Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Remove FORK-256; it's obscure and has been definitively broken. | lloyd | 2010-05-25 | 3 | -2/+2 |
| | | | | | More commentary posted to the list: http://lists.randombit.net/pipermail/botan-devel/2010-May/001123.html | ||||
* | Add a couple of small patches from Thomas Capricelli <[email protected]> | lloyd | 2010-05-21 | 1 | -0/+1 |
| | | | | that enable botan to be built under the clang C++ compiler. | ||||
* | Note other changes | lloyd | 2010-05-19 | 1 | -0/+3 |
| | |||||
* | Modify the implementation of multiplication mod 65537 used in IDEA to | lloyd | 2010-04-30 | 1 | -0/+1 |
| | | | | | | | | | | be branch-free. This reduces performance noticably on my Core2 (from 32 MiB/s to a bit over 27 MiB), but so it goes. The IDEA implementation using SSE2 is already branch-free here, and runs at about 135 MiB/s on my machine. Also add more IDEA tests, generated by OpenSSL | ||||
* | Tick to 1.9.8-dev | lloyd | 2010-04-28 | 1 | -0/+2 |
| | |||||
* | Update log, readme, configure for 1.9.7 release1.9.7 | lloyd | 2010-04-27 | 1 | -1/+1 |
| | |||||
* | Fix EMSA_Raw in the case where the original input had leading 0 bytes. | lloyd | 2010-04-21 | 1 | -0/+1 |
| | |||||
* | Dist script updates | lloyd | 2010-04-19 | 1 | -4/+8 |
| | |||||
* | Cleanups. Name our cert for localhost. Used AutoSeeded_RNG. | lloyd | 2010-04-19 | 1 | -12/+16 |
| | | | | Report SNI request, if any. | ||||
* | Just report total size output at the end | lloyd | 2010-04-19 | 1 | -1/+7 |
| | |||||
* | Add support for SEED ciphersuites. Tested against OpenSSL 0.9.8n | lloyd | 2010-04-17 | 1 | -0/+1 |
| | |||||
* | Add support for reading SSLv2 client hellos | lloyd | 2010-04-17 | 1 | -0/+1 |
| | |||||
* | Add Comb4P hash combiner, as described in Anja Lehmann's thesis. | lloyd | 2010-04-17 | 1 | -0/+1 |
| | |||||
* | Tick version to 1.9.7-dev | lloyd | 2010-04-16 | 1 | -0/+2 |
| | |||||
* | Tick for 1.9.6 release1.9.6 | lloyd | 2010-04-09 | 1 | -1/+2 |
| | |||||
* | Retrodocument some 1.9.5 changes. Document other TLS fixes in 1.9.6 | lloyd | 2010-04-07 | 1 | -2/+7 |
| | |||||
* | Document adding SNI | lloyd | 2010-03-30 | 1 | -0/+1 |
| | |||||
* | Add support for TLS v1.1's per-record random IV. Tested against GnuTLS server. | lloyd | 2010-03-30 | 1 | -0/+1 |
| | |||||
* | Tick 1.9.6-dev | lloyd | 2010-03-30 | 1 | -0/+2 |
| | |||||
* | Update for 1.9.5 release 2009-03-291.9.5 | lloyd | 2010-03-29 | 1 | -1/+1 |
| | |||||
* | Show as creating an engine instead | lloyd | 2010-03-24 | 1 | -27/+31 |
| | |||||
* | Fix factor wrt rename of primality test functions | lloyd | 2010-03-23 | 1 | -1/+1 |
| | |||||
* | Document GOST fix | lloyd | 2010-03-13 | 1 | -0/+1 |
| | |||||
* | Document allocator change | lloyd | 2010-03-13 | 1 | -0/+1 |
| | |||||
* | Clarify | lloyd | 2010-03-13 | 1 | -2/+2 |
| | |||||
* | Document changes since 1.9.4 | lloyd | 2010-03-13 | 1 | -0/+5 |
| | |||||
* | I had listed Olivier de Gaalon in the license, for the SQLite codec, | lloyd | 2010-03-12 | 2 | -1/+5 |
| | | | | | | | but not in credits. Conversely, I had listed Vaclav Ovsik in the credits for the Perl-XS wrapper, but not in the license. | ||||
* | Tick version to 1.9.5-dev | lloyd | 2010-03-10 | 1 | -0/+2 |
| | |||||
* | Update version to 1.9.4 release1.9.4 | lloyd | 2010-03-09 | 1 | -1/+1 |
| | |||||
* | Deconstify PK_Ops. It's quite reasonable that some op will want to | lloyd | 2010-03-09 | 1 | -0/+1 |
| | | | | | | | | | | | | | precompute only as needed, or will want to access some other expensive resource or etc. Change how the secret for generating blinding is done in cases where a PRNG isn't available. Use the operations public op to hide the secret, for instance the seed for a DH blinding variable is 2^x mod p. Make use of being able to mutate internal structures in the RW signer, since that does have access to a PRNG, so use it to initialize the blinder on first call to sign(). | ||||
* | Rename PK_Encryptor_MR_with_EME and PK_Decryptor_MR_with_EME to | lloyd | 2010-03-08 | 2 | -2/+2 |
| | | | | | PK_Encryptor_EME and PK_Decryptor_EME; the message recovery is somewhat implicit in the recovery of the plaintext. | ||||
* | Modify pubkey classes to take names instead of object pointers. | lloyd | 2010-03-08 | 8 | -30/+26 |
| | | | | | Remove use of look_pk from the source and examples, instead instantiate classes directly. | ||||
* | Update DH example for PK changes | lloyd | 2010-03-08 | 1 | -14/+29 |
| | |||||
* | Clarify that Ajisai is only SSLv3 + TLS 1.0 currently | lloyd | 2010-03-05 | 1 | -1/+1 |
| | |||||
* | Nix PK_Signing_Key use from tutorial | lloyd | 2010-03-04 | 1 | -3/+1 |
| | |||||
* | This checkin represents a pretty major change in how PK operations are | lloyd | 2010-03-04 | 1 | -0/+1 |
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | performed. Up until now, each key object (eg DSA_PublicKey or ECDH_PrivateKey) had two jobs: contain the key material, and know how to perform any operations on that key. However because of a desire to support alternative implementations (GNU MP, hardware, whatever), there was a notion of operations, with the key objects containing an op that they got via engine rather than actually implementing the underlying algorithms directly. Now, represent the operation as an abstract interface (typically mapping a byte string to a byte string), and pass a plain Public_Key& or Private_Key& to the engine. The engine does any checks it wants (eg based on name, typeid, key sizes, etc), and either returns nothing (I'll pass) or a pointer to a new operation that represents signatures or encryption or what-have-you using that key. This means that plain key objects no longer contain operations. This is a major break with the traditional interface. On the other hand, using these 'bare' operations without padding, KDFs, etc is 99% of the time a bad idea anyway (and if you really need them, there are options so you get the bare op but via the pubkey.h interfaces). Currently this change is only implemented for DH and ECDH (ie, key agreement algorithms). Additionally the optional engines (gnump and openssl) have not been updated. I'll probably wait to touch those until after I can change them all in one go for all algos. | ||||
* | Document fix for VC static builds | lloyd | 2010-03-03 | 1 | -0/+1 |
| | |||||
* | Fix minor errors and warnings in the examples. Remove boost dependency from | lloyd | 2010-03-03 | 15 | -120/+78 |
| | | | | rng_test example. | ||||
* | Add XSalsa20 | lloyd | 2010-03-03 | 1 | -0/+1 |
| | |||||
* | Drop the old 1.8 configure.pl entirely | lloyd | 2010-03-02 | 1 | -2340/+0 |
| | |||||
* | Corrupt signature instead of key in RSA example | lloyd | 2010-03-02 | 1 | -1/+4 |
| | |||||
* | Make output more understandable | lloyd | 2010-03-02 | 1 | -2/+4 |
| | |||||
* | Rename ECKAEG to ECDH. As far as I can tell they are the same algorithm, | lloyd | 2010-03-02 | 2 | -1/+2 |
| | | | | | I'm not sure where the old name came from though as literally the only hits for it on Google are botan-related. | ||||
* | Add a simple cert validation example | lloyd | 2010-03-01 | 1 | -0/+35 |
| | |||||
* | Document adding SSL/TLS | lloyd | 2010-02-24 | 1 | -0/+1 |
| | |||||
* | propagate from branch 'net.randombit.botan' (head ↵ | lloyd | 2010-02-24 | 2 | -0/+132 |
|\ | | | | | | | | | | | 35d3e3deb02b47f98e4937f8eab77f019a0f4b97) to branch 'net.randombit.botan.ssl' (head f923e7583e760a9a224cc5b1fc40015776d85eb9) | ||||
| * | propagate from branch 'net.randombit.botan' (head ↵ | lloyd | 2010-02-23 | 2 | -0/+132 |
| |\ | | | | | | | | | | | | | | | | 89451dd9349d61bc29507c9c441c090148192286) to branch 'net.randombit.botan.ssl' (head a341d74655f579482102c23e2c378897b738bd06) | ||||
| | * | TLS_Server example - more printfs, configurable port | lloyd | 2010-02-17 | 1 | -3/+13 |
| | | | |||||
| | * | Various minor SSL fixes | lloyd | 2010-02-14 | 2 | -10/+6 |
| | | | |||||
| | * | propagate from branch 'net.randombit.botan' (head ↵ | lloyd | 2010-02-14 | 9 | -114/+172 |
| | |\ | | | | | | | | | | | | | | | | | | | | | dd33b7150f3f49d795e4eb962d8d41d1ada58d8d) to branch 'net.randombit.botan.ssl' (head 1452205423962b664263fd2a35149122dfc94d37) |