Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Avoid creating a map from a DN when not required | Jack Lloyd | 2018-03-21 | 5 | -14/+20 |
| | |||||
* | Store elements of a DN as a vector | Jack Lloyd | 2018-03-21 | 2 | -59/+59 |
| | | | | | | | This allows retreiving the original ordering which is required for DN string encoding as defined in RFC 4514 Fixes #336 | ||||
* | Avoid Padding= directive in test files prefer header | Jack Lloyd | 2018-03-21 | 4 | -580/+234 |
| | | | | Removes a lot of duplicates and generally easier to read. | ||||
* | Update news | Jack Lloyd | 2018-03-21 | 1 | -0/+4 |
| | |||||
* | Merge GH #1502 Fix (EC)DSA when using hashes longer than group order | Jack Lloyd | 2018-03-21 | 9 | -6/+165 |
|\ | |||||
| * | Change DSA behavior similarly | Jack Lloyd | 2018-03-21 | 3 | -2/+51 |
| | | |||||
| * | Shift ECDSA inputs to match OpenSSL behavior | Jack Lloyd | 2018-03-21 | 6 | -4/+114 |
| | | | | | | | | See also GH #986 | ||||
* | | Merge GH #1499 Add --msvc-runtime option | Jack Lloyd | 2018-03-21 | 2 | -15/+47 |
|\ \ | |/ |/| | |||||
| * | Add option to specify the MSVC runtime | Jack Lloyd | 2018-03-21 | 2 | -15/+47 |
|/ | | | | Fixes GH #210 | ||||
* | Remove unused variables [ci skip] | Jack Lloyd | 2018-03-21 | 2 | -4/+0 |
| | |||||
* | Simplify a common case BigInt constructor | Jack Lloyd | 2018-03-21 | 2 | -1/+13 |
| | |||||
* | Add another Ed25519 helper to save a few hundred redundant lines | Jack Lloyd | 2018-03-20 | 3 | -301/+106 |
| | | | | No impact on performance. | ||||
* | Add some helpers for handling carries in Ed25519 | Jack Lloyd | 2018-03-20 | 4 | -893/+491 |
| | |||||
* | Update side channel doc | Jack Lloyd | 2018-03-20 | 1 | -29/+34 |
| | |||||
* | Update news, todo | Jack Lloyd | 2018-03-20 | 2 | -0/+3 |
| | |||||
* | Merge GH #1501 Support Ed25519 certificates | Jack Lloyd | 2018-03-20 | 4 | -40/+75 |
|\ | |||||
| * | Support Ed25519 certificate format | Jack Lloyd | 2018-03-20 | 4 | -40/+75 |
|/ | | | | Able to create certificate chain and verify it with OpenSSL 1.1.1 | ||||
* | Store base point multiplies in a single std::vector | Jack Lloyd | 2018-03-20 | 8 | -30/+175 |
| | | | | | | | | | | | Since the point is public all the values are also, so this reduces pressure on the mlock allocator and may (slightly) help perf through cache read-ahead. Downside is cache based side channels are slightly easier (vs the data being stored in discontigious vectors). But we shouldn't rely on that in any case. And having it be in an array makes a masked table lookup easier to arrange. | ||||
* | Nudge users to EC_Group::OS2ECP | Jack Lloyd | 2018-03-20 | 1 | -4/+10 |
| | |||||
* | Support multiple DNS names through the command line interface | Jack Lloyd | 2018-03-19 | 3 | -3/+10 |
| | |||||
* | Remove use of ;; to end lines | Jack Lloyd | 2018-03-19 | 5 | -5/+5 |
| | |||||
* | Add EC_Group::clear_registered_curve_data | Jack Lloyd | 2018-03-19 | 3 | -0/+23 |
| | | | | | | Needed for OSS-Fuzz (OOMing a lot) and maybe very occasionally useful in some weird application that has to deal with 100s of different curves. | ||||
* | Cache additional values for PointGFp multi-exponentiation | Jack Lloyd | 2018-03-19 | 5 | -64/+103 |
| | | | | Improves ECDSA verification by ~10% | ||||
* | Avoid needless computation in base point multiply | Jack Lloyd | 2018-03-19 | 3 | -33/+6 |
| | | | | We computed twice as many values as were used. | ||||
* | Use a better algorithm for base point multiplies | Jack Lloyd | 2018-03-19 | 3 | -11/+25 |
| | | | | | | | Nothing very clever, just store P^i,2*P^i,3*P^i in a table so we can do two bits of the scalar at a time. Improves ECDSA sign by 20-30% | ||||
* | Avoid throwing out of destructor | Jack Lloyd | 2018-03-19 | 1 | -1/+5 |
| | | | | This can't really happen but could in Coverity's mind. | ||||
* | Add back Coverity badge [ci skip] | Jack Lloyd | 2018-03-19 | 1 | -0/+4 |
| | |||||
* | Fix --disable-{neon,sse2,altivec} for simd_32 users | Jack Lloyd | 2018-03-18 | 1 | -7/+9 |
| | | | | | Using --disable-neon was not effective because simd_32 users had special logic that would still enable it. | ||||
* | Avoid code that triggers problems under GCC 8 | Jack Lloyd | 2018-03-18 | 1 | -1/+1 |
| | | | | GH #1498 | ||||
* | Fix warning in new pylint | Jack Lloyd | 2018-03-17 | 1 | -9/+9 |
| | | | | | It doesn't like slicing using a ctypes integer as index: Slice index is not an int, None, or instance with __index__ | ||||
* | Fix CPUID::has_cpuid_bit | Jack Lloyd | 2018-03-17 | 1 | -1/+3 |
| | | | | | | It would return true if any bits were set instead of if all the bits were set. It is only currently called with a single bit but that might change in the future. | ||||
* | Avoid creating stringstream unless needed in version check | Jack Lloyd | 2018-03-17 | 1 | -3/+3 |
| | |||||
* | Avoid unused arg warning in PowerPC CPUID code | Jack Lloyd | 2018-03-17 | 1 | -0/+2 |
| | |||||
* | Update news | Jack Lloyd | 2018-03-17 | 1 | -0/+7 |
| | |||||
* | Avoid calling run() on SIMD tests if SIMD instructions not available. | Jack Lloyd | 2018-03-17 | 1 | -1/+6 |
| | | | | | | | | | | Problem is the same flag that enables the intrinsics also gives the compiler a free hand to emit same instructions for everything including function preambles. So on systems without SSE2/NEON/etc, even jumping to the test briefly causes a crash because GCC emits SIMD instructions for things other than our intrinsics. GH #1495 | ||||
* | Avoid a problematic construct for AltiVec byteswap | Jack Lloyd | 2018-03-16 | 1 | -3/+8 |
| | | | | Seems to cause problems with GCC 8 on ppc64le. GH #1498 | ||||
* | Catch exceptions by reference not value | Jack Lloyd | 2018-03-16 | 7 | -24/+18 |
| | | | | Fixes a new warning in GCC 8 | ||||
* | Add basecase_sqr function | Jack Lloyd | 2018-03-16 | 1 | -3/+29 |
| | | | | | | Just a simple adaption of the n^2 multiply algorithm, so no performance impact. However makes the difference between squaring and multiply easier to see when profiling. | ||||
* | Fix incorrect return value check | Jack Lloyd | 2018-03-15 | 1 | -1/+1 |
| | |||||
* | In Python module support loading via libbotan-2.so.X soname | Jack Lloyd | 2018-03-15 | 1 | -7/+22 |
| | | | | | | Needed for distros that ship the main library symlink in the dev package. GH #1497 | ||||
* | Update news | Jack Lloyd | 2018-03-15 | 1 | -0/+5 |
| | |||||
* | Avoid using threads in DSA operations | Jack Lloyd | 2018-03-15 | 1 | -25/+3 |
| | | | | | | | | | For DSA signing using a thread turned out to be purely a pessimization. The single threaded code is faster even on a 4-core machine running Linux (which has very fast thread creation). It would likely be much worse on a single core machine or an OS with slower thread primitives. For DSA verification, use Montgomery multi-exponentiation instead. | ||||
* | Add multiexponentation interface to DL_Group | Jack Lloyd | 2018-03-15 | 2 | -3/+17 |
| | |||||
* | Add Montgomery multiexponentiation | Jack Lloyd | 2018-03-15 | 4 | -0/+95 |
| | |||||
* | Put ISA enabling flags after CXXFLAGS to override as needed | Jack Lloyd | 2018-03-15 | 1 | -4/+4 |
| | | | | See GH #1495 | ||||
* | Merge GH #1494 Use RtlGenRandom instead of CryptoAPI/CryptoNG | Jack Lloyd | 2018-03-14 | 11 | -103/+55 |
|\ | |||||
| * | Remove PROV_TYPE from build.h | Jack Lloyd | 2018-03-14 | 1 | -9/+6 |
| | | |||||
| * | Use RtlGenRandom instead of CryptoAPI | Jack Lloyd | 2018-03-14 | 10 | -94/+49 |
| | | |||||
* | | Some additional operations on Montgomery_Int | Jack Lloyd | 2018-03-14 | 2 | -0/+45 |
|/ | | | | Needed for #1432 | ||||
* | Update news | Jack Lloyd | 2018-03-14 | 1 | -0/+5 |
| |