| Commit message (Collapse) | Author | Age | Files | Lines | |
|---|---|---|---|---|---|
| * | Add SipHash | lloyd | 2015-01-11 | 3 | -6/+46 |
| | | |||||
| * | Remove SSLv3 and handling of SSLv2 client hellos. | lloyd | 2015-01-11 | 3 | -193/+0 |
| | | |||||
| * | Ensure all files have copyright and license info. | lloyd | 2015-01-10 | 41 | -28/+219 |
| | | | | | | Update license header line to specify the terms and refer to the file, neither of which it included before. | ||||
| * | Add MCEIES, an integrated encryption system using McEliece and AES-256/OCB | lloyd | 2015-01-08 | 1 | -47/+109 |
| | | |||||
| * | Add SHA-512/256 | lloyd | 2015-01-08 | 2 | -1/+6 |
| | | | | | | Define some new functions for copying out arrays of words and use them across hashes. | ||||
| * | Add Brainpool and secp160r1 ECDSA tests | lloyd | 2015-01-05 | 2 | -1/+153 |
| | | |||||
| * | Support the older ChaCha20Poly1305 AEAD from draft-agl-tls-chacha20poly1305-04 | lloyd | 2014-12-31 | 1 | -0/+8 |
| | | | | | | which we distinguish by the nonce size (always 64 bits in this format, always 96 bits in the CFRG document). | ||||
| * | Add AEAD based on ChaCha20 and Poly1305 defined in ↵ | lloyd | 2014-12-29 | 1 | -0/+13 |
| | | | | | draft-irtf-cfrg-chacha20-poly1305-03 | ||||
| * | Add Poly1305, based on poly1305-donna by Andrew Moon. | lloyd | 2014-12-29 | 1 | -0/+323 |
| | | |||||
| * | Support 96 bit nonces in ChaCha20 as specified in ↵ | lloyd | 2014-12-29 | 1 | -0/+9 |
| | | | | | draft-irtf-cfrg-chacha20-poly1305-03 | ||||
| * | All tests now share an RNG. Uses system RNG if available | lloyd | 2014-12-28 | 23 | -53/+65 |
| | | |||||
| * | Provide a test report | lloyd | 2014-12-27 | 1 | -0/+2 |
| | | |||||
| * | Add Curve25519 based on curve25519-donna by Adam Langley. | lloyd | 2014-12-27 | 4 | -0/+137 |
| | | | | | | | This uses only the c64 version from curve25519-donna; on systems that don't have a native uint128_t type, a donna128 type stands in for just enough 128-bit operations to satisfy donna.cpp | ||||
| * | Implement RFC 6979 determinstic signatures for DSA and ECDSA. | lloyd | 2014-12-10 | 4 | -163/+237 |
| | | | | | | Drop the GNU MP engine. Its implementations were potentially faster in some scenarios but not well protected against side channels. | ||||
| * | Switch to using Montgomery ladder for EC point multiplication. | lloyd | 2014-12-10 | 1 | -55/+75 |
| | | | | | | The test function create_random_point did not actually create a point on the curve - fix. | ||||
| * | Remove the Overbeck conversion at Dr. Strenzke's request. | lloyd | 2014-12-06 | 1 | -99/+25 |
| | | | | | | | | | While a CCA2 proof of this scheme exists, it is written in German and for various reasons publishing a translation would be a complicated affair. Without a (well studied) English proof it is harder to understand the security of the overall scheme. Thus only KEM, which seems much easier to prove, will be offered. | ||||
| * | Add KEM scheme for McEliece | fstrenzke | 2014-12-06 | 1 | -21/+68 |
| | | |||||
| * | Add an implementation of McEliece encryption based on HyMES | fstrenzke | 2014-11-26 | 3 | -0/+268 |
| | | | | | | | | (https://www.rocq.inria.fr/secret/CBCrypto/index.php?pg=hymes). The original version is LGPL but cryptsource GmbH has secured permission to release it under a BSD license. Also includes the Overbeck CCA2 message encoding scheme. | ||||
| * | Use the OCB test specified in RFC 7253 instead of the -03 draft version | lloyd | 2014-11-16 | 1 | -72/+50 |
| | | |||||
| * | Add specialized reduction for P-521 along with 9x9 Comba routines. | lloyd | 2014-11-15 | 1 | -12/+16 |
| | | | | | | Roughly 35-50% faster on my laptop (depending on if mlock is enabled, the overhead in that allocator is becoming much more of a hotspot). | ||||
| * | OCB cleanup and additional tests | lloyd | 2014-11-07 | 2 | -2/+106 |
| | | |||||
| * | Replace Transformatio::nstart with start_raw so we can do a full set | lloyd | 2014-11-05 | 3 | -7/+7 |
| | | | | | of overloads in the base class with the same name. | ||||
| * | Various small fixes and cleanups, new is_prime util | lloyd | 2014-11-03 | 2 | -2/+11 |
| | | |||||
| * | No need to pass version by reference | lloyd | 2014-10-31 | 1 | -1/+2 |
| | | |||||
| * | Add some secp256k1 KATs and a randomized ECC test suggested in | lloyd | 2014-10-10 | 5 | -3/+148 |
| | | | | | http://crypto.stackexchange.com/questions/784 | ||||
| * | Remove unused test. Bugzilla 272 | lloyd | 2014-05-17 | 1 | -65/+0 |
| | | |||||
| * | Correct CCM for L != 2. Bugzilla 270 | lloyd | 2014-05-16 | 1 | -0/+7 |
| | | |||||
| * | Any fixed MR iterations is probably wrong for somebody. Allow the user | lloyd | 2014-04-25 | 1 | -4/+4 |
| | | | | | | | to specify a probability as well as if n was randomly chosen or not. If the input is random use a better bounds to reduce the number of needed tests. | ||||
| * | Better TLS checks | lloyd | 2014-04-10 | 2 | -28/+46 |
| | | |||||
| * | X.509 path validation now performs all possible tests and returns a | lloyd | 2014-04-05 | 1 | -3/+3 |
| | | | | | | | set of error codes, instead of failing immediately on first error. This prevents a 'weak' error like an expired certificate from hiding a major error such as signature validation failure or hard revocation. | ||||
| * | Add RFC 6979 nonce generator. Also some HMAC_DRBG cleanups. | lloyd | 2014-03-22 | 3 | -0/+73 |
| | | |||||
| * | Add HMAC_DRBG | lloyd | 2014-03-21 | 4 | -21/+2487 |
| | | |||||
| * | Fix warnings | lloyd | 2014-02-13 | 1 | -1/+1 |
| | | |||||
| * | Cleanups | lloyd | 2014-02-13 | 2 | -18/+0 |
| | | |||||
| * | Remove global variables | lloyd | 2014-02-13 | 1 | -71/+64 |
| | | |||||
| * | Update Clang flags. Remove unneeded includes of init.h | lloyd | 2014-02-09 | 1 | -1/+0 |
| | | |||||
| * | Compile fixes | lloyd | 2014-02-09 | 1 | -5/+3 |
| | | |||||
| * | More fixes for minified builds | lloyd | 2014-02-09 | 17 | -87/+124 |
| | | |||||
| * | Include build.h in tests.h so feature macro checks work consistently. | lloyd | 2014-02-08 | 1 | -0/+1 |
| | | |||||
| * | Fix minimized builds. Patch by Markus Wanner sent to botan-devel | lloyd | 2014-02-08 | 5 | -1/+32 |
| | | |||||
| * | Fix a bug introduced in 1.11.6 where we tried to check CRL signatures | lloyd | 2014-02-08 | 2 | -80/+52 |
| | | | | | | | against the wrong key, causing any check to fail. Clean up the NIST X.509 path validation tests and run them by default. | ||||
| * | Remove Square, Skipjack, Luby-Rackoff, and Blue Midnight Wish. | lloyd | 2014-02-08 | 4 | -983/+0 |
| | | |||||
| * | Compile fixes | lloyd | 2014-02-08 | 1 | -0/+1 |
| | | |||||
| * | Add the CMAC constants for 256 and 512 bit block ciphers | lloyd | 2014-02-02 | 2 | -0/+18 |
| | | | | | | Also add test vectors for Threefish-512 CMAC and EAX, both generated by the library. | ||||
| * | Add ChaCha | lloyd | 2014-01-31 | 7 | -14/+64 |
| | | |||||
| * | Add initializer for test main | lloyd | 2014-01-18 | 1 | -0/+3 |
| | | |||||
| * | Fix Skein_512::clear | lloyd | 2014-01-18 | 1 | -0/+14 |
| | | |||||
| * | Split off the keyed interfaces of transform to Keyed_Transform | lloyd | 2014-01-18 | 2 | -2/+2 |
| | | | | | | Remove the unhelpful 'Algorithm' base class which had previously acted more or less as a global base. | ||||
| * | Remove PBES1 entirely | lloyd | 2014-01-18 | 2 | -9/+6 |
| | | |||||
| * | Split up docs into the reference manual, the website, and everything else. | lloyd | 2014-01-10 | 28 | -8/+48 |
| | | | | | | | | | | | | Add `website` target to makefile. Some progress towards fixing minimized builds. TLS now hard requires ECDSA and GCM since otherwise a minimized build has only insecure options. Remove boost_thread dependency in command line tool | ||||
 |
index : botan.git | |
| Unnamed repository; edit this file 'description' to name the repository. |
| aboutsummaryrefslogtreecommitdiffstats |