Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Bump version to 1.11.18, update docs to reflect mtn->git conversion | Jack Lloyd | 2015-07-02 | 2 | -0/+6 |
| | | | | | | Drop vcs.rst as unlike monotone, git+github probably doesn't require special instructions. Drop users.rst as it has been moved to the github wiki. | ||||
* | Update for 1.11.17 release1.11.17 | lloyd | 2015-06-19 | 1 | -1/+1 |
| | |||||
* | Add initial release notes for 1.11.17 | lloyd | 2015-06-11 | 1 | -0/+16 |
| | |||||
* | Remove RC4 (and all support for stream ciphers) from TLS | lloyd | 2015-05-15 | 1 | -0/+2 |
| | |||||
* | Update for 1.11.16 release1.11.16 | lloyd | 2015-03-30 | 1 | -2/+5 |
| | |||||
* | Relnotes update | lloyd | 2015-03-23 | 1 | -5/+21 |
| | |||||
* | Add ALPN (RFC 7301) and remove NPN | lloyd | 2015-03-20 | 1 | -0/+8 |
| | |||||
* | Bump build to 1.11.16 | lloyd | 2015-03-12 | 1 | -0/+11 |
| | |||||
* | Update for 1.11.15 release1.11.15 | lloyd | 2015-03-08 | 1 | -2/+1 |
| | |||||
* | Add BOTAN_NOEXCEPT macro to work around missing noexcept in VS 2013. | rcdailey | 2015-03-08 | 1 | -0/+3 |
| | | | | Based on github pull req 23 by Robert Daily. | ||||
* | Misc doc update | lloyd | 2015-03-06 | 1 | -1/+4 |
| | |||||
* | In Algo_Registry if a maker func fails, try the next most preferred one | lloyd | 2015-03-05 | 1 | -0/+3 |
| | | | | | | | | instead of bailing out immediately. Rename the 'builtin' provider to 'base' since really they are all built in. Fix MARK-4 when OpenSSL was enabled - it did not respect the skip param. | ||||
* | Hide Algorithm_Factory and use the functions in lookup.h internally. | lloyd | 2015-03-04 | 1 | -0/+2 |
| | | | | | | Fix two memory leaks (in TLS and modes) caused by calling get_foo and then cloning the result before saving it (leaking the original object), a holdover from the conversion between construction techniques in 1.11.14 | ||||
* | When comparing algorithm identifiers consider NULL and empty | lloyd | 2015-03-04 | 1 | -0/+4 |
| | | | | | parameters as equivalent. Based on a patch sent to the mailing list by Uri Blumenthal. | ||||
* | Fix decrypt in FFI/Python. Github issue 53 | lloyd | 2015-03-01 | 2 | -0/+6 |
| | |||||
* | Update for 1.11.14 release1.11.14 | lloyd | 2015-02-28 | 1 | -22/+56 |
| | |||||
* | Update relnotes and todo, fix python signature | lloyd | 2015-02-19 | 1 | -29/+43 |
| | |||||
* | Reduce the CTR_BE buffer down to just a few blocks. | lloyd | 2015-02-17 | 1 | -0/+2 |
| | | | | No performance impact afaict. | ||||
* | Add new module `ffi` which provides a plain C interface, plus a new | lloyd | 2015-02-16 | 1 | -0/+6 |
| | | | | | | | | | | | | ctypes Python wrapper that uses it. The API is intentionally designed to have a very simple ABI (extern "C", all structs are opaque, no memory ownership passing the FFI boundary, limited set of simple types as args) so the ctypes wrapper is quite simple. Currently ffi provides ciphers, hashes, MACs, RNGs, PBKDF, KDF, bcrypt, and most public key operations. Remove the old boost.python wrapper and all the build code for it. | ||||
* | Mark modules pulling in external deps (zlib, boost, etc) as such, and | lloyd | 2015-02-06 | 1 | -0/+5 |
| | | | | | | notify the user when they are enabled. Drop botan-config, replaced by `botan config` command added in 1.11.8 | ||||
* | Remove algo factory, engines, global RNG, global state, etc. | lloyd | 2015-02-04 | 1 | -8/+4 |
| | | | | | | | | | | | | | | | Convert all uses of Algorithm_Factory and the engines to using Algo_Registry The shared pool of entropy sources remains but is moved to EntropySource. With that and few remaining initializations (default OIDs and aliases) moved elsewhere, the global state is empty and init and shutdown are no-ops. Remove almost all of the headers and code for handling the global state, except LibraryInitializer which remains as a compatability stub. Update seeding for blinding so only one hacky almost-global RNG instance needs to be setup instead of across all pubkey uses (it uses either the system RNG or an AutoSeeded_RNG if the system RNG is not available). | ||||
* | Handle repeated initializations of the library better and deal with | lloyd | 2015-01-24 | 1 | -0/+8 |
| | | | | initializations across multiple threads safely. | ||||
* | Allow reducing the size of the allocated mlock pool via env variable | lloyd | 2015-01-24 | 1 | -0/+9 |
| | | | | | | (BOTAN_MLOCK_POOL_SIZE, specified in decimal KB). Currently we read this even when setuid as the worst a user could do is disable mlock, which they can already do via ulimits. | ||||
* | Remove memset_s, not implemented on any machine I can test on and | lloyd | 2015-01-23 | 1 | -2/+2 |
| | | | | | | | | problematic for requiring a special define before the first include of string.h. Instead optionally call memset via a volatile function pointer as a faster alternative to byte at a time writes. Github 42, 45 | ||||
* | Update TLS OCB ciphersuites to match draft-zauner-tls-aes-ocb-00 | lloyd | 2015-01-21 | 2 | -0/+10 |
| | | | | | and enable them in the default build, though still not enabled in the runtime policy. | ||||
* | Update for 1.11.13 release1.11.13 | lloyd | 2015-01-11 | 1 | -1/+1 |
| | |||||
* | Add SipHash | lloyd | 2015-01-11 | 1 | -0/+2 |
| | |||||
* | Remove SSLv3 and handling of SSLv2 client hellos. | lloyd | 2015-01-11 | 1 | -0/+3 |
| | |||||
* | Convert the asio server from a weird example server to a generic proxy server. | lloyd | 2015-01-10 | 1 | -1/+4 |
| | |||||
* | Add MCEIES, an integrated encryption system using McEliece and AES-256/OCB | lloyd | 2015-01-08 | 1 | -0/+3 |
| | |||||
* | Change TLS session encryption to use AES-256/GCM instead of CBC+HMAC | lloyd | 2015-01-08 | 1 | -6/+22 |
| | |||||
* | Add SHA-512/256 | lloyd | 2015-01-08 | 1 | -0/+2 |
| | | | | | Define some new functions for copying out arrays of words and use them across hashes. | ||||
* | Fix install script under Python3 | lloyd | 2015-01-06 | 1 | -2/+5 |
| | |||||
* | Update relnotes | lloyd | 2015-01-04 | 1 | -0/+8 |
| | |||||
* | Tick version to 1.11.13 | lloyd | 2015-01-03 | 2 | -0/+5 |
| | |||||
* | Update for 1.11.12 release1.11.12 | lloyd | 2015-01-02 | 2 | -2/+5 |
| | |||||
* | Add ChaCha20Poly1305 TLS ciphersuites compatible with Google's implementation | lloyd | 2014-12-31 | 1 | -0/+3 |
| | |||||
* | Add AEAD based on ChaCha20 and Poly1305 defined in ↵ | lloyd | 2014-12-29 | 1 | -2/+3 |
| | | | | draft-irtf-cfrg-chacha20-poly1305-03 | ||||
* | Add Poly1305, based on poly1305-donna by Andrew Moon. | lloyd | 2014-12-29 | 1 | -1/+3 |
| | |||||
* | When encrypting McEliece or Curve25519 keys, default to GCM instead of CBC. | lloyd | 2014-12-27 | 1 | -3/+9 |
| | | | | Add OIDS for OCB mode with various ciphers. | ||||
* | Add Curve25519 based on curve25519-donna by Adam Langley. | lloyd | 2014-12-27 | 1 | -0/+4 |
| | | | | | | This uses only the c64 version from curve25519-donna; on systems that don't have a native uint128_t type, a donna128 type stands in for just enough 128-bit operations to satisfy donna.cpp | ||||
* | Update download link and tick version number. | lloyd | 2014-12-22 | 2 | -0/+4 |
| | |||||
* | Update for 1.11.11 release1.11.11 | lloyd | 2014-12-22 | 1 | -1/+4 |
| | |||||
* | Enable system_rng on Windows and MinGW (untested) | lloyd | 2014-12-21 | 1 | -0/+10 |
| | |||||
* | Add abstract database interface so applications can easily store info | lloyd | 2014-12-20 | 1 | -0/+12 |
| | | | | | | in places other than sqlite3, though sqlite3 remains the only implementation. The interface is currently limited to precisely the functionality the TLS session manager needs and will likely expand. | ||||
* | Add 1.10.9 release | lloyd | 2014-12-13 | 1 | -0/+20 |
| | |||||
* | Tick to 1.11.11 | lloyd | 2014-12-13 | 1 | -0/+3 |
| | |||||
* | Update for 1.11.10 release1.11.10 | lloyd | 2014-12-10 | 1 | -13/+15 |
| | |||||
* | Implement RFC 6979 determinstic signatures for DSA and ECDSA. | lloyd | 2014-12-10 | 1 | -0/+4 |
| | | | | | Drop the GNU MP engine. Its implementations were potentially faster in some scenarios but not well protected against side channels. | ||||
* | Add a basic speed test for McEliece | lloyd | 2014-12-08 | 1 | -7/+8 |
| |