Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Add a Montgomery exponentiation that takes variable time | Jack Lloyd | 2018-04-09 | 3 | -7/+52 |
| | | | | | | | | In the case of RSA encryption/verification the public exponent is... public. So we don't need to carefully guard against side channels that leak the exponent. Improves RSA verification performance by 50% or more. | ||||
* | Remove redundant access specifier | Jack Lloyd | 2018-04-09 | 1 | -1/+0 |
| | |||||
* | Fix incorrect macro check | Jack Lloyd | 2018-04-09 | 1 | -2/+2 |
| | |||||
* | Remove extra trailing ; | Jack Lloyd | 2018-04-09 | 1 | -1/+1 |
| | |||||
* | Fix bug that broke session decryption (and thus resumption) | Jack Lloyd | 2018-04-09 | 3 | -1/+55 |
| | | | | Introduced in 3657639ab. Add a test that would have caught this | ||||
* | Add a data file for RISC-V 64 | Jack Lloyd | 2018-04-09 | 1 | -0/+1 |
| | | | | Debian has a build target for this. | ||||
* | Fix off by one when decoding TLS-CBC ciphertexts | Jack Lloyd | 2018-04-09 | 6 | -28/+196 |
| | |||||
* | Fix interop bug in TLS server | Jack Lloyd | 2018-04-08 | 3 | -0/+33 |
| | | | | | The connection would fail if the client advertised any signature algorithm we did not support (eg RSA/SHA-224) | ||||
* | Square is always positive | Jack Lloyd | 2018-04-08 | 1 | -0/+1 |
| | |||||
* | Rename test data file to match the test name | Jack Lloyd | 2018-04-08 | 2 | -1/+1 |
| | |||||
* | Add BigInt::square plus a speed test for BigInt multiply | Jack Lloyd | 2018-04-08 | 4 | -8/+72 |
| | |||||
* | Convert comba script to Python3 | Jack Lloyd | 2018-04-08 | 2 | -27/+27 |
| | |||||
* | Merge GH #1528 Add sanitizer-specific optimization flags | Jack Lloyd | 2018-04-07 | 2 | -2/+4 |
|\ | |||||
| * | Add sanitizer-specific optimization flags | Jack Lloyd | 2018-04-07 | 2 | -2/+4 |
| | | |||||
* | | Merge GH #1527 Add functions getting Cipher_Mode/AEAD_Mode returning unique_ptr | Jack Lloyd | 2018-04-07 | 20 | -97/+164 |
|\ \ | |||||
| * | | Work around unique_ptr conversion bug in older GCC | Jack Lloyd | 2018-04-07 | 1 | -1/+1 |
| | | | |||||
| * | | Add RAII versions of get_cipher_mode and get_aead | Jack Lloyd | 2018-04-07 | 20 | -96/+163 |
| | | | | | | | | | | | | See also #1526 | ||||
* | | | Avoid a warning when building under Clang [ci skip] | Jack Lloyd | 2018-04-07 | 1 | -0/+1 |
| |/ |/| | |||||
* | | Merge GH #1525 Allow tests to run cleanly under UbSan by default | Jack Lloyd | 2018-04-07 | 6 | -10/+21 |
|\ \ | |/ |/| | |||||
| * | Moves UBSAN macros from test files to Test_Options | Matthias Gierlings | 2018-04-07 | 4 | -13/+9 |
| | | | | | | | | | | | | | | | | | | | | | | | | To keep the code more readable change the behavior of `Test_Options::no_avoid_undefined_behavior()`, instead of the conditionals inside the tests. `Test_Options::no_avoid_undefined_behavior()` will always return `true` if UBSAN is inactive. This way all tests, including those that cause undefined behaviour, will run. Once botan is compiled with UBSAN those tests will be automatically skipped unless the `--no-avoid-undefined` is passed to the test-bench. | ||||
| * | Make tests pass by default in UBSAN mode | Matthias Gierlings | 2018-04-06 | 6 | -11/+26 |
| | | | | | | | | | | | | | | | | - Adds macros to check if botan was compiled with a certain sanitizers. - Automatically excludes the tests that are intended to provoke undefined behaviour from the test bench, when botan is compiled with UBSAN. - Changes option `--avoid-undefined` to `--no-avoid-undefined` so the failing tests can be explicitly activated when needed. | ||||
* | | Add defensive assert to buffer_insert | Jack Lloyd | 2018-04-07 | 1 | -0/+2 |
|/ | | | | | Otherwise an integer overflow bug elsewhere could turn into a heap overflow. | ||||
* | Add missing override annotations in fuzzers [ci skip] | Jack Lloyd | 2018-04-06 | 2 | -2/+2 |
| | |||||
* | Add pk_workfactor CLI and refactor workfactor estimator functions | Jack Lloyd | 2018-04-05 | 2 | -12/+53 |
| | | | | No reason to duplicate the NFS workfactor estimator twice | ||||
* | Fix bug in CLI, and fix bug in CLI tests | Jack Lloyd | 2018-04-05 | 2 | -5/+7 |
| | | | | | | | The tests were detecting the problem and failing, but just returned zero in any case so CI did not fail. Also fix some CLI bugs that caused failures if OpenSSL was enabled. | ||||
* | Add --provider option to sign command | Jack Lloyd | 2018-04-05 | 1 | -2/+4 |
| | |||||
* | Split up asm constructs to avoid miscompilation | Jack Lloyd | 2018-04-05 | 1 | -30/+49 |
| | | | | | | | The constraints were invalid as they missed the clobber of a/d registers. This caused miscompilation when using GCC -fno-plt option. GH #1524 | ||||
* | Bump version to 2.6.0-pre | Jack Lloyd | 2018-04-04 | 1 | -1/+1 |
| | |||||
* | Merge GH #1523 RSA optimizations and exponent blinding | Jack Lloyd | 2018-04-04 | 3 | -28/+63 |
|\ | |||||
| * | Work around a bug in MSVC lambda handling | Jack Lloyd | 2018-04-04 | 1 | -1/+1 |
| | | |||||
| * | Update side channel doc, and update RSA blinding test | Jack Lloyd | 2018-04-04 | 1 | -3/+10 |
| | | | | | | | | | | It needs to account for bits taking from the blinding RNG for exponent blinding. | ||||
| * | Add RSA exponent blinding | Jack Lloyd | 2018-04-04 | 2 | -5/+14 |
| | | | | | | | | Additional paranoia never hurt. | ||||
| * | Tweak how RSA private operations are performed | Jack Lloyd | 2018-04-04 | 1 | -25/+44 |
| | | | | | | | | Improves perf by about 15% | ||||
* | | Add DL_Group::monty_params_p to get Montgomery params | Jack Lloyd | 2018-04-04 | 2 | -2/+13 |
| | | |||||
* | | Move version.txt to src/build-data | Jack Lloyd | 2018-04-04 | 3 | -2/+13 |
| | | | | | | | | It is not useful for end-users so don't put it in the top level. | ||||
* | | Run ECC unit tests across all groups where applicable | Jack Lloyd | 2018-04-03 | 2 | -313/+154 |
|/ | | | | | Many of these were generic tests and not really tied to secp160r1 in any meaningful way. | ||||
* | Merge GH #1520 Add Test_Options class to test framework | Jack Lloyd | 2018-04-02 | 5 | -163/+115 |
|\ | |||||
| * | Add Test_Options class | Jack Lloyd | 2018-04-02 | 5 | -163/+115 |
| | | |||||
* | | Add a test vector for OAEP label | René Korthaus | 2018-04-02 | 1 | -0/+7 |
| | | |||||
* | | Support passing an OAEP label in EME name | René Korthaus | 2018-04-02 | 1 | -4/+5 |
|/ | | | | | | | TPM 1.2 expects passing the owner and SRK secret encrypted with the public endorsement key. For asymmetric encryption, the TPM 1.2 uses OAEP with the label "TCPA". | ||||
* | Modify tls_server fuzzer to use callbacks interface, skip validation | Jack Lloyd | 2018-04-01 | 1 | -25/+63 |
| | |||||
* | Update tls_client fuzzer to skip validation results | Jack Lloyd | 2018-04-01 | 1 | -15/+53 |
| | | | | | Currently OSS-Fuzz stops cold at receiving the certificate message since the odds of libFuzzer forging an RSA signature are not high. | ||||
* | Fix some tests that would fail after 2033 | Jack Lloyd | 2018-04-01 | 2 | -23/+30 |
| | | | | GH #1521 | ||||
* | Fix validation tests - test certs had expired | Jack Lloyd | 2018-04-01 | 1 | -1/+6 |
| | | | | GH #1521 | ||||
* | Fix build | Jack Lloyd | 2018-04-01 | 1 | -1/+1 |
| | |||||
* | Fix problems with failure to build in various configurations | Jack Lloyd | 2018-03-31 | 4 | -2/+10 |
| | |||||
* | Merge GH #1519 Fix bugs in X.509 wildcard match | Jack Lloyd | 2018-03-31 | 3 | -78/+178 |
|\ | |||||
| * | Fix bugs in wildcard matching | Jack Lloyd | 2018-03-31 | 3 | -78/+178 |
| | | | | | | | | | | | | | | We would incorrectly accept invalid matches for example b*.example.net could match foobar.example.net Introduced in 289cc25709b08 | ||||
* | | Skip OCSP softfail check here since OCSP doesn't work without threads | Jack Lloyd | 2018-03-31 | 1 | -0/+2 |
| | | | | | | | | GH #1518 | ||||
* | | Add --avoid-undefined option | Jack Lloyd | 2018-03-31 | 8 | -18/+45 |
| | | | | | | | | GH #1518 |