| Commit message (Collapse) | Author | Age | Files | Lines |
| |
|
|
|
|
|
| |
in the Client_Hello parser. Works, tested with GnuTLS command line
client.
|
|
|
|
|
| |
interface but it's a plausible start. Will probably have more insights
after adding TLS hooks.
|
| |
|
| |
|
|
|
|
| |
an amalgamation and the app is compiled in Unicode mode.
|
| |
|
| |
|
| |
|
|
|
|
| |
explicit cast.
|
| |
|
|
|
|
| |
cpuid intrinsic) and older GCC (no cpuid.h before 4.3)
|
|
|
|
| |
as they seem to understand it as of GCC 4.6 and Clang 2.9.
|
| |
|
|
|
|
|
| |
the same, so clearly GCC 4.6 and/or the Core i7 are very good about
renames, but might help on less capable systems.
|
|
|
|
| |
clock types we know about that have macros defined for them.
|
| |
|
| |
|
| |
|
|
|
|
|
|
|
|
| |
-mtune=generic as with i486. Python's platform reports an i386 when
running on a Core Duo on MacOS X 10.6, then using -march=i368 causes a
link failure due to missing atomic adds in libstdc++. PR 152
Also use generic for i586.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
- Check the cache; if found, return value
- Populate cache, if the value is already there, delete the old
object and save the new one.
- Recheck the cache value
Raja <[email protected]> pointed out on the list that this could race
if multiple threads called a lookup function in close succession while
the cache was cold. All of them would fail the lookup, then each of
them would add it, but the values returned would be deleted by other
threads.
Instead, declare that first write wins. Then, the cache stays
consistent even if there is a race, the only issue is an extra search
and delete.
Modify GOST and Skein, as their name() function did not roundtrip
properly which caused failures otherwise.
|
|
|
|
|
| |
Try to detect the mtn revision (by shelling out to mtn automate), and
including it in build.h as BOTAN_VERSION_VC_REVISION.
|
|
|
|
| |
most compilers will probably compile this into a conditional anyway.
|
| |
|
|
|
|
|
|
|
|
|
|
| |
a witness'. Instead call it 'is_witness', returning true if a is a
witness for n's compositness, or otherwise false.
Also, the previous version would not check that the final value of y
was n-1; if it isn't, then n is not prime. This would mean the false
negative rate was higher than it should have been, though I'm not sure
by how much exactly.
|
| |
|
| |
|
| |
|
| |
|
|
|
|
| |
coalesce the dir and file name if identical.
|
|
|
|
| |
Windows :(
|
|
|
|
|
|
|
|
| |
amalgamation properly, but would happen to work if a previously
written amalgamation was around.
Also make changes allowing using the SIMD optimized versions of SHA-1
and Serpent to be used in the amalgamation.
|
|
|
|
| |
exception.
|
|
|
|
|
|
| |
not exposed to callers)
Switch back redc to using the inlined version (accidental change)
|
|
|
|
| |
redc, currently)
|
| |
|
|
|
|
|
|
| |
bit window may well improve things further. Currently seeing 20-25%
improvement in ECDSA signature verification and 25 to 40% in
GOST-34.10 verifications.
|
| |
|
| |
|
|
|
|
|
| |
On Solaris, use /usr/ucb/install, as /usr/sbin/install uses some kind
of other strange syntax.
|
|
|
|
|
|
| |
as the first value. Oddly, Sun Studio's default STL tries to make a
pair with the first value a 'const byte[2]', and then subsequently
rejects that as invalid. Reported by Jeremy Reed.
|
|
|
|
| |
at config time.
|
|
|
|
| |
already. Reported by Jeremy C. Reed <[email protected]>
|
|
|
|
| |
Fix build log; copy and paste error.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
In ECDSA, this cases should all be caught by the later check that R is
not zero, so I don't believe there is any security danger.
However the GOST 34.10 implementation did not have either check.
Fortunately, the function that extracts the affine X coordinate from
the Jacobian coordinates will throw an exception if the point is at
infinity, so we would not in fact accept invalid signatures, but this
is mostly by luck. And still represents a bit of a DoS potential.
I checked the history, it looks like not checking for zeros at the
start traces back to the original InSiTo code, and I copied the ECDSA
code for GOST without thinking about it too much.
|
|
|
|
| |
abs(x) < modulus. Also remove unused member variables.
|
|
|
|
|
|
|
|
|
| |
certificate policies extension, though it's really not supported
at all.
Remove test code from secmem.h
Fix building the examples
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
converting back and forth. This gives a 10 to 20% speedup on a Core
i7. In addition, the CurveGFp no longer contains a Barrett reducer,
saving 3 BigInts worth of memory.
Add a #if'ed out alternative to point multiplication using the
Montgomery ladder technique. It runs in (more or less) constant time,
but rather significantly slower than the 4 bit window technique
currently used.
Tweak the window sizes to match the theoretical optimums.
|