Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Merge GH #2009 Remove const from TLS OCSP callback | Jack Lloyd | 2019-06-29 | 2 | -2/+5 |
|\ | |||||
| * | Make the TLS OCSP callback not const. | Jack Lloyd | 2019-06-29 | 2 | -2/+5 |
| | | | | | | | | | | As the impl may need to do side-effecting things in order to get the most recent response. | ||||
* | | Merge GH #2008 Handle loss/retransmit of DTLS client hello | Jack Lloyd | 2019-06-29 | 1 | -1/+1 |
|\ \ | |||||
| * | | Handle DTLS client hello being lost | Jack Lloyd | 2019-06-29 | 1 | -1/+1 |
| |/ | | | | | | | Closes #1691 | ||||
* / | Fix a warning when building under XLC | Jack Lloyd | 2019-06-29 | 1 | -1/+4 |
|/ | |||||
* | Add a comment explaining why this path is set | Jack Lloyd | 2019-06-29 | 1 | -0/+1 |
| | |||||
* | Boost 1.70 compatibility in asio_stream unit test | Hannes Rantzsch | 2019-06-27 | 1 | -2/+18 |
| | |||||
* | Change XMSS OIDs and feature macro name | Jack Lloyd | 2019-06-23 | 6 | -13/+16 |
| | | | | Since draft6 and final RFC are not compatible ... | ||||
* | Use qualified-id for XMSS key size check | Matthias Gierlings | 2019-06-21 | 2 | -2/+2 |
| | | | | | | Explicitly choose the correct size() method for the key size check during XMSS_PublicKey and XMSS_PrivateKey construction. | ||||
* | FreeBSD using new mmap flags to protect against possible too wide | David Carlier | 2019-06-21 | 1 | -1/+5 |
| | | | | promotions. | ||||
* | Merge GH #2000 Add RFC 8032 compatible Ed25519ph | Jack Lloyd | 2019-06-20 | 6 | -22/+66 |
|\ | |||||
| * | Add support for RFC 8032 Ed25519ph | Jack Lloyd | 2019-06-20 | 6 | -22/+66 |
| | | | | | | | | GH #1699 | ||||
* | | Fix lgtm finding | Jack Lloyd | 2019-06-20 | 1 | -2/+4 |
|/ | |||||
* | Fix conflict when BMI2 is enabled and --single-amalgamation-file | Jack Lloyd | 2019-06-19 | 1 | -3/+3 |
| | | | | Not sure why this wasn't causing an error in the MSVC CI builds. | ||||
* | Fix some LGTM issues | Jack Lloyd | 2019-06-19 | 12 | -18/+32 |
| | |||||
* | Add support for HelloVerifyRequest on server side | Jack Lloyd | 2019-06-18 | 11 | -10/+112 |
| | | | | Closes GH #1833 | ||||
* | Cleanup shim logic | Jack Lloyd | 2019-06-18 | 1 | -3/+7 |
| | |||||
* | Rename os features script | Jack Lloyd | 2019-06-16 | 1 | -7/+2 |
| | |||||
* | clock_gettime supported by mac since 10.12 | David Carlier | 2019-06-16 | 1 | -0/+1 |
| | |||||
* | Fix allocation. Add more tests. | Jack Lloyd | 2019-06-15 | 2 | -1/+68 |
| | |||||
* | Add a compatability shim for libsodium | Jack Lloyd | 2019-06-15 | 13 | -5/+3244 |
| | | | | | Not complete, just trying to hit the most commonly used APIs plus the ones that are easy to do. | ||||
* | Fix more MSVC warnings | Jack Lloyd | 2019-06-14 | 4 | -22/+22 |
| | |||||
* | Resolve some MSVC warnings | Jack Lloyd | 2019-06-14 | 6 | -10/+10 |
| | |||||
* | Merge GH #1995 Allow setting max OCSP response age during verification | Jack Lloyd | 2019-06-14 | 3 | -22/+226 |
|\ | |||||
| * | add option to specify ocsp max age | Patrick Schmidt | 2019-06-14 | 3 | -22/+226 |
| | | |||||
* | | Merge GH #1992 Allow overriding cert verify in TLS::Stream | Jack Lloyd | 2019-06-14 | 3 | -62/+189 |
|\ \ | |/ |/| | |||||
| * | TLS::Context holds references rather than pointers | Hannes Rantzsch | 2019-06-13 | 3 | -84/+94 |
| | | | | | | | | | | | | | | | | Parameters passed from TLS::Context to TLS::Client for initialization are now held as references in the context. Ownership of these members is thereby explicitly left with the user. Co-authored-by: Tim Oesterreich <[email protected]> | ||||
| * | Update comments as suggested per review | Hannes Rantzsch | 2019-06-04 | 2 | -9/+14 |
| | | | | | | | | Co-Authored-By: René Meusel <[email protected]> | ||||
| * | Refactor: template meta-programming to reuse the callback signature | René Meusel | 2019-06-03 | 1 | -7/+16 |
| | | |||||
| * | Use TLS::Context::verifyCallback as tls_verify_cert_chain callback | Hannes Rantzsch | 2019-06-03 | 1 | -22/+62 |
| | | | | | | | | | | | | | | | | | | StreamCore uses the user-provided verify callback as a tls_verify_cert_chain if any is provided to the Context. Stream allows configuring the context as well using Stream::set_verify_callback. Stream now keeps a reference to the Context, rather than copying it. This allows users to configure the Context after constructing the Stream, but requires them to manage its lifetime. | ||||
| * | allow setting a verify_callback in TLS::Context | Hannes Rantzsch | 2019-06-03 | 2 | -31/+94 |
| | | | | | | | | | | This will allow customizing the tls_verify_cert_chain callback for TLS::Stream. TLS::Context is now a class and its members are protected. | ||||
* | | Merge GH #1994 Deprecate headers | Jack Lloyd | 2019-06-08 | 30 | -693/+598 |
|\ \ | |||||
| * | | Officially deprecate headers | Jack Lloyd | 2019-06-07 | 30 | -693/+598 |
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Create BOTAN_DEPRECATED_HEADER so we can warn about this consistently. Shuffle around the filter headers so all of the concrete filters are defined in filters.h instead of being spread across many headers. Document which headers are deprecated as well as a list of headers which will be made internal-only in a future major release. | ||||
* | | | Prevent exception from taking down entire test script | Jack Lloyd | 2019-06-08 | 1 | -1/+5 |
|/ / | |||||
* | | Log the configure command line in the makefile | Jack Lloyd | 2019-06-07 | 1 | -0/+3 |
| | | | | | | | | Sometimes useful for debugging | ||||
* | | Remove debug print | Jack Lloyd | 2019-06-05 | 1 | -1/+0 |
| | | |||||
* | | Add a test that Theaad_Pool is tolerant of exceptions during tasks | Jack Lloyd | 2019-06-05 | 1 | -3/+21 |
| | | |||||
* | | Lint fixes | Jack Lloyd | 2019-06-05 | 2 | -5/+6 |
| | | |||||
* | | Merge GH #1979 Fix PKCS11 buffer output sizing | Jack Lloyd | 2019-06-05 | 2 | -13/+30 |
|\ \ | |||||
| * | | Fix PKCS#11 C_SignFinal output size. | Daniel Wyatt | 2019-05-27 | 1 | -1/+6 |
| | | | |||||
| * | | Fix PKCS#11 C_Sign output size. | Daniel Wyatt | 2019-05-27 | 1 | -2/+7 |
| | | | |||||
| * | | Fix PKCS#11 C_Encrypt output size. | Daniel Wyatt | 2019-05-27 | 1 | -2/+7 |
| | | | |||||
| * | | Fix PKCS#11 C_Decrypt buffer output size. | Daniel Wyatt | 2019-05-26 | 2 | -8/+10 |
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Section 5.2 of the spec states that there are two ways to call functions that return a variable-length buffer: 1. When the output buffer is NULL, an estimated size is returned (which may be larger than required). 2. When the output buffer is not NULL, the exact size must be returned. So only after the second call to C_Decrypt has the final output size been determined, and we must resize the output buffer. | ||||
* | | | Add __hash__ for MPI | Jack Lloyd | 2019-06-03 | 1 | -0/+3 |
| | | | |||||
* | | | Address some issues found by LGTM | Jack Lloyd | 2019-06-03 | 6 | -11/+16 |
| |/ |/| | |||||
* | | Add build step for LGTM [ci skip] | Jack Lloyd | 2019-06-03 | 1 | -0/+6 |
| | | |||||
* | | Fix building with Sphinx disabled | Jack Lloyd | 2019-06-01 | 1 | -3/+14 |
| | | |||||
* | | Reorg documentation layout. Rename manual to handbook. | Jack Lloyd | 2019-05-31 | 5 | -19/+19 |
| | | |||||
* | | Add Bcrypt-PBKDF | Jack Lloyd | 2019-05-31 | 8 | -6/+520 |
| | | |||||
* | | Remove redundant OutputLen param in PBKDF tests | Jack Lloyd | 2019-05-31 | 3 | -21/+2 |
| | |