aboutsummaryrefslogtreecommitdiffstats
path: root/src
Commit message (Collapse)AuthorAgeFilesLines
* TEST: rejection of user certs by flatfile cert storeRene Meusel2019-04-122-0/+95
|
* TESt: flatfile cert store uses internal test fileRene Meusel2019-04-122-9/+93
|
* extract test_certstor_utilsPatrick Schmidt2019-04-122-47/+76
|
* rename test_certstor_linux to test_certstor_flatfilePatrick Schmidt2019-04-121-9/+9
|
* consolidate into Flatfile_Certificate_StorePatrick Schmidt2019-04-127-88/+36
|
* add Certstore for linuxPatrick Schmidt2019-04-127-53/+385
|
* add Flatfile_Certificate_StorePatrick Schmidt2019-04-123-0/+232
|
* Support verifying from a v1 rootJack Lloyd2019-04-115-1/+161
| | | | | | Discovered in #1885, the "Verisign Class 3 Public Primary Certification Authority - G3" is a v1 certificate and is still included in distro trust stores.
* Remove tab charactersJack Lloyd2019-04-1013-748/+738
|
* Allow creating intermediate CAs using CLIJack Lloyd2019-04-102-3/+36
| | | | Closes #1879
* Add a option for setting path to trusted CA listJack Lloyd2019-04-101-0/+4
| | | | Related to #1885
* Allow any ciphersuite in TLS fuzzersJack Lloyd2019-04-082-2/+72
| | | | Fixes #1883
* Merge GH #1886 Avoid memory leak in FFI testsJack Lloyd2019-04-081-0/+1
|\
| * Fixes memory leak in FFI testsMatthias Gierlings2019-04-081-0/+1
| |
* | FIX: disable conflicting apple assertion macrosRené Meusel2019-04-081-0/+1
|/
* Merge GH #1877 Use sysconf to detect CPU countsJack Lloyd2019-04-074-1/+51
|\
| * Using available cores rather than total for the pools.David Carlier2019-04-074-1/+51
| | | | | | | | | | | | Issue with the C++ api it might not reflect the reality of the H/W, and on Android, in battery saving mode for example, might be more reasonable to use what the system really offers.
* | boost 1.70 compatibilityRalf van der Enden2019-04-052-2/+14
|/ | | | Fixes issue #82
* Fix the incorrect syntax .PHONY=Evgeny Pokhilko2019-03-311-1/+1
| | | | PHONY targets should be .PHONY:
* Bump version to 2.11.0Jack Lloyd2019-03-301-1/+1
|
* Make Clang unused-lambda-capture a non-errorJack Lloyd2019-03-291-1/+1
| | | | | Unfortuantely we are stuck with code that triggers this due to bugs in MSVC
* Tracing socket feature for the CLI TLS server.David Carlier2019-03-291-0/+27
| | | | For now FreeBSD DTrace support.
* Add some more todos for Memory_PoolJack Lloyd2019-03-281-0/+20
|
* Merge GH #1864 Use thread pool for XMSS signaturesJack Lloyd2019-03-285-172/+48
|\
| * Remove unnecessary cmath includesJack Lloyd2019-03-262-6/+9
| |
| * Remove previous runtime testing for thread countersJack Lloyd2019-03-262-132/+0
| |
| * Use the global thread pool for XMSS signaturesJack Lloyd2019-03-262-34/+39
| | | | | | | | | | | | | | * i7-6700K (4 core w/SMT): 10% improvements * Ryzen 7 2700 (8 core w/SMT): 25% improvement except SHA-256 which is over twice as fast. * POWER8 (160 cores w/SMT): between 25 and 60% faster
* | Disable building shared libs on iOSJack Lloyd2019-03-271-4/+0
| | | | | | | | | | | | It didn't work, and it is not clear it is ever desirable. See GH #1865
* | Fix some extra semicolonsJack Lloyd2019-03-276-6/+6
| |
* | Rename 'darwin' target to 'macos'Jack Lloyd2019-03-2711-22/+22
|/ | | | | Both because that's the more common term, and because iOS/watchOS also uses the Darwin kernel, but we have a distinct target for mobile.
* Work around problem with GCC 4.8Jack Lloyd2019-03-262-2/+4
|
* Fix some warnings from GCC 9Jack Lloyd2019-03-253-3/+3
| | | | New redundant-move and pessimizing-move warnings found some
* Support xz compression of releasesJack Lloyd2019-03-251-3/+19
| | | | Also fix the bzip2 support
* Now getentropy is used by default, remove from CI scriptJack Lloyd2019-03-241-4/+0
|
* Darwin supports getentropy tooDavid Carlier2019-03-241-0/+1
|
* Avoid a warning when building in single file amalgamation modeJack Lloyd2019-03-131-1/+1
|
* Replace upper_bound with lower_bound in pgp_s2kEvgeny Pokhilko2019-03-112-1/+4
| | | | | | | | Fix: RFC4880_encode_count doesn't return consistent results when processing exact iterations. It returns RFC4880 code + 1. Update PGP_S2K_Iter test to verify PGP formula Add test to verify that encoded values match the PGP formula
* Android can possibly support arc4random API.David Carlier2019-03-071-0/+3
|
* Fix Coverity warningsJack Lloyd2019-03-072-20/+38
| | | | | | | | Checking a ptr against null after dereferencing it. Allowing exception throw to escape a noexcept function. Both harmless.
* Add references for these addition chains [ci skip]Jack Lloyd2019-03-071-0/+4
|
* Merge GH #1849 Prefer to_string over as_stringJack Lloyd2019-03-0324-38/+51
|\
| * Fix MSVC and avoid deprecated function callJack Lloyd2019-03-012-2/+2
| |
| * s/as_string/to_string/Jack Lloyd2019-03-0123-37/+50
| | | | | | | | | | A few older APIs use as_string where everywhere else uses to_string. Add to_string's where missing, and deprecate X::as_string.
* | Handle invalid public key length in Ed25519Jack Lloyd2019-03-032-14/+20
|/ | | | Closes #1850
* Constify a few things in X509_Certificate::to_string()Jack Lloyd2019-03-011-5/+12
|
* Split CLI utils.cpp into more partsJack Lloyd2019-02-287-240/+351
| | | | | | Add base58 encoding/decoding CLI Use decrypt_or_random in pk_decrypt
* Add long Blowfish ECB testJack Lloyd2019-02-281-0/+4
| | | | We were not testing 4-wide encryption
* Prevent a warning with old GCCJack Lloyd2019-02-271-4/+5
| | | | GCC 4.8 seems to dislike returns_nonnull attribute, GCC 5 is ok.
* Add Boost to the coverage buildJack Lloyd2019-02-242-3/+4
| | | | So we can test coverage on things like #1839
* Fix testJack Lloyd2019-02-241-1/+1
| | | | Closes #1843