aboutsummaryrefslogtreecommitdiffstats
path: root/doc
Commit message (Collapse)AuthorAgeFilesLines
* Move hacking.rst to contributing.rstJack Lloyd2016-01-131-86/+71
| | | | [ci skip]
* Release 1.11.261.11.26Jack Lloyd2016-01-041-1/+1
|
* Misc doc updatesJack Lloyd2016-01-048-40/+91
| | | | [ci skip]
* Fix configure.py for CPython 2.6Jack Lloyd2016-01-041-0/+7
| | | | Based on GH #362 by emilymaier
* Add ECDH via OpenSSLJack Lloyd2016-01-041-0/+2
| | | | | | | | | | Expose provider param in PK_Key_Agreement API Handle multiple providers in key agreement tests Fix some funky formatting of P-521 EC points in ecdh.vec which was being rejected by OpenSSL; for whatever reason the CAVS file had the affine coords with far more leading zeros than necessary.
* Use valgrind's memcheck API for checking const time annotationsJack Lloyd2016-01-031-5/+12
| | | | | | | Has the same effect as using ctgrind, but without requiring a custom-compiled valgrind binary. Add ct checking annotations to the SSSE3 AES code.
* Add extended master secret extension (RFC 7627) to TLSJack Lloyd2016-01-031-0/+7
| | | | Interop tested with mbed TLS
* Fix PointGFp multiplication bugJack Lloyd2016-01-031-6/+19
| | | | | | There was a special case for small scalars which managed to forget that the integer 3 also fits into two bits. Found by adding a new set of ECC point mul tests for the NIST curves.
* Use memcpy instead of misaligned pointer casts for reading words.Jack Lloyd2015-12-311-0/+9
| | | | | | | | | | | | | | | | | | | | | | It works on x86, but C says it is undefined and it makes UBSan unhappy. Happily, this memcpy approach probably also works fine under processors which previously used the byte-at-a-time approach such as ARM. But for right now using memcpy here is still gated under the processor alignment flags. In my tests recent GCC and Clang seemed to produce basically identical code for either approach when using -O3; I imagine most compilers these days are very good at analyzing/inlining/unrolling memcpys. Also remove the manually unrolled versions of xor_buf, which caused problems with GCC and -O3 due to it vectorizing the loads into (aligned) SSE2 loads, which would fail when a misaligned pointer was passed. Which always seemed kind of bogus to me, but I guess that's what undefined behavior is for. Enable -O3 for GCC. With this change the test suite is clean under GCC ASan+UBSan and Clang ASan+UBSan, with the exception of one failure due to a bug in libstdc++ (GCC bug 60734) when compiled by Clang.
* Add missing assignment in DataSource::discard_nextJack Lloyd2015-12-311-0/+4
| | | | Reported on the mailing list by Falko
* Reading listJack Lloyd2015-12-261-0/+69
|
* Add generalized KEM interfaceJack Lloyd2015-12-261-0/+8
| | | | | | Convert McEliece KEM to use it Add RSA-KEM
* On PythonJack Lloyd2015-12-251-4/+22
|
* Export mgf1_mask GH #380Jack Lloyd2015-12-251-0/+2
|
* Guard all std::mem* ops against any call with zero length.Jack Lloyd2015-12-251-0/+11
| | | | | | | | | | Calling memset, memmove, memcpy with an undefined or null pointer, even with length zero, causes undefined behavior. Prevent that from happening within the functions that call these dangerous things since allowing a caller to pass length == 0 with null or just past the end and not have things explode is nice. Oh C, you so crazy.
* Fix a lot of backquotes in hacking.rstSimon Warta2015-12-221-51/+51
|
* Remove hyperlink from m_ in hacking.rstSimon Warta2015-12-221-2/+1
|
* Add TPM v1.2 support (RSA keygen/signing, RNG)Jack Lloyd2015-12-191-1/+5
|
* Remove references to deleted examples GH #339Jack Lloyd2015-12-194-36/+1
|
* Merge pull request #370 from neusdan/rdseedJack Lloyd2015-12-191-0/+2
|\ | | | | Add support for Intel RdSeed instruction
| * add support for Intel RdSeedDaniel Neus2015-12-181-0/+2
| |
* | CLI rewriteJack Lloyd2015-12-191-2/+6
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | The command line tools' origin as a collection of examples and test programs glued together led to some unfortunate problems; lots of hardcoded values, missing parameters, and obsolete crypto. Adds a small library for writing command line programs of the sort needed here (cli.h), which cuts the length of many of the commands in half and makes commands more pleasant to write and extend. Generalizes a lot of the commands also, eg previously only signing/verification with DSA/SHA-1 was included! Removes the fuzzer entry point since that's fairly useless outside of an instrumented build. Removes the in-library API for benchmarking.
* | More notesJack Lloyd2015-12-191-62/+103
|/ | | | [ci skip]
* Enable RdRand on Windows/MSVCDaniel Neus2015-12-161-0/+2
|
* RantingJack Lloyd2015-12-121-0/+51
| | | | [ci skip]
* Replace path src/cmd/ by new src/cli/ in documentationSimon Warta2015-12-115-16/+10
| | | | | | Closes #356. [ci skip]
* Bump version to 1.11.26-preJack Lloyd2015-12-111-0/+8
|
* Rename cmd/app -> cliSimon Warta2015-12-091-1/+1
|
* 1.11.25 release1.11.25Jack Lloyd2015-12-071-4/+14
|
* Merge pull request #321 from matejk/fix_algo_registry_locking_windowsJack Lloyd2015-12-042-0/+6
|\ | | | | Algo_Registry: Use CRITICAL_SECTION on Windows to prevent hang during initialization
| * Added myself to credits/copyright.Matej Kenda2015-11-202-0/+6
| |
* | Remove support for broken 112 and 128 bit SECP ECC groups.Jack Lloyd2015-12-021-0/+3
| |
* | Improve side channel attack resistance of table based AES implJack Lloyd2015-11-292-1/+8
| |
* | New reseed_with_sources call on RNGsJack Lloyd2015-11-241-1/+0
| | | | | | | | | | | | | | | | | | | | | | | | | | Provides an easier way for an application to configure a list of entropy sources they'd like to use, or add a custom entropy source to their seeding. Exposes some toggles for the global/default entropy sources to build.h Adds basic entropy tests which runs the polls and does sanity checking on the results, including compression tests if available. These are less useful for the CSPRNG outputs but a good check for the ones producing plain ASCII like the /proc reader.
* | Updates for news, readmeJack Lloyd2015-11-241-9/+8
|/ | | | [ci skip]
* Add Simon Warta to license and creditsSimon Warta2015-11-182-0/+7
| | | | [ci skip]
* Merge pull request #332 from tiwoc/creditsJack Lloyd2015-11-162-0/+5
|\ | | | | Add myself (tiwoc) to credits.rst and license.txt
| * Add myself to credits.rst and license.txtDaniel Seither2015-11-162-0/+5
| |
* | Update hacking.rst with copyright info and other hints. GH #331Jack Lloyd2015-11-161-7/+78
|/ | | | [ci skip]
* Fix bug causing TLS client to sometimes reject DHE server kexJack Lloyd2015-11-131-0/+4
| | | | | | Re-encoding the server key exchange meant that any leading zeros in the values for DHE (or SRP) would be stripped out. This would cause the signature check to fail.
* Add remove_all to TLS session manager interfaceJack Lloyd2015-11-131-0/+2
| | | | DB::spin now returns the number of rows affected
* Add TLS_PSK testsJack Lloyd2015-11-132-1/+10
| | | | | | | | | | | Fix a bug which rejected any short server key exchanges. These can occur with a plain PSK with short or empty identity hints. Disable SHA-224 by default. Remove some vestigal RC4 cruft. Push more on the TLS corruption tests.
* Update and consolidate the test framework.Jack Lloyd2015-11-111-2/+13
| | | | | | | | | | | The tests previously had used 4 to 6 different schemes internally (the vec file reader framework, Catch, the old InSiTo Boost.Test tests, the PK/BigInt tests which escaped the rewrite in 1.11.7, plus a number of one-offs). Converge on a design that works everywhere, and update all the things. Fix also a few bugs found by the test changes: SHA-512-256 name incorrect, OpenSSL RC4 name incorrect, signature of FFI function botan_pubkey_destroy was wrong.
* Tick version to 1.11.25Jack Lloyd2015-11-041-0/+5
|
* Correct 1.11.24 release dateJack Lloyd2015-11-041-1/+1
| | | | [ci skip]
* Update for 1.11.24 release1.11.24Jack Lloyd2015-11-041-0/+11
|
* Add check for path validation result in Credentials_Manager. GH #324Jack Lloyd2015-11-041-0/+6
|
* Update newsJack Lloyd2015-10-271-0/+6
| | | | [ci skip]
* Tick version to 1.11.23Jack Lloyd2015-10-271-0/+7
| | | | [ci skip]
* Update for 1.11.23 release1.11.23Jack Lloyd2015-10-261-1/+6
| | | | [ci skip]