Skip to content

Commit

Permalink
Merge botan master
Browse files Browse the repository at this point in the history
  • Loading branch information
@fwsGonzo
fwsGonzo committed Apr 11, 2018
2 parents 736bc76 + 0d45a34 commit 27eb6d5
Show file tree
Hide file tree
Showing 1,952 changed files with 59,126 additions and 25,416 deletions.
8 changes: 0 additions & 8 deletions .gitignore
View file
Original file line number Diff line number Diff line change
Expand Up @@ -64,14 +64,6 @@ lcov-out/
cachegrind.*
callgrind.*

src/contrib/perl-xs/Makefile
src/contrib/perl-xs/Makefile.old
src/contrib/perl-xs/Botan.bs
src/contrib/perl-xs/Botan.c
src/contrib/perl-xs/Botan.o
src/contrib/perl-xs/MYMETA*
src/contrib/perl-xs/*blib

# IncludeOS
botan-includeos.tar.gz

Expand Down
2,116 changes: 1,018 additions & 1,098 deletions configure.py
View file

Large diffs are not rendered by default.

16 changes: 0 additions & 16 deletions doc/abi.rst
View file

This file was deleted.

54 changes: 27 additions & 27 deletions doc/contributing.rst
View file
Original file line number Diff line number Diff line change
Expand Up @@ -28,22 +28,21 @@ Library Layout
* ``kdf`` contains the key derivation functions
* ``mac`` contains the message authentication codes
* ``pbkdf`` contains password hashing algorithms for key derivation
* ``math`` is the math library for public key operations. It is divided into
four parts: ``mp`` which are the low level algorithms; ``bigint`` which is
a C++ wrapper around ``mp``; ``numbertheory`` which contains algorithms like
primality testing and exponentiation; and ``ec_gfp`` which defines elliptic
curves over prime fields.
* ``pubkey`` contains the public key implementations
* ``math`` is the big integer math library. It is divided into three parts:
``mp`` which are the low level algorithms; ``bigint`` which is a C++ wrapper
around ``mp``, and ``numbertheory`` which contains higher level algorithms like
primality testing and exponentiation
* ``pubkey`` contains the public key algorithms
* ``pk_pad`` contains padding schemes for public key algorithms
* ``rng`` contains the random number generators
* ``entropy`` has various entropy sources
* ``entropy`` has various entropy sources used by some of the RNGs
* ``asn1`` is the DER encoder/decoder
* ``cert/x509`` is X.509 certificates, PKCS #10 requests, OCSP
* ``x509`` is X.509 certificates, PKCS #10 requests, OCSP
* ``tls`` contains the TLS implementation
* ``filters`` is a filter/pipe API for data transforms
* ``compression`` has the compression wrappers (zlib, bzip2, lzma)
* ``ffi`` is the C99 API
* ``prov`` contains bindings to external libraries like OpenSSL
* ``prov`` contains bindings to external libraries like OpenSSL and PKCS #11
* ``misc`` contains odds and ends: format preserving encryption, SRP, threshold
secret sharing, all or nothing transform, and others

Expand Down Expand Up @@ -97,12 +96,12 @@ Python

Scripts should be in Python whenever possible.

For configure.py (and install.py) the target is stock (no modules outside the
standard library) CPython 2.7 plus latest CPython 3.x. Support for CPython 2.6,
PyPy, etc is great when viable (in the sense of not causing problems for 2.7 or
3.x, and not requiring huge blocks of version dependent code). As running this
program succesfully is required for a working build making it as portable as
possible is considered key.
For configure.py (and helper scripts install.py, cleanup.py and build_docs.py)
the target is stock (no modules outside the standard library) CPython 2.7 plus
latest CPython 3.x. Support for CPython 2.6, PyPy, etc is great when viable (in
the sense of not causing problems for 2.7 or 3.x, and not requiring huge blocks
of version dependent code). As running this program succesfully is required for
a working build, making it as portable as possible is considered key.

The python wrapper botan2.py targets CPython 2.7, 3.x, and latest PyPy. Note that
a single file is used to avoid dealing with any of Python's various crazy module
Expand All @@ -121,8 +120,10 @@ If you don't already use it for all your C/C++ development, install
``ccache`` now and configure a large cache on a fast disk. It allows for
very quick rebuilds by caching the compiler output.

Use ``--with-sanitizers`` to enable ASan. UBSan has to be added separately
with ``--cc-abi-flags`` at the moment as GCC 4.8 does not have UBSan.
Use ``--enable-sanitizers=`` flag to enable various sanitizer checks.
Supported values including "address" and "undefined" for GCC and
Clang. GCC also supports "iterator" (checked iterators), and Clang
supports "memory" (MSan) and "coverage" (for fuzzing).

Copyright Notice
========================================
Expand Down Expand Up @@ -203,7 +204,7 @@ on, so there are some existing examples of appropriate use.

Generally intrinsics or inline asm is preferred over bare assembly to avoid
calling convention issues among different platforms; the improvement in
maintainability is seen as worth any potentially performance tradeoff. One risk
maintainability is seen as worth any potential performance tradeoff. One risk
with intrinsics is that the compiler might rewrite your clever const-time SIMD
into something with a conditional jump, but code intended to be const-time
should in any case be annotated so it can be checked at runtime with tools.
Expand Down Expand Up @@ -238,20 +239,19 @@ additional lines of code in the library. That is, if the library really does
need this functionality, and it can be done in the library for less than that,
then it makes sense to just write the code. Yup.

Given the entire library is (accoriding to SLOCcount) 62K lines of code, that
Given the entire library is (according to cloc) 92K lines of code, that
may give some estimate of the bar - you can do pretty much anything in 1000
lines of well written C++11 (the implementations of *all* of the message
authentication codes is much less than 1K SLOC).

Current the (optional) external dependencies of the library are OpenSSL (for
access to fast and side channel hardened RSA, ECDSA, AES), zlib, bzip2, lzma,
sqlite3, Trousers (TPM integration), plus various operating system utilities
like basic filesystem operations. These provide major pieces of functionality
which seem worth the trouble of maintaining an integration with.
sqlite3, Trousers (TPM integration), PKCS #11, plus various operating system
utilities like basic filesystem operations. These provide major pieces of
functionality which seem worth the trouble of maintaining an integration with.

Examples of other external dependencies that would be appropriate include
integration with system crypto (PKCS #11, TPM, CommonCrypto, CryptoAPI
algorithms), potentially a parallelism framework such as Cilk (as part of a
larger design for parallel message processing, say), or hypothentically use of a
safe ASN.1 parser (that is, one written in a safe language like Rust or OCaml
providing a C API).
integration with system crypto (/dev/crypto, CommonCrypto, CryptoAPI, ...),
potentially a parallelism framework such as Cilk (as part of a larger design for
parallel message processing, say), or hypothentically use of a safe ASN.1 parser
(that is, one written in a safe language like Rust or OCaml providing a C API).
36 changes: 0 additions & 36 deletions doc/deprecated.txt
View file

This file was deleted.

Empty file removed doc/downloads.rst
View file
Empty file.
21 changes: 21 additions & 0 deletions doc/manual/abi.rst
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,21 @@

ABI Stability
====================

Botan uses semantic versioning for the API; if API features are added the minor
version increases, whereas if API compatability breaks occur the major version
is increased.

However no guarantees about ABI are made between releases. Maintaining an ABI
compatible release in a complex C++ API is exceedingly expensive in development
time; just adding a single member variable or virtual function is enough to
cause ABI issues.

If ABI changes, the soname revision will increase to prevent applications from
linking against a potentially incompatible version at runtime.

If you are concerned about long-term ABI issues, considering using the C API
instead; this subset *is* ABI stable.

You can review a report on ABI changes to Botan at
https://abi-laboratory.pro/tracker/timeline/botan/
6 changes: 3 additions & 3 deletions doc/manual/bigint.rst
View file
Original file line number Diff line number Diff line change
Expand Up @@ -13,21 +13,21 @@ Encoding Functions
These transform the normal representation of a ``BigInt`` into some
other form, such as a decimal string:

.. cpp:function:: secure_vector<byte> BigInt::encode(const BigInt& n, Encoding enc = Binary)
.. cpp:function:: secure_vector<uint8_t> BigInt::encode(const BigInt& n, Encoding enc = Binary)

This function encodes the BigInt n into a memory
vector. ``Encoding`` is an enum that has values ``Binary``,
``Decimal``, and ``Hexadecimal``.

.. cpp:function:: BigInt BigInt::decode(const std::vector<byte>& vec, Encoding enc)
.. cpp:function:: BigInt BigInt::decode(const std::vector<uint8_t>& vec, Encoding enc)

Decode the integer from ``vec`` using the encoding specified.

These functions are static member functions, so they would be called
like this::

BigInt n1 = ...; // some number
secure_vector<byte> n1_encoded = BigInt::encode(n1);
secure_vector<uint8_t> n1_encoded = BigInt::encode(n1);
BigInt n2 = BigInt::decode(n1_encoded);
assert(n1 == n2);

Expand Down
Loading

0 comments on commit 27eb6d5

Please sign in to comment.