aboutsummaryrefslogtreecommitdiffstats
path: root/src/lib
Commit message (Collapse)AuthorAgeFilesLines
* Fix header guard, macro tidyJack Lloyd2016-08-302-5/+7
|
* Add NEWHOPE KEM schemeJack Lloyd2016-08-306-7/+668
| | | | | | | | | | Provides conjectured 200-bit security against a quantum attacker. Based on the public domain reference implementation at https://github.com/tpoeppelmann/newhope and bit-for-bit compatible with that version. Test vectors generated by the reference testvector.c
* Fix TLS server cert validation problem GH #611Jack Lloyd2016-08-291-3/+3
| | | | Fallout from #591
* Fix get_process_id for MinGWJack Lloyd2016-08-291-2/+2
|
* Make Windows happyJack Lloyd2016-08-282-2/+2
|
* Travis CI additions and cleanupJack Lloyd2016-08-285-10/+13
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Convert Travis build configuration to a single var instead of 4 tuple. Makes it much easier to review the builds in the Travis web UI. Adds sanitizer builds for Clang on both Linux and OS X. Clang is a different compiler from GCC and its sanitizers may catch things GCC does not. I have no idea if Apple's Clang has some magic sanitizer sauce stock LLVM does not, so maybe sanitizer build on OS X can be skipped. Adds Linux cross compile targets for ARM32, ARM64, PPC64, and MinGW x86 using the cross compiler available in Trusty. All of them build and are set up to run through qemu/wine. All of the tests currently fail and so are marked as expected fail in the Travis matrix. The ARM test runs seem to have thread problems; ARM32 thread creation just fails with an exception, as if pthreads was disabled. All other tests pass ok for ARM32. On Aarch64, it looks like there is a hard crash the first time the library tries creating a thread. Both of these might be due to statically linking the binary? I have been unable to convince Ubuntu's qemu-ppc64 to execute binaries compiled by Ubuntu's ppc64 cross compiler. I'm downloading an Ubuntu ISO to try this in a VM. Running under Wine exposes several issues, both in Wine and Botan. Many functions are stubs and it appears that entropy collection fails as a result. This triggers a bug in the FFI tests which causes a crash there. A pox on time zones; _mkgmtime is a MSVC extension and is not available on MinGW GCC. Add a last resort call that just uses the localzone variant instead. Adds valgrind target, remove a bogus poison in pubkey.cpp (it was effectively asserting that all of RSA was const time which is sadly not true at all). Moves -Wshadow to maintainer mode for GCC - GCC 4.8 has a noisy variant of -Wshadow which warns if a parameter masks a function name, but this comes up all the time in constructors. Later GCCs no longer warn about this (even with -Wshadow), so the warnings are never fixed, but they cause noise in CI output and hide interesting warnings like warning: vec_lvsl is deprecated for little endian; use assignment for unaligned loads and stores [-Wdeprecated] __vector unsigned char perm = vec_lvsl(0, static_cast<u32bit*>(nullptr));
* RNG changes (GH #593)Jack Lloyd2016-08-2426-356/+758
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Change reseed interval logic to count calls to `randomize` rather than bytes, to match SP 800-90A Changes RNG reseeding API: there is no implicit reference to the global entropy sources within the RNGs anymore. The entropy sources must be supplied with the API call. Adds support for reseding directly from another RNG (such as a system or hardware RNG). Stateful_RNG keeps optional references to both an RNG and a set of entropy sources. During a reseed, both sources are used if set. These can be provided to HMAC_DRBG constructor. For HMAC_DRBG, SP800-90A requires we output no more than 2**16 bytes per DRBG request. We treat requests longer than that as if the caller had instead made several sequential maximum-length requests. This means it is possible for one or more reseeds to trigger even in the course of generating a single (long) output (generate a 256-bit key and use ChaCha or HKDF if this is a problem). Adds RNG::randomize_with_ts_input which takes timestamps and uses them as the additional_data DRBG field. Stateful_RNG overrides this to also include the process ID and the reseed counter. AutoSeeded_RNG's `randomize` uses this. Officially deprecates RNG::make_rng and the Serialized_RNG construtor which creates an AutoSeeded_RNG. With these removed, it would be possible to perform a build with no AutoSeeded_RNG/HMAC_DRBG at all (eg, for applications which only use the system RNG). Tests courtesy @cordney in GH PRs #598 and #600
* Another PKCS #11 amalg fixJack Lloyd2016-08-231-1/+1
|
* Work around some amalgamation issues.Jack Lloyd2016-08-232-6/+4
| | | | | | I think probably what these headers had should work, but end up confusing the generator and breaking the build: https://travis-ci.org/randombit/botan/jobs/154197472
* Merge GH #591Jack Lloyd2016-08-1912-96/+109
|\ | | | | | | | | | | | | | | | | Change behavior of default key usage encoding, default now omits the key usage unless the user set a value. Fix allowed_usage which could produce incorrect results. More X.509 tests
| * Rename find_constraints() and let it throw instead of returning a combinationRené Korthaus2016-08-194-32/+59
| |
| * Fix leading zero bytes in DSA, ECDSA, ECGDSA and ECKCDSA signaturesRené Korthaus2016-08-176-16/+26
| |
| * Fix allowed_usage() and add tests for key usageRené Korthaus2016-08-172-2/+2
| |
| * Fix GH #425 and run x509 tests with different signature algorithmsRené Korthaus2016-08-175-48/+24
| |
* | fix source file encoding ANSI -> UTF-8Daniel Neus2016-08-171-1/+1
|/ | | | | | | | | should fix: ``` WARN: Invalid character encountered in file /home/travis/build/randombit/botan/src/tests/test_utils.cpp at line 381 for encoding UTF-8. Please fix file content or configure the encoding to be used using property 'sonar.sourceEncoding'. WARN: Invalid character encountered in file /home/travis/build/randombit/botan/src/lib/pubkey/ecies/ecies.cpp at line 311 for encoding UTF-8. Please fix file content or configure the encoding to be used using property 'sonar.sourceEncoding'. ```
* Merge GH #583 Clean up TLS ciphersuite handlingJack Lloyd2016-08-173-696/+193
|\
| * Clean up TLS ciphersuite handlingJack Lloyd2016-08-163-696/+193
| | | | | | | | | | | | | | | | | | | | | | | | Stores ciphersuites in a sorted std::vector, then lookups are done by binary search instead of a switch lookup. The loop that explicitly gathered all the ciphersuites out of the switch statement can then be removed, as can Ciphersuite::all_known_ciphersuite_ids which only existed to make the scan loop faster by avoiding having to call by_id on the entire 0x0000-0xFFFF range. Precomputes the result of Ciphersuite::valid at construction time.
* | Merge GH #581 Threefish-512 AVX2 workJack Lloyd2016-08-171-76/+165
|\ \
| * | Threefish-512 AVX2 optimizationsJack Lloyd2016-08-101-76/+165
| |/ | | | | | | | | | | | | | | | | | | | | Remove loop variable R, instead derive from macro param constant Support 2 block parallel decrypt, improves raw perf from 456 MB/s to 710 MB/s for decrypt. Switch to alternate key schedule for encrypt. Uses 3 ymm registers instead of 9 at the cost of more computation. Not much faster on Skylake, unclear if this is worthwhile.
* | Update info.txtDaniel Neus2016-08-161-2/+1
| |
* | add sha1_sse2 to the TLS module dependenciesDaniel Neus2016-08-151-0/+1
| |
* | restore to original pkcs11.hDaniel Neus2016-08-121-4/+4
| |
* | Headers can be marked as external by using `<header:external>` in info.txt.Daniel Neus2016-08-122-2/+5
|/ | | | | | | These headers are copied/linked into build_dir/include/external This has the advantage that external includes can be taken as they are, they haven't to be modified. Fixes amalgamation build with enabled pkcs#11 module
* Merge GH #570 X509_Certificate APIsJack Lloyd2016-08-103-9/+58
|
* Merge GH #551 Add frp256v1 curveJack Lloyd2016-08-022-0/+12
|\
| * Merge branch 'master' into frp256v1Simon Cogliani2016-07-312-7/+9
| |\
| * \ Merge branch 'master' into frp256v1Simon Cogliani2016-07-305-13/+30
| |\ \
| * | | ANSSI elliptic curve cryptography frp256v1Simon Cogliani2016-07-242-0/+12
| | | | | | | | | | | | | | | | | | | | | | | | - Parameters available here: https://www.legifrance.gouv.fr/affichTexte.do?cidTexte=JORFTEXT000024668816 - DER format according to the ANS1 syntax defined in ANSI X9.62 standard available here: http://www.ssi.gouv.fr/agence/publication/publication-dun-parametrage-de-courbe-elliptique-visant-des-applications-de-passeport-electronique-et-de-ladministration-electronique-francaise/
* | | | Merge GH #560Jack Lloyd2016-08-022-0/+8
|\ \ \ \
| * | | | add X509_Time::to_std_timepoint()Daniel Neus2016-07-282-0/+8
| | |/ / | |/| |
* | | | Merge GH #559 PKCS #11 fixesJack Lloyd2016-08-025-1/+3208
|\ \ \ \ | |_|_|/ |/| | |
| * | | include external PKCS#11 headers into botanDaniel Neus2016-07-265-1/+3208
| | | |
* | | | Use stat instead of lstat in get_files_recursive.Jack Lloyd2016-07-301-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | Otherwise symlinked files are ignored. GH #565
* | | | Check for __SIZEOF_INT128__ before using TI modeJack Lloyd2016-07-301-6/+8
| |/ / |/| | | | | | | | | | | Otherwise we run into problems on 64-bit CPUs with 32-bit userland. GH #563
* | | Merge GH #556 Add DH negative tests. Fix DH keygen, did not call gen_check ↵Jack Lloyd2016-07-271-1/+8
|\ \ \ | | | | | | | | | | | | due to setting m_x earlier
| * | | fix: load_check() was called instead of gen_check() during DH private key ↵Daniel Neus2016-07-261-1/+8
| |/ / | | | | | | | | | generation
* | | Merge GH #554 Add PKCS #1 v1.5 ID for SHA-512/256 signaturesJack Lloyd2016-07-271-0/+8
|\ \ \
| * | | add SHA-512/256 PKCS#1 hash identifierDaniel Neus2016-07-251-0/+8
| | |/ | |/|
* | | Merge GH #553 EME/pubkey test improvements. Small EME refactor.Jack Lloyd2016-07-272-11/+13
|\ \ \ | |_|/ |/| |
| * | eme / pubkey test improvementsDaniel Neus2016-07-252-11/+13
| |/ | | | | | | | | | | - add test for EME::maximum_input_size() - additionally use maximum_input_size() before pad() in OAEP and PKCS1 (remove code duplication) - prevent C4800 MSVC warning
* / SSE2 had been disabled for testing, missed it on checkin of 6907e196Jack Lloyd2016-07-251-1/+1
|/
* Merge GH #549 MP and SIMD header refactoringJack Lloyd2016-07-2325-2183/+1546
|\
| * Merge asm into single mp_madd.h and mp_asmi.h filesJack Lloyd2016-07-2125-2183/+1546
| | | | | | | | | | | | | | Avoids some cut and paste, also removes the need for special logic in configure.py for handling mp module specially. Merge SIMD classes into a single type SIMD_4x32
* | Merge GH #543 Add RDRAND_RNGJack Lloyd2016-07-215-39/+170
|\ \ | |/ |/|
| * Fix header guard formatJack Lloyd2016-07-201-2/+2
| | | | | | | | | | configure.py expects all header guards to match a specific form, for finding them when generating the amalgamation file.
| * Add RDRAND_RNGJack Lloyd2016-07-195-39/+170
| | | | | | | | | | | | | | | | For those that are willing to trust uninspectible hardware. :) Changes RDRAND entropy source to call RDRAND_RNG Add --rdrand flag to rng cmdlet
* | Merge GH #548 Parallel hash tests, fix memory leakJack Lloyd2016-07-211-1/+1
|\ \
| * | improve parallel hash tests + memory leak fixDaniel Neus2016-07-201-1/+1
| |/ | | | | | | | | | | | | | | | | | | - add one test with SHA-256,SHA-512 - test Parallel::clone() - test Parallel ctor - fix memory leak in Parallel::clone(): Currently Parallel::clone() calls hash->clone() (first heap allocation) and after this clone() calls Parallel(const std::vector<HashFunction*>& in) which does another heap allocation. So its sufficient to pass the hash pointer to the Parallel ctor instead of a clone
* | Merge GH #547 Fix SipHash::clear, more MAC testsJack Lloyd2016-07-211-3/+4
|\ \
| * | fix SipHash::clear() and MAC test improvementsDaniel Neus2016-07-201-3/+4
| |/ | | | | | | | | | | | | | | Fix for SipHash::clear() which does not clear the complete state. Test additions: - add a test for MessageAuthenticationCode::verify_mac() - test MessageAuthenticationCode::clear()
generated by cgit v1.2.3 (git 2.39.1) at 2024-12-26 15:07:04 +0000