aboutsummaryrefslogtreecommitdiffstats
path: root/src/cmd
Commit message (Collapse)AuthorAgeFilesLines
* Get rid of unused parmeter warning in credentials.hSimon Warta2015-06-261-1/+3
|
* Merge pull request #112 from cordney/increase-keygen-default-bitsSimon Warta2015-06-251-1/+1
|\ | | | | Increase default keysize to 2048 bit in keygen tool
| * Increase default keysize to 2048 bit in keygen toolRené Korthaus2015-06-171-1/+1
| | | | | | | | | | | | | | The keygen tool would generate a 1024 bit RSA key by default. As 1024 bit RSA is not considered secure from todays standards, default keysize is increased to 2048 bit.
* | Get rid of 3 unused warnings for argcSimon Warta2015-06-233-0/+8
| | | | | | | | | | - 2x use BOTAN_UNUSED when OptionParser is used - 1x argc is checked now
* | Merge pull request #130 from webmaster128/fstreamSimon Warta2015-06-233-6/+6
|\ \ | | | | | | ifstream/ostream take std::string
| * | ifstream/ostream take std::stringSimon Warta2015-06-233-6/+6
| |/
* / Replace \n by std::endl in /src/cmdSimon Warta2015-06-2320-102/+102
|/ | | | to ensure proper flusing
* Fix various bugs found by Coverity scanner.lloyd2015-05-153-2/+11
| | | | | | | Uninitialized variables, missing divide by zero checks, missing virtual destructor, etc. Only thing serious is bug in TLS maximum fragment decoder; missing breaks in switch statement meant receiver would treat any negotiated max frament as 4k limit.
* Disable tls_client on MinGW, missing netdb.h GH#82joerg2015-04-271-1/+1
|
* Move the signature padding schemes to the PK operation classes,lloyd2015-03-231-6/+3
| | | | | | | | | as was previously done with encrypt/decrypt ops. One feature dropped on the floor here is previously PK_Signer by default did verification of signatures before releasing them as an measure against fault attacks. However in addition to being expensive this turned out to be difficult to implement with the new scheme.
* Add ALPN (RFC 7301) and remove NPNlloyd2015-03-202-17/+20
|
* Comile fixes for VC 2013. Based on github pull 56neusdan2015-03-101-3/+2
|
* Cleanupslloyd2015-03-081-0/+4
|
* Fix memory leak in TLS tests. Remove last few remaining uses of auto_ptr.lloyd2015-03-084-4/+4
|
* Hide all uses of boost filesystem in fs.cpp. Use readdir as anlloyd2015-02-212-2/+2
| | | | | alternate implementation for Unix and add some feature checks so a boost-free build of the tests and command line are possible again.
* Mark modules pulling in external deps (zlib, boost, etc) as such, andlloyd2015-02-061-1/+1
| | | | | | notify the user when they are enabled. Drop botan-config, replaced by `botan config` command added in 1.11.8
* Fix build problem with recent LZMA library.lloyd2015-02-051-4/+4
| | | | | | Fix retreival of LZMA and bzip2 compressors from make_compressor. Allow setting compression level from command line.
* Enable OpenSSL for providing ciphers and hashes again.lloyd2015-02-051-10/+13
|
* Remove algo factory, engines, global RNG, global state, etc.lloyd2015-02-044-18/+8
| | | | | | | | | | | | | | | Convert all uses of Algorithm_Factory and the engines to using Algo_Registry The shared pool of entropy sources remains but is moved to EntropySource. With that and few remaining initializations (default OIDs and aliases) moved elsewhere, the global state is empty and init and shutdown are no-ops. Remove almost all of the headers and code for handling the global state, except LibraryInitializer which remains as a compatability stub. Update seeding for blinding so only one hacky almost-global RNG instance needs to be setup instead of across all pubkey uses (it uses either the system RNG or an AutoSeeded_RNG if the system RNG is not available).
* Add a runtime map of string->func() which when called returnlloyd2015-01-282-5/+17
| | | | | | | | | | | | | | | | | Transforms and BlockCiphers. Registration for all types is done at startup but is very cheap as just a std::function and a std::map entry are created, no actual objects are created until needed. This is a huge improvement over Algorithm_Factory which used T::clone() as the function and thus kept a prototype object of each type in memory. Replace existing lookup mechanisms for ciphers, AEADs, and compression to use the transform lookup. The existing Engine framework remains in place for BlockCipher, but the engines now just call to the registry instead of having hardcoded lookups. s/Transformation/Transform/ with typedefs for compatability. Remove lib/selftest code (for runtime selftesting): not the right approach.
* Add typedefs for function signatures/types used in TLS for easier readinglloyd2015-01-271-12/+16
|
* Fix Clang compilelloyd2015-01-231-1/+1
|
* Centralize where string.h/cstring is included to mem_ops.hlloyd2015-01-232-2/+0
| | | | See github 42 for background
* Fixlloyd2015-01-111-2/+1
|
* Better to have a RNG state per connection and avoid lock contentionlloyd2015-01-111-18/+5
|
* Proxy tweakslloyd2015-01-111-3/+16
|
* Have TLS server take certificate and key from command linelloyd2015-01-114-395/+119
|
* Convert the asio server from a weird example server to a generic proxy server.lloyd2015-01-102-326/+592
|
* Ensure all files have copyright and license info.lloyd2015-01-1031-10/+131
| | | | | Update license header line to specify the terms and refer to the file, neither of which it included before.
* Make the help output slightly more helpfullloyd2015-01-041-1/+1
|
* Add Curve25519 based on curve25519-donna by Adam Langley.lloyd2014-12-272-0/+65
| | | | | | This uses only the c64 version from curve25519-donna; on systems that don't have a native uint128_t type, a donna128 type stands in for just enough 128-bit operations to satisfy donna.cpp
* Remove obsolete examplelloyd2014-12-221-103/+0
|
* Don't crash if /usr/share/ca-certificates doesn't existlloyd2014-12-101-1/+5
|
* Implement a strength estimator for McEliece keys based on HyMES versionlloyd2014-12-091-3/+2
|
* Figure out which decompressor to use based on the input file extension.lloyd2014-12-091-5/+25
| | | | | | | | Rename Bzip to Bzip2, and split Zlib and Deflate compressors into two completely distinct types rather than using a bool flag to the Zlib constructor. Ignore null pointers to our free implementation (LZMA does this).
* Cleanup for pbe name parsing in PKCS #8 encoderlloyd2014-12-081-2/+3
|
* Add a basic speed test for McEliecelloyd2014-12-081-0/+71
|
* Add an easy way to directly use the system PRNG.lloyd2014-12-021-0/+8
|
* Add gzip compression transform and compress command line prog.lloyd2014-11-192-3/+82
|
* A TLS Server can now process either TLS or DTLS but not either,lloyd2014-11-151-1/+2
| | | | | with the setting set in the constructor. This prevents various surprising things from happening to applications and simplifies record processing.
* Add missing filelloyd2014-11-121-0/+50
|
* Command line prog cleanuplloyd2014-11-1231-522/+478
|
* Replace Transformatio::nstart with start_raw so we can do a full setlloyd2014-11-051-1/+1
| | | | of overloads in the base class with the same name.
* Avoid crashing if user types before handshake completeslloyd2014-11-031-8/+9
|
* Various small fixes and cleanups, new is_prime utillloyd2014-11-035-9/+58
|
* Add TLS fallback signalling (draft-ietf-tls-downgrade-scsv-00)lloyd2014-10-311-5/+2
|
* Remove stub for testing applloyd2014-04-272-2/+0
|
* Any fixed MR iterations is probably wrong for somebody. Allow the userlloyd2014-04-253-6/+8
| | | | | | to specify a probability as well as if n was randomly chosen or not. If the input is random use a better bounds to reduce the number of needed tests.
* Add rng command which can dump RNG outputs or raw entropy sampleslloyd2014-03-223-0/+53
|
* Add --destdir option to configure.pylloyd2014-02-131-1/+1
|