summaryrefslogtreecommitdiff
path: root/lib/algorithms
Commit message (Expand)AuthorAgeFilesLines
* priority: support allowlisting in configuration fileDaiki Ueno2021-11-295-8/+313
* priority: refactor config file parsingDaiki Ueno2021-11-244-8/+8
* algorithms: Explicitly name ECDH_X448_OID and ECDH_X25519_OIDDaniel Kahn Gillmor2021-09-172-2/+4
* Fix a common typo of gnutls_priority_t.Sadie Powell2020-12-291-1/+1
* doc: assorted typo fixestmp-typo-fixesDaiki Ueno2020-08-121-1/+1
* Merge branch 'master' into 'tmp-mark-gost94-as-broken'Dmitry Baryshkov2020-06-153-1/+96
|\
| * build: avoid -Wenum-conversion warnings with GCC 10Daiki Ueno2020-06-151-1/+1
| * lib: add Magma/Kuznyechik OMAC supportDmitry Eremin-Solenikov2020-06-071-0/+10
| * lib: add Magma/Kuznyechik ciphers supportDmitry Eremin-Solenikov2020-06-071-0/+14
| * lib: add support for AES-192-GCMDmitry Baryshkov2020-05-271-0/+9
| * nettle: expose SIV-CMAC through the AEAD interfaceDaiki Ueno2020-05-041-0/+18
| * cipher: allow setting ChaCha20 initial block counterDaiki Ueno2020-03-191-1/+10
| * cipher: expose raw ChaCha20 cipherDaiki Ueno2020-03-191-0/+7
| * algorithms: properly calculate hash strength for Ed448Daiki Ueno2020-03-161-1/+29
* | GOSTR341194: mark as insecure for digital signaturesNikos Mavrogiannopoulos2020-01-261-2/+5
|/
* algorithms: implement X448 key exchange and Ed448 signature schemeDaiki Ueno2020-01-235-0/+47
* Merge branch 'tmp-ocsp-check' into 'master'903-add-crl-and-crq-fuzzersNikos Mavrogiannopoulos2020-01-091-0/+1
|\
| * Provide flag to identify sessions that an OCSP response was requestedNikos Mavrogiannopoulos2019-12-151-0/+1
* | Add GOST cipher suitesDmitry Eremin-Solenikov2019-12-181-0/+11
|/
* Add support for VKO GOST key exchangeDmitry Eremin-Solenikov2019-11-082-0/+8
* groups: add function to return group by curveDmitry Eremin-Solenikov2019-11-071-0/+21
* ecc: define curve->group relationshipDmitry Eremin-Solenikov2019-11-071-0/+18
* Declare groups corresponding to GOST curvesDmitry Eremin-Solenikov2019-11-071-0/+52
* tls-sig: reverse bytes in TLS signatures for GOST signaturesDmitry Eremin-Solenikov2019-10-311-0/+3
* ecc: fix curve sizes for TC26-256 gost curvesDmitry Eremin-Solenikov2019-10-271-4/+4
* Merge branch 'tls-continuous-mac' into 'master'Dmitry Eremin-Solenikov2019-10-232-13/+13
|\
| * mac: mark GOST28147-TC26Z-IMIT as using CONTINUOUS_MACDmitry Eremin-Solenikov2019-10-211-1/+2
| * mac: change preimage_insecure to be a flagDmitry Eremin-Solenikov2019-10-211-5/+5
| * cipher: replace several bools with single flags instanceDmitry Eremin-Solenikov2019-10-211-7/+6
* | sign: convert tls13_ok to flags fieldDmitry Eremin-Solenikov2019-10-211-11/+11
|/
* lib/ecc: add documentation for GOST-related curvesDmitry Eremin-Solenikov2019-10-061-0/+23
* lib: define more GOST curvesDmitry Eremin-Solenikov2019-10-061-0/+45
* Merge branch 'gost-iana' into 'master'Dmitry Eremin-Solenikov2019-10-021-2/+2
|\
| * lib/algorithms: add AID values assigned by IANADmitry Eremin-Solenikov2019-09-281-2/+2
* | nettle: provide GOST 28147-89 IMIT MAC supportDmitry Eremin-Solenikov2019-09-281-0/+5
* | nettle: provide GOST 28147-89 CNT mode supportDmitry Eremin-Solenikov2019-09-281-0/+7
|/
* lib: add support for AES-GMACDmitry Eremin-Solenikov2019-06-281-0/+15
* config: added ability to override and mark algorithms as disabledNikos Mavrogiannopoulos2019-06-205-15/+131
* Always pass in and check Q in TLS 1.3Simo Sorce2019-05-231-0/+5
* Merge branch 'tmp-privkey-tls13' into 'master'Daiki Ueno2019-05-222-13/+14
|\
| * algorithms: eliminate the FFDHE alert desc requirementDaiki Ueno2019-05-221-13/+1
| * server auth: disable TLS 1.3 if no signature algorithm is usableDaiki Ueno2019-05-201-0/+13
* | algorithms/secparams.c: fixed indentationNikos Mavrogiannopoulos2019-05-201-1/+2
|/
* gnutls_sign_list: document the non-thread-safenessNikos Mavrogiannopoulos2019-05-031-0/+1
* doc: mark TLS1.2 functions as such [ci skip]Nikos Mavrogiannopoulos2019-04-141-3/+8
* Vendor in XTS functionality from NettleSimo Sorce2019-03-291-0/+15
* Removed all FIXME comments in code [ci skip]Nikos Mavrogiannopoulos2019-03-161-1/+1
* Use https:// for www.gnu.org and www.example.comTim Rühsen2019-03-1312-12/+12
* Improve documentation for gnutls_cipher_get_iv_sizeNikos Mavrogiannopoulos2019-03-011-2/+4
* Fallback to TLS 1.2 when incompatible with signature certs are providedNikos Mavrogiannopoulos2019-02-061-1/+1