Revisions of Botan
Ludwig Nussel (lnussel_factory)
accepted
request 691276
from
Daniel Molkentin (dmolkentin)
(revision 33)
- Update to Botan 2.10 * Bump SONAME * Warning: XMSS currently implements draft-06 which is not compatible with the final RFC 8391 specification. A PR is open to fix this, however it will break all current uses of XMSS. If you are currently using XMSS please comment at https://github.com/randombit/botan/pull/1858. Otherwise the PR will be merged and support for draft-06 will be removed starting in 2.11. * Added a new certificate store implementation that can access the MacOS keychain certificate store. (GH #1830) * Redesigned Memory_Pool class, which services allocations out of a set of pages locked into memory (using mlock/VirtualLock). It is now faster and with improved exploit mitigations. (GH #1800) * Add BMI2 implementations of SHA-512 and SHA-3 which improve performance by 25-35% on common CPUs. (GH #1815) * Unroll SHA-3 computation improving performance by 10-12% (GH #1838) * Add a Thread_Pool class. It is now possible to run the tests in multiple threads with --test-threads=N flag to select the number of threads to use. Use --test-threads=0 to run with as many CPU cores as are available on the current system. The default remains single threaded. (GH #1819) * XMSS signatures now uses a global thread pool instead of spawning new threads for each usage. This improves signature generation performance by between 10% and 60% depending on architecture and core count. (GH #1864) * Some functions related to encoding and decoding BigInts have been deprecated. (GH #1817) * Binary encoding and decoding of BigInts has been optimized by performing word-size operations when possible. (GH #1817) * Rename the exception Integrity_Failure to Invalid_Authentication_Tag to make its meaning and usage more clear. The old name remains as a typedef. (GH #1816) * Support for using Boost filesystem and MSVC’s std::filesystem have been
Yuchen Lin (maxlin_factory)
committed
(revision 32)
branch from 15.0
Ludwig Nussel (lnussel_factory)
accepted
request 596340
from
Leap Reviewbot (leaper)
(revision 31)
Automatic request from openSUSE:Factory by UpdateCrawler
Ludwig Nussel (lnussel_factory)
accepted
request 595523
from
Daniel Molkentin (dmolkentin)
(revision 30)
- Update to Botan 2.6 * CVE-2018-9860 Fix a bug decrypting TLS CBC ciphertexts which could for a malformed ciphertext cause the decryptor to read and HMAC an additional 64K bytes of data which is not part of the record. This could cause a crash if the read went into unmapped memory. No information leak or out of bounds write occurs. * Add support for OAEP labels (GH #1508) * RSA signing is about 15% faster (GH #1523) and RSA verification is about 50% faster. * Add exponent blinding to RSA (GH #1523) * Add Cipher_Mode::create and AEAD_Mode::create (GH #1527) * Fix bug in TLS server introduced in 2.5 which caused connection to fail if the client offered any signature algorithm not known to the server (for example RSA/SHA-224). * Fix a bug in inline asm that would with GCC 7.3 cause incorrect computations and an infinite loop during the tests. (GH #1524 #1529)
Ludwig Nussel (lnussel_factory)
accepted
request 594094
from
Leap Reviewbot (leaper)
(revision 29)
Automatic request from openSUSE:Factory by UpdateCrawler
Yuchen Lin (maxlin_factory)
accepted
request 580389
from
Leap Reviewbot (leaper)
(revision 28)
Automatic request from openSUSE:Factory by UpdateCrawler
Ludwig Nussel (lnussel_factory)
accepted
request 538939
from
Leap Reviewbot (leaper)
(revision 27)
Automatic request from openSUSE:Factory by UpdateCrawler
Yuchen Lin (maxlin_factory)
accepted
request 536750
from
Leap Reviewbot (leaper)
(revision 26)
Automatic request from openSUSE:Factory by UpdateCrawler
Ludwig Nussel (lnussel_factory)
committed
(revision 25)
osc copypac from project:SUSE:SLE-15:GA package:Botan revision:1
Yuchen Lin (maxlin_factory)
committed
(revision 24)
branch from 15.0
Ludwig Nussel (lnussel_factory)
accepted
request 596340
from
Leap Reviewbot (leaper)
(revision 23)
Automatic request from openSUSE:Factory by UpdateCrawler
Ludwig Nussel (lnussel_factory)
accepted
request 595523
from
Daniel Molkentin (dmolkentin)
(revision 22)
- Update to Botan 2.6 * CVE-2018-9860 Fix a bug decrypting TLS CBC ciphertexts which could for a malformed ciphertext cause the decryptor to read and HMAC an additional 64K bytes of data which is not part of the record. This could cause a crash if the read went into unmapped memory. No information leak or out of bounds write occurs. * Add support for OAEP labels (GH #1508) * RSA signing is about 15% faster (GH #1523) and RSA verification is about 50% faster. * Add exponent blinding to RSA (GH #1523) * Add Cipher_Mode::create and AEAD_Mode::create (GH #1527) * Fix bug in TLS server introduced in 2.5 which caused connection to fail if the client offered any signature algorithm not known to the server (for example RSA/SHA-224). * Fix a bug in inline asm that would with GCC 7.3 cause incorrect computations and an infinite loop during the tests. (GH #1524 #1529)
Ludwig Nussel (lnussel_factory)
accepted
request 594094
from
Leap Reviewbot (leaper)
(revision 21)
Automatic request from openSUSE:Factory by UpdateCrawler
Yuchen Lin (maxlin_factory)
accepted
request 580389
from
Leap Reviewbot (leaper)
(revision 20)
Automatic request from openSUSE:Factory by UpdateCrawler
Ludwig Nussel (lnussel_factory)
accepted
request 538939
from
Leap Reviewbot (leaper)
(revision 19)
Automatic request from openSUSE:Factory by UpdateCrawler
Yuchen Lin (maxlin_factory)
accepted
request 536750
from
Leap Reviewbot (leaper)
(revision 18)
Automatic request from openSUSE:Factory by UpdateCrawler
Ludwig Nussel (lnussel_factory)
committed
(revision 17)
osc copypac from project:SUSE:SLE-15:GA package:Botan revision:1
Yuchen Lin (maxlin_factory)
committed
(revision 16)
branch from 15.0
Ludwig Nussel (lnussel_factory)
accepted
request 596340
from
Leap Reviewbot (leaper)
(revision 15)
Automatic request from openSUSE:Factory by UpdateCrawler
Ludwig Nussel (lnussel_factory)
accepted
request 595523
from
Daniel Molkentin (dmolkentin)
(revision 14)
- Update to Botan 2.6 * CVE-2018-9860 Fix a bug decrypting TLS CBC ciphertexts which could for a malformed ciphertext cause the decryptor to read and HMAC an additional 64K bytes of data which is not part of the record. This could cause a crash if the read went into unmapped memory. No information leak or out of bounds write occurs. * Add support for OAEP labels (GH #1508) * RSA signing is about 15% faster (GH #1523) and RSA verification is about 50% faster. * Add exponent blinding to RSA (GH #1523) * Add Cipher_Mode::create and AEAD_Mode::create (GH #1527) * Fix bug in TLS server introduced in 2.5 which caused connection to fail if the client offered any signature algorithm not known to the server (for example RSA/SHA-224). * Fix a bug in inline asm that would with GCC 7.3 cause incorrect computations and an infinite loop during the tests. (GH #1524 #1529)
Displaying revisions 1 - 20 of 33