aboutsummaryrefslogtreecommitdiffstats
path: root/src
Commit message (Collapse)AuthorAgeFilesLines
* Add --test-runs option to test binaryJack Lloyd2017-03-291-5/+9
| | | | Just runs the specified test several times, or until first failure.
* Merge GH #879 Fix rsa_blinding tests and add one more testJack Lloyd2017-03-291-3/+46
|\
| * Fix rsa_blinding tests if emsa_raw is missing and add tests for rsa_blinding ↵Daniel Neus2017-02-161-3/+46
| | | | | | | | while encrypting/decrypting
* | Merge GH #899 Add ability to specify iterations when encrypting a private keyJack Lloyd2017-03-297-38/+390
|\ \
| * | Add ability to specify iterations when encrypting a private keyJack Lloyd2017-02-267-38/+390
| | | | | | | | | | | | GH #896
* | | Merge GH #946 Expose multiple precision integers in C interfaceJack Lloyd2017-03-295-27/+731
|\ \ \
| * | | Expose BigInt API subset to C APIJack Lloyd2017-03-285-27/+731
| | | | | | | | | | | | | | | | Also adds RSA key constructors using BN
* | | | Merge GH #947 Add support for getentropy syscallJack Lloyd2017-03-295-1/+79
|\ \ \ \
| * | | | Use getentropy(2) as random source.Alexander Bluhm2017-03-295-1/+79
| |/ / / | | | | | | | | | | | | | | | | | | | | | | | | | | | | Gather entropy from system call getentropy(2). This is available since in OpenBSD 5.6 and Solaris 11.3. It can provide up to 256 bytes entropy from the kernel without blocking. As a system call it does not need a file descriptor and works in chroot(2) environments without device nodes.
* / / / Remove old timing test suiteJack Lloyd2017-03-2819-610/+5
|/ / / | | | | | | | | | Replaced by version in cli added in #894
* | | Merge GH #944 Add check_key to C APIJack Lloyd2017-03-283-1/+24
|\ \ \
| * | | Expose PK::check_key functions in C interfaceJack Lloyd2017-03-273-1/+24
| | | |
* | | | Merge GH #942 Avoid passing IP as hostname in tls_client command line utilJack Lloyd2017-03-281-1/+11
|\ \ \ \
| * | | | tls_client must not pass an IP address as server informationAlexander Bluhm2017-03-251-1/+11
| |/ / / | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | RFC 6066 section 3 says: Literal IPv4 and IPv6 addresses are not permitted in "HostName". But if a user passes an IP address to botan tls_client as connect address, this is also used for SNI. Some TLS server like libtls from the LibreSSL project check that a provided hostname is a DNS name. The TLS connection attempt from botan is rejected with a fatal alert.
* | | | Merge GH #938 Fix incorrect bcrypt truncationJack Lloyd2017-03-283-11/+305
|\ \ \ \
| * | | | Avoid long tests for each bcrypt passwordJack Lloyd2017-03-241-2/+22
| | | | |
| * | | | Fix incorrect password truncation in bcrypt password hashing.Jack Lloyd2017-03-243-10/+284
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | The 56 char bound is bogus; Blowfish itself allows at most 448 bits in the key schedule, but Bcrypt's modification allows up to 72 chars for the password. Bug pointed out by Solar Designer. Also reject work factors 0...3 since all other extant bcrypt implementations require at least work factor 4. Adds more bcrypt tests generated by crypt_bcrypt and OpenBSD's version.
* | | | | Use JSON to store build configSimon Warta2017-03-251-1/+3
| |/ / / |/| | | | | | | | | | | to improve debuggability
* | | | shellcheck fix in website.shJack Lloyd2017-03-241-5/+3
|/ / / | | | | | | | | | [ci skip]
* | | Use a hardcoded URL for the PDF downloadRené Korthaus2017-03-231-10/+8
| | |
* | | Fix some compiler warnings.Jack Lloyd2017-03-223-3/+3
| | |
* | | Remove duplicate include GH #928Jack Lloyd2017-03-221-1/+0
| | |
* | | Merge GH #929 Add ppc64le target [ci skip]Jack Lloyd2017-03-221-0/+22
|\ \ \
| * | | Add ppc64le (POWER8 little endian) as supported cpuGustavo Serra Scalet2017-03-201-0/+22
| | | |
* | | | Merge GH #897 Add generic memory type BER decoderJack Lloyd2017-03-221-0/+32
|\ \ \ \
| * | | | Add generic memory type value BER decoderNuno Goncalves2017-03-071-0/+32
| | | | | | | | | | | | | | | | | | | | Signed-off-by: Nuno Goncalves <[email protected]>
* | | | | Merge GH #923 Build PDF handbookJack Lloyd2017-03-221-0/+10
|\ \ \ \ \
| * | | | | Provide the handbook as a PDF downloadRené Korthaus2017-03-161-0/+10
| | |/ / / | |/| | | | | | | | | | | | | | | | | | | | | | | | | | | | Extends the website script to include a link to the manual as a PDF file for download. Also includes links to search and index only for html, as it does not work for latex.
* | | | | Merge GH #931 Add support for reaching IPv6 hosts in the tls_client CLIJack Lloyd2017-03-221-20/+26
|\ \ \ \ \
| * | | | | Add support for reaching IPv6 hosts in the tls_client CLIRené Korthaus2017-03-211-20/+26
| | | | | |
* | | | | | Merge GH #932 Guard filters tests with all necessary macrosJack Lloyd2017-03-221-12/+32
|\ \ \ \ \ \
| * | | | | | Guard filters tests with all necessary macrosRené Korthaus2017-03-211-12/+32
| |/ / / / / | | | | | | | | | | | | | | | | | | | | | | | | The filters tests were missing many BOTAN_HAS guards for hash functions, MACs and ciphers used.
* / / / / / Fix #917: calendar_point::to_std_timepoint() does not support years after 2037Daniel Neus2017-03-213-5/+10
|/ / / / / | | | | | | | | | | | | | | | Only throw on systems where 32 bit std::time_t is used.
* | | | | Fix DragonflyBSD fs accessJack Lloyd2017-03-191-0/+2
| | | | | | | | | | | | | | | | | | | | GH #887
* | | | | Merge GH #915 Fix OS::get_processor_timestamp()Jack Lloyd2017-03-191-1/+2
|\ \ \ \ \
| * | | | | Fix OS::get_processor_timestamp() testsDaniel Neus2017-03-141-1/+2
| | |/ / / | |/| | |
* | | | | Merge GH #916 Add VS2017 buildsJack Lloyd2017-03-191-3/+22
|\ \ \ \ \
| * | | | | Add VS2017 buildsDaniel Neus2017-03-141-3/+22
| |/ / / /
* | | | | No C++ exceptions from cpu probe functions. See GH #920Jack Lloyd2017-03-193-30/+11
| | | | |
* | | | | Add RDRAND_RNG speed testJack Lloyd2017-03-191-0/+12
| | | | |
* | | | | Fix further compiler macro bug exposed by #921Jack Lloyd2017-03-191-1/+1
| | | | |
* | | | | BOTAN_TARGET_COMPILER_IS -> BOTAN_BUILD_COMPILER_ISDaniel Neus2017-03-152-2/+2
| |/ / / |/| | |
* | | | Merge GH #913 Follow PKIX rules for X.509 time formattingJack Lloyd2017-03-132-24/+97
|\ \ \ \
| * | | | Fix: UTCTime interpreted as GeneralizedTimeDaniel Neus2017-03-132-24/+97
| |/ / / | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Example: "200305100350Z" interpreted as "2003/05/10 03:50:00 UTC" correct is "2020/03/05 10:03:50 UTC" According to RFC 5280: UTCTime values ... MUST include seconds (i.e., times are YYMMDDHHMMSSZ) -> length 13 GeneralizedTime values ... MUST include seconds (i.e., times are YYYYMMDDHHMMSSZ) -> length 15 I think we should enforce the RFC5280 rules even if the ASN.1 rules are not that strict.
* | | | Merge GH #912 Fix OpenBSD shared lib nameJack Lloyd2017-03-132-9/+11
|\ \ \ \
| * | | | OpenBSD does not have 3 digit soname and library symlinks.Alexander Bluhm2017-03-132-9/+11
| |/ / / | | | | | | | | | | | | | | | | Set library name for openbsd to libbotan-2.so.0.0 and do not install symlinks.
* / / / Small fixes in API docs [ci skip]René Korthaus2017-03-092-4/+4
|/ / /
* | | Merge GH #901 Allow OCSP requests without the full subject certificateJack Lloyd2017-03-076-18/+51
|\ \ \
| * | | Allow OCSP requests without the full subject certificateNuno Goncalves2017-03-046-18/+51
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | A OCSP request doesn't need the full subject certificate. This extends the API to require instead of the subject certificate: * OCSP::Request: subject serial. * OCSP::online_check: subject serial AND ocsp responder url. API breaking change: * removal of OCSP::Request::subject() as OCSP::Request doesn't need to hold the certificate, but only the serial. Signed-off-by: Nuno Goncalves <[email protected]>
* | | | Merge GH #904 Fix memory leak in TLS testsJack Lloyd2017-03-031-4/+6
|\ \ \ \ | |/ / / |/| | |
generated by cgit v1.2.3 (git 2.39.1) at 2024-12-01 19:48:32 +0000