aboutsummaryrefslogtreecommitdiffstats
path: root/doc
Commit message (Collapse)AuthorAgeFilesLines
* Deprecate 64-bit GCM tagsJack Lloyd2017-09-141-0/+2
| | | | | | GH #1207 [ci skip]
* Update todosJack Lloyd2017-09-121-3/+4
| | | | [ci skip]
* Add a todoJack Lloyd2017-09-021-0/+2
|
* Document how to use TLS-AttackerJack Lloyd2017-09-021-0/+18
|
* Change http://botan.randombit.net to https URIsJack Lloyd2017-09-011-1/+1
| | | | | | Not a big deal since the site already uses HSTS, but whatever. [ci skip]
* Add a todo re Dockerizing Travis buildJack Lloyd2017-08-291-0/+2
| | | | [ci skip]
* Add a reminder to test with valgrind etc before releaseJack Lloyd2017-08-291-3/+18
| | | | Would have avoided 3cd661c8dc
* Correct manual re key agreement schemesJack Lloyd2017-08-291-6/+10
| | | | See #1166
* Add some docs about fuzzingJack Lloyd2017-08-292-0/+71
|
* Add dh functions in ffiKonstantinos Kolelis2017-08-221-1/+16
|
* Add SHACAL2Jack Lloyd2017-08-131-1/+0
| | | | 256 bit ARX block cipher with hardware support, what's not to love.
* Add http_util to module policies (GH #1109)René Korthaus2017-08-071-1/+3
| | | | | | http_util is required by the x509 module to perform online OCSP checks, which should be defaulted to ON. Without being part of the policy, it would be disabled.
* Merge GH #1114 Add Streebog hash (GOST 34.11-2012)Jack Lloyd2017-08-071-0/+1
|\
| * Add Streebog hash (GOST R 34.11-2012).Daniel Wyatt2017-08-041-0/+1
| |
* | Update news and todoJack Lloyd2017-08-041-3/+3
|/ | | | [ci skip]
* Add ChaCha_RNGJack Lloyd2017-07-311-0/+13
|
* Merge GH #1110 Fix documentation of PKCS11 moduleJack Lloyd2017-07-161-4/+4
|\
| * Remove "pkcs11" provider paramater for pk ops in handbook and testsRené Korthaus2017-07-041-4/+4
| | | | | | | | | | | | | | | | | | We have special key types for PKCS#11 public and private keys. When using the PK ops classes, passing the "pkcs11" provider parameter is not necessary, as the PK ops is internally chosen by the PKCS#11 key class, in contrast to other providers such as openssl, which don't have special key classes. Updates the handbook code examples and the tests.
* | Fix failure to fully zero memory before freeJack Lloyd2017-07-161-0/+13
|/ | | | | | Introduced in 455bd2557cbb1343e59eefd97cb449f06a702c28 Found and reported by Roman Pozlevich
* Updated key checking in manualNever2017-06-161-1/+25
|
* Update docsJack Lloyd2017-06-092-8/+1
|
* Add botan_hash_copy_state FFI function.Daniel Wyatt2017-05-251-0/+4
|
* Make Botan compile with LibreSSL again.Alexander Bluhm2017-05-241-1/+1
| | | | | | Add some #ifdef LIBRESSL_VERSION_NUMBER in addition to the OPENSSL_VERSION_NUMBER switch. Narrow down API compatiblity between LibreSSL and OpenSSL version in docs.
* Doc and 32-bit build fixesJack Lloyd2017-05-222-0/+4
|
* Add HOTP (RFC 4226) and TOTP (RFC 6238)Jack Lloyd2017-05-191-0/+64
|
* Fix botan_privkey_load_rsa misleading parameter names.Daniel Wyatt2017-05-131-2/+2
| | | | RSA_PrivateKey's constructor take p,q,e,d,n.
* Mention LibreSSL in the docs.Alexander Bluhm2017-04-282-1/+2
| | | | | The --with-openssl compile option can also used with LibreSSL. Move the feature from the todo list to the documentation.
* Fix typoAntonio Coratelli2017-04-211-1/+1
|
* Fix typo in building.rst [ci skip]René Korthaus2017-04-181-1/+1
|
* Support for ElGamal in FFI interfaceKrzysztof Kwiatkowski2017-04-141-0/+12
| | | | | | * Adds `botan_pubkey_load_elgamal' and `botan_privkey_load_elgamal' functions to FFI interface. * Adds test `ffi_test_elgamal'
* Add HMAC CLI commandRené Korthaus2017-04-131-0/+5
|
* Merge GH #966 Add SM3 hash functionJack Lloyd2017-04-051-0/+1
|\
| * Add SM3 hash functionDaniel Wyatt2017-04-031-0/+1
| |
* | Merge GH #978 Fix bad read in X509 DN comparisons (CVE-2017-2801)Jack Lloyd2017-04-041-1/+12
|\ \
| * | Fix X509 DN comparisonsJack Lloyd2017-04-041-1/+12
| | | | | | | | | | | | CVE-2017-2801
* | | Add block cipher interface to C APIJack Lloyd2017-04-042-2/+49
|/ /
* | Merge GH #964 Add various useful FFI functions for public key cryptoJack Lloyd2017-04-041-0/+28
|\ \ | |/ |/|
| * Document new functionsJack Lloyd2017-04-021-0/+28
| |
* | Fix doc formattingJack Lloyd2017-04-021-1/+2
| |
* | Add some more useful bigint functions to C interfaceJack Lloyd2017-03-311-2/+33
|/
* Add myself as contributor.Alexander Bluhm2017-03-291-0/+6
|
* Document functions added in GH #899Jack Lloyd2017-03-291-0/+30
|
* Document new C APIs added in GH #946Jack Lloyd2017-03-291-5/+186
|
* Note that bcrypt bug was introduced in 1.11.0Jack Lloyd2017-03-281-2/+4
| | | | | | | | | Specifically 9644a3ecebb15. So 1.10 was not affected, as it instead throws an exception for passwords longer than 56 chars, which is incompatible with other bcrypt APIs but does not introduce any security problems. [ci skip]
* Merge GH #944 Add check_key to C APIJack Lloyd2017-03-281-1/+4
|\
| * Expose PK::check_key functions in C interfaceJack Lloyd2017-03-271-1/+4
| |
* | Merge GH #942 Avoid passing IP as hostname in tls_client command line utilJack Lloyd2017-03-281-0/+4
|\ \
| * | Add documentation that SNI must be FQDN.Alexander Bluhm2017-03-271-0/+4
| |/ | | | | | | server_info parameter of TLS::Client must not be an IP address.
* | Add relnotes and CVEJack Lloyd2017-03-241-1/+1
| |
* | Fix incorrect password truncation in bcrypt password hashing.Jack Lloyd2017-03-242-4/+32
|/ | | | | | | | | | The 56 char bound is bogus; Blowfish itself allows at most 448 bits in the key schedule, but Bcrypt's modification allows up to 72 chars for the password. Bug pointed out by Solar Designer. Also reject work factors 0...3 since all other extant bcrypt implementations require at least work factor 4. Adds more bcrypt tests generated by crypt_bcrypt and OpenBSD's version.