Boost easier to disable with minimal feature loss | lloyd | 2013-12-28 | 1 | -9/+9 |
| | |||||
* | Move clmul to its own file (for abi flags) | lloyd | 2013-12-27 | 1 | -0/+2 |
| | |||||
* | Add Threefish-512 in AVX2 | lloyd | 2013-12-24 | 1 | -7/+9 |
| | | | | Tested using Intel's SDE, but no idea how fast it will be on hardware. | ||||
* | merge of 'c55938af0026b98297194116c1553d467104b41a' | lloyd | 2013-12-19 | 1 | -1/+2 |
|\ | | | | | | | and 'd0c532af92ea0940685dd0e99d2946329efbc917' | ||||
| * | Have default TLS policy reject SSLv3. Add TLS::Policy::acceptable_ciphersuite | lloyd | 2013-12-10 | 1 | -1/+2 |
| | | | | | | | | | | to allow either party to filter out specific ciphersuites they don't wish to support for whatever reason. | ||||
* | | Fix OAEP key size check during encoding, and an array over-read when | lloyd | 2013-12-06 | 1 | -0/+5 |
|/ | | | | | decoding a message that was so large we decided it was invalid and truncated it. | ||||
* | Add SIV | lloyd | 2013-12-05 | 1 | -1/+3 |
| | |||||
* | Disable RC4 in TLS by default | lloyd | 2013-11-29 | 1 | -0/+2 |
| | |||||
* | TLS in-memory session manager now requires a rng object as a | lloyd | 2013-11-28 | 1 | -0/+3 |
| | | | | | constructor argument, previously it used the global rng which caused a serialization point across server threads. | ||||
* | Add a simple HTTP 1.0 GET using asio (for CRLs and OCSP) | lloyd | 2013-11-27 | 1 | -1/+2 |
| | |||||
* | Add HKDF | lloyd | 2013-11-17 | 1 | -0/+3 |
| | |||||
* | Enable all the GCC warning flags, as we now require at least GCC 4.7 anyway | lloyd | 2013-11-16 | 1 | -0/+2 |
| | | | | Fix a few nullptr and cast warnings. | ||||
* | Forgot to relnote this | lloyd | 2013-11-10 | 1 | -0/+4 |
| | |||||
* | Release 1.11.51.11.5 | lloyd | 2013-11-10 | 1 | -1/+1 |
| | |||||
* | Add 1.10.6 release notes | lloyd | 2013-11-10 | 2 | -0/+49 |
| | |||||
* | Previously, AutoRNG was just a reference to the global rng, which can | lloyd | 2013-11-08 | 1 | -1/+6 |
| | | | | | | | | | | | cause a huge amount of lock contention in heavily multithreaded code. Now each AutoRNG is its own uniquely seeded HMAC_RNG. The set of entropy sources is shared rather than being per-RNG (so there is only one open fd to /dev/random, etc). So reseeding is still a global lock, but sharing the resources (open file descriptors, etc) across RNGs seems worth the contention. Remove Randpool, which was only used if HMAC_RNG was disabled at build. | ||||
* | Start updating release notes | lloyd | 2013-11-08 | 1 | -7/+30 |
| | |||||
* | Add CCM mode | lloyd | 2013-09-05 | 1 | -0/+2 |
| | |||||
* | Support 64 and 96 bit tags in OCB, using the nonce formatting rule | lloyd | 2013-08-26 | 1 | -0/+2 |
| | | | | added in the latest CFRG internet draft. | ||||
* | Update build version to 1.11.5 pre | lloyd | 2013-08-19 | 1 | -0/+6 |
| | |||||
* | Avoid undefined operation in rotation operations | lloyd | 2013-07-31 | 1 | -0/+11 |
| | |||||
* | Update for 1.11.4 release1.11.4 | lloyd | 2013-07-25 | 1 | -1/+1 |
| | |||||
* | Change default policy to prohibit DTLS to minimize surprise. | lloyd | 2013-07-10 | 2 | -4/+20 |
| | | | | | | | | | | Allow applications to send arbirary alert messages. Add a new optional parameter to Channel which specifies how large to make the IO buffers by default. Add Channel::reset_state, and reset the IO buffers and cipher specs after a fatal alert. | ||||
* | Rename ARC4 to RC4 | lloyd | 2013-04-19 | 1 | -0/+2 |
| | |||||
* | Initial notes for 1.11.4 | lloyd | 2013-04-18 | 1 | -0/+17 |
| | |||||
* | Always include modules requiring ISA extensions as long as the | lloyd | 2013-04-17 | 1 | -0/+3 |
| | | | | | | | | | | | compiler and target platform might support it. For instance the AES SSSE3 code is now always in any x86 build, with just that specific file being compiled with -mssse3. Since we'll only call that code if cpuid confirms it works at runtime, we don't have portability issues, and it can be safely included in generic builds (eg for distributions). Tweak how machine specific compiler flags are generated to be a bit easier to maintain. | ||||
* | Update for 1.11.3 release1.11.3 | lloyd | 2013-04-11 | 1 | -1/+1 |
| | |||||
* | Add support for AEAD modes in TLS. Add GCM ciphersuites. | lloyd | 2013-04-11 | 1 | -0/+2 |
| | |||||
* | Basic docs for AEAD_Mode | lloyd | 2013-03-27 | 1 | -3/+5 |
| | |||||
* | merge of '767ce7b733ad25a056a4609645dbb0418fed5c91' | lloyd | 2013-03-21 | 1 | -0/+7 |
|\ | | | | | | | and '8795500927af6dc6c8a74d6868d002712f971a2f' | ||||
| * | Finish the note on removing Turing+WiderWAKE | lloyd | 2013-03-19 | 1 | -1/+2 |
| | | |||||
| * | Remove the Turing and WiderWAKE4+1 stream cipher implementations. | lloyd | 2013-03-19 | 1 | -0/+2 |
| | | | | | | | | Both never saw much deployment or analysis. | ||||
| * | Add an interface to Keyed_Filter returning a Key_Length_Specification | lloyd | 2013-03-17 | 1 | -0/+4 |
| | | | | | | | | | | so the full details of what keylength(s) the filter supports are now available. | ||||
* | | Move Monotone info to vcs.rst | lloyd | 2013-03-21 | 2 | -2/+2 |
| | | | | | | | | | | | | Fix some syntax errors in misc docs. Use mtn.randombit.net hostname | ||||
* | | Add TLS::Policy::server_uses_own_ciphersuite_preferences() | lloyd | 2013-03-21 | 1 | -0/+7 |
|/ | | | | | | Previously the server always took its most-preferred cipher out of the client's list, but this policy allows telling a server to follow the client's preferences insetad. | ||||
* | Relnote GCM support | lloyd | 2013-03-16 | 1 | -2/+2 |
| |