aboutsummaryrefslogtreecommitdiffstats
path: root/src
Commit message (Collapse)AuthorAgeFilesLines
* Add compatibility comment for getauxval on AndroidSimon Warta2017-08-271-0/+2
|
* Add ARIA option to TLS suite info generatorJack Lloyd2017-08-231-1/+9
| | | | So it can be easily enabled if someone wants it.
* Use correct padding mode in ARIA CBC testJack Lloyd2017-08-231-1/+1
|
* Fix TLS ciphersuite generator for ARIAJack Lloyd2017-08-231-2/+2
| | | | Not enabled due to inability to test
* Cleanup ARIAJack Lloyd2017-08-233-382/+261
| | | | Remove NEON support, replace macros with inlines
* Add missing ARIA test vectors (GH #1004)Jeffrey Walton2017-08-231-0/+35
|
* Add ARIA Block Cipher (GH #1004)Jeffrey Walton2017-08-234-0/+738
|
* Fix bug affecting AltiVec on ppc64le processorsJack Lloyd2017-08-231-8/+2
|
* Fix Altivec detectionJack Lloyd2017-08-221-2/+2
| | | | Broken in c3ae43c04c
* Add support for ECDHE_PSK AEAD ciphersuitesJack Lloyd2017-08-222-4/+11
| | | | From draft-ietf-tls-ecdhe-psk-aead-05, now with official codepoints.
* libFuzzer has moved in the LLVM svnJack Lloyd2017-08-221-2/+2
| | | | [ci skip]
* Remove BOTAN_PARALLEL_FOR from T-table AESJack Lloyd2017-08-221-1/+1
| | | | GH #1077
* Simplify botan_privkey_create_XXXJack Lloyd2017-08-222-89/+18
| | | | All of these can just forward to botan_privkey_create
* Add dh functions in ffiKonstantinos Kolelis2017-08-223-7/+224
|
* Merge GH #1154 Add check for passhash9 algo being available in testsJack Lloyd2017-08-194-9/+37
|\
| * Add is_passhash9_alg_supported()René Korthaus2017-08-194-24/+37
| |
| * Add guards for MAC and hash algo used in passhash9 testsRené Korthaus2017-08-181-1/+16
| | | | | | | | | | | | | | | | Previously, passhash9 tests would fail if for example blowfish was not part of the build. Adds guards for the different MAC and hash algorithms used in passhash9 for calls to generate_passhash9(). For check_passhash9(), there is no way to know that an algorithm is not supported, but at least we improve the situation a bit here.
* | Newhope cleanupsJack Lloyd2017-08-183-664/+669
|/ | | | Formatting, use size_t instead of int, etc
* Change type of botan_scrub_mem from uint8_t* to void*Jack Lloyd2017-08-172-2/+2
| | | | | The underlying function already takes void* and it makes sense to pass non-byte buffers to this function.
* In SHACAL2 be smarter about how the round keys are loadedJack Lloyd2017-08-161-9/+15
| | | | | | Using _mm_set_epi32 caused 2 distinct (adjacent) loads followed by an unpack to combine the registers. Have not tested on hardware to see if this actually improves performance.
* Optimize SHACAL2Jack Lloyd2017-08-162-46/+20
| | | | | | Combine several shuffle operations into one. Thanks to jww for the hint. Probably not noticably faster on any system.
* More ECDSA Raw(hash) testsJack Lloyd2017-08-161-0/+17
|
* Allow signature using `Raw(hashname)`Jack Lloyd2017-08-156-8/+79
| | | | | | This confirms the message is exactly the size of the expected hash, and also causes RFC 6979 nonces to be generated using the specified hash. See also https://github.com/riboseinc/rnp/issues/367
* Update FFI versionJack Lloyd2017-08-152-5/+13
| | | | | | | Also fix botan_ffi_supports_api to return true for any supported version (2.0, 2.1/2.2, and 2.3). Really 2.2 should have had its own FFI version code since there were already many FFI API additions in that release.
* Add botan_hex_decode, botan_base64_encode, botan_base64_decode FFI funcsJack Lloyd2017-08-153-3/+82
|
* Merge GH #1151 Add SHACAL2Jack Lloyd2017-08-1518-0/+4797
|\
| * Add 2x unrolling for SHACAL2 on x86Jack Lloyd2017-08-141-2/+71
| |
| * Add support for SHACAL2 using x86 SHA extensionsJack Lloyd2017-08-144-0/+109
| |
| * Notify callers of parallel ops for AES, IDEA, Noekeon, SHACAL2 and ThreefishJack Lloyd2017-08-1410-0/+85
| |
| * Pass by reference for MSVC x86Jack Lloyd2017-08-141-6/+8
| | | | | | | | | | It complains it cannot pass the __m128i without loss of alignment. (Why, I have no idea.)
| * Add SHACAL2 in generic SIMDJack Lloyd2017-08-136-0/+229
| | | | | | | | Bit over 2x faster on my desktop
| * Add SHACAL2Jack Lloyd2017-08-135-0/+4303
| | | | | | | | 256 bit ARX block cipher with hardware support, what's not to love.
* | Improve polynomial doubling code, move to utilJack Lloyd2017-08-159-45/+431
| | | | | | | | | | | | | | | | | | Now does 64-bits at a time instead of 8 bits, and avoids conditional timing channel on the XOR carry. Confirmed that at least GCC 7 and Clang 4 on x86-64 compile the functions without conditional jumps. Also removes CMAC as a dependency of OCB, which only needed it in order to call CMAC::poly_double
* | Unused variable warning [ci skip]Jack Lloyd2017-08-141-1/+1
|/
* Modify GOST-34.11 hash to avoid a GCC miscompilation.Jack Lloyd2017-08-131-1/+4
| | | | | | | | | | | | For whatever reason GCC 7 on i386 miscompiles this loop under -O3. I was not able to reduce the bug to a small testcase - extracting the problem section of the code to its own file, it behaves correctly. Also oddly, I was never able to repro this using Arch's gcc-multilib i386 compiler. But when compiled with the 'native' i386 compiler in a chroot it immediately fails. See GH #1148 and GH #882
* Merge GH #1150 Silence clang warning in create_private_key()Jack Lloyd2017-08-131-1/+1
|\
| * Silence clang warning in create_private_key().Alexander Bluhm2017-08-131-1/+1
| | | | | | | | | | | | If compiled with OpenSSL, clang emitted the warning "using the result of an assignment as a condition without parentheses". Putting parentheses around the assignment fixes this.
* | FFI test must search test data relative to data dir.Alexander Bluhm2017-08-131-1/+1
|/ | | | | | | The Test::data_file() method adds the current data dir prefix to the test data path so that it can be overwritten with the --data-dir option. This was missing in the ffi test and could result in a botan_x509_cert_load_file exception.
* Add http_util to module policies (GH #1109)René Korthaus2017-08-073-0/+3
| | | | | | http_util is required by the x509 module to perform online OCSP checks, which should be defaulted to ON. Without being part of the policy, it would be disabled.
* Merge GH #1144 Fix bug for ECDSA signing an all-zero hashJack Lloyd2017-08-074-2/+36
|\
| * Fix issue signing an ECDSA hash of all-zeros (GH #1143)Jack Lloyd2017-08-074-2/+36
| | | | | | | | | | The tests were generated by Botan but I was able to verify the resulting signatures using Golang's ecdsa module.
* | A few more FFI testsJack Lloyd2017-08-071-1/+39
|/
* Merge GH #1142 Add SM2 encryption schemeJack Lloyd2017-08-0714-17/+561
|\
| * When creating an EC curve with default params, use algo-specific curveJack Lloyd2017-08-041-1/+17
| | | | | | | | | | Eg previously ./botan keygen --algo=GOST-34.10 would create a GOST-34.10 curve over P-256, probably not useful in most cases.
| * Add SM2 encryption to FFIJack Lloyd2017-08-044-1/+130
| | | | | | | | Also add hooks for keygen, etc
| * Add SM2 encryption schemeJack Lloyd2017-08-0410-15/+414
| | | | | | | | This is a contribution from Ribose Inc (@riboseinc)
* | Merge GH #1139 Replace --destdir flag with DESTDIR env variableJack Lloyd2017-08-077-29/+140
|\ \
| * | Handle and test error cases in prepend_destdir()Simon Warta2017-08-042-44/+50
| | | | | | | | | | | | | | | | | | - only / file systems supported - only absolute prefixes are supported - result must not escape DESTDIR
| * | Fix typo in script nameSimon Warta2017-08-042-1/+1
| | |
| * | Pull out python_unittests_unix.pySimon Warta2017-08-043-30/+56
| | | | | | | | | | | | | | | The path tests can only work on UNIX-like OSs because Python's path joining is required to use / as the path separator
generated by cgit v1.2.3 (git 2.39.1) at 2024-12-26 01:22:24 +0000