Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Enable BoringSSL SSLv3 tests | Jack Lloyd | 2020-12-09 | 1 | -1/+1 |
| | | | | | | Previously these tested SSLv3 functionality but now BoringSSL has also removed SSLv3 so the remaining test is just to confirm that SSLv3 can't be negotiated. | ||||
* | Update the BoringSSL runner and update the shim | Jack Lloyd | 2020-12-05 | 8 | -4/+48 |
| | | | | | | | Notable changes are checking if a message is sent past a flight boundary, and some new policy logic to distinguish between signature algorithms that we will accept and signature algorithms which we are willing to use ourselves. | ||||
* | Cleanups in the Aarch64 SHA-2 code | Jack Lloyd | 2020-12-05 | 1 | -101/+88 |
| | |||||
* | Clean up the SHA-2 x86 SHA-NI implementation | Jack Lloyd | 2020-12-05 | 1 | -98/+99 |
| | |||||
* | Fix #2525 for Pwdhash interface | Jack Lloyd | 2020-12-05 | 1 | -2/+2 |
| | |||||
* | Remove cast_sboxes.h | Jack Lloyd | 2020-12-04 | 2 | -199/+181 |
| | | | | | This was only in a header as these Sboxes were shared with CAST-256, which has been removed. | ||||
* | Combine the DES tables into one | Jack Lloyd | 2020-12-04 | 1 | -30/+17 |
| | | | | Saves several cycles per byte | ||||
* | Simplify Camellia key schedule a bit | Jack Lloyd | 2020-12-04 | 1 | -25/+29 |
| | |||||
* | Use smaller tables for DES | Jack Lloyd | 2020-12-04 | 3 | -389/+121 |
| | | | | Saves 6K, minimal performance impact | ||||
* | Use smaller tables in Camellia, ARIA, and SEED | Jack Lloyd | 2020-12-04 | 3 | -955/+350 |
| | | | | | | | | This saves 15K in Camellia, 3K in ARIA and 3.5K in SEED, at the cost of somewhat slower implementation. ARIA and SEED see the worst hit because they never made any attempt at lessening impact of a cache based side channel. Camellia did, and the new implementation is much faster than the previous F_SLOW so perf impact there is minimal. | ||||
* | Remove ULL suffixes | Jack Lloyd | 2020-12-01 | 4 | -803/+803 |
| | | | | Not required anymore | ||||
* | Switch MAC vs HMAC preference in KDF and PBKDF2 | Jack Lloyd | 2020-12-01 | 2 | -4/+4 |
| | | | | | | | | Adding BLAKE2b as a MAC caused "PBKDF2(BLAKE2b)" to become interpreted as PBKDF2 with keyed BLAKE, instead of the previous interpretation of PBKDF2 with BLAKE2/HMAC. (And similarly for HKDF, etc) Fixes #2525 | ||||
* | Do not accept EC signatures when the public point is invalid | Jack Lloyd | 2020-11-30 | 1 | -0/+9 |
| | | | | | | | | | | Force g*x+p*y to the point at infinity if g or p is not a valid point. This does not seem to be a security issue since if you can control the public point you can just use a regular key and sign whatever you like. Still, it's odd to accept anything here, and easy to prevent it. Found by CryptoFuzz reported offline by @guidovranken | ||||
* | Add missing check for zero point during ECKCDSA verification | Jack Lloyd | 2020-11-30 | 1 | -0/+2 |
| | |||||
* | Make this comment easier to read | Jack Lloyd | 2020-11-30 | 1 | -1/+2 |
| | |||||
* | Break complicated expression down into several statements | Jack Lloyd | 2020-11-30 | 1 | -2/+6 |
| | |||||
* | Reformat | Jack Lloyd | 2020-11-29 | 1 | -37/+38 |
| | |||||
* | Add support for keyed Blake2b and also MAC via Blake2b. | Tom | 2020-11-29 | 6 | -5/+172 |
| | |||||
* | Merge GH #2523 Remove KDF truncation behavior | Jack Lloyd | 2020-11-28 | 19 | -158/+212 |
|\ | |||||
| * | Remove the KDF truncation behavior | Jack Lloyd | 2020-11-28 | 19 | -158/+212 |
| | | | | | | | | Closes GH #2347 | ||||
* | | Avoid a duplicated call of hash_for_emsa | Jack Lloyd | 2020-11-28 | 2 | -10/+2 |
|/ | | | | | We already invoke this in the PK_Signer superclass constructor so no need to repeat the work. | ||||
* | Merge GH #2521 Deprecate and inline some old compat key loader functions | Jack Lloyd | 2020-11-28 | 4 | -202/+124 |
|\ | |||||
| * | Deprecate some of the old PK load functions, inline others | Jack Lloyd | 2020-11-28 | 4 | -202/+124 |
| | | |||||
* | | Merge GH #2520 Add Private_Key::public_key | Jack Lloyd | 2020-11-28 | 38 | -3/+149 |
|\ \ | |||||
| * | | Add Private_Key::public_key | Jack Lloyd | 2020-11-28 | 38 | -3/+149 |
| |/ | |||||
* / | Make scan_name.h, cpuid.h and http_util.h internal | Jack Lloyd | 2020-11-28 | 53 | -61/+47 |
|/ | |||||
* | Avoid using C++ attribute for ffi.h | Jack Lloyd | 2020-11-28 | 1 | -3/+7 |
| | |||||
* | Remove some unused macro checks/includes | Jack Lloyd | 2020-11-28 | 1 | -8/+0 |
| | |||||
* | Merge GH #2517 Allow custom RSA private keys during TLS | Jack Lloyd | 2020-11-28 | 1 | -1/+1 |
|\ | |||||
| * | Allow custom RSA Private_Key in Client_Key_Exchange message | Claudius Hauptmann | 2020-11-27 | 1 | -1/+1 |
| | | |||||
* | | Merge GH #2516 Add a flag for VSX instructions | Jack Lloyd | 2020-11-28 | 2 | -6/+10 |
|\ \ | |||||
| * | | Add a new ISA flag for VSX instructions | Jack Lloyd | 2020-11-27 | 2 | -6/+10 |
| |/ | | | | | | | GH #2515 | ||||
* | | Merge GH #2513 Various math improvements | Jack Lloyd | 2020-11-28 | 7 | -53/+118 |
|\ \ | |||||
| * | | SRP6 improvements | Jack Lloyd | 2020-11-24 | 1 | -28/+32 |
| | | | |||||
| * | | Some DL_Group and Montgomery exp improvements | Jack Lloyd | 2020-11-24 | 6 | -25/+86 |
| |/ | | | | | | | Leverage precomputation better | ||||
* | | Merge GH #2512 Remove support for TLS DHE_PSK suites | Jack Lloyd | 2020-11-28 | 8 | -38/+9 |
|\ \ | |||||
| * | | Remove support for DHE_PSK | Jack Lloyd | 2020-11-24 | 8 | -38/+9 |
| |/ | | | | | | | Retains PSK and ECDHE_PSK | ||||
* / | Fix placement of deprecated macro | Jack Lloyd | 2020-11-28 | 1 | -1/+2 |
|/ | |||||
* | Merge GH #2511 Remove support for AES-128 OCB ciphersuites | Jack Lloyd | 2020-11-24 | 3 | -11/+1 |
|\ | |||||
| * | Remove support for AES-128 OCB ciphersuites | Jack Lloyd | 2020-11-24 | 3 | -11/+1 |
| | | |||||
* | | Merge GH #2510 Fix some C++17 todos | Jack Lloyd | 2020-11-24 | 2 | -43/+37 |
|\ \ | |/ |/| | |||||
| * | try to calm gcc 9 | Hannes Rantzsch | 2020-11-24 | 1 | -0/+2 |
| | | |||||
| * | directly use return value of emplace_back | Hannes Rantzsch | 2020-11-24 | 1 | -10/+7 |
| | | |||||
| * | use if constexpr rather than sfinae | Hannes Rantzsch | 2020-11-24 | 1 | -33/+28 |
| | | | | | | | | to disable asio_stream setup_native_handle setup in test code | ||||
* | | Remove Camellia CBC TLS ciphersuites | Jack Lloyd | 2020-11-23 | 3 | -39/+15 |
| | | |||||
* | | Remove support for SEED TLS ciphersuites | Jack Lloyd | 2020-11-23 | 3 | -5/+1 |
| | | |||||
* | | Remove outer shared_ptr from Certificate in certstore interface | Jack Lloyd | 2020-11-23 | 23 | -291/+274 |
| | | | | | | | | | | | | Since 2.4.0 X509_Certificate and X509_CRL have been internally shared so an other shared_ptr is just overhead and API complexity. Use std::optional for APIs where the object was optional. | ||||
* | | Remove SRP support from TLS | Jack Lloyd | 2020-11-23 | 21 | -376/+26 |
|/ | |||||
* | Remove TLS support for DSA certificates/ciphersuites | Jack Lloyd | 2020-11-21 | 8 | -88/+2 |
| | |||||
* | Improvements to TLS suite generation script | Jack Lloyd | 2020-11-21 | 1 | -6/+2 |
| | | | | | | | | Port to Python 3 Use SHA-256 instead of SHA-1 for the content hash Use C++17 nested namespace syntax |