aboutsummaryrefslogtreecommitdiffstats
path: root/doc
Commit message (Collapse)AuthorAgeFilesLines
* Mention LibreSSL in the docs.Alexander Bluhm2017-04-282-1/+2
| | | | | The --with-openssl compile option can also used with LibreSSL. Move the feature from the todo list to the documentation.
* Fix typoAntonio Coratelli2017-04-211-1/+1
|
* Fix typo in building.rst [ci skip]René Korthaus2017-04-181-1/+1
|
* Support for ElGamal in FFI interfaceKrzysztof Kwiatkowski2017-04-141-0/+12
| | | | | | * Adds `botan_pubkey_load_elgamal' and `botan_privkey_load_elgamal' functions to FFI interface. * Adds test `ffi_test_elgamal'
* Add HMAC CLI commandRené Korthaus2017-04-131-0/+5
|
* Merge GH #966 Add SM3 hash functionJack Lloyd2017-04-051-0/+1
|\
| * Add SM3 hash functionDaniel Wyatt2017-04-031-0/+1
| |
* | Merge GH #978 Fix bad read in X509 DN comparisons (CVE-2017-2801)Jack Lloyd2017-04-041-1/+12
|\ \
| * | Fix X509 DN comparisonsJack Lloyd2017-04-041-1/+12
| | | | | | | | | | | | CVE-2017-2801
* | | Add block cipher interface to C APIJack Lloyd2017-04-042-2/+49
|/ /
* | Merge GH #964 Add various useful FFI functions for public key cryptoJack Lloyd2017-04-041-0/+28
|\ \ | |/ |/|
| * Document new functionsJack Lloyd2017-04-021-0/+28
| |
* | Fix doc formattingJack Lloyd2017-04-021-1/+2
| |
* | Add some more useful bigint functions to C interfaceJack Lloyd2017-03-311-2/+33
|/
* Add myself as contributor.Alexander Bluhm2017-03-291-0/+6
|
* Document functions added in GH #899Jack Lloyd2017-03-291-0/+30
|
* Document new C APIs added in GH #946Jack Lloyd2017-03-291-5/+186
|
* Note that bcrypt bug was introduced in 1.11.0Jack Lloyd2017-03-281-2/+4
| | | | | | | | | Specifically 9644a3ecebb15. So 1.10 was not affected, as it instead throws an exception for passwords longer than 56 chars, which is incompatible with other bcrypt APIs but does not introduce any security problems. [ci skip]
* Merge GH #944 Add check_key to C APIJack Lloyd2017-03-281-1/+4
|\
| * Expose PK::check_key functions in C interfaceJack Lloyd2017-03-271-1/+4
| |
* | Merge GH #942 Avoid passing IP as hostname in tls_client command line utilJack Lloyd2017-03-281-0/+4
|\ \
| * | Add documentation that SNI must be FQDN.Alexander Bluhm2017-03-271-0/+4
| |/ | | | | | | server_info parameter of TLS::Client must not be an IP address.
* | Add relnotes and CVEJack Lloyd2017-03-241-1/+1
| |
* | Fix incorrect password truncation in bcrypt password hashing.Jack Lloyd2017-03-242-4/+32
|/ | | | | | | | | | The 56 char bound is bogus; Blowfish itself allows at most 448 bits in the key schedule, but Bcrypt's modification allows up to 72 chars for the password. Bug pointed out by Solar Designer. Also reject work factors 0...3 since all other extant bcrypt implementations require at least work factor 4. Adds more bcrypt tests generated by crypt_bcrypt and OpenBSD's version.
* Use a hardcoded URL for the PDF downloadRené Korthaus2017-03-231-1/+1
|
* Merge GH #923 Build PDF handbookJack Lloyd2017-03-221-1/+7
|\
| * Provide the handbook as a PDF downloadRené Korthaus2017-03-161-1/+7
| | | | | | | | | | | | | | Extends the website script to include a link to the manual as a PDF file for download. Also includes links to search and index only for html, as it does not work for latex.
* | Add a note that no RNG is part of the minimized buildRené Korthaus2017-03-171-2/+12
|/ | | | | Also adds a description for the --list-modules and --module-policy option.
* Document --with-build-dir correctly in building manual.Alexander Bluhm2017-03-091-1/+1
|
* Merge GH #905 Fix TLS doc re default DH minimum sizeJack Lloyd2017-03-071-1/+1
|\
| * Fix the default value (2048) of minimum_dh_group_size in the documentationlouiz’2017-03-071-1/+1
| |
* | Allow OCSP requests without the full subject certificateNuno Goncalves2017-03-041-6/+18
|/ | | | | | | | | | | | | | | | A OCSP request doesn't need the full subject certificate. This extends the API to require instead of the subject certificate: * OCSP::Request: subject serial. * OCSP::online_check: subject serial AND ocsp responder url. API breaking change: * removal of OCSP::Request::subject() as OCSP::Request doesn't need to hold the certificate, but only the serial. Signed-off-by: Nuno Goncalves <[email protected]>
* Some todos [ci skip]Jack Lloyd2017-02-231-1/+4
|
* Document hash, rng, mac, pbkdf and kdf in ffi handbookRené Korthaus2017-02-191-24/+73
|
* Add all ffi functions and types to ffi.rstRené Korthaus2017-02-191-19/+236
|
* Add more docs for ffiRené Korthaus2017-02-191-3/+73
|
* Add minimal example code to tls handbookRené Korthaus2017-02-131-2/+237
|
* Update todo listJack Lloyd2017-02-071-6/+8
| | | | | | Add some things, remove some things that are already done. [ci skip]
* Complete the rename of Python wrapperJack Lloyd2017-01-243-3/+3
| | | | Where referenced in CI scripts, docs and such
* Remove --with-pkcs11 option from CI scripts, docsRené Korthaus2017-01-111-1/+1
|
* Switch to readthedocs Sphinx themeJack Lloyd2017-01-072-9/+34
| | | | | | | Move some text and change some headers to look better with how rtd theme formats the table of contents. GH #822
* Update for 2.0.0 release2.0.0Jack Lloyd2017-01-061-1/+1
|
* Fix table formatting in support.rstJack Lloyd2017-01-061-11/+9
| | | | [ci skip]
* Merge GH #802 Update version to 2.0.0, change lib and include dir namesJack Lloyd2017-01-061-6/+6
|\
| * Update shared object naming for new versioning scheme.Jack Lloyd2017-01-061-6/+6
| | | | | | | | | | | | | | | | | | | | | | | | Cleans up so object naming since most of the time (across Unix) we follow the exact same naming scheme; just make it the default if only the so suffix is specified in the file. Also updates include header dir to be botan-${major} Changes behavior when shared lib not supported; instead of making the user explicitly try again with --disable-shared, just assume it and continue running.
* | Add document for distribution maintainersJack Lloyd2017-01-062-0/+39
|/
* Merge GH #803 Add botan_ffi_supports_version funcJack Lloyd2017-01-051-1/+11
|\
| * Add botan_ffi_supports_api functionJack Lloyd2017-01-041-1/+11
| | | | | | | | | | | | | | | | | | | | | | | | This lets us upgrade the FFI version over time and still allow applications to reliably detect if the current library binary supports their version. As an example, it would be useful to be able to add features to FFI sometime in 2.x. In that case, we would increase the value of the FFI API version, even though anything calling the old API would still work perfectly. Applications can verify at runtime the API they want to use is supported using this new call.
* | Comment on warnings in goals doc [ci skip]Jack Lloyd2017-01-051-2/+4
| |
* | Add missing entry to manual TOCJack Lloyd2017-01-041-1/+1
|/ | | | [ci skip]