Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Correct version annotation for botan_rng_init_custom | Jack Lloyd | 2021-04-15 | 1 | -1/+1 |
| | |||||
* | Bump the ffi version to indicate support for custom RNG | Jack Lloyd | 2021-02-20 | 2 | -1/+5 |
| | |||||
* | Add API to register custom RNG with FFI API | René Fischer | 2021-02-18 | 2 | -0/+113 |
| | |||||
* | Some math deprecations | Jack Lloyd | 2020-11-05 | 1 | -1/+1 |
| | | | | | | | | | | | | | Mostly things that shouldn't be used (like almost Montgomery inverse, which isn't even constant time) or are very much just for internals (like the word-wise Montgomery inverse computation used for reduction). Make variable time division explicit; leaves plain divide as a call but it forwards to ct_divide now. All callers within the library are now explicitly consttime or vartime. Add a shortcut for modulus by one word - this hits quite often especially in the ECC code | ||||
* | More header merging | Jack Lloyd | 2020-11-03 | 2 | -2/+2 |
| | |||||
* | Remove use of Serialized_RNG in FFI and tests | Jack Lloyd | 2020-09-12 | 1 | -7/+1 |
| | |||||
* | Make it possible to DER encode signatures through FFI API | Jack Lloyd | 2020-05-15 | 2 | -5/+11 |
| | | | | GH #2356 | ||||
* | Add Processor_RNG | Jack Lloyd | 2020-05-08 | 1 | -5/+5 |
| | | | | | | | Replaces RDRAND_RNG, RDRAND entropy source, and DARN entropy source. Provides also DARN-based RNG interface. This also gives an easy path for supporting the ARMv8 RNG instructions. | ||||
* | Bump the FFI version due to addition of CRL support | Jack Lloyd | 2019-12-14 | 2 | -1/+5 |
| | |||||
* | Avoid MSVC warnings about dead code in FFI layer | Jack Lloyd | 2019-12-06 | 10 | -26/+38 |
| | | | | Also fix warning about "insecure" getenv | ||||
* | Add documentation for CRL API in FFI and Python binding | Pavol Žáčik | 2019-12-03 | 1 | -13/+20 |
| | |||||
* | Add basic CRL handling to FFI API | Pavol Žáčik | 2019-12-03 | 2 | -0/+181 |
| | |||||
* | fix missing ErrorType::RoughtimeError on switches | Nuno Goncalves | 2019-10-16 | 2 | -0/+3 |
| | | | | Signed-off-by: Nuno Goncalves <[email protected]> | ||||
* | Deprecate some more redundant ffi functions | Jack Lloyd | 2019-08-19 | 1 | -10/+31 |
| | |||||
* | Fix indentation | Jack Lloyd | 2019-08-17 | 1 | -2/+2 |
| | |||||
* | Document that FFI destroy operations can fail | Jack Lloyd | 2019-05-29 | 1 | -3/+37 |
| | |||||
* | Verify ffi object is not null before dereferencing it | Jack Lloyd | 2019-05-28 | 1 | -1/+5 |
| | | | | | This shouldn't even happen if the header is still intact, but seemingly it can: #1983 so be robust as possible. | ||||
* | Correct documentation for botan_rng_init | Jack Lloyd | 2019-05-28 | 1 | -2/+5 |
| | | | | Fixes #1984 | ||||
* | Add a DatabaseError type, set the sqlite return code in exception | Jack Lloyd | 2019-05-23 | 1 | -0/+2 |
| | |||||
* | More Python API enhancements. | Jack Lloyd | 2019-04-27 | 2 | -29/+48 |
| | | | | Deprecate various redundant FFI functions | ||||
* | Fix C function prototypes. | JornVernee | 2019-04-21 | 1 | -6/+6 |
| | |||||
* | Remove unimplemented function decl | Jack Lloyd | 2019-04-19 | 1 | -3/+0 |
| | |||||
* | Use script to generate Python FFI decls | Jack Lloyd | 2019-04-19 | 1 | -7/+0 |
| | | | | Remove unimplemented declaration botan_x509_cert_gen_selfsigned | ||||
* | Avoid C++ style comments in headers that may be parsed as C | Jack Lloyd | 2019-04-19 | 1 | -64/+6 |
| | | | | | Also remove the TLS declarations from ffi.h for now since that isn't supported at all. | ||||
* | Rename Integrity_Failure to Invalid_Authentication_Tag | Jack Lloyd | 2019-01-18 | 2 | -1/+4 |
| | | | | | | | | | This makes the meaning and usage more clear. Add a specific error type so invalid tags can be distinguished without having to catch that specific type. See also #1813 | ||||
* | Use memcpy instead of strcpy here to shut up MSVC warning | Jack Lloyd | 2019-01-03 | 1 | -1/+1 |
| | | | | Here the caller is assumed to have provided a buffer of sufficient size. | ||||
* | Add OS::read_env_variable | Jack Lloyd | 2018-12-29 | 1 | -1/+1 |
| | | | | Combines the priv check and the getenv call on one. | ||||
* | Make exceptions easier to translate to error codes | Jack Lloyd | 2018-11-23 | 3 | -19/+85 |
| | | | | | | | | | | | Avoid throwing base Botan::Exception type, as it is difficult to determine what the error is in that case. Add Exception::error_code and Exception::error_type which allows (for error code) more information about the error and (for error type) allows knowing the error type without requiring a sequence of catches. See GH #1742 | ||||
* | Fix FFI compilation without hotp module | Tobias Brunner | 2018-10-25 | 1 | -2/+2 |
| | |||||
* | Remove support for Visual C++ 2013 | Jack Lloyd | 2018-10-01 | 17 | -65/+65 |
| | | | | Closes GH #1557 | ||||
* | Refactor mode tests, and correct bugs found | Jack Lloyd | 2018-09-29 | 1 | -0/+1 |
| | | | | | | | | | | | | | | | | | | | Several problems in CBC found by adding tests - If you set a key, then set a nonce, then set a new key, you could encrypt without setting a new nonce. - It was possible to call CBC finish without setting a nonce, which would crash. - If you had an CBC decryption object, set a key, set a nonce, then reset message state, it should throw because no nonce is set. Instead it would carry on using an all-zero nonce. Disable CommonCrypto with PKCS7 padding as it seems to have some problem that I cannot figure out from the build logs. This work sponsored by Ribose Inc | ||||
* | Avoid null pointer write in FFI | Jack Lloyd | 2018-09-28 | 1 | -1/+4 |
| | | | | | | | | If a function returning variable length output was called with a null output buffer but a non-zero output buffer length, FFI layer would call memset(nullptr, 0, buffer_len) and crash. Caught by Coverity. | ||||
* | Add OS::running_in_privileged_state | Jack Lloyd | 2018-09-27 | 1 | -1/+2 |
| | | | | | | | | Avoid any getenv toggles or reading /proc if we are setuid/setgid. It is possible there is or will someday be some file in /proc that is world-readable, but if read by a privileged user causes some side effect. | ||||
* | Define botan_scrypt in terms of botan_pwdhash | Jack Lloyd | 2018-09-13 | 1 | -12/+5 |
| | |||||
* | In FFI pwdhash functions, let len == 0 mean "call strlen" | Jack Lloyd | 2018-09-13 | 2 | -2/+18 |
| | |||||
* | Merge GH #1670 New password hashing interface | Jack Lloyd | 2018-09-13 | 2 | -15/+136 |
|\ | |||||
| * | Fix Doxygen comments | Jack Lloyd | 2018-09-10 | 1 | -2/+4 |
| | | |||||
| * | Add FFI | Jack Lloyd | 2018-09-10 | 2 | -15/+134 |
| | | | | | | | | This is a contribution of Ribose Inc (@riboseinc) | ||||
* | | Some document fixes | Jack Lloyd | 2018-09-13 | 1 | -8/+13 |
| | | | | | | | | | | Downgrade min Sphinx to 1.2 again - I checked and while Sphinx 1.2 produce many warnings it does generate usable output. | ||||
* | | Add FFI functions for creating and getting X25519 data | Jack Lloyd | 2018-09-10 | 2 | -0/+98 |
|/ | | | | See GH #1680 | ||||
* | Use a literal date for this API version | Jack Lloyd | 2018-09-02 | 1 | -5/+4 |
| | | | | | It avoids having to rewrite existing logic when a new API version is introduced. | ||||
* | Fix build without x509 module | Tobias Brunner | 2018-08-23 | 1 | -1/+22 |
| | | | | | Fixes: dc85761ef02c ("Add path validation to FFI") Signed-off-by: Tobias Brunner <[email protected]> | ||||
* | Add botan_cipher_reset to FFI | Jack Lloyd | 2018-08-17 | 2 | -0/+15 |
| | |||||
* | Ignore an empty string ("") for trusted_path argument | Jack Lloyd | 2018-08-16 | 1 | -1/+1 |
| | |||||
* | Add args for botan FFI cert verification for hostname and time | Jack Lloyd | 2018-08-16 | 2 | -4/+16 |
| | |||||
* | Add botan_x509_cert_dup | Jack Lloyd | 2018-08-16 | 2 | -4/+24 |
| | |||||
* | Fix bug introduced in 15e149ac | Jack Lloyd | 2018-08-16 | 1 | -6/+6 |
| | | | | | This caused get_field, when called with a non-existing field, to return success and set the field to a small negative integer. | ||||
* | Avoid throwing within the FFI layer | Jack Lloyd | 2018-08-16 | 3 | -10/+9 |
| | | | | No reason given we know the message is going to be thrown away. | ||||
* | Add TOTP to FFI | Jack Lloyd | 2018-08-16 | 3 | -4/+144 |
| | |||||
* | Expose HOTP to FFI | Jack Lloyd | 2018-08-15 | 2 | -0/+136 |
| |