Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Mention LibreSSL in the docs. | Alexander Bluhm | 2017-04-28 | 2 | -1/+2 |
| | | | | | The --with-openssl compile option can also used with LibreSSL. Move the feature from the todo list to the documentation. | ||||
* | Fix typo | Antonio Coratelli | 2017-04-21 | 1 | -1/+1 |
| | |||||
* | Fix typo in building.rst [ci skip] | René Korthaus | 2017-04-18 | 1 | -1/+1 |
| | |||||
* | Support for ElGamal in FFI interface | Krzysztof Kwiatkowski | 2017-04-14 | 1 | -0/+12 |
| | | | | | | * Adds `botan_pubkey_load_elgamal' and `botan_privkey_load_elgamal' functions to FFI interface. * Adds test `ffi_test_elgamal' | ||||
* | Add HMAC CLI command | René Korthaus | 2017-04-13 | 1 | -0/+5 |
| | |||||
* | Merge GH #966 Add SM3 hash function | Jack Lloyd | 2017-04-05 | 1 | -0/+1 |
|\ | |||||
| * | Add SM3 hash function | Daniel Wyatt | 2017-04-03 | 1 | -0/+1 |
| | | |||||
* | | Merge GH #978 Fix bad read in X509 DN comparisons (CVE-2017-2801) | Jack Lloyd | 2017-04-04 | 1 | -1/+12 |
|\ \ | |||||
| * | | Fix X509 DN comparisons | Jack Lloyd | 2017-04-04 | 1 | -1/+12 |
| | | | | | | | | | | | | CVE-2017-2801 | ||||
* | | | Add block cipher interface to C API | Jack Lloyd | 2017-04-04 | 2 | -2/+49 |
|/ / | |||||
* | | Merge GH #964 Add various useful FFI functions for public key crypto | Jack Lloyd | 2017-04-04 | 1 | -0/+28 |
|\ \ | |/ |/| | |||||
| * | Document new functions | Jack Lloyd | 2017-04-02 | 1 | -0/+28 |
| | | |||||
* | | Fix doc formatting | Jack Lloyd | 2017-04-02 | 1 | -1/+2 |
| | | |||||
* | | Add some more useful bigint functions to C interface | Jack Lloyd | 2017-03-31 | 1 | -2/+33 |
|/ | |||||
* | Add myself as contributor. | Alexander Bluhm | 2017-03-29 | 1 | -0/+6 |
| | |||||
* | Document functions added in GH #899 | Jack Lloyd | 2017-03-29 | 1 | -0/+30 |
| | |||||
* | Document new C APIs added in GH #946 | Jack Lloyd | 2017-03-29 | 1 | -5/+186 |
| | |||||
* | Note that bcrypt bug was introduced in 1.11.0 | Jack Lloyd | 2017-03-28 | 1 | -2/+4 |
| | | | | | | | | | Specifically 9644a3ecebb15. So 1.10 was not affected, as it instead throws an exception for passwords longer than 56 chars, which is incompatible with other bcrypt APIs but does not introduce any security problems. [ci skip] | ||||
* | Merge GH #944 Add check_key to C API | Jack Lloyd | 2017-03-28 | 1 | -1/+4 |
|\ | |||||
| * | Expose PK::check_key functions in C interface | Jack Lloyd | 2017-03-27 | 1 | -1/+4 |
| | | |||||
* | | Merge GH #942 Avoid passing IP as hostname in tls_client command line util | Jack Lloyd | 2017-03-28 | 1 | -0/+4 |
|\ \ | |||||
| * | | Add documentation that SNI must be FQDN. | Alexander Bluhm | 2017-03-27 | 1 | -0/+4 |
| |/ | | | | | | | server_info parameter of TLS::Client must not be an IP address. | ||||
* | | Add relnotes and CVE | Jack Lloyd | 2017-03-24 | 1 | -1/+1 |
| | | |||||
* | | Fix incorrect password truncation in bcrypt password hashing. | Jack Lloyd | 2017-03-24 | 2 | -4/+32 |
|/ | | | | | | | | | | The 56 char bound is bogus; Blowfish itself allows at most 448 bits in the key schedule, but Bcrypt's modification allows up to 72 chars for the password. Bug pointed out by Solar Designer. Also reject work factors 0...3 since all other extant bcrypt implementations require at least work factor 4. Adds more bcrypt tests generated by crypt_bcrypt and OpenBSD's version. | ||||
* | Use a hardcoded URL for the PDF download | René Korthaus | 2017-03-23 | 1 | -1/+1 |
| | |||||
* | Merge GH #923 Build PDF handbook | Jack Lloyd | 2017-03-22 | 1 | -1/+7 |
|\ | |||||
| * | Provide the handbook as a PDF download | René Korthaus | 2017-03-16 | 1 | -1/+7 |
| | | | | | | | | | | | | | | Extends the website script to include a link to the manual as a PDF file for download. Also includes links to search and index only for html, as it does not work for latex. | ||||
* | | Add a note that no RNG is part of the minimized build | René Korthaus | 2017-03-17 | 1 | -2/+12 |
|/ | | | | | Also adds a description for the --list-modules and --module-policy option. | ||||
* | Document --with-build-dir correctly in building manual. | Alexander Bluhm | 2017-03-09 | 1 | -1/+1 |
| | |||||
* | Merge GH #905 Fix TLS doc re default DH minimum size | Jack Lloyd | 2017-03-07 | 1 | -1/+1 |
|\ | |||||
| * | Fix the default value (2048) of minimum_dh_group_size in the documentation | louiz’ | 2017-03-07 | 1 | -1/+1 |
| | | |||||
* | | Allow OCSP requests without the full subject certificate | Nuno Goncalves | 2017-03-04 | 1 | -6/+18 |
|/ | | | | | | | | | | | | | | | | A OCSP request doesn't need the full subject certificate. This extends the API to require instead of the subject certificate: * OCSP::Request: subject serial. * OCSP::online_check: subject serial AND ocsp responder url. API breaking change: * removal of OCSP::Request::subject() as OCSP::Request doesn't need to hold the certificate, but only the serial. Signed-off-by: Nuno Goncalves <[email protected]> | ||||
* | Some todos [ci skip] | Jack Lloyd | 2017-02-23 | 1 | -1/+4 |
| | |||||
* | Document hash, rng, mac, pbkdf and kdf in ffi handbook | René Korthaus | 2017-02-19 | 1 | -24/+73 |
| | |||||
* | Add all ffi functions and types to ffi.rst | René Korthaus | 2017-02-19 | 1 | -19/+236 |
| | |||||
* | Add more docs for ffi | René Korthaus | 2017-02-19 | 1 | -3/+73 |
| | |||||
* | Add minimal example code to tls handbook | René Korthaus | 2017-02-13 | 1 | -2/+237 |
| | |||||
* | Update todo list | Jack Lloyd | 2017-02-07 | 1 | -6/+8 |
| | | | | | | Add some things, remove some things that are already done. [ci skip] | ||||
* | Complete the rename of Python wrapper | Jack Lloyd | 2017-01-24 | 3 | -3/+3 |
| | | | | Where referenced in CI scripts, docs and such | ||||
* | Remove --with-pkcs11 option from CI scripts, docs | René Korthaus | 2017-01-11 | 1 | -1/+1 |
| | |||||
* | Switch to readthedocs Sphinx theme | Jack Lloyd | 2017-01-07 | 2 | -9/+34 |
| | | | | | | | Move some text and change some headers to look better with how rtd theme formats the table of contents. GH #822 | ||||
* | Update for 2.0.0 release2.0.0 | Jack Lloyd | 2017-01-06 | 1 | -1/+1 |
| | |||||
* | Fix table formatting in support.rst | Jack Lloyd | 2017-01-06 | 1 | -11/+9 |
| | | | | [ci skip] | ||||
* | Merge GH #802 Update version to 2.0.0, change lib and include dir names | Jack Lloyd | 2017-01-06 | 1 | -6/+6 |
|\ | |||||
| * | Update shared object naming for new versioning scheme. | Jack Lloyd | 2017-01-06 | 1 | -6/+6 |
| | | | | | | | | | | | | | | | | | | | | | | | | Cleans up so object naming since most of the time (across Unix) we follow the exact same naming scheme; just make it the default if only the so suffix is specified in the file. Also updates include header dir to be botan-${major} Changes behavior when shared lib not supported; instead of making the user explicitly try again with --disable-shared, just assume it and continue running. | ||||
* | | Add document for distribution maintainers | Jack Lloyd | 2017-01-06 | 2 | -0/+39 |
|/ | |||||
* | Merge GH #803 Add botan_ffi_supports_version func | Jack Lloyd | 2017-01-05 | 1 | -1/+11 |
|\ | |||||
| * | Add botan_ffi_supports_api function | Jack Lloyd | 2017-01-04 | 1 | -1/+11 |
| | | | | | | | | | | | | | | | | | | | | | | | | This lets us upgrade the FFI version over time and still allow applications to reliably detect if the current library binary supports their version. As an example, it would be useful to be able to add features to FFI sometime in 2.x. In that case, we would increase the value of the FFI API version, even though anything calling the old API would still work perfectly. Applications can verify at runtime the API they want to use is supported using this new call. | ||||
* | | Comment on warnings in goals doc [ci skip] | Jack Lloyd | 2017-01-05 | 1 | -2/+4 |
| | | |||||
* | | Add missing entry to manual TOC | Jack Lloyd | 2017-01-04 | 1 | -1/+1 |
|/ | | | | [ci skip] |