Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Correct error with XTS minimum block size | Jack Lloyd | 2018-10-15 | 2 | -1/+580 |
| | | | | | | | Add tests from NIST that demonstrate the problem, as well as OpenSSL generated tests for all input sizes 16...128 bytes. Fixes GH #1706 | ||||
* | Remove duplicated XTS test vectors | Jack Lloyd | 2018-10-15 | 1 | -25/+2 |
| | |||||
* | Merge GH #1704 Use emplace_back where appropriate | Jack Lloyd | 2018-10-15 | 6 | -15/+15 |
|\ | |||||
| * | move instead of copy | rumcajs | 2018-10-14 | 6 | -15/+15 |
| | | |||||
* | | Unroll Blowfish loop by 4 instead of 2 | Jack Lloyd | 2018-10-14 | 1 | -16/+45 |
|/ | | | | Roughly 50% faster for parallel modes like CTR or CBC decrypt. | ||||
* | Only use Python3 in CI builds if requested explicitly | Jack Lloyd | 2018-10-12 | 1 | -2/+4 |
| | | | | | | It looks like Travis has some old version of Python 3 which can't handle interpolating an integer into a byte string -- expr b"wtf %d" % (5) fails with whatever is on Travis, but works fine in Python 3.7 | ||||
* | Disable use of pylint3 in Travis | Jack Lloyd | 2018-10-12 | 3 | -9/+9 |
| | | | | | Suddenly installing python3-pip is broken, and I don't care enough to dig deeper. Can probably come back when we switch to Xenial. | ||||
* | Add an explicit OS target for Emscripten | Jack Lloyd | 2018-10-12 | 6 | -8/+42 |
| | | | | | This allows things to mostly work out of the box (#1702), and allows us to write Emscripten specific code where required. | ||||
* | Small fixes for QNX [ci skip] | Jack Lloyd | 2018-10-12 | 2 | -1/+2 |
| | | | | Private report of a successful build on QNX 7 with these fixes. | ||||
* | Make it possible to overwrite options to ar using AR_OPTIONS | Jack Lloyd | 2018-10-08 | 1 | -1/+2 |
| | | | | | | | No convention for naming of this variable afaict Mostly useful as an escape hatch when we for whatever reason do the wrong thing, as in #1702 when used with emconfigure | ||||
* | Fixes for building for LLVM bitcode/Emscripten | Jack Lloyd | 2018-10-07 | 3 | -2/+7 |
| | | | | GH #1702 | ||||
* | Alas, Clang in Travis is also too old for this to work | Jack Lloyd | 2018-10-06 | 1 | -1/+1 |
| | |||||
* | GCC in Travis is too old (doesn't have ISA attribute) | Jack Lloyd | 2018-10-06 | 1 | -1/+1 |
| | |||||
* | Test single amalgamation file | Jack Lloyd | 2018-10-05 | 1 | -0/+3 |
| | | | | Would have detected #1700 before release. | ||||
* | Add explicit AVX2 function annotations | Jack Lloyd | 2018-10-05 | 3 | -2/+30 |
| | | | | Needed for single amalagamation file with AVX2 enabled. | ||||
* | Add more SM2 signature tests | Jack Lloyd | 2018-10-05 | 1 | -0/+56 |
| | | | | | Using the standard SM2 and P-256 curves, instead of the SM2 test curve, for both SM3 and SHA-256 hashes. All values generated with GmSSL | ||||
* | Merge GH #1698 Resolve leak during ECDSA verify with old OpenSSL | Jack Lloyd | 2018-10-04 | 2 | -6/+24 |
|\ | |||||
| * | Resolve a leak in OpenSSL ECDSA verification for old OpenSSL | Jack Lloyd | 2018-10-03 | 2 | -6/+24 |
| | | | | | | | | | | | | The code was using the 1.0 API incorrectly and causing a leak. https://github.com/riboseinc/rnp/issues/757 | ||||
* | | Remove Travis notification emails [ci skip] | Jack Lloyd | 2018-10-03 | 1 | -3/+0 |
|/ | |||||
* | Bump version to 2.9 | Jack Lloyd | 2018-10-01 | 1 | -1/+1 |
| | |||||
* | Make a few simple functions constexpr | Jack Lloyd | 2018-10-01 | 6 | -32/+29 |
| | | | | This is primarily just to verify that C++11 constexpr works. | ||||
* | Remove support for Visual C++ 2013 | Jack Lloyd | 2018-10-01 | 49 | -210/+127 |
| | | | | Closes GH #1557 | ||||
* | Fix more MSVC warnings | Jack Lloyd | 2018-10-01 | 4 | -31/+56 |
| | |||||
* | With MSVC, use /arch:AVX for AVX2 enabled code | Jack Lloyd | 2018-10-01 | 1 | -1/+1 |
| | | | | | It seems otherwise VC generates a mix of SSE and AVX code resulting in lots of transition penalties. | ||||
* | Fix [ci skip] | Jack Lloyd | 2018-10-01 | 1 | -1/+1 |
| | |||||
* | Handle PPC crypto bit in tests [ci skip] | Jack Lloyd | 2018-10-01 | 2 | -1/+3 |
| | |||||
* | Fix some warnings in ARM specific code | Jack Lloyd | 2018-10-01 | 2 | -28/+34 |
| | |||||
* | Fix more MSVC warnings | Jack Lloyd | 2018-10-01 | 15 | -37/+59 |
| | |||||
* | Avoid a MSVC 2015 warning | Jack Lloyd | 2018-10-01 | 3 | -3/+3 |
| | |||||
* | Fix some MSVC warnings | Jack Lloyd | 2018-09-30 | 8 | -18/+18 |
| | |||||
* | Merge GH #1696 Fix bugs in UUID class | Jack Lloyd | 2018-09-30 | 6 | -106/+230 |
|\ | |||||
| * | Move UUID to utils, test it, and fix bugs. | Jack Lloyd | 2018-09-30 | 6 | -106/+230 |
| | | | | | | | | Fixes #1695 | ||||
* | | Add some tests of the versioning functions | Jack Lloyd | 2018-09-30 | 1 | -0/+46 |
|/ | |||||
* | Add more tests for CBC, CFB, OFB, CTR and GCM | Jack Lloyd | 2018-09-29 | 6 | -2/+635 |
| | | | | From NIST CAVP, OpenSSL test data, and elsewhere | ||||
* | Refactor mode tests, and correct bugs found | Jack Lloyd | 2018-09-29 | 9 | -127/+206 |
| | | | | | | | | | | | | | | | | | | | Several problems in CBC found by adding tests - If you set a key, then set a nonce, then set a new key, you could encrypt without setting a new nonce. - It was possible to call CBC finish without setting a nonce, which would crash. - If you had an CBC decryption object, set a key, set a nonce, then reset message state, it should throw because no nonce is set. Instead it would carry on using an all-zero nonce. Disable CommonCrypto with PKCS7 padding as it seems to have some problem that I cannot figure out from the build logs. This work sponsored by Ribose Inc | ||||
* | Avoid null pointer write in FFI | Jack Lloyd | 2018-09-28 | 2 | -1/+7 |
| | | | | | | | | If a function returning variable length output was called with a null output buffer but a non-zero output buffer length, FFI layer would call memset(nullptr, 0, buffer_len) and crash. Caught by Coverity. | ||||
* | Use correct array length in Serpent AVX2 | Jack Lloyd | 2018-09-28 | 1 | -2/+2 |
| | | | | Not an actual problem, but flagged by Coverity | ||||
* | Spell check the documentation | Jack Lloyd | 2018-09-28 | 7 | -14/+14 |
| | |||||
* | Skip using mmap allocation if mlock is not available. | Jack Lloyd | 2018-09-27 | 1 | -8/+4 |
| | | | | | Previously this would just mmap but pointlessly as the memory was not locked; might as well use the standard heap in that case. | ||||
* | Add OS::running_in_privileged_state | Jack Lloyd | 2018-09-27 | 4 | -17/+41 |
| | | | | | | | | Avoid any getenv toggles or reading /proc if we are setuid/setgid. It is possible there is or will someday be some file in /proc that is world-readable, but if read by a privileged user causes some side effect. | ||||
* | fileno is a macro on OpenBSD | Jack Lloyd | 2018-09-27 | 1 | -3/+4 |
| | |||||
* | Merge GH #1692 Fix test failure when http_util disabled | Jack Lloyd | 2018-09-26 | 1 | -1/+1 |
|\ | |||||
| * | Fix x509_path_x509test failing when http_util module was not enabled | Jose Pereira | 2018-09-25 | 1 | -1/+1 |
| | | |||||
* | | No need for an RNG object here [ci skip] | Jack Lloyd | 2018-09-25 | 1 | -2/+1 |
| | | |||||
* | | Change Clang fuzzing flags to avoid deprecated options. [ci skip] | Jack Lloyd | 2018-09-24 | 1 | -1/+1 |
| | | |||||
* | | Avoid some gcc warnings in mode padding fuzzer [ci skip] | Jack Lloyd | 2018-09-23 | 1 | -1/+5 |
| | | |||||
* | | Fix a crash in the mode padding fuzzer | Jack Lloyd | 2018-09-23 | 2 | -0/+5 |
| | | | | | | | | | | | | The reference version of 1and0 padding would crash on an all-zero input. OSS-Fuzz 10628 | ||||
* | | Add a fuzzer for OAEP unpadding | Jack Lloyd | 2018-09-22 | 3 | -10/+135 |
| | | | | | | | | This tests the delim scanning section which must be const time. | ||||
* | | Add fuzzer for mode unpadding, and fix bugs found thereby | Jack Lloyd | 2018-09-22 | 5 | -59/+312 |
| | | | | | | | | | | | | | | Both PKCS7 and X9.23 padding modes did not examine the first byte of the purported padding if the padding took an entire block. So for example for a 64-bit cipher, PKCS7 would accept XX08080808080808 as a valid padding for any byte value. | ||||
* | | Optimization for Poly1305 | Jack Lloyd | 2018-09-20 | 1 | -17/+24 |
| | | | | | | | | | | Rearranging this code seems to let both GCC and Clang do a little better on the core loop, 4-7% depending on buffer size on my i7-6700k |