Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Load every certificates of files found - add test. | Mathieu Souchaud | 2018-02-02 | 2 | -0/+69 |
| | |||||
* | Load every certificates of files found. | Mathieu Souchaud | 2018-02-01 | 1 | -2/+15 |
| | |||||
* | Optimize SHA_3::expand | Jack Lloyd | 2018-01-31 | 1 | -15/+14 |
| | | | | Noticable speedup for SHAKE esp with longer output lengths | ||||
* | Add a few more tests of the test suite code | Jack Lloyd | 2018-01-30 | 1 | -2/+56 |
| | |||||
* | Fix copy paste error | Jack Lloyd | 2018-01-30 | 2 | -2/+2 |
| | |||||
* | Add function to query if filesystem support is enabled. | Jack Lloyd | 2018-01-30 | 4 | -80/+63 |
| | | | | Makes for much simpler code. | ||||
* | Merge GH #1434 Avoid unnecessary allocations in SHA-3 finalization | Jack Lloyd | 2018-01-30 | 5 | -71/+697 |
|\ | |||||
| * | Whitespace | Jack Lloyd | 2018-01-30 | 1 | -5/+5 |
| | | |||||
| * | Use copy_out_vec_le instead of explicit loop in SHA-3 and Keccak | Jack Lloyd | 2018-01-30 | 2 | -4/+2 |
| | | |||||
| * | Reorganize SHA-3 source file [ci skip] | Jack Lloyd | 2018-01-30 | 1 | -35/+35 |
| | | | | | | | | Put all the statics at beginning followed by member functions. | ||||
| * | Add a set of SHAKE-128 test vectors from NIST CAVS | Jack Lloyd | 2018-01-30 | 1 | -0/+627 |
| | | |||||
| * | Avoid allocating zero bytes for SHA-3 padding | Jack Lloyd | 2018-01-30 | 4 | -27/+28 |
| | | | | | | | | Inspired by #1433 | ||||
* | | For hash/mac speed tests finalize the computation under the timer | Jack Lloyd | 2018-01-30 | 1 | -1/+6 |
| | | | | | | | | | | | | Otherwise this misses the perf difference between SHAKE-128(512) and SHAKE-128(5120000) all the extra computation happens in the final function. | ||||
* | | Have to remove sessions on client side | Jack Lloyd | 2018-01-30 | 1 | -1/+1 |
|/ | | | | | Clearing server side state doesn't help because we resume with a session ticket. | ||||
* | Move FFI tests to sub-functions | Jack Lloyd | 2018-01-30 | 1 | -235/+292 |
| | | | | Add a test for hostname match function | ||||
* | Add botan_x509_cert_hostname_match | Jack Lloyd | 2018-01-30 | 2 | -0/+15 |
| | |||||
* | Add test for non-null pointer | Jack Lloyd | 2018-01-30 | 1 | -0/+9 |
| | |||||
* | Improve X.509 documentation | Jack Lloyd | 2018-01-29 | 1 | -1/+9 |
| | | | | GH #1428 | ||||
* | Catch exceptions from subprocess in build_docs [ci skip] | Jack Lloyd | 2018-01-29 | 1 | -6/+12 |
| | | | | If eg binary file not found, this just crashed with no useful diagnostic. | ||||
* | Move generic TLS tests to test_tls.cpp | Jack Lloyd | 2018-01-28 | 5 | -211/+310 |
| | | | | | | Leaves unit_tls.cpp for the handshake level tests. Add some basic tests of the string<->enum conversions in tls_algos.h | ||||
* | Reorder signature scheme list | Jack Lloyd | 2018-01-28 | 1 | -12/+20 |
| | | | | Now PSS shows up first and we negotiate it by default ;) | ||||
* | Use enums to represent TLS signature and kex algorithms. | Jack Lloyd | 2018-01-28 | 27 | -747/+1171 |
| | | | | Adds support for PSS signatures (currently verifying only). | ||||
* | Avoid resuming a session if policy doesn't allow it | Jack Lloyd | 2018-01-28 | 3 | -6/+7 |
| | | | | Previously if the policy changed we'd continue to resume. #1431 | ||||
* | Blind attempt at fixing #1431 | Jack Lloyd | 2018-01-28 | 1 | -3/+2 |
| | |||||
* | Fix a leak in OpenSSL block ciphers | Jack Lloyd | 2018-01-28 | 1 | -0/+3 |
| | | | | Introduced when support for 1.1.0 API was added in #1056 | ||||
* | Merge GH #1395 Add info on server-desired CA names to client cert callback | Jack Lloyd | 2018-01-27 | 5 | -601/+329 |
|\ | |||||
| * | Add tests for server passing CA names for client auth | Jack Lloyd | 2018-01-27 | 1 | -596/+289 |
| | | |||||
| * | For TLS client auth add callback giving list of trusted CA names | Jack Lloyd | 2018-01-27 | 4 | -5/+40 |
| | | | | | | | | Fixes #1261 | ||||
* | | In client hello printer, don't require the handshake header | Jack Lloyd | 2018-01-27 | 1 | -11/+8 |
|/ | |||||
* | Fix a few warnings | Jack Lloyd | 2018-01-27 | 2 | -3/+3 |
| | |||||
* | Update TLS parser tests | Jack Lloyd | 2018-01-27 | 2 | -6/+6 |
| | | | | | Now all extensions are parsed at least to the extent of creating an unknown extension object. | ||||
* | Make it possible to test custom extensions | Jack Lloyd | 2018-01-27 | 4 | -269/+331 |
| | |||||
* | Add an examine callback also | Jack Lloyd | 2018-01-27 | 7 | -11/+45 |
| | |||||
* | Add ability for application to control which TLS extensions are used | Jack Lloyd | 2018-01-27 | 9 | -1/+56 |
| | | | | GH #1186 | ||||
* | Fix speed test of cipher modes [ci skip] | Jack Lloyd | 2018-01-27 | 3 | -5/+6 |
| | | | | | Add BOTAN_HAS_CIPHER_MODES which is an easier to read/remember macro than BOTAN_HAS_MODES | ||||
* | Merge GH #1385 Remove TLS compression negotitation logic | Jack Lloyd | 2018-01-24 | 11 | -118/+60 |
|\ | |||||
| * | Remove vestigial support for TLS compression | Jack Lloyd | 2018-01-21 | 11 | -118/+60 |
| | | | | | | | | | | It was never supported and never will be. Removing negotiation entirely simplifies the code a bit. | ||||
* | | Remove iostream includes [ci skip] | Jack Lloyd | 2018-01-24 | 2 | -2/+0 |
| | | |||||
* | | Merge GH #1429 Improve application ability to set extensions in PKCS10 requests | Jack Lloyd | 2018-01-23 | 9 | -281/+360 |
|\ \ | |||||
| * | | Allow applications to easily override extensions in cert requests | Jack Lloyd | 2018-01-23 | 9 | -281/+360 |
| |/ | | | | | | | | | | | | | | | | | | | | | | | | | Refactor the code so it's possible to create a cert request without going through x509self.h (PKCS10_Request::create). Add Extensions::add_new, so we can add an extension to a PKCS10 request without stomping on one already included by the application. Refactor the X509 unit tests to avoid (some) duplicated key creations. Just create a key once at the start and use it for all of the tests. GH #1428 | ||||
* | | Comments from code review | Krzysztof Kwiatkowski | 2018-01-22 | 3 | -7/+73 |
| | | |||||
* | | FFI function for Elgamal key generation | Krzysztof Kwiatkowski | 2018-01-21 | 3 | -48/+81 |
| | | | | | | | | | | Adds function for Elgamal key generation that allows usage of 'p' chosen by the caller. | ||||
* | | FFI function for DSA key generation | Krzysztof Kwiatkowski | 2018-01-21 | 3 | -7/+35 |
|/ | | | | | Adds function for DSA key generation that allows usage of 'p' and 'q' chosen by the caller. | ||||
* | Fix headers of command line docs | Jack Lloyd | 2018-01-21 | 1 | -1/+2 |
| | | | | | | | Sphinx and rst2man want slightly different things, so just edit the Sphinx-formatted ReST into a file in build dir Fixes #1398 | ||||
* | Fix a bug in command line handling | Jack Lloyd | 2018-01-21 | 1 | -9/+12 |
| | | | | | | | If --help was provided to a command line that required at least one argument (such as hmac), a usage error would be shown before the help output. But we should not require any arguments if the --help option is given since no arguments will be used in that case. | ||||
* | Add Pipe::prepend_filter | Jack Lloyd | 2018-01-21 | 3 | -2/+45 |
| | | | | Fixes #1402 | ||||
* | Avoid using CMAKE_CURRENT_LIST_DIR | Jack Lloyd | 2018-01-19 | 1 | -4/+4 |
| | | | | Blind attempt at fixing GH #1424 | ||||
* | Build fix when threads are disabled [ci skip] | Jack Lloyd | 2018-01-19 | 1 | -0/+2 |
| | | | | GH #1423 | ||||
* | Merge GH #1421 Fix documentation error | Jack Lloyd | 2018-01-19 | 1 | -1/+1 |
|\ | |||||
| * | Fix documentation of DataSource::end_of_data. | Marcus Brinkmann | 2018-01-19 | 1 | -1/+1 |
| | |