Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Merge GH #989 Avoid recursion in BER_Decoder::get_next_object | Jack Lloyd | 2017-04-13 | 2 | -11/+83 |
|\ | |||||
| * | Add test for OSS-Fuzz 813 | Jack Lloyd | 2017-04-13 | 1 | -0/+67 |
| | | |||||
| * | Avoid recursion in BER_Decoder::get_next_object | Jack Lloyd | 2017-04-09 | 1 | -11/+16 |
| | | |||||
* | | Add hex encoder/decoder CLI util | Jack Lloyd | 2017-04-13 | 1 | -0/+37 |
| | | |||||
* | | Add HMAC CLI command | René Korthaus | 2017-04-13 | 1 | -0/+48 |
| | | |||||
* | | fix missing flush in DataSink_Stream::end_msg | Philippe Lieser | 2017-04-10 | 3 | -0/+39 |
| | | |||||
* | | Fix afl fuzzer build [ci skip] | Jack Lloyd | 2017-04-09 | 1 | -1/+1 |
|/ | |||||
* | Add another AES-128 CFB test | Jack Lloyd | 2017-04-08 | 1 | -0/+6 |
| | | | | | Generated by OpenSSL, I needed this to help test https://github.com/riboseinc/rnp/pull/48 | ||||
* | Small ffi fixes | Jack Lloyd | 2017-04-08 | 2 | -4/+6 |
| | | | | | | | | | Constify arg to botan_pk_op_decrypt, and correct comment on botan_mp_is_positive, which returns true even for zero. Considered changing botan_mp_is_positive to match the comment, and return false for zero, but we already test that botan_mp_is_positive(0) == 1, so I left it as is and fixed the comment. | ||||
* | Configure codecov to accept a 0.05% decrease in coverage | Simon Warta | 2017-04-08 | 1 | -0/+15 |
| | |||||
* | Merge GH #979 Doc fix [ci skip] | Jack Lloyd | 2017-04-05 | 1 | -1/+1 |
|\ | |||||
| * | Fix description of coprime parameter to random_prime() [ci skip] | René Korthaus | 2017-04-05 | 1 | -1/+1 |
| | | | | | | | | Found during a review by BSI | ||||
* | | Merge GH #966 Add SM3 hash function | Jack Lloyd | 2017-04-05 | 7 | -0/+759 |
|\ \ | |/ |/| | |||||
| * | Re-roll two loops in SM3 hash compression function that are causing test ↵ | Daniel Wyatt | 2017-04-04 | 1 | -94/+32 |
| | | | | | | | | failures for some compilers. | ||||
| * | Update BSI and NIST policies to prohibit SM3 hash. | Daniel Wyatt | 2017-04-03 | 2 | -0/+2 |
| | | |||||
| * | Unroll loops in SM3 hash compress_n. | Daniel Wyatt | 2017-04-03 | 2 | -65/+241 |
| | | |||||
| * | Add more SM3 hash test data. | Daniel Wyatt | 2017-04-03 | 1 | -0/+417 |
| | | |||||
| * | Fix info.txt date and update to new format. | Daniel Wyatt | 2017-04-03 | 1 | -1/+3 |
| | | |||||
| * | Merge remote-tracking branch 'origin/master' into sm3 | Daniel Wyatt | 2017-04-03 | 177 | -191/+538 |
| |\ | |||||
| * | | Add SM3 hash function | Daniel Wyatt | 2017-04-03 | 5 | -0/+224 |
| | | | |||||
* | | | Merge GH #978 Fix bad read in X509 DN comparisons (CVE-2017-2801) | Jack Lloyd | 2017-04-04 | 4 | -0/+72 |
|\ \ \ | |||||
| * | | | Fix X509 DN comparisons | Jack Lloyd | 2017-04-04 | 4 | -0/+72 |
| | | | | | | | | | | | | | | | | CVE-2017-2801 | ||||
* | | | | Merge GH #900 Add ability to search by X509 DN hash | Jack Lloyd | 2017-04-04 | 10 | -232/+423 |
|\ \ \ \ | |||||
| * | | | | Add tests for find_cert_by_raw_subject_dn_sha256 | Nuno Goncalves | 2017-04-04 | 1 | -1/+43 |
| | | | | | | | | | | | | | | | | | | | | Signed-off-by: Nuno Goncalves <[email protected]> | ||||
| * | | | | Refactor test_certstor.cpp to prepare for adding tests | Nuno Goncalves | 2017-04-04 | 1 | -147/+181 |
| | | | | | | | | | | | | | | | | | | | | Signed-off-by: Nuno Goncalves <[email protected]> | ||||
| * | | | | Format with astyle before major changes | Nuno Goncalves | 2017-04-03 | 1 | -30/+32 |
| | | | | | | | | | | | | | | | | | | | | Signed-off-by: Nuno Goncalves <[email protected]> | ||||
| * | | | | Add unit tests for X509 hash methods: | Nuno Goncalves | 2017-04-03 | 1 | -0/+56 |
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | X509_Certificate::raw_issuer_dn_sha256() X509_Certificate::raw_subject_dn_sha256() Signed-off-by: Nuno Goncalves <[email protected]> | ||||
| * | | | | Add certificate store lookup by subject DN hash | Nuno Goncalves | 2017-04-03 | 4 | -0/+38 |
| | | | | | | | | | | | | | | | | | | | | Signed-off-by: Nuno Goncalves <[email protected]> | ||||
| * | | | | Add X509 issuer and subject DN hash methods | Nuno Goncalves | 2017-04-03 | 2 | -0/+24 |
| | | | | | | | | | | | | | | | | | | | | Signed-off-by: Nuno Goncalves <[email protected]> | ||||
| * | | | | Fix comments | Nuno Goncalves | 2017-04-03 | 1 | -2/+2 |
| | | | | | | | | | | | | | | | | | | | | Signed-off-by: Nuno Goncalves <[email protected]> | ||||
| * | | | | Throw exception for Not_Implemented | Nuno Goncalves | 2017-04-03 | 1 | -2/+1 |
| | | | | | | | | | | | | | | | | | | | | Signed-off-by: Nuno Goncalves <[email protected]> | ||||
| * | | | | Refactor find_cert_by_pubkey_sha1 to reuse hash object | Nuno Goncalves | 2017-04-03 | 1 | -2/+6 |
| | | | | | | | | | | | | | | | | | | | | Signed-off-by: Nuno Goncalves <[email protected]> | ||||
| * | | | | X509_CA: constantify X509_CA::sign_request | Nuno Goncalves | 2017-04-03 | 2 | -2/+2 |
| | | | | | | | | | | | | | | | | | | | | Signed-off-by: Nuno Goncalves <[email protected]> | ||||
| * | | | | Refactor and modernize files to be edited | Nuno Goncalves | 2017-04-03 | 2 | -78/+70 |
| | |_|/ | |/| | | | | | | | | | | Signed-off-by: Nuno Goncalves <[email protected]> | ||||
* | | | | Merge GH #977 Add block cipher interface to C API | Jack Lloyd | 2017-04-04 | 3 | -0/+159 |
|\ \ \ \ | |||||
| * | | | | Add block cipher interface to C API | Jack Lloyd | 2017-04-04 | 3 | -0/+159 |
| | | | | | |||||
* | | | | | configure: encode submodel prefix into single value | Simon Warta | 2017-04-04 | 2 | -11/+11 |
| |_|/ / |/| | | | | | | | | | | | to reuse dictionary parsing | ||||
* | | | | Merge GH #974 Add wrapper for make_unique | Jack Lloyd | 2017-04-04 | 2 | -0/+78 |
|\ \ \ \ | |/ / / |/| | | | |||||
| * | | | add Botan::make_unique | Tomasz Frydrych | 2017-04-04 | 2 | -0/+78 |
| |/ / | |||||
* | | | Remove stray semicolon | Jack Lloyd | 2017-04-04 | 1 | -1/+1 |
| | | | |||||
* | | | Merge GH #885 Change HMAC_DRBG::security_level to match NIST SP800-90A | Jack Lloyd | 2017-04-04 | 3 | -13/+57 |
|\ \ \ | |||||
| * | | | Follow NIST SP 800-57 for HMAC_DRBG security level | René Korthaus | 2017-04-03 | 2 | -3/+38 |
| | | | | |||||
| * | | | Change security_strength of HMAC_DRBG | René Korthaus | 2017-04-03 | 3 | -13/+22 |
| |/ / | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Looking into SP808-90A, it mentions that the max security strength is the security strength of the hash function for pre-image resistance. The current implementation however always only uses half of the output length, therefore only providing half of the security strength possible. However, SP800-90A supports only up to 256 bit security strength, so we fix it to this upper limit. In a second change, add_entropy() now also resets the reseed counter if enough entropy input provided. | ||||
* | | | Merge GH #965 Various code cleanups | Jack Lloyd | 2017-04-04 | 100 | -259/+234 |
|\ \ \ | |||||
| * | | | Content: | Tomasz Frydrych | 2017-04-03 | 100 | -259/+234 |
| |/ / | | | | | | | | | | | | | | | | | | | | | | | | | * fixes for deprecated constructions in c++11 and later (explicit rule of 3/5 or implicit rule of 0 and other violations) * `default` specifier instead of `{}` in some places(probably all) * removal of unreachable code (for example `return` after `throw`) * removal of compilation unit only visible, but not used functions * fix for `throw()` specifier - used instead `BOTAN_NOEXCEPT` * removed not needed semicolons | ||||
* | | | Merge GH #940 Add flags for MSVC for code size optimization | Jack Lloyd | 2017-04-04 | 1 | -2/+2 |
|\ \ \ | |||||
| * | | | Add some MSVC compiler flags | Daniel Neus | 2017-04-04 | 1 | -2/+2 |
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | /Oi enabled in release builds: generates intrinsic functions for appropriate function calls https://msdn.microsoft.com/en-us/library/f99tchzc.aspx /Os if `--optimize-for-size` is used: tells the compiler to favor optimizations for size over optimizations for speed https://msdn.microsoft.com/en-us/library/f9534wye.aspx | ||||
* | | | | Merge GH #964 Add various useful FFI functions for public key crypto | Jack Lloyd | 2017-04-04 | 4 | -81/+437 |
|\ \ \ \ | |_|/ / |/| | | | |||||
| * | | | Implement botan_pubkey_load | Jack Lloyd | 2017-04-03 | 2 | -1/+30 |
| | | | | | | | | | | | | | | | | Declared in header, but was not defined. :( | ||||
| * | | | Fix botan_privkey_create if the desired algorithm was not available in build | Jack Lloyd | 2017-04-03 | 3 | -9/+47 |
| | | | | | | | | | | | | | | | | | | | | | | | | If DSA was disabled, caused memory corruption/crashes due to combination of uninitialized object and the tests not checking return values as carefully as they should. |