aboutsummaryrefslogtreecommitdiffstats
path: root/src/lib
Commit message (Collapse)AuthorAgeFilesLines
* Fix name constraint applicationJack Lloyd2021-05-091-6/+1
| | | | | | | A name constraint on an intermediate certificate should not constraint the intermediate itself, but only the subordinate certificates. Fixes GH #2737
* Name constraint fixesJack Lloyd2021-05-094-8/+10
| | | | | | | | | | | | Do not require name constraint extension to be critical. It is certainly a bad idea to issue non-critical name constraints, but it seems some CAs do use them in practice, and also most other implementations seem to accept such non-critical extensions. Fix name constraint DNS comparisons: previously these were case sensitive, which is wrong for DNS. GH #2735 and #2736
* Fix #2237 forcing OID::to_string to use C locale, avoiding thousand ↵Leonardo Backes Vargas2021-04-271-0/+1
| | | | separators from the process locale.
* Backport of #2630 to release-2Jack Lloyd2021-04-211-1/+1
| | | | | | | | Fix decoding a DN when the set contains more than one element This check was incorrect. GH #2611
* Correct version annotation for botan_rng_init_customJack Lloyd2021-04-151-1/+1
|
* Merge GH #2673 Fix TLS::Stream::async_shutdownJack Lloyd2021-04-011-21/+29
|\
| * fix: forward executor through async_shutdown wrapperHannes Rantzsch2021-03-301-21/+29
| |
* | Reject non-TLS records as soon as possibleJack Lloyd2021-03-291-4/+6
| | | | | | | | | | | | As we can hang if someone sends something we do not expect GH #2668
* | Fix asm clobbers for rotate asmJack Lloyd2021-03-091-2/+8
| | | | | | | | rol/ror clobber CF and (iff rot == 1) also OF
* | Fix BigInt::operator< when both integers are negativeJack Lloyd2021-03-051-2/+2
| | | | | | | | | | | | Broken in 00b6842a54 GH #2638
* | Bump the ffi version to indicate support for custom RNGJack Lloyd2021-02-202-1/+5
| |
* | Merge GH #2628 Backport #2619 improve safegcd boundsJack Lloyd2021-02-201-5/+23
|\ \
| * | Backport #2619 to release-2Jack Lloyd2021-02-191-5/+23
| |/
* / Add API to register custom RNG with FFI APIRené Fischer2021-02-182-0/+113
|/
* Fix build on clang ppc64Jack Lloyd2020-12-161-4/+10
| | | | GH #2554 #2547
* Backport of #2543 to release-2Jack Lloyd2020-12-155-267/+333
|
* Backport of #2541 increase alignment of lookup tablesJack Lloyd2020-12-1215-126/+130
| | | | | Many differences here as some algos are in 2.x but not in 3, and the small tables changes for ARIA/Camellia/DES/SEED were not backported.
* Merge GH #2481 Use -mcpu=power9 for DARNJack Lloyd2020-11-101-0/+4
|\ | | | | | | Backport of #2480
| * Use -mcpu=power9 to use DARN instructionJack Lloyd2020-11-091-0/+4
| | | | | | | | Backport of #2480
* | Fix ressol loop for interesting composite moduliJack Lloyd2020-11-091-4/+17
|/ | | | Backport of #2478 fixing #2476
* Enable CLMUL on WindowsJack Lloyd2020-11-061-0/+1
| | | | Somehow this got lost in the clmul->ghash conversion in 2.12
* Merge GH #2453 Deprecate some math functions from public APIJack Lloyd2020-11-0510-58/+101
|\
| * Some math deprecationsJack Lloyd2020-11-0510-58/+101
| | | | | | | | | | | | | | | | | | | | | | | | | | Mostly things that shouldn't be used (like almost Montgomery inverse, which isn't even constant time) or are very much just for internals (like the word-wise Montgomery inverse computation used for reduction). Make variable time division explicit; leaves plain divide as a call but it forwards to ct_divide now. All callers within the library are now explicitly consttime or vartime. Add a shortcut for modulus by one word - this hits quite often especially in the ECC code
* | Merge GH #2452 Simplify some functions in secmem.hJack Lloyd2020-11-052-50/+36
|\ \
| * | Simplify some secmem.h functionsJack Lloyd2020-11-052-50/+36
| |/ | | | | | | Move buffer_insert to mem_ops.h
* | MSVC doesn't accept std::vector with incomplete types in C++11Jack Lloyd2020-11-052-2/+3
| |
* | Remove some implementation headers from public McEliece includesJack Lloyd2020-11-056-11/+28
|/
* Merge GH #2449 Merge PSK_DB headersJack Lloyd2020-11-053-23/+28
|\
| * Merge psk_db_sql.h into psk_db.hJack Lloyd2020-11-043-23/+28
| |
* | Merge some of the P11 type headers (Slot/Module/Session) into p11_types.hJack Lloyd2020-11-0413-225/+234
|/ | | | Also forward declare the DLL wrapper class rather than including it
* More header mergingJack Lloyd2020-11-0325-975/+981
|
* Add missing includeJack Lloyd2020-11-013-0/+3
|
* More cleanup of XMSS headersJack Lloyd2020-11-018-518/+480
| | | | Merge xmss_privatekey.h and xmss_publickey.h -> xmss.h
* Modify Testsuite_RNG slightly to avoid rotationsJack Lloyd2020-11-011-0/+7
| | | | | | | | | | | | [Since I want to make rotate.h internal in 3.0] During modification of Testsuite_RNG some hard to debug test failures occurred. It turned out to be because on occasion, with a sufficiently bad test RNG, you can end up with p == q during RSA key generation. Check for this. Also add a smoke test checking that the test RNG is producing roughly uniform output.
* Add missing includeJack Lloyd2020-10-311-0/+1
|
* Make several XMSS implementation headers internalJack Lloyd2020-10-3119-88/+112
| | | | | | This is nominally a SemVer break but there is no legit use for these APIs by applications, and most of them were not even exported via visibility attributes.
* Merge X.509 header filesJack Lloyd2020-10-3142-978/+948
|
* Merge GH #2441 Merge some of the ASN.1 headersJack Lloyd2020-10-3138-374/+344
|\
| * Merge some of the ASN.1 headersJack Lloyd2020-10-3138-374/+344
| | | | | | | | | | Deprecate asn1_str.h asn1_time.h asn1_oid.h and alg_id.h with all contents moved to existing asn1_obj.h
* | Generalize SIV's support for multiple ADs to the AEAD interfaceJack Lloyd2020-10-314-2/+43
|/
* Correct hash to integer conversions for ECDSAJack Lloyd2020-10-281-7/+6
| | | | | When the hash and group sizes differ sometimes our conversion was different from standard. Closes #2415
* Resolve Doxygen warningsJack Lloyd2020-10-283-3/+5
|
* Add support for detecting AVX-512 BW/DQ alsoJack Lloyd2020-10-243-12/+35
|
* Improve AVX-512 detectionJack Lloyd2020-10-243-18/+80
|
* replace c++20 deprecated std::is_pod with std::is_standard_layout && ↵Nuno Goncalves2020-10-232-2/+2
| | | | | | std::is_trivial Signed-off-by: Nuno Goncalves <[email protected]>
* Merge GH #2426 Fix parsing of deeply nested cipher namesJack Lloyd2020-10-221-3/+6
|\
| * fix parsing nested cipher namewinter2020-10-211-3/+6
| |
* | Fix ECC multiexponentiation when two points are relatedJack Lloyd2020-10-203-2/+25
|/ | | | | | | If the points are related by x = -{1,2,3}y then an infinity was silently produced, causing validation failures. Fixes #2424
* Merge GH #2419 Prevent requesting DER-encoded signature on algos that don't ↵Jack Lloyd2020-10-091-2/+9
|\ | | | | | | support it
| * improve check if signature algorithm supports DER encodingPhilippe Lieser2020-10-091-2/+9
| |
generated by cgit v1.2.3 (git 2.39.1) at 2024-12-21 01:51:22 +0000