aboutsummaryrefslogtreecommitdiffstats
path: root/doc
Commit message (Collapse)AuthorAgeFilesLines
* Prune the todo listJack Lloyd2020-01-211-32/+9
|
* Another todo [ci skip]Jack Lloyd2020-01-211-0/+1
|
* Deprecate large e in RSAJack Lloyd2020-01-201-0/+3
| | | | That this works at all is just a historical accident
* Deprecation changesJack Lloyd2020-01-201-1/+3
|
* Quote the configure.py arguments in the docsJack Lloyd2020-01-161-68/+70
| | | | Otherwise Sphinx makes it so copying the arg doesn't do the right thing.
* Make status of maintainer mode build more clearJack Lloyd2020-01-161-1/+12
| | | | | Hide it in the configure.py --help output and add a big warning block in the documentation.
* Minor fix in release checklistJack Lloyd2020-01-061-3/+4
|
* New TLS session encryption formatJack Lloyd2019-12-151-19/+19
| | | | | | | | | | | | | | | | | | | | | | | Changes: - Adds magic number/versioning to make future extensions possible - Adds key identifier to avoid needless decryption attempts, makes supporting ticket key rotation easier in the future - Avoids key collision; in current format if the seed is duplicated the same key + nonce are generated. This does not leak the master ticket key but is still bad. Now nonce is random, and key is generated via a distinct 128-bit long input. Chances of a duplicated key/nonce are now about 2^-112. - Include the whole header incl nonce as associated data - Use SHA-512-256 instead of SHA-256 This breaks all saved encrypted sessions as well as saved session tickets. But the cost then is just a full renegotiation. The session ticket format is not guaranteed to be stable even across minor releases.
* Bump the FFI version due to addition of CRL supportJack Lloyd2019-12-141-0/+1
|
* Improvements to cli documentationJack Lloyd2019-12-081-9/+15
|
* Merge GH #2215 Use .lib suffix consistently on WindowsJack Lloyd2019-12-071-1/+1
|\
| * Fix Windows linking to consistently use .lib suffix as requiredJack Lloyd2019-12-061-1/+1
| | | | | | | | | | | | Also fix the zlib basename for Windows. Resolves #2210
* | Clarify documentationJack Lloyd2019-12-061-3/+3
| |
* | Deprecate MCEIESJack Lloyd2019-12-061-0/+2
|/
* Update news and todoJack Lloyd2019-12-041-1/+0
|
* Add documentation for CRL API in FFI and Python bindingPavol Žáčik2019-12-032-3/+57
|
* Add docs for added Python MPI functionsPavol Žáčik2019-12-021-2/+13
|
* Deprecate DLIES [ci skip]Jack Lloyd2019-11-231-0/+2
|
* Improve SRP documentationJack Lloyd2019-11-151-7/+17
| | | | GH #2198
* Another todoJack Lloyd2019-11-101-0/+1
|
* Allow disabling TLS 1.0/1.1 and DTLS 1.0 at build timeJack Lloyd2019-11-101-1/+0
|
* Add some todosJack Lloyd2019-10-251-1/+3
|
* Update Tier 2 support targetsJack Lloyd2019-10-251-4/+3
| | | | | | | | The iOS and Android marketplaces both now require 64-bit support so it makes sense to support those instead of 32-bit. [Of course 32-bit builds still work, just are not considered so critical anymore.] Drop IncludeOS, which seems to be dead upstream.
* Remove obsolete referenceJack Lloyd2019-10-251-3/+0
| | | | Nothing from that repo is used for CI anymore
* Add Python documentation for the X509Cert classPavol Žáčik2019-10-221-0/+121
|
* Check off a todoJack Lloyd2019-10-161-1/+0
|
* Doc fixes for RoughtimeJack Lloyd2019-10-162-2/+3
|
* Add roughtime protocolNuno Goncalves2019-10-141-0/+6
| | | | Signed-off-by: Nuno Goncalves <[email protected]>
* Check off some todosJack Lloyd2019-10-121-4/+3
|
* Split off news from before 2.0.0 into old_news.rstJack Lloyd2019-10-032-0/+4340
|
* Small tweaks to side channel documentationJack Lloyd2019-10-031-14/+17
|
* Deprecate TLS renegotiationJack Lloyd2019-10-031-0/+2
| | | | Surprised that was not already on the list
* Merge GH #2115 Improve PKCS11 testsJack Lloyd2019-10-021-2/+23
|\
| * Improve ECC PKCS#11 testsMichael Boric2019-09-241-2/+23
| | | | | | | | | | | | | | | | * try catch in p11 high and low level tests. If a test throws an exception, the test output contains the name of the test case that failed. Before, only the name of the suite was printed. * add a test case that imports elliptic curve parameters * add curve brainpool512r1 to PKCS11 test test_ecdsa_sign_verify() * add curve brainpool512r1 to test_ecdsa_generate_keypair() * update tested/supported smartcards in manual
* | Add doc describing the env variablesJack Lloyd2019-09-302-0/+21
| |
* | Add poly_dbl speed utilJack Lloyd2019-09-281-0/+1
| |
* | Another todoJack Lloyd2019-09-251-0/+1
|/
* Updates to the TLS docsJack Lloyd2019-09-131-19/+59
|
* Update todosJack Lloyd2019-09-091-12/+6
|
* Document that AltiVec vperm AES is also availableJack Lloyd2019-09-091-4/+3
|
* Change this exampleJack Lloyd2019-09-091-2/+2
|
* Deprecate many publically available headersJack Lloyd2019-09-061-79/+215
|
* Note that Streebog and Whirlpool use table lookupsJack Lloyd2019-09-061-1/+2
|
* Add build supportJack Lloyd2019-09-041-6/+5
|
* Take sccache from upstream release instead of botan-ci-tools repoJack Lloyd2019-08-201-9/+10
|
* Add todo [ci skip]Jack Lloyd2019-08-171-0/+1
|
* Remove references to Kullo CISimon Warta2019-08-091-8/+0
| | | | | | | | | | With the increasing stability of Botan and the use of other CI services, this CI became obsolete over the years. Now that there is an Android build on Travis, Kullo CI does not add sufficient value anymore to justify the maintenance work. It has been a pleasure contributing to the development of Botan, helping to bring the project to the maturity it has now.
* More header deprecations [ci skip]Jack Lloyd2019-08-041-11/+12
|
* Deprecated more public headers [ci skip]Jack Lloyd2019-08-041-1/+10
|
* Deprecate more headersJack Lloyd2019-08-011-2/+5
|