Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Add armv7a as known alias for 32-bit ARM (GH #2540) | Jack Lloyd | 2020-12-11 | 1 | -0/+1 |
| | |||||
* | Merge GH #2539 Build unversioned shared objects on Android | Jack Lloyd | 2020-12-10 | 3 | -5/+8 |
|\ | |||||
| * | Fix building Android shared object | Jack Lloyd | 2020-12-09 | 3 | -5/+8 |
| | | | | | | | | Fixes #2502 | ||||
* | | Enable BoringSSL SSLv3 tests | Jack Lloyd | 2020-12-09 | 3 | -9/+6 |
|/ | | | | | | Previously these tested SSLv3 functionality but now BoringSSL has also removed SSLv3 so the remaining test is just to confirm that SSLv3 can't be negotiated. | ||||
* | Update the BoringSSL runner and update the shim | Jack Lloyd | 2020-12-05 | 12 | -42/+98 |
| | | | | | | | Notable changes are checking if a message is sent past a flight boundary, and some new policy logic to distinguish between signature algorithms that we will accept and signature algorithms which we are willing to use ourselves. | ||||
* | Cleanups in the Aarch64 SHA-2 code | Jack Lloyd | 2020-12-05 | 1 | -101/+88 |
| | |||||
* | Clean up the SHA-2 x86 SHA-NI implementation | Jack Lloyd | 2020-12-05 | 1 | -98/+99 |
| | |||||
* | Fix #2525 for Pwdhash interface | Jack Lloyd | 2020-12-05 | 1 | -2/+2 |
| | |||||
* | Remove cast_sboxes.h | Jack Lloyd | 2020-12-04 | 2 | -199/+181 |
| | | | | | This was only in a header as these Sboxes were shared with CAST-256, which has been removed. | ||||
* | Combine the DES tables into one | Jack Lloyd | 2020-12-04 | 1 | -30/+17 |
| | | | | Saves several cycles per byte | ||||
* | Simplify Camellia key schedule a bit | Jack Lloyd | 2020-12-04 | 1 | -25/+29 |
| | |||||
* | Use smaller tables for DES | Jack Lloyd | 2020-12-04 | 3 | -389/+121 |
| | | | | Saves 6K, minimal performance impact | ||||
* | Use smaller tables in Camellia, ARIA, and SEED | Jack Lloyd | 2020-12-04 | 3 | -955/+350 |
| | | | | | | | | This saves 15K in Camellia, 3K in ARIA and 3.5K in SEED, at the cost of somewhat slower implementation. ARIA and SEED see the worst hit because they never made any attempt at lessening impact of a cache based side channel. Camellia did, and the new implementation is much faster than the previous F_SLOW so perf impact there is minimal. | ||||
* | Merge GH #2532 Add arm32 and s390x builds back to Travis CI | Jack Lloyd | 2020-12-04 | 3 | -9/+13 |
|\ | |||||
| * | Add back arm32 and s390x builds to Travis | Jack Lloyd | 2020-12-02 | 3 | -9/+13 |
| | | |||||
* | | Improve checks and avoid hard-coding the major version number | Jack Lloyd | 2020-12-03 | 1 | -4/+15 |
| | | |||||
* | | Improve CI tests of the install target | Jack Lloyd | 2020-12-02 | 4 | -59/+83 |
|/ | | | | | | | | | | Verify we install exactly the includes we expect Verify we install at least one library that looks like our name. (This check could be tightened) Change the install target to take all values via the build_config.json instead of reflecting them through the makefile. | ||||
* | the linter is quite right | Hannes Rantzsch | 2020-12-01 | 1 | -2/+2 |
| | |||||
* | CI: validate installation after running make install | Hannes Rantzsch | 2020-12-01 | 3 | -7/+65 |
| | | | | See https://github.com/randombit/botan/pull/2526 for details | ||||
* | Merge GH #2529 Export list of includes into build_config.json | Jack Lloyd | 2020-12-01 | 1 | -13/+11 |
|\ | |||||
| * | Export the list of headers into build_config.json | Jack Lloyd | 2020-12-01 | 1 | -13/+11 |
| | | | | | | | | Then the install target can use that instead of listdir | ||||
* | | Remove ULL suffixes | Jack Lloyd | 2020-12-01 | 4 | -803/+803 |
|/ | | | | Not required anymore | ||||
* | Merge GH #2527 Add some more BLAKE2b MAC test vectors | Jack Lloyd | 2020-12-01 | 1 | -0/+39 |
|\ | |||||
| * | Some more blake2b mac test vectors from Linux kernel. | Tom | 2020-11-30 | 1 | -0/+39 |
| | | | | | | | | https://raw.githubusercontent.com/torvalds/linux/master/crypto/testmgr.h | ||||
* | | Switch MAC vs HMAC preference in KDF and PBKDF2 | Jack Lloyd | 2020-12-01 | 2 | -4/+4 |
|/ | | | | | | | | Adding BLAKE2b as a MAC caused "PBKDF2(BLAKE2b)" to become interpreted as PBKDF2 with keyed BLAKE, instead of the previous interpretation of PBKDF2 with BLAKE2/HMAC. (And similarly for HKDF, etc) Fixes #2525 | ||||
* | Do not accept EC signatures when the public point is invalid | Jack Lloyd | 2020-11-30 | 4 | -2/+22 |
| | | | | | | | | | | Force g*x+p*y to the point at infinity if g or p is not a valid point. This does not seem to be a security issue since if you can control the public point you can just use a regular key and sign whatever you like. Still, it's odd to accept anything here, and easy to prevent it. Found by CryptoFuzz reported offline by @guidovranken | ||||
* | Add missing check for zero point during ECKCDSA verification | Jack Lloyd | 2020-11-30 | 1 | -0/+2 |
| | |||||
* | Make this comment easier to read | Jack Lloyd | 2020-11-30 | 1 | -1/+2 |
| | |||||
* | Break complicated expression down into several statements | Jack Lloyd | 2020-11-30 | 1 | -2/+6 |
| | |||||
* | Add a couple more BLAKE2b MAC tests (from OpenSSL) | Jack Lloyd | 2020-11-29 | 1 | -0/+11 |
| | |||||
* | Reformat | Jack Lloyd | 2020-11-29 | 1 | -37/+38 |
| | |||||
* | Add support for keyed Blake2b and also MAC via Blake2b. | Tom | 2020-11-29 | 7 | -5/+1225 |
| | |||||
* | Merge GH #2523 Remove KDF truncation behavior | Jack Lloyd | 2020-11-28 | 19 | -158/+212 |
|\ | |||||
| * | Remove the KDF truncation behavior | Jack Lloyd | 2020-11-28 | 19 | -158/+212 |
| | | | | | | | | Closes GH #2347 | ||||
* | | Merge GH #2522 Avoid duplicated hash_for_emsa call in DSA | Jack Lloyd | 2020-11-28 | 2 | -10/+2 |
|\ \ | |||||
| * | | Avoid a duplicated call of hash_for_emsa | Jack Lloyd | 2020-11-28 | 2 | -10/+2 |
| |/ | | | | | | | | | We already invoke this in the PK_Signer superclass constructor so no need to repeat the work. | ||||
* / | Add VSX flags for compilers | Jack Lloyd | 2020-11-28 | 2 | -1/+3 |
|/ | | | | Previous patch effectively disabled AES POWER support | ||||
* | Merge GH #2521 Deprecate and inline some old compat key loader functions | Jack Lloyd | 2020-11-28 | 4 | -202/+124 |
|\ | |||||
| * | Deprecate some of the old PK load functions, inline others | Jack Lloyd | 2020-11-28 | 4 | -202/+124 |
| | | |||||
* | | Merge GH #2520 Add Private_Key::public_key | Jack Lloyd | 2020-11-28 | 39 | -3/+163 |
|\ \ | |||||
| * | | Add Private_Key::public_key | Jack Lloyd | 2020-11-28 | 39 | -3/+163 |
| |/ | |||||
* / | Make scan_name.h, cpuid.h and http_util.h internal | Jack Lloyd | 2020-11-28 | 59 | -68/+54 |
|/ | |||||
* | Avoid using C++ attribute for ffi.h | Jack Lloyd | 2020-11-28 | 1 | -3/+7 |
| | |||||
* | Remove some unused macro checks/includes | Jack Lloyd | 2020-11-28 | 2 | -14/+7 |
| | |||||
* | Merge GH #2517 Allow custom RSA private keys during TLS | Jack Lloyd | 2020-11-28 | 1 | -1/+1 |
|\ | |||||
| * | Allow custom RSA Private_Key in Client_Key_Exchange message | Claudius Hauptmann | 2020-11-27 | 1 | -1/+1 |
| | | |||||
* | | Merge GH #2516 Add a flag for VSX instructions | Jack Lloyd | 2020-11-28 | 3 | -6/+11 |
|\ \ | |||||
| * | | Add a new ISA flag for VSX instructions | Jack Lloyd | 2020-11-27 | 3 | -6/+11 |
| |/ | | | | | | | GH #2515 | ||||
* | | Merge GH #2513 Various math improvements | Jack Lloyd | 2020-11-28 | 9 | -58/+128 |
|\ \ | |||||
| * | | SRP6 improvements | Jack Lloyd | 2020-11-24 | 1 | -28/+32 |
| | | |