aboutsummaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
* Fix some warnings new in GCC 8.1Jack Lloyd2018-05-076-43/+49
| | | | | It thinks the typedefs are "locals" that are being conflicted with, which seems wrong to me but whatever.
* Merge GH #1561 Fix typo in docs [ci skip]Jack Lloyd2018-05-071-1/+1
|\
| * typo: fixed AES key wrapping RFC numberOri Peleg2018-05-061-1/+1
|/
* Improve PEM detection for asn1 printerJack Lloyd2018-05-031-5/+22
|
* Let pkcs8 command line util accept '-' for stdinJack Lloyd2018-05-031-3/+6
|
* Add todo (ORAM)Jack Lloyd2018-05-031-0/+1
|
* Update newsJack Lloyd2018-05-021-0/+2
|
* Use Montgomery_Int::sub to avoid an allocationJack Lloyd2018-05-021-2/+2
|
* Remove needless allocation in Montgomery_Int::mul_byJack Lloyd2018-05-022-7/+41
|
* Improve performance of Pollard rho implementationJack Lloyd2018-05-021-12/+36
| | | | | | Using Montgomery is somewhat faster and allows avoiding mallocs. Test GCD only on intervals since gcd is 90+% of the runtime cost.
* Make Montgomery_Int public, add function for addition with workspaceJack Lloyd2018-05-022-3/+11
|
* Add arch aliases for Debian builds [ci skip]Jack Lloyd2018-05-022-0/+5
|
* Merge GH #1560 Add OpenPGP specific (Ed|X)25519 OIDsJack Lloyd2018-05-022-1/+9
|\
| * Add OpenPGP-specific curve OIDsMarcus Brinkmann2018-05-022-1/+9
| |
* | Correct file name to regenerate [ci skip]Jack Lloyd2018-05-021-1/+1
|/
* Add a compile time warning if MSVC 2013 is detectedJack Lloyd2018-04-261-1/+7
| | | | GH #1557
* Note MSVC 2013 deprecationJack Lloyd2018-04-262-1/+5
|
* Merge GH #1556 Misc BigInt improvementsJack Lloyd2018-04-269-79/+205
|\
| * Inline this operator+ [ci skip]Jack Lloyd2018-04-262-6/+1
| |
| * Add a comment on side channels hereJack Lloyd2018-04-261-4/+5
| |
| * Correct handling of gcd(p - 1, e) in RSA keygenJack Lloyd2018-04-261-7/+25
| | | | | | | | | | | | | | | | | | | | We were calling inverse mod but because p - 1 > e the binary extended euclidean algorithm was used instead of the const time version. Use the fact that e is odd (for RSA keys) to remove the factors of 2 from p - 1 and then check coprimality that way, since it allows using our const time algo.
| * Remove unused includeJack Lloyd2018-04-261-1/+0
| |
| * Add a couple more GCD testsJack Lloyd2018-04-261-0/+8
| |
| * Rewrite GCD in less branchy way, and use Montgomery in M-R testJack Lloyd2018-04-261-16/+30
| |
| * Add BigInt functions for adding, subtracting and comparing with wordsJack Lloyd2018-04-264-51/+142
|/ | | | Avoids needless allocations for expressions like x - 1 or y <= 4.
* Another todo [ci skip]Jack Lloyd2018-04-241-2/+3
|
* Add final annotations [ci skip]Jack Lloyd2018-04-241-3/+3
|
* Update newsJack Lloyd2018-04-231-1/+1
|
* Merge GH #1550 Add BigInt::mod_subJack Lloyd2018-04-234-93/+128
|\
| * Add BigInt::mod_subJack Lloyd2018-04-234-93/+128
|/
* Use EC_Group::inverse_mod_order where appropriateJack Lloyd2018-04-203-7/+4
|
* Update newsJack Lloyd2018-04-201-1/+1
|
* Merge GH #1547 Add optimized P-384 field inversionJack Lloyd2018-04-201-0/+72
|\
| * Add Fermat based inversion of P-384 field elementsJack Lloyd2018-04-191-0/+72
| | | | | | | | | | | | | | | | | | Cuts about 100K cycles from the inversion, improving ECDSA sign by 10% and ECDH by ~2% Addition chain from https://briansmith.org/ecc-inversion-addition-chains-01 GH #1479
* | Reorder Travis builds [ci skip]Jack Lloyd2018-04-191-1/+1
|/ | | | | | | | I guess Travis has changed how they sort builds, previously compiler took precedence but now the BUILD_MODE env variable does. Anyway the result is Sonar build runs later than before, which adds several minutes to the overall build time. Put it near the top so it starts early and can run concurrently with other builds.
* Update newsJack Lloyd2018-04-191-4/+1
|
* Merge GH #1546 Add optimized field inversion for P-256 and P-521Jack Lloyd2018-04-191-0/+143
|\
| * Add field inversion for P-521Jack Lloyd2018-04-181-0/+68
| | | | | | | | ECDSA sign about 10% faster, ECDSA verify and ECDH about 5% faster.
| * Add optimized inversion for P-256Jack Lloyd2018-04-181-0/+75
|/ | | | | | Could be slightly more clever here but this is pretty decent. GH #1479
* Add timing for ECC double and addition algorithmsJack Lloyd2018-04-181-0/+33
|
* Merge GH #1545 Optimize P-192 and P-224 reductionsJack Lloyd2018-04-182-154/+299
|\
| * Add cycle counter for NIST reductionJack Lloyd2018-04-181-0/+52
| |
| * Add early exit for P-192 reduceJack Lloyd2018-04-181-0/+5
| |
| * Remove now unused functionJack Lloyd2018-04-181-19/+0
| |
| * Optimize P-224 reductionJack Lloyd2018-04-181-47/+77
| | | | | | | | 5-7% faster ECDSA
| * Further NIST reduction tweaksJack Lloyd2018-04-181-40/+44
| |
| * P-192 optimizationsJack Lloyd2018-04-181-34/+64
| | | | | | | | 5-7% faster for ECDSA and ECDH
| * Micro optimizations in P-256 and P-384 reductionsJack Lloyd2018-04-181-30/+73
|/ | | | Improves ECDSA and ECDH by 1% or so.
* Minor optimizations for P-256 and P-384Jack Lloyd2018-04-171-161/+65
| | | | Improves ECDSA by ~5% on Skylake
* Merge GH #1544 Handle arvm8l hostJack Lloyd2018-04-171-0/+2
|\
generated by cgit v1.2.3 (git 2.39.1) at 2024-12-04 23:25:15 +0000