Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Merge GH #2010 Fix MSVC warnings | Jack Lloyd | 2019-06-29 | 2 | -2/+3 |
|\ | |||||
| * | Fix various MSVC warnings | Jack Lloyd | 2019-06-29 | 2 | -2/+3 |
| | | |||||
* | | Fix some minimized build problems | Jack Lloyd | 2019-06-29 | 1 | -3/+3 |
|/ | |||||
* | Change XMSS OIDs and feature macro name | Jack Lloyd | 2019-06-23 | 1 | -2/+2 |
| | | | | Since draft6 and final RFC are not compatible ... | ||||
* | Fix some LGTM issues | Jack Lloyd | 2019-06-19 | 4 | -13/+19 |
| | |||||
* | Add --max-clients option to tls_proxy and tls_http_server | Jack Lloyd | 2019-05-31 | 2 | -53/+107 |
| | | | | A clean exit is required in order to get coverage results | ||||
* | Argon2: minor optimizations, add tests of CLI, tweak tuning | Jack Lloyd | 2019-05-30 | 2 | -1/+47 |
| | |||||
* | Argon2: PasswordHash, documentation, hash formatting | Jack Lloyd | 2019-05-29 | 2 | -2/+80 |
| | |||||
* | Merge GH #1858 Update XMSS to conform to RFC 8391 | Jack Lloyd | 2019-05-24 | 1 | -4/+4 |
|\ | |||||
| * | Fix param names to match RFC | Jack Lloyd | 2019-05-13 | 1 | -4/+4 |
| | | |||||
| * | Fix param names | Jack Lloyd | 2019-05-10 | 1 | -4/+4 |
| | | |||||
* | | Avoid warnings | Jack Lloyd | 2019-05-24 | 1 | -0/+2 |
| | | |||||
* | | Fix TLS CBC in DTLS when a bad packet is received. | Jack Lloyd | 2019-05-21 | 1 | -1/+1 |
| | | | | | | | | | | | | The Lucky13 countermeasure causes the mac state to become corrupted, due to the extra inputs. Then the next packet fails its mac check. This causes the Lucky13 countermeasure to go off again, ... | ||||
* | | Merge GH #1945 Add --format option to rng cli | Jack Lloyd | 2019-05-10 | 4 | -43/+69 |
|\ \ | |||||
| * | | Add --format option for RNG cmdlet | Jack Lloyd | 2019-05-09 | 4 | -43/+69 |
| |/ | |||||
* / | Mark some classes as final | Jack Lloyd | 2019-05-09 | 4 | -8/+8 |
|/ | |||||
* | Add a cast for Windows | Jack Lloyd | 2019-04-30 | 1 | -1/+1 |
| | |||||
* | Fix tls_server | Jack Lloyd | 2019-04-30 | 1 | -1/+9 |
| | | | | PR #1840 ended up breaking tls_server in DTLS mode on Linux | ||||
* | Fix feature macro checks. | Jack Lloyd | 2019-04-26 | 2 | -6/+4 |
| | | | | Add a checker script. | ||||
* | Add a cmdlet to print UUIDs | Jack Lloyd | 2019-04-26 | 1 | -0/+32 |
| | |||||
* | Understand --version | Jack Lloyd | 2019-04-18 | 1 | -0/+2 |
| | |||||
* | Add a wrapper class that wraps macOS or Linux certificate stores. | Jack Lloyd | 2019-04-13 | 2 | -26/+69 |
| | |||||
* | Fix a few warnings in Boost specific code | Jack Lloyd | 2019-04-13 | 2 | -3/+3 |
| | |||||
* | Allow creating intermediate CAs using CLI | Jack Lloyd | 2019-04-10 | 1 | -3/+8 |
| | | | | Closes #1879 | ||||
* | boost 1.70 compatibility | Ralf van der Enden | 2019-04-05 | 2 | -2/+14 |
| | | | | Fixes issue #82 | ||||
* | Tracing socket feature for the CLI TLS server. | David Carlier | 2019-03-29 | 1 | -0/+27 |
| | | | | For now FreeBSD DTrace support. | ||||
* | Fix some extra semicolons | Jack Lloyd | 2019-03-27 | 2 | -2/+2 |
| | |||||
* | s/as_string/to_string/ | Jack Lloyd | 2019-03-01 | 1 | -1/+1 |
| | | | | | A few older APIs use as_string where everywhere else uses to_string. Add to_string's where missing, and deprecate X::as_string. | ||||
* | Split CLI utils.cpp into more parts | Jack Lloyd | 2019-02-28 | 5 | -236/+336 |
| | | | | | | Add base58 encoding/decoding CLI Use decrypt_or_random in pk_decrypt | ||||
* | Windows compilation fix | Vitaly Ivanov | 2019-02-22 | 1 | -1/+1 |
| | |||||
* | macOS fix for tls_server in UDP/DTLS mode | Vitaly Ivanov | 2019-02-21 | 1 | -1/+4 |
| | |||||
* | Fixes for minimized builds | Jack Lloyd | 2019-02-16 | 1 | -0/+1 |
| | | | | Various configurations would fail build or test, fix that. | ||||
* | cli: sign and verify emsa default is empty for Ed25519 (fix #1828) | Nuno Goncalves | 2019-02-07 | 1 | -14/+33 |
| | | | | Signed-off-by: Nuno Goncalves <[email protected]> | ||||
* | Fix macro checks | Jack Lloyd | 2019-01-24 | 1 | -2/+1 |
| | |||||
* | Split out bcrypt cli util to its own file | Jack Lloyd | 2019-01-22 | 2 | -78/+89 |
| | |||||
* | Move hash util to hash.cpp and add --format option | Jack Lloyd | 2019-01-22 | 2 | -65/+118 |
| | | | | | | | For example/documentation purposes, having distinct files makes the code easier to find. New --format option allows encoding as base64 or base58 | ||||
* | Sandboxing feature from CLI pov. | David Carlier | 2019-01-14 | 3 | -1/+74 |
| | | | | | No resources to free with actual OS features but might be of use for later. | ||||
* | Proposal of sandboxing feature. | David Carlier | 2019-01-06 | 1 | -0/+6 |
| | | | | For now only used by the TLS server. | ||||
* | Casts to avoid MSVC warnings | Jack Lloyd | 2019-01-03 | 1 | -1/+9 |
| | |||||
* | Rename OS::get_processor_timestamp to OS::get_cpu_cycle_counter | Jack Lloyd | 2018-12-23 | 1 | -1/+1 |
| | | | | | Using phrase "timestamp" makes it sound like it has some relation to wall clock which it does not. | ||||
* | Test how long it takes to precompute base point multiples | Jack Lloyd | 2018-12-16 | 1 | -0/+20 |
| | |||||
* | Fix more MSVC warnings | Jack Lloyd | 2018-12-10 | 2 | -4/+4 |
| | |||||
* | Work around a problem when built with OpenSSL | Jack Lloyd | 2018-12-10 | 1 | -1/+8 |
| | | | | | | | It appears OpenSSL has a different interpretation from us of how the message representative is formed for P-521 when given a hash to sign that is larger than the group order; signatures generated by us do not verify with OpenSSL and vice versa. | ||||
* | Support recovering ECDSA public key from message/signature pair | Jack Lloyd | 2018-12-10 | 1 | -0/+51 |
| | | | | | | See http://www.secg.org/sec1-v2.pdf section 4.1.6 Closes #664 | ||||
* | In speed, track number of invalid generated signatures and print once | Jack Lloyd | 2018-12-08 | 1 | -1/+6 |
| | | | | Otherwise this spams the output when something goes wrong. | ||||
* | Add a constant time divide variant for dividing by uint8_t | Jack Lloyd | 2018-12-02 | 1 | -0/+43 |
| | | | | | | | | | Originally wrote it for div-by-word but that ends up requiring a dword type which we don't always have. And uint8_t covers the most important cases of n = 10 and n = 58 (whenever I get around to writing base58). We could portably support up to div-by-uint32, but I don't think we need it. Nicely for n = 10, this is actually faster than the variable time division. | ||||
* | Merge GH #1757 Add a constant time division algorithm | Jack Lloyd | 2018-12-02 | 1 | -0/+45 |
|\ | |||||
| * | Add a const-time division algorithm | Jack Lloyd | 2018-12-02 | 1 | -0/+45 |
| | | | | | | | | | | | | | | | | It is stupid and slow (~50-100x slower than variable time version) but still useful for protecting critical algorithms. Not currently used, waiting for OSS-Fuzz to test it for a while before we commit to it. | ||||
* | | Support getting a passphrase from most of the cli tools | Jack Lloyd | 2018-12-01 | 9 | -23/+46 |
| | | |||||
* | | Promote echo suppression of terminal to Botan::OS | Jack Lloyd | 2018-12-01 | 1 | -24/+15 |
|/ |