Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Use RtlSecureZeroMemory or memset_s if available | lloyd | 2015-01-07 | 3 | -0/+15 |
| | |||||
* | The pkgconfig file should be installed relative to the library dir | lloyd | 2015-01-07 | 2 | -13/+5 |
| | | | | | | rather than the base destdir. Pointed out by hexchain in github pull 38. Version the docdir with the full version incl patch. | ||||
* | Fix install script under Python3 | lloyd | 2015-01-06 | 3 | -13/+30 |
| | |||||
* | Add Brainpool and secp160r1 ECDSA tests | lloyd | 2015-01-05 | 2 | -1/+153 |
| | |||||
* | If no certificate stores at all are available skip OCSP checks | lloyd | 2015-01-04 | 1 | -5/+7 |
| | |||||
* | Remove config used for testing DTLS-SRTP | lloyd | 2015-01-04 | 1 | -3/+2 |
| | |||||
* | Add DTLS-SRTP key establishment from RFC 5764 (required for WebRTC). | lloyd | 2015-01-04 | 11 | -134/+293 |
| | | | | | | | | | | | | | | Github issue 27. Refactor server hello handling to make it easier to handle other extensions. The manual specified that 224 bit NIST primes were disabled by default for TLS but they were not. Additionaly disable the 256k1 curve and reorder the remaining curves by size. Rewrite the max fragment length extension code to roughly what an ideal compiler would have turned the original code into, using a switch instead of a lookup into a small constant std::map. | ||||
* | Make the help output slightly more helpful | lloyd | 2015-01-04 | 1 | -1/+1 |
| | |||||
* | Put the includes in the right (versioned) subdir on install | lloyd | 2015-01-04 | 1 | -12/+14 |
| | |||||
* | Output tweaks | lloyd | 2015-01-02 | 2 | -6/+9 |
| | |||||
* | Add ChaCha20Poly1305 TLS ciphersuites compatible with Google's implementation | lloyd | 2014-12-31 | 8 | -116/+136 |
| | |||||
* | Add helper and update comment | lloyd | 2014-12-31 | 1 | -2/+8 |
| | |||||
* | Support the older ChaCha20Poly1305 AEAD from draft-agl-tls-chacha20poly1305-04 | lloyd | 2014-12-31 | 3 | -10/+42 |
| | | | | | which we distinguish by the nonce size (always 64 bits in this format, always 96 bits in the CFRG document). | ||||
* | Fix one past the end write in Poly1305 finish | lloyd | 2014-12-31 | 1 | -1/+1 |
| | |||||
* | Decruft | lloyd | 2014-12-31 | 2 | -15/+1 |
| | |||||
* | Add AEAD based on ChaCha20 and Poly1305 defined in ↵ | lloyd | 2014-12-29 | 5 | -0/+259 |
| | | | | draft-irtf-cfrg-chacha20-poly1305-03 | ||||
* | Add Poly1305, based on poly1305-donna by Andrew Moon. | lloyd | 2014-12-29 | 9 | -11/+621 |
| | |||||
* | Support 96 bit nonces in ChaCha20 as specified in ↵ | lloyd | 2014-12-29 | 3 | -3/+21 |
| | | | | draft-irtf-cfrg-chacha20-poly1305-03 | ||||
* | All tests now share an RNG. Uses system RNG if available | lloyd | 2014-12-28 | 23 | -53/+65 |
| | |||||
* | Provide a test report | lloyd | 2014-12-27 | 1 | -0/+2 |
| | |||||
* | When encrypting McEliece or Curve25519 keys, default to GCM instead of CBC. | lloyd | 2014-12-27 | 3 | -11/+22 |
| | | | | Add OIDS for OCB mode with various ciphers. | ||||
* | Add Curve25519 based on curve25519-donna by Adam Langley. | lloyd | 2014-12-27 | 13 | -0/+1015 |
| | | | | | | This uses only the c64 version from curve25519-donna; on systems that don't have a native uint128_t type, a donna128 type stands in for just enough 128-bit operations to satisfy donna.cpp | ||||
* | Fix header guards for amalgamation (github issue 35) | lloyd | 2014-12-22 | 4 | -31/+31 |
| | |||||
* | Printing too early | lloyd | 2014-12-22 | 1 | -4/+4 |
| | |||||
* | Fix a couple things pointed out by VC++ warnings. | lloyd | 2014-12-22 | 2 | -8/+3 |
| | |||||
* | Remove obsolete example | lloyd | 2014-12-22 | 1 | -103/+0 |
| | |||||
* | Fix System_RNG for Windows, fix nmake clean target | lloyd | 2014-12-22 | 2 | -3/+3 |
| | |||||
* | Enable system_rng on Windows and MinGW (untested) | lloyd | 2014-12-21 | 5 | -5/+17 |
| | |||||
* | Stack protector flags are required also at link time, at least on MinGW | lloyd | 2014-12-21 | 1 | -3/+3 |
| | | | | Github issue 34 | ||||
* | Always need boost_system in cmdline due to asio | lloyd | 2014-12-20 | 1 | -1/+1 |
| | |||||
* | Add abstract database interface so applications can easily store info | lloyd | 2014-12-20 | 12 | -311/+443 |
| | | | | | | in places other than sqlite3, though sqlite3 remains the only implementation. The interface is currently limited to precisely the functionality the TLS session manager needs and will likely expand. | ||||
* | Correct comment | lloyd | 2014-12-18 | 1 | -2/+2 |
| | |||||
* | Add MinGW support for the CryptoAPI RNG. Also disable the dependencies | lloyd | 2014-12-17 | 4 | -10/+3 |
| | | | | | | | | in auto_rng for a working entropy source as in situations where it doesn't work almost none of the library builds. Disable boost by default from the library. Github issue 34. Unrelated - remove long dead Tru64 as a target. | ||||
* | New download directory structure. | lloyd | 2014-12-17 | 1 | -5/+5 |
| | | | | Point users at github issues instead of bugzilla. | ||||
* | In OpenSSL engine drop support for public key operations. These PK ops just call | lloyd | 2014-12-17 | 6 | -588/+0 |
| | | | | | BN directly and so don't get the benefit of side channel protections in either OpenSSL's or Botan's implementations of the algorithms. | ||||
* | Fix missing dependency in filters (Github pull 33 from tiwoc) | lloyd | 2014-12-13 | 1 | -0/+1 |
| | |||||
* | Don't crash if /usr/share/ca-certificates doesn't exist | lloyd | 2014-12-10 | 1 | -1/+5 |
| | |||||
* | Remove debug print | lloyd | 2014-12-10 | 1 | -2/+0 |
| | |||||
* | Implement RFC 6979 determinstic signatures for DSA and ECDSA. | lloyd | 2014-12-10 | 27 | -909/+322 |
| | | | | | Drop the GNU MP engine. Its implementations were potentially faster in some scenarios but not well protected against side channels. | ||||
* | Switch to using Montgomery ladder for EC point multiplication. | lloyd | 2014-12-10 | 2 | -103/+79 |
| | | | | | The test function create_random_point did not actually create a point on the curve - fix. | ||||
* | Implement a strength estimator for McEliece keys based on HyMES version | lloyd | 2014-12-09 | 6 | -15/+125 |
| | |||||
* | Figure out which decompressor to use based on the input file extension. | lloyd | 2014-12-09 | 8 | -72/+123 |
| | | | | | | | | Rename Bzip to Bzip2, and split Zlib and Deflate compressors into two completely distinct types rather than using a bool flag to the Zlib constructor. Ignore null pointers to our free implementation (LZMA does this). | ||||
* | Cleanup for pbe name parsing in PKCS #8 encoder | lloyd | 2014-12-08 | 2 | -16/+26 |
| | |||||
* | Add a basic speed test for McEliece | lloyd | 2014-12-08 | 2 | -0/+81 |
| | |||||
* | Remove the Overbeck conversion at Dr. Strenzke's request. | lloyd | 2014-12-06 | 4 | -328/+25 |
| | | | | | | | | While a CCA2 proof of this scheme exists, it is written in German and for various reasons publishing a translation would be a complicated affair. Without a (well studied) English proof it is harder to understand the security of the overall scheme. Thus only KEM, which seems much easier to prove, will be offered. | ||||
* | Add KEM scheme for McEliece | fstrenzke | 2014-12-06 | 4 | -21/+179 |
| | |||||
* | Nullptr cleanup | lloyd | 2014-12-06 | 1 | -1/+1 |
| | |||||
* | Untested support for using CryptGenRandom in System_RNG | lloyd | 2014-12-06 | 1 | -0/+32 |
| | |||||
* | Combine release notes into single text file on install | lloyd | 2014-12-06 | 2 | -12/+38 |
| | |||||
* | Add an easy way to directly use the system PRNG. | lloyd | 2014-12-02 | 4 | -0/+125 |
| |