aboutsummaryrefslogtreecommitdiffstats
path: root/src
Commit message (Collapse)AuthorAgeFilesLines
* Add Tweakable_Block_Cipher classJack Lloyd2018-08-093-14/+28
|
* Remove functions from Cipher_Mode now inherited from base classJack Lloyd2018-08-091-44/+0
|
* Fix shadow warningsJack Lloyd2018-08-092-10/+10
|
* Add StreamCipher::write_keystreamJack Lloyd2018-08-085-7/+37
| | | | | Avoids the XOR operation. Only implemented for ChaCha20 currently, everything else defaults to memset-to-zero + xor-cipher
* Add test that invalid bcrypt versions are rejectedJack Lloyd2018-08-081-2/+6
|
* Add a test of Threefish-512 tweak functionalityJack Lloyd2018-08-082-1/+19
|
* Remove unnecessary accessors for Threefish-512Jack Lloyd2018-08-082-6/+4
|
* Mark some members of Block_Cipher_Fixed_Params as finalJack Lloyd2018-08-081-4/+4
|
* Test that a stream cipher not supporting IV still accepts 0 len inputJack Lloyd2018-08-081-0/+3
|
* De-inline functions from stream cipher headersJack Lloyd2018-08-0812-52/+127
|
* Add StreamCipher::default_iv_lengthJack Lloyd2018-08-089-11/+33
|
* Add support for XChaCha20Poly1305Jack Lloyd2018-08-074-5/+53
|
* Add support for XChaChaJack Lloyd2018-08-074-41/+145
|
* Fix a bug in XSalsa20Jack Lloyd2018-08-074-25/+61
| | | | | | | | If you called set_key, then set_iv, then set_iv again without having previously reset the key, you would end up with a garbled state buffer that depended on the value of the first IV. This only affected 192-bit Salsa nonces, not other sizes.
* Avoid crash in ChaCha20+Salsa if set_iv called without a key setJack Lloyd2018-08-073-18/+24
|
* Avoid Sonarcube complaintJack Lloyd2018-08-061-1/+1
|
* Remove test that causes problems on 32-bitJack Lloyd2018-08-061-2/+0
|
* Test intentionally misaligned inputs to hash functionsJack Lloyd2018-08-061-0/+18
|
* Add detection for RISCV compilersJack Lloyd2018-08-061-0/+8
|
* Increment shared lib ABI versionJack Lloyd2018-08-051-1/+1
| | | | Both #1637 and #1639 change ABI
* Fix OpenSSL modesJack Lloyd2018-08-051-1/+12
|
* Fix crashes when modes were used unkeyed.Jack Lloyd2018-08-059-29/+87
| | | | Fix crashes in OCB, GCM and CFB when called without a key being set.
* Use codec_base for Base64 encodingWambou2018-08-042-158/+153
|
* Fix complaints from latest pylintJack Lloyd2018-08-025-18/+23
|
* Misc EC_Group testsJack Lloyd2018-08-021-10/+18
|
* More CLI testsJack Lloyd2018-08-021-1/+9
|
* Additional CLI testsJack Lloyd2018-08-021-0/+38
|
* Add --no-fsname option to fingerprint commandJack Lloyd2018-08-021-2/+8
|
* Accept PKCS1v15 as an alias for EMSA3Jack Lloyd2018-08-023-5/+6
| | | | Not sure why it didn't have this already
* Format nitJack Lloyd2018-08-021-1/+1
|
* Clarify comment on botan_privkey_loadJack Lloyd2018-08-021-1/+1
|
* Merge GH #1637 Merge SM2 signature and ECIES key typesJack Lloyd2018-08-0212-197/+101
|\
| * Combine SM2 key types for signatures and encryptionJack Lloyd2018-08-0112-197/+101
| | | | | | | | | | | | It seems in practice the same key may be end up used for both operations, so maintaining a distinction at the type level just complicates things.
* | Avoid requirement to set rng in botan_privkey_loadJack Lloyd2018-08-012-7/+9
|/
* Add a couple HMAC(SHA-512-256) test vectorsJack Lloyd2018-08-011-0/+11
|
* Add OID for HMAC with SHA-512/256Jack Lloyd2018-08-012-1/+4
|
* Merge GH #1636 Add Lucas primality testJack Lloyd2018-08-0116-147/+538
|\
| * Add Lucas test from FIPS 186-4Jack Lloyd2018-07-3116-147/+538
| | | | | | | | | | | | | | | | | | | | This eliminates an issue identified in the paper "Prime and Prejudice: Primality Testing Under Adversarial Conditions" by Albrecht, Massimo, Paterson and Somorovsky where DL_Group::verify_group with strong=false would accept a composite q with probability 1/4096, which is exactly as the error bound is documented, but still unfortunate.
* | Just skip 32-bit ARM iOS build entirelyJack Lloyd2018-08-011-2/+5
| |
* | Avoid XCode 9.4 due to compilation bugJack Lloyd2018-08-011-0/+1
|/ | | | | XCode 9.4 ICEs on the NewHope code in ARM 32-bit build and of course I can't report the bug since I don't have an Apple ID.
* Fix Doxygen comments for AutoSeeded_RNG [ci skip]Jack Lloyd2018-07-311-3/+7
|
* Ensure values are fully reduced during ECDSA signatureJack Lloyd2018-07-301-3/+3
| | | | | It was possible that the Barrett reduction code would fall back to standard division due to getting an input that was >= order^2.
* Support calling Whirlpool in OpenSSLJack Lloyd2018-07-261-0/+5
| | | | Available since 1.0.0, not sure how this was missed.
* GHASH - use explicit function to check for key being setJack Lloyd2018-07-251-1/+1
|
* Add OID for SM2 with SM3 signaturesJack Lloyd2018-07-242-1/+5
|
* Add include for getenvJack Lloyd2018-07-241-0/+1
|
* Only print FFI exceptions to stdout if an env var is setJack Lloyd2018-07-242-1/+7
| | | | So debugging is possible but default is silent.
* Add botan_mac_query_keylenJack Lloyd2018-07-243-1/+38
|
* Add botan_block_cipher_query_keylen plus some new FFI error codesJack Lloyd2018-07-245-5/+59
|
* Add additional HMAC tests from RFC 4231Jack Lloyd2018-07-241-0/+81
|
generated by cgit v1.2.3 (git 2.39.1) at 2024-12-26 14:01:33 +0000