Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Correct an error in SHACAL2 x86 code in unrolled case | Jack Lloyd | 2017-09-20 | 1 | -3/+3 |
| | | | | [ci skip] | ||||
* | Merge GH #1212 Add support for 'raw' PSS signatures | Jack Lloyd | 2017-09-20 | 3 | -51/+167 |
|\ | |||||
| * | Clear return value, and verify 'raw' hash matches expected size | Jack Lloyd | 2017-09-16 | 1 | -1/+7 |
| | | |||||
| * | Support PSSR_Raw | Jack Lloyd | 2017-09-16 | 3 | -51/+161 |
| | | | | | | | | | | | | | | Allows PSS-signing a raw hash while also still specifying the salt length. GH #1211 | ||||
* | | Avoid using double underscore in variable names | Jack Lloyd | 2017-09-20 | 3 | -11/+10 |
| | | | | | | | | | | | | | | | | Reserved identifiers, per C++ standard GH #512 [ci skip] | ||||
* | | Change header guard format to BOTAN_FOO_H_ | Jack Lloyd | 2017-09-20 | 352 | -704/+704 |
| | | | | | | | | | | | | ISO C++ reserves names with double underscores in them Closes #512 | ||||
* | | Use dword for bigint_divop if available | Jack Lloyd | 2017-09-20 | 1 | -0/+5 |
| | | | | | | | | | | | | Results in FPE being about 5x faster See #494 | ||||
* | | Export CurveGFp_Repr to avoid UBSan error | Jack Lloyd | 2017-09-20 | 1 | -1/+1 |
| | | | | | | | | GH #453 | ||||
* | | Add additional ids for AltiVec enabled POWER processors | Jack Lloyd | 2017-09-19 | 1 | -3/+5 |
| | | | | | | | | Taken from a patch to 1.10 in Debian | ||||
* | | Complete the final annotation changes | Jack Lloyd | 2017-09-19 | 20 | -98/+106 |
| | | |||||
* | | More annotations | Jack Lloyd | 2017-09-19 | 12 | -304/+327 |
| | | |||||
* | | Move the annotations to compiler.h since the user shouldn't modify | Jack Lloyd | 2017-09-19 | 1 | -0/+23 |
| | | |||||
* | | Add API stability annotations. | Jack Lloyd | 2017-09-19 | 255 | -671/+673 |
| | | | | | | | | | | Defined in build.h, all equal to BOTAN_DLL so ties into existing system for exporting symbols. | ||||
* | | Merge GH #1215 Deprecate package transform | Jack Lloyd | 2017-09-19 | 1 | -0/+2 |
|\ \ | |||||
| * | | Deprecate package transform | Jack Lloyd | 2017-09-19 | 1 | -0/+2 |
| | | | | | | | | | | | | | | | Unclear what's up with #825 but in any case this function is funky and I don't care enough to try to debug/fix it... | ||||
* | | | Add basic tests for const time utils | Jack Lloyd | 2017-09-19 | 1 | -28/+10 |
|/ / | | | | | | | Remove CT::min and CT::max which were unused and it turns out, broken. | ||||
* | | Merge GH #872 Add ability for TLS servers to prohibit renegotiation | Jack Lloyd | 2017-09-19 | 3 | -2/+16 |
|\ \ | |||||
| * | | Fix logic of renegotiation check | Jack Lloyd | 2017-02-20 | 3 | -4/+6 |
| | | | | | | | | | | | | | | | | | | Turning the policy off broke the server entirely. Expose the new flag to Text_Policy | ||||
| * | | Add TLS::Policy::allow_client_initiated_renegotiation | Jack Lloyd | 2017-02-19 | 3 | -2/+14 |
| | | | | | | | | | | | | Parallel of the server policy flag. | ||||
* | | | Merge GH #1205 Support large blocks in OCB mode | Jack Lloyd | 2017-09-19 | 2 | -62/+134 |
|\ \ \ | |||||
| * | | | Change wide block OCB | Jack Lloyd | 2017-09-15 | 1 | -29/+0 |
| | | | | | | | | | | | | | | | | | | | | Ted Krovetz confirmed there were bugs in the reference code for blocks > 128 bits so these values should be the correct ones. | ||||
| * | | | Add alternate form for matching OCB ref code | Jack Lloyd | 2017-09-11 | 1 | -4/+30 |
| | | | | |||||
| * | | | Support larger block sizes in OCB | Jack Lloyd | 2017-09-10 | 2 | -59/+134 |
| | | | | | | | | | | | | | | | | | | | | | | | | This doesn't match the draft-3 test vectors and may be bogus. [ci skip] | ||||
* | | | | Merge GH #1213 Improve ARM processor detection for systems without getauxval | Jack Lloyd | 2017-09-18 | 8 | -502/+670 |
|\ \ \ \ | |||||
| * | | | | Add ARM feature detection for systems without getauxval | Jack Lloyd | 2017-09-17 | 2 | -15/+129 |
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | For iOS use sysctl to get the product name and use a static table of minimum versions. For everything else (not Linux/Android or iOS) try probe functions. Only for Aarch64 to keep things simple. | ||||
| * | | | | Split up cpuid.cpp into arch-specific files | Jack Lloyd | 2017-09-17 | 8 | -502/+556 |
| | | | | | | | | | | | | | | | | | | | | | | | | | As more archs and detection methods are used, the file was getting a little hard to follow. | ||||
* | | | | | Avoid int vs size_t warning in OpenSSL code | Jack Lloyd | 2017-09-17 | 1 | -1/+1 |
| | | | | | |||||
* | | | | | Avoid old style casts in Ed25519 | Jack Lloyd | 2017-09-17 | 2 | -270/+262 |
| | | | | | |||||
* | | | | | Fix Doxygen comment problems | Jack Lloyd | 2017-09-17 | 1 | -4/+4 |
| | | | | | |||||
* | | | | | Move socket classes to anon namespace. | Jack Lloyd | 2017-09-17 | 1 | -172/+181 |
| | | | | | | | | | | | | | | | | | | | | A little cleaner than in the function. | ||||
* | | | | | Fix Wshadow warning | Jack Lloyd | 2017-09-17 | 1 | -5/+5 |
|/ / / / | |||||
* | | | | Simplify code in get_processor_timestamp | Jack Lloyd | 2017-09-16 | 1 | -21/+12 |
| | | | | |||||
* | | | | Fix an off by 8 | Jack Lloyd | 2017-09-16 | 1 | -1/+1 |
| | | | | |||||
* | | | | Revert SIMDing of xor_buf in f39aa7bb | Jack Lloyd | 2017-09-16 | 1 | -29/+27 |
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Forgot this causes all kinds of issues when the SIMD ISA is not part of the base instruction set (needing -maltivec, etc). It just happens to work on x86-64 because SSE2 is part of the base ISA there. Instead just unroll by 16x this seems to be enough that GCC figures it out. | ||||
* | | | | Use constant_time_compare instead of same_mem | Jack Lloyd | 2017-09-16 | 22 | -23/+36 |
| | | | | | | | | | | | | | | | | New name, same great operation | ||||
* | | | | De-inline xor_buf, add SIMD and unrolling | Jack Lloyd | 2017-09-16 | 3 | -34/+133 |
| | | | | | | | | | | | | | | | | Improves CBC and OCB performance with AES-NI quite noticably | ||||
* | | | | Small cleanup in CBC mode | Jack Lloyd | 2017-09-16 | 2 | -21/+23 |
| | | | | |||||
* | | | | Small cleanup in bcrypt | Jack Lloyd | 2017-09-16 | 1 | -3/+3 |
| | | | | |||||
* | | | | Add missing override annotations | Jack Lloyd | 2017-09-16 | 1 | -6/+6 |
| | | | | |||||
* | | | | Small simplification in CAST-128 | Jack Lloyd | 2017-09-16 | 1 | -41/+41 |
| |_|/ |/| | | |||||
* | | | Merge duplicated logic for clearing CPUID bits | Jack Lloyd | 2017-09-16 | 2 | -0/+42 |
| | | | |||||
* | | | Minor simplifications in SIMD_32 constructor | Jack Lloyd | 2017-09-16 | 1 | -2/+5 |
| | | | |||||
* | | | reenable 8 byte gcm tags | Atanas Filyanov | 2017-09-15 | 1 | -1/+2 |
| | | | |||||
* | | | Allow GCM tag size in the range 96..128 bits | Atanas Filyanov | 2017-09-14 | 1 | -1/+2 |
| | | | |||||
* | | | Merge GH #1208 Fix decoding of RFC 5915 ECC keys | Jack Lloyd | 2017-09-13 | 1 | -3/+0 |
|\ \ \ | |||||
| * | | | Remove inner/outer OID check in EC_PrivateKey ctor | René Korthaus | 2017-09-13 | 1 | -3/+0 |
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | RFC 5915 mandates that the OID of an ECDSA ECPrivateKey shall be id-ecPublicKey with the named curve as the parameters. ECPrivateKey may contain the named curve OID, too, which is compared to id-ecPublicKey. Such keys could not be loaded. We remove this check and add a test vector from strongswan. | ||||
* | | | | allow 12 byte GCM tags and add test vectors | Atanas Filyanov | 2017-09-13 | 1 | -1/+1 |
|/ / / | |||||
* | | | Merge GH #1202 Fix CFB IV carryover closes #1200 | Jack Lloyd | 2017-09-11 | 2 | -47/+44 |
|\ \ \ | |/ / |/| | | |||||
| * | | Address CFB carryover bug | Jack Lloyd | 2017-09-10 | 2 | -47/+44 |
| | | | | | | | | | | | | | | | | | | Test data generated by 1.10 so hopefully no further issues here. GH #1200 | ||||
* | | | Change SM2 encryption to match updated standard. | Jack Lloyd | 2017-09-10 | 1 | -5/+5 |
| | | | | | | | | | | | | | | | | | | | | | | | | Unfortunately it seems the SM2 format changed between 2010 and 2012, now the ciphertext is C1 || C3 || C2. Unfortunate no matter how you slice it, but at least it's easy to convert from one form to another. |