| Commit message (Collapse) | Author | Age | Files | Lines |
|
|
|
| |
is being used and not Randpool.
|
| |
|
|
|
|
| |
of preventing the bswap optimizations from being used. :(
|
|
|
|
| |
in the Threefish cipher have changed to increase diffusion.
|
|
|
|
|
|
|
|
|
|
|
| |
build (only libstate, utils, plus dependencies), which can be extended with
use of --enable-modules.
To add new modules to the set of always-loaded, use 'load_on always' in info.txt
Also fix a few small build problems that popped up when doing a minimal build.
Requested by a user.
|
| |
|
| |
|
|
|
|
| |
Wrap the EVP_ calls in OPENSSL_NO_XXX checks to handle this.
|
|
|
|
|
|
|
|
|
|
| |
in a reasonable way. Low on features, which is rather intentional. There
is a version code included in the format so further extensions are possible, if
warranted.
Inspired by the n-th mailing list request for such a class. Realized it was
probably better that I design such code than random people who just want
'something that works'.
|
|
|
|
|
| |
files. Were missed by the automated script that added them to the cpp/h
files, it appears.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
systems. This was something that for whatever reason that I have
long since forogotten was a good idea on IRIX running MIPS circa
a decade ago, but was reported to cause problems on the Debian
builds.
Add mipsel as an alias for the mips32 architecture for Debian.
The mips32 submodel names were badly typoed and did not work
correctly.
Remove the leading mips32- and mips64- from MIPS submodel names.
|
|
|
|
|
|
|
| |
based on the SGI Pro64 and Pathscale EKOpath compilers. Only tested on an
x86-64 system running Linux (v4.2.1). Miscompiles a few of the block ciphers
(segvs, didn't bother to diagnose further; recompile with -O1 to fix), other
than that seems OK.
|
| |
|
| |
|
|
|
|
| |
used on Visual C++
|
|
|
|
| |
Contributed by Patrick Georgi
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Don't read any file that is not world-readable. This avoids trouble when
running as root, since on Linux various special files can cause odd
interactions and/or blocking behavior when read (for instance /proc/kmsg).
ssumption is that no such files are world-readable. This also avoids any
issue of reading data that is potentially sensitive.
Instead of reading the first 1 KB of each file, only read the first 128
bytes. This prevents large files (like /proc/config.gz or /proc/kallsyms)
from swamping the input buffer; these inputs are pretty static and
shouldn't count for much. Reducing to 128 bytes causes a poll to read
about 400 different files, rather than ~30.
|
|
|
|
|
| |
Python configure scripts. Previously Python version would give up, and
the Perl one would guess i686 (!)
|
|
|
|
|
| |
in this header, instead use the macro version BOTAN_MP_WORD_BITS. Only
affected 64-bit SPARC builds.
|
| |
|
| |
|
| |
|
|
|
|
|
|
|
|
|
| |
implementation. This had been the case since at least 1.8.0. Remove it, since
implementing this signature would require having the library create an
AutoSeeded_RNG, which seems like it might be quite surprising to an unsuspecting
user.
Problem reported by M. Braun in ticket 44
|
| |
|
| |
|
| |
|
| |
|
| |
|
| |
|
| |
|
|
|
|
|
|
| |
the info.txt files with the right module dependencies.
Apply it across the codebase.
|
|
|
|
|
|
|
| |
just toplevel pubkey). This was a convention I realized made sense sometime
on when I was first doing the modularization changes.
Move pkcs8.* and x509_key.* to pk_codecs
|
|
|
|
|
|
|
|
|
| |
Useful for tracking where the big balls of mud are.
Fix dependencies in gost_3411 (depends on the gost block cipher), and
the TLS PRF (depends on HMAC). Also hide TLS_PRF::P_hash in an anonymous
namespace instead of making it a private static function. I don't think
this will affect binary compat, since it was statically linked.
|
| |
|
|
|
|
| |
input vector.
|
| |
|
|
|
|
| |
needed, or replace with <iosfwd> or <ostream> where necessary.
|
|
|
|
|
|
|
|
| |
verify mode is not set, by default the Miller-Rabin bases are chosen
from the small primes. Generally speaking these make good test bases.
However if the prime to be generated is very small, we will choose a base
which is out of range. If the i'th prime is too big to be a base, then
just choose a random integer of the appropriate size instead.
|
|
|
|
| |
with some older versions of gcc
|
|
|
|
|
|
| |
set to 2, 3, or 4 was not returning a random prime due to reducing the
rng output modulo 1 instead of mod 2 in choosing which prime of that size
to return. Oops.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
| |
and all CPU-specific implementations now depend on the appropriate engine
module.
The most common problem before with this was that the SSE2 module was built,
but the sole SSE2 code (SHA-1) was not (for instance, on an i686). This would
cause a compile warning about the unused request object.
Preventing unused engines from being built will also (very slightly) speed
up the lookup process on most system.
|
|
|
|
|
|
|
|
| |
set to 1000 ms (scaling based on amount of data requested). At 1000 ms
exactly, we would form a timeval of 0 seconds and 1000000 usecs (ie, 1 second).
Linux was fine with this, but FreeBSD 7.0's select was returning EINVAL.
Fix things to properly create the timeval so that everyone is happy.
|
| |
|
|\
| |
| |
| |
| |
| | |
db0cdfa10718d2065e52b6753d1d671b71cb423d)
to branch 'net.randombit.botan.python-configure' (head f106b1e4c7361a0fee6856defb01a9f96a2fd4eb)
|
| | |
|
| | |
|
| | |
|
| | |
|
|/ |
|