aboutsummaryrefslogtreecommitdiffstats
path: root/src/lib/pubkey
Commit message (Collapse)AuthorAgeFilesLines
* Remove the unused XMSS-WOTS operationsJack Lloyd2017-12-2711-397/+0
|
* Avoid warnings about unused params in minimal builds [ci skip]Jack Lloyd2017-12-241-1/+5
|
* Avoid relying on AutoSeeded_RNG in XMSSJack Lloyd2017-12-232-3/+4
| | | | Just needed for the self-benchmark easier to just use fixed input.
* Merge GH #1365 Always set domain encoding correctly when loading an ECC keyJack Lloyd2017-12-191-0/+5
|\
| * Always set domain encoding correctly when loading an ECC keyRené Korthaus2017-12-191-1/+5
| | | | | | | | | | | | | | | | When loading an ECC key from file, the domain encoding was always set to explicit instead of depending on the encoded key file read. This resulted in different encodings and therefore different fingerprints of the same key when encoding the same key twice (once after generation, once after re-reading it).
* | Add accessors to ASN1_Attribute and AlgorithmIdentifierJack Lloyd2017-12-196-21/+21
|/
* Clean up XMSS self-benchmarkJack Lloyd2017-12-161-6/+4
| | | | Clang complained that the lambda was capturing unnecessary variables.
* Avoid using @deprecated annotation hereJack Lloyd2017-12-161-2/+4
| | | | | | Clang's documentation checker complains since it's not actually annotated as deprecated. Change comment to just indicate that it is not a public API function and will be removed in the future.
* Fix a bug in PEM decodingJack Lloyd2017-12-162-31/+21
| | | | | | | | If the label param was set to a non-empty string, the decoding would treat it as part of the label and then end up throwing a decoding error. The key fix here is adding the clear() call in decode. Private bug report by email. Add some basic tests for the PEM decoder.
* Add ability to fingerprint public keysJack Lloyd2017-12-142-19/+55
|
* Merge GH #1339 Add ability to query supported named groupsJack Lloyd2017-12-062-0/+41
|\
| * Add known_named_groups to EC_Group to list known curves. Fixes GX #1338.J08nY2017-12-052-0/+41
| |
* | Fix signed vs unsigned comparison warningJack Lloyd2017-12-051-1/+1
| |
* | Merge GH #1267 Multithreaded signing in XMSSJack Lloyd2017-12-0528-169/+648
|\ \ | |/ |/|
| * Fixes lambda capture error in MSVCMatthias Gierlings2017-11-231-1/+3
| | | | | | | | | | MSVC seems to not allow defining aliases inside lambda capture expressions. Defining the aliases beforehand, outside the lambda fixes the issue.
| * Adds runtime benchmark to guess phys. core count.Matthias Gierlings2017-11-233-3/+122
| | | | | | | | | | | | | | Adds a small runtime benchmark to prevent performance degradation by overprovisioning SMT CPUs with too many threads. This is a temporary workaround until a hardware and OS independent detection of the physical core count through Botan::CPUID is in place.
| * Updates documentation, news and copyright notices.Matthias Gierlings2017-11-2127-33/+44
| | | | | | | | | | | | - Adds XMSS to the index of supported signature schemes. - Adds XMSS multithreading support to news.rst - Updates copyright notices of edited files.
| * Adds guards for environments without threadsMatthias Gierlings2017-11-211-1/+7
| |
| * Implements multithreading support for XMSSMatthias Gierlings2017-11-2126-136/+477
| |
* | Correct definition of FFDHE 4096 groupJack Lloyd2017-11-281-11/+16
|/ | | | Was a copy+paste of FFDHE 3072
* Convert http:// links to https:// where possibleJack Lloyd2017-10-241-2/+2
|
* Merge GH #1263 Support FFDHE negotiation in TLSJack Lloyd2017-10-221-0/+146
|\
| * Add supported groups TLS extension (RFC 7919)René Korthaus2017-10-171-0/+146
| |
* | review changesDaniel Neus2017-10-211-2/+3
| |
* | X.509 RSA-PSS verificationDaniel Neus2017-10-201-1/+3
|/
* Additional final annotationsJack Lloyd2017-10-1512-16/+15
|
* Address various GCC warningsJack Lloyd2017-10-061-1/+1
| | | | | Things like -Wconversion and -Wuseless-cast that are noisy and not on by default.
* Add wrappers for reinterpret_cast between char* and uint8_t*Jack Lloyd2017-10-031-4/+4
| | | | | | | Generally speaking reinterpret_cast is sketchy stuff. But the special case of char*/uint8_t* is both common and safe. By isolating those, the remaining (likely sketchy) cases are easier to grep for.
* Remove unnecessary virtuals from final classesJack Lloyd2017-10-025-8/+4
| | | | Found with Sonar
* Make m_emsa in PK_{Signature,Verification}_with_EMSA privateJack Lloyd2017-10-022-4/+7
|
* Remove redundant "virtual override" declarations.Jack Lloyd2017-10-027-33/+31
|
* Use explicit :: or std:: to refer to functions in namespacesJack Lloyd2017-10-011-1/+1
|
* Avoid -size_tJack Lloyd2017-09-301-1/+1
|
* Use class instead of struct for objects with member functionsJack Lloyd2017-09-303-5/+6
| | | | Flagged by Sonar and quite reasonable
* Include pk_keys.h in pkcs8.h and x509_key.hJack Lloyd2017-09-292-2/+2
| | | | Not strictly required but seems likely to cause problems for applications.
* Fixes for MSVCJack Lloyd2017-09-281-0/+1
| | | | BOTAN_UNUSED "uses" the RNG :/
* Further header cleanupsJack Lloyd2017-09-283-3/+12
|
* Add variants of PKCS8::load_key that don't require an RNG argumentJack Lloyd2017-09-282-32/+112
| | | | | It's not used and only there for compat with existing callers, but no reason we can't offer a version that doesn't require it.
* Header cleanupsJack Lloyd2017-09-283-3/+1
|
* Missing includeJack Lloyd2017-09-241-0/+1
|
* Further build/test fixes for restricted configurationsJack Lloyd2017-09-243-0/+11
|
* More build fixesJack Lloyd2017-09-241-0/+1
|
* More header cleanupsJack Lloyd2017-09-237-1/+7
|
* Fixes for headers missing in certain configurationsJack Lloyd2017-09-231-0/+1
|
* Apply final annotations to the library alsoJack Lloyd2017-09-2243-64/+64
| | | | | Done by a perl script which converted all classes to final, followed by selective reversion where it caused compilation failures.
* Another missing includeJack Lloyd2017-09-211-0/+1
| | | | For whatever reason only seen on the Kullo OS X build
* More include header cleanupsJack Lloyd2017-09-2132-30/+29
|
* Header file cleanupsJack Lloyd2017-09-213-0/+3
| | | | Some help from include-what-you-use
* Clean up header includesJack Lloyd2017-09-2115-31/+13
| | | | | | | Avoid including build.h or assert.h directly, instead always take them though types.h Avoid math.h in favor of cmath
* Update SM2 to use ASN.1 encoding for ciphertextsJack Lloyd2017-09-202-27/+32
| | | | | | | | | There are in fact 3 different variations of SM2 standard, first C1||C2||C3, then C1||C3||C2, then (most recently) an ASN.1 encoding. This makes us compatible with GmSSL This work was sponsored by Ribose Inc (@riboseinc).