aboutsummaryrefslogtreecommitdiffstats
path: root/src
Commit message (Collapse)AuthorAgeFilesLines
* Add a Montgomery exponentiation that takes variable timeJack Lloyd2018-04-093-7/+52
| | | | | | | | In the case of RSA encryption/verification the public exponent is... public. So we don't need to carefully guard against side channels that leak the exponent. Improves RSA verification performance by 50% or more.
* Remove redundant access specifierJack Lloyd2018-04-091-1/+0
|
* Fix incorrect macro checkJack Lloyd2018-04-091-2/+2
|
* Remove extra trailing ;Jack Lloyd2018-04-091-1/+1
|
* Fix bug that broke session decryption (and thus resumption)Jack Lloyd2018-04-093-1/+55
| | | | Introduced in 3657639ab. Add a test that would have caught this
* Add a data file for RISC-V 64Jack Lloyd2018-04-091-0/+1
| | | | Debian has a build target for this.
* Fix off by one when decoding TLS-CBC ciphertextsJack Lloyd2018-04-096-28/+196
|
* Fix interop bug in TLS serverJack Lloyd2018-04-083-0/+33
| | | | | The connection would fail if the client advertised any signature algorithm we did not support (eg RSA/SHA-224)
* Square is always positiveJack Lloyd2018-04-081-0/+1
|
* Rename test data file to match the test nameJack Lloyd2018-04-082-1/+1
|
* Add BigInt::square plus a speed test for BigInt multiplyJack Lloyd2018-04-084-8/+72
|
* Convert comba script to Python3Jack Lloyd2018-04-082-27/+27
|
* Merge GH #1528 Add sanitizer-specific optimization flagsJack Lloyd2018-04-072-2/+4
|\
| * Add sanitizer-specific optimization flagsJack Lloyd2018-04-072-2/+4
| |
* | Merge GH #1527 Add functions getting Cipher_Mode/AEAD_Mode returning unique_ptrJack Lloyd2018-04-0720-97/+164
|\ \
| * | Work around unique_ptr conversion bug in older GCCJack Lloyd2018-04-071-1/+1
| | |
| * | Add RAII versions of get_cipher_mode and get_aeadJack Lloyd2018-04-0720-96/+163
| | | | | | | | | | | | See also #1526
* | | Avoid a warning when building under Clang [ci skip]Jack Lloyd2018-04-071-0/+1
| |/ |/|
* | Merge GH #1525 Allow tests to run cleanly under UbSan by defaultJack Lloyd2018-04-076-10/+21
|\ \ | |/ |/|
| * Moves UBSAN macros from test files to Test_OptionsMatthias Gierlings2018-04-074-13/+9
| | | | | | | | | | | | | | | | | | | | | | | | To keep the code more readable change the behavior of `Test_Options::no_avoid_undefined_behavior()`, instead of the conditionals inside the tests. `Test_Options::no_avoid_undefined_behavior()` will always return `true` if UBSAN is inactive. This way all tests, including those that cause undefined behaviour, will run. Once botan is compiled with UBSAN those tests will be automatically skipped unless the `--no-avoid-undefined` is passed to the test-bench.
| * Make tests pass by default in UBSAN modeMatthias Gierlings2018-04-066-11/+26
| | | | | | | | | | | | | | | | - Adds macros to check if botan was compiled with a certain sanitizers. - Automatically excludes the tests that are intended to provoke undefined behaviour from the test bench, when botan is compiled with UBSAN. - Changes option `--avoid-undefined` to `--no-avoid-undefined` so the failing tests can be explicitly activated when needed.
* | Add defensive assert to buffer_insertJack Lloyd2018-04-071-0/+2
|/ | | | | Otherwise an integer overflow bug elsewhere could turn into a heap overflow.
* Add missing override annotations in fuzzers [ci skip]Jack Lloyd2018-04-062-2/+2
|
* Add pk_workfactor CLI and refactor workfactor estimator functionsJack Lloyd2018-04-052-12/+53
| | | | No reason to duplicate the NFS workfactor estimator twice
* Fix bug in CLI, and fix bug in CLI testsJack Lloyd2018-04-052-5/+7
| | | | | | | The tests were detecting the problem and failing, but just returned zero in any case so CI did not fail. Also fix some CLI bugs that caused failures if OpenSSL was enabled.
* Add --provider option to sign commandJack Lloyd2018-04-051-2/+4
|
* Split up asm constructs to avoid miscompilationJack Lloyd2018-04-051-30/+49
| | | | | | | The constraints were invalid as they missed the clobber of a/d registers. This caused miscompilation when using GCC -fno-plt option. GH #1524
* Bump version to 2.6.0-preJack Lloyd2018-04-041-1/+1
|
* Merge GH #1523 RSA optimizations and exponent blindingJack Lloyd2018-04-043-28/+63
|\
| * Work around a bug in MSVC lambda handlingJack Lloyd2018-04-041-1/+1
| |
| * Update side channel doc, and update RSA blinding testJack Lloyd2018-04-041-3/+10
| | | | | | | | | | It needs to account for bits taking from the blinding RNG for exponent blinding.
| * Add RSA exponent blindingJack Lloyd2018-04-042-5/+14
| | | | | | | | Additional paranoia never hurt.
| * Tweak how RSA private operations are performedJack Lloyd2018-04-041-25/+44
| | | | | | | | Improves perf by about 15%
* | Add DL_Group::monty_params_p to get Montgomery paramsJack Lloyd2018-04-042-2/+13
| |
* | Move version.txt to src/build-dataJack Lloyd2018-04-043-2/+13
| | | | | | | | It is not useful for end-users so don't put it in the top level.
* | Run ECC unit tests across all groups where applicableJack Lloyd2018-04-032-313/+154
|/ | | | | Many of these were generic tests and not really tied to secp160r1 in any meaningful way.
* Merge GH #1520 Add Test_Options class to test frameworkJack Lloyd2018-04-025-163/+115
|\
| * Add Test_Options classJack Lloyd2018-04-025-163/+115
| |
* | Add a test vector for OAEP labelRené Korthaus2018-04-021-0/+7
| |
* | Support passing an OAEP label in EME nameRené Korthaus2018-04-021-4/+5
|/ | | | | | | TPM 1.2 expects passing the owner and SRK secret encrypted with the public endorsement key. For asymmetric encryption, the TPM 1.2 uses OAEP with the label "TCPA".
* Modify tls_server fuzzer to use callbacks interface, skip validationJack Lloyd2018-04-011-25/+63
|
* Update tls_client fuzzer to skip validation resultsJack Lloyd2018-04-011-15/+53
| | | | | Currently OSS-Fuzz stops cold at receiving the certificate message since the odds of libFuzzer forging an RSA signature are not high.
* Fix some tests that would fail after 2033Jack Lloyd2018-04-012-23/+30
| | | | GH #1521
* Fix validation tests - test certs had expiredJack Lloyd2018-04-011-1/+6
| | | | GH #1521
* Fix buildJack Lloyd2018-04-011-1/+1
|
* Fix problems with failure to build in various configurationsJack Lloyd2018-03-314-2/+10
|
* Merge GH #1519 Fix bugs in X.509 wildcard matchJack Lloyd2018-03-313-78/+178
|\
| * Fix bugs in wildcard matchingJack Lloyd2018-03-313-78/+178
| | | | | | | | | | | | | | We would incorrectly accept invalid matches for example b*.example.net could match foobar.example.net Introduced in 289cc25709b08
* | Skip OCSP softfail check here since OCSP doesn't work without threadsJack Lloyd2018-03-311-0/+2
| | | | | | | | GH #1518
* | Add --avoid-undefined optionJack Lloyd2018-03-318-18/+45
| | | | | | | | GH #1518