Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Catch exceptions by reference not value | Jack Lloyd | 2018-03-16 | 1 | -17/+11 |
| | | | | Fixes a new warning in GCC 8 | ||||
* | Use API annotations | Jack Lloyd | 2018-03-02 | 1 | -1/+1 |
| | |||||
* | Fix crash in EMSA_PKCS1v15_Raw if the hash function was not enabled. | Jack Lloyd | 2018-01-17 | 1 | -1/+1 |
| | | | | GH #1416 | ||||
* | Add note on OAEP version implemented [ci skip] | René Korthaus | 2018-01-04 | 1 | -0/+1 |
| | |||||
* | Fix a couple Doxygen format errors [ci skip] | Jack Lloyd | 2017-12-26 | 1 | -4/+4 |
| | |||||
* | Deinline functions in EMSA, add pubkey as dependency | Jack Lloyd | 2017-12-23 | 12 | -22/+48 |
| | |||||
* | EMSA has a build-time dependency on ASN.1 now [ci skip] | Jack Lloyd | 2017-12-23 | 1 | -0/+1 |
| | |||||
* | Avoid unused parameter warnings | Jack Lloyd | 2017-12-22 | 2 | -4/+9 |
| | |||||
* | Enable signing X509 structures with rsa-pss | Fabian Weissberg | 2017-12-22 | 14 | -0/+268 |
| | |||||
* | Correct the SHA-3 PKCSv1.5 IDs | Jack Lloyd | 2017-10-05 | 1 | -4/+10 |
| | | | | | | | Thanks to @noloader for pointing me at draft-jivsov-openpgp-sha3-01 which has the correct values. Adds a test so this can't happen again. | ||||
* | Make EMSA1 data private | Jack Lloyd | 2017-10-02 | 1 | -6/+4 |
| | | | | It was already final so leaving data as protected makes no sense... | ||||
* | Further build/test fixes for restricted configurations | Jack Lloyd | 2017-09-24 | 1 | -0/+1 |
| | |||||
* | Apply final annotations to the library also | Jack Lloyd | 2017-09-22 | 1 | -1/+1 |
| | | | | | Done by a perl script which converted all classes to final, followed by selective reversion where it caused compilation failures. | ||||
* | Header file cleanups | Jack Lloyd | 2017-09-21 | 14 | -5/+23 |
| | | | | Some help from include-what-you-use | ||||
* | Merge GH #1212 Add support for 'raw' PSS signatures | Jack Lloyd | 2017-09-20 | 3 | -51/+167 |
|\ | |||||
| * | Clear return value, and verify 'raw' hash matches expected size | Jack Lloyd | 2017-09-16 | 1 | -1/+7 |
| | | |||||
| * | Support PSSR_Raw | Jack Lloyd | 2017-09-16 | 3 | -51/+161 |
| | | | | | | | | | | | | | | Allows PSS-signing a raw hash while also still specifying the salt length. GH #1211 | ||||
* | | Change header guard format to BOTAN_FOO_H_ | Jack Lloyd | 2017-09-20 | 13 | -26/+26 |
| | | | | | | | | | | | | ISO C++ reserves names with double underscores in them Closes #512 | ||||
* | | Add API stability annotations. | Jack Lloyd | 2017-09-19 | 13 | -19/+19 |
| | | | | | | | | | | Defined in build.h, all equal to BOTAN_DLL so ties into existing system for exporting symbols. | ||||
* | | Use constant_time_compare instead of same_mem | Jack Lloyd | 2017-09-16 | 5 | -5/+5 |
|/ | | | | New name, same great operation | ||||
* | Added SHA3_XXX_PKCS OID | Francis Dupont | 2017-09-04 | 1 | -0/+28 |
| | |||||
* | Fix a valgrind const-time error in ISO 9796 padding | Jack Lloyd | 2017-08-29 | 1 | -2/+7 |
| | | | | It didn't unpoison the output values. | ||||
* | Allow signature using `Raw(hashname)` | Jack Lloyd | 2017-08-15 | 3 | -7/+38 |
| | | | | | | This confirms the message is exactly the size of the expected hash, and also causes RFC 6979 nonces to be generated using the specified hash. See also https://github.com/riboseinc/rnp/issues/367 | ||||
* | Add SM3 OIDs and PKCSv1.5 hash prefix | Jack Lloyd | 2017-05-19 | 1 | -0/+8 |
| | |||||
* | Accept SHA1 and SHA-1 as aliases for hash_id | Jack Lloyd | 2017-05-18 | 1 | -2/+3 |
| | |||||
* | Add botan_pkcs_hash_id to FFI | Jack Lloyd | 2017-05-18 | 3 | -3/+35 |
| | | | | | | Extend EMSA_PKCS1v15_Raw to optionally take a hash function for which the PKCS hash id is prefixed to the message as usual. This allows signing a message using PKCSv1.5 padding where the hash is provided externally. | ||||
* | Content: | Tomasz Frydrych | 2017-04-03 | 3 | -4/+2 |
| | | | | | | | | | * fixes for deprecated constructions in c++11 and later (explicit rule of 3/5 or implicit rule of 0 and other violations) * `default` specifier instead of `{}` in some places(probably all) * removal of unreachable code (for example `return` after `throw`) * removal of compilation unit only visible, but not used functions * fix for `throw()` specifier - used instead `BOTAN_NOEXCEPT` * removed not needed semicolons | ||||
* | Remove "Dirty hack" for multiple defines in lex_me_harder() | Simon Warta | 2017-04-02 | 12 | -12/+36 |
| | |||||
* | Avoid calling memmove with a null source in PKCSv1 signature encoding | Jack Lloyd | 2017-03-03 | 1 | -1/+7 |
| | | | | Only occured with EMSA_Raw. Caught by GCC 7 warning | ||||
* | fix possible iso9796 side channel and add length check | Never | 2017-02-21 | 1 | -14/+26 |
| | |||||
* | ISO-9796-2 doxygen build fixes | Daniel Neus | 2016-12-19 | 1 | -4/+4 |
| | |||||
* | Convert to using standard uintN_t integer types | Jack Lloyd | 2016-12-18 | 25 | -216/+216 |
| | | | | | | Renames a couple of functions for somewhat better name consistency, eg make_u32bit becomes make_uint32. The old typedefs remain for now since probably lots of application code uses them. | ||||
* | Merge GH #759 Add ISO 9796-2 signature schemes | Jack Lloyd | 2016-12-08 | 4 | -12/+414 |
|\ | |||||
| * | ISO 9796: Change header guard format | Never | 2016-12-06 | 1 | -2/+2 |
| | | |||||
| * | Add ISO9796-2 Signature Schemes giving message recovery 2 and 3. | Never | 2016-12-05 | 4 | -12/+414 |
| | | |||||
* | | Fix off by one in PKCS #1 v1.5 decryption decoding | Jack Lloyd | 2016-12-08 | 1 | -1/+1 |
| | | | | | | | | | | | | | | | | | | | | | | | | When the code was changed in b8966d0f89e, the offset was not changed, so it would reject ciphertexts with exactly 8 bytes of random padding (the required minimum). Found by pkcs1 fuzzer which also had problems due to not having been updated at the same time. Add a test suite for decoding of PK decryption padding to cover the problem cases. | ||||
* | | Avoid crash in PKCS1v1.5 unpadding if input len <= 2 | Jack Lloyd | 2016-12-08 | 1 | -0/+6 |
|/ | | | | Don't think this can't happen outside of a fuzzer test | ||||
* | Simplify EMSA1 message recovery code | Jack Lloyd | 2016-11-02 | 1 | -14/+12 |
| | |||||
* | Avoid timing channel in OAEP decoding (CVE-2016-8871) | Juraj Somorovsky | 2016-10-26 | 1 | -7/+12 |
| | |||||
* | Fix PSSR | Jack Lloyd | 2016-10-21 | 1 | -1/+1 |
| | |||||
* | Remove alias logic from SCAN_Name | Jack Lloyd | 2016-10-21 | 2 | -30/+48 |
| | | | | | | This required taking a global lock and doing a map lookup each time an algorithm was requested (and so many times during a TLS handshake). | ||||
* | Remove Algo_Registry | Jack Lloyd | 2016-10-21 | 10 | -105/+74 |
| | | | | | | | I repent my use of global constructors. I repent my use of global locks. Hopefully I will never touch this code again. :) | ||||
* | Improve pk_pad doxygen [ci skip] | René Korthaus | 2016-10-19 | 6 | -5/+13 |
| | |||||
* | Remove deprecated hashes MD2, HAS-160, and RIPEMD-128 | Jack Lloyd | 2016-09-02 | 1 | -17/+0 |
| | |||||
* | Merge GH #554 Add PKCS #1 v1.5 ID for SHA-512/256 signatures | Jack Lloyd | 2016-07-27 | 1 | -0/+8 |
|\ | |||||
| * | add SHA-512/256 PKCS#1 hash identifier | Daniel Neus | 2016-07-25 | 1 | -0/+8 |
| | | |||||
* | | eme / pubkey test improvements | Daniel Neus | 2016-07-25 | 2 | -11/+13 |
|/ | | | | | | - add test for EME::maximum_input_size() - additionally use maximum_input_size() before pad() in OAEP and PKCS1 (remove code duplication) - prevent C4800 MSVC warning | ||||
* | Merge GH #504 Add ECKCDSA | Jack Lloyd | 2016-06-20 | 8 | -2/+46 |
|\ | |||||
| * | Add ECKCDSA signature algorithm | René Korthaus | 2016-06-14 | 10 | -2/+54 |
| | | |||||
* | | remove all uses of EMSA1_BSI | Daniel Neus | 2016-05-02 | 1 | -8/+0 |
| | |