Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Deprecate 64-bit GCM tags | Jack Lloyd | 2017-09-14 | 1 | -0/+2 |
| | | | | | | GH #1207 [ci skip] | ||||
* | Update todos | Jack Lloyd | 2017-09-12 | 1 | -3/+4 |
| | | | | [ci skip] | ||||
* | Add a todo | Jack Lloyd | 2017-09-02 | 1 | -0/+2 |
| | |||||
* | Document how to use TLS-Attacker | Jack Lloyd | 2017-09-02 | 1 | -0/+18 |
| | |||||
* | Change http://botan.randombit.net to https URIs | Jack Lloyd | 2017-09-01 | 1 | -1/+1 |
| | | | | | | Not a big deal since the site already uses HSTS, but whatever. [ci skip] | ||||
* | Add a todo re Dockerizing Travis build | Jack Lloyd | 2017-08-29 | 1 | -0/+2 |
| | | | | [ci skip] | ||||
* | Add a reminder to test with valgrind etc before release | Jack Lloyd | 2017-08-29 | 1 | -3/+18 |
| | | | | Would have avoided 3cd661c8dc | ||||
* | Correct manual re key agreement schemes | Jack Lloyd | 2017-08-29 | 1 | -6/+10 |
| | | | | See #1166 | ||||
* | Add some docs about fuzzing | Jack Lloyd | 2017-08-29 | 2 | -0/+71 |
| | |||||
* | Add dh functions in ffi | Konstantinos Kolelis | 2017-08-22 | 1 | -1/+16 |
| | |||||
* | Add SHACAL2 | Jack Lloyd | 2017-08-13 | 1 | -1/+0 |
| | | | | 256 bit ARX block cipher with hardware support, what's not to love. | ||||
* | Add http_util to module policies (GH #1109) | René Korthaus | 2017-08-07 | 1 | -1/+3 |
| | | | | | | http_util is required by the x509 module to perform online OCSP checks, which should be defaulted to ON. Without being part of the policy, it would be disabled. | ||||
* | Merge GH #1114 Add Streebog hash (GOST 34.11-2012) | Jack Lloyd | 2017-08-07 | 1 | -0/+1 |
|\ | |||||
| * | Add Streebog hash (GOST R 34.11-2012). | Daniel Wyatt | 2017-08-04 | 1 | -0/+1 |
| | | |||||
* | | Update news and todo | Jack Lloyd | 2017-08-04 | 1 | -3/+3 |
|/ | | | | [ci skip] | ||||
* | Add ChaCha_RNG | Jack Lloyd | 2017-07-31 | 1 | -0/+13 |
| | |||||
* | Merge GH #1110 Fix documentation of PKCS11 module | Jack Lloyd | 2017-07-16 | 1 | -4/+4 |
|\ | |||||
| * | Remove "pkcs11" provider paramater for pk ops in handbook and tests | René Korthaus | 2017-07-04 | 1 | -4/+4 |
| | | | | | | | | | | | | | | | | | | We have special key types for PKCS#11 public and private keys. When using the PK ops classes, passing the "pkcs11" provider parameter is not necessary, as the PK ops is internally chosen by the PKCS#11 key class, in contrast to other providers such as openssl, which don't have special key classes. Updates the handbook code examples and the tests. | ||||
* | | Fix failure to fully zero memory before free | Jack Lloyd | 2017-07-16 | 1 | -0/+13 |
|/ | | | | | | Introduced in 455bd2557cbb1343e59eefd97cb449f06a702c28 Found and reported by Roman Pozlevich | ||||
* | Updated key checking in manual | Never | 2017-06-16 | 1 | -1/+25 |
| | |||||
* | Update docs | Jack Lloyd | 2017-06-09 | 2 | -8/+1 |
| | |||||
* | Add botan_hash_copy_state FFI function. | Daniel Wyatt | 2017-05-25 | 1 | -0/+4 |
| | |||||
* | Make Botan compile with LibreSSL again. | Alexander Bluhm | 2017-05-24 | 1 | -1/+1 |
| | | | | | | Add some #ifdef LIBRESSL_VERSION_NUMBER in addition to the OPENSSL_VERSION_NUMBER switch. Narrow down API compatiblity between LibreSSL and OpenSSL version in docs. | ||||
* | Doc and 32-bit build fixes | Jack Lloyd | 2017-05-22 | 2 | -0/+4 |
| | |||||
* | Add HOTP (RFC 4226) and TOTP (RFC 6238) | Jack Lloyd | 2017-05-19 | 1 | -0/+64 |
| | |||||
* | Fix botan_privkey_load_rsa misleading parameter names. | Daniel Wyatt | 2017-05-13 | 1 | -2/+2 |
| | | | | RSA_PrivateKey's constructor take p,q,e,d,n. | ||||
* | Mention LibreSSL in the docs. | Alexander Bluhm | 2017-04-28 | 2 | -1/+2 |
| | | | | | The --with-openssl compile option can also used with LibreSSL. Move the feature from the todo list to the documentation. | ||||
* | Fix typo | Antonio Coratelli | 2017-04-21 | 1 | -1/+1 |
| | |||||
* | Fix typo in building.rst [ci skip] | René Korthaus | 2017-04-18 | 1 | -1/+1 |
| | |||||
* | Support for ElGamal in FFI interface | Krzysztof Kwiatkowski | 2017-04-14 | 1 | -0/+12 |
| | | | | | | * Adds `botan_pubkey_load_elgamal' and `botan_privkey_load_elgamal' functions to FFI interface. * Adds test `ffi_test_elgamal' | ||||
* | Add HMAC CLI command | René Korthaus | 2017-04-13 | 1 | -0/+5 |
| | |||||
* | Merge GH #966 Add SM3 hash function | Jack Lloyd | 2017-04-05 | 1 | -0/+1 |
|\ | |||||
| * | Add SM3 hash function | Daniel Wyatt | 2017-04-03 | 1 | -0/+1 |
| | | |||||
* | | Merge GH #978 Fix bad read in X509 DN comparisons (CVE-2017-2801) | Jack Lloyd | 2017-04-04 | 1 | -1/+12 |
|\ \ | |||||
| * | | Fix X509 DN comparisons | Jack Lloyd | 2017-04-04 | 1 | -1/+12 |
| | | | | | | | | | | | | CVE-2017-2801 | ||||
* | | | Add block cipher interface to C API | Jack Lloyd | 2017-04-04 | 2 | -2/+49 |
|/ / | |||||
* | | Merge GH #964 Add various useful FFI functions for public key crypto | Jack Lloyd | 2017-04-04 | 1 | -0/+28 |
|\ \ | |/ |/| | |||||
| * | Document new functions | Jack Lloyd | 2017-04-02 | 1 | -0/+28 |
| | | |||||
* | | Fix doc formatting | Jack Lloyd | 2017-04-02 | 1 | -1/+2 |
| | | |||||
* | | Add some more useful bigint functions to C interface | Jack Lloyd | 2017-03-31 | 1 | -2/+33 |
|/ | |||||
* | Add myself as contributor. | Alexander Bluhm | 2017-03-29 | 1 | -0/+6 |
| | |||||
* | Document functions added in GH #899 | Jack Lloyd | 2017-03-29 | 1 | -0/+30 |
| | |||||
* | Document new C APIs added in GH #946 | Jack Lloyd | 2017-03-29 | 1 | -5/+186 |
| | |||||
* | Note that bcrypt bug was introduced in 1.11.0 | Jack Lloyd | 2017-03-28 | 1 | -2/+4 |
| | | | | | | | | | Specifically 9644a3ecebb15. So 1.10 was not affected, as it instead throws an exception for passwords longer than 56 chars, which is incompatible with other bcrypt APIs but does not introduce any security problems. [ci skip] | ||||
* | Merge GH #944 Add check_key to C API | Jack Lloyd | 2017-03-28 | 1 | -1/+4 |
|\ | |||||
| * | Expose PK::check_key functions in C interface | Jack Lloyd | 2017-03-27 | 1 | -1/+4 |
| | | |||||
* | | Merge GH #942 Avoid passing IP as hostname in tls_client command line util | Jack Lloyd | 2017-03-28 | 1 | -0/+4 |
|\ \ | |||||
| * | | Add documentation that SNI must be FQDN. | Alexander Bluhm | 2017-03-27 | 1 | -0/+4 |
| |/ | | | | | | | server_info parameter of TLS::Client must not be an IP address. | ||||
* | | Add relnotes and CVE | Jack Lloyd | 2017-03-24 | 1 | -1/+1 |
| | | |||||
* | | Fix incorrect password truncation in bcrypt password hashing. | Jack Lloyd | 2017-03-24 | 2 | -4/+32 |
|/ | | | | | | | | | | The 56 char bound is bogus; Blowfish itself allows at most 448 bits in the key schedule, but Bcrypt's modification allows up to 72 chars for the password. Bug pointed out by Solar Designer. Also reject work factors 0...3 since all other extant bcrypt implementations require at least work factor 4. Adds more bcrypt tests generated by crypt_bcrypt and OpenBSD's version. |