botan.git - Unnamed repository; edit this file 'description' to name the repository.

	Commit message (Collapse)	Author	Age	Files	Lines
*	Maintainer mode warning cleanups, mostly for C style casts which I	lloyd	2011-04-18	1	-29/+29
\| \| \| \|	added to the flags here.
*	In all cases where the block size of the cipher is fixed, the key	lloyd	2010-10-14	1	-9/+6
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	parameters are as well. So make them template paramters. The sole exception was AES, because you could either initialize AES with a fixed key length, in which case it would only be that specific key length, or not, in which case it would support any valid AES key size. This is removed in this checkin; you have to specifically ask for AES-128, AES-192, or AES-256, depending on which one you want. This is probably actually a good thing, because every implementation other than the base one (SSSE3, AES-NI, OpenSSL) did not support "AES", only the versions with specific fixed key sizes. So forcing the user to ask for the one they want ensures they get the ones that are faster and/or safer.
*	Add a new subclass for BlockCipher BlockCipher_Fixed_Block_Size, which	lloyd	2010-10-13	1	-6/+9
\| \| \| \| \| \| \| \| \| \| \| \| \| \|	sets the block size statically and also creates an enum with the size. Use the enum instead of calling block_size() where possible, since that uses two virtual function calls per block which is quite unfortunate. The real advantages here as compared to the previous version which kept the block size as a per-object u32bit: - The compiler can inline the constant as an immediate operand (previously it would load the value via an indirection on this) - Removes 32 bits per object overhead (except in cases with actually variable block sizes, which are very few and rarely used)
*	Use size_t rather than u32bit in SymmetricAlgorithm	lloyd	2010-10-13	2	-6/+6
\|
*	Use size_t rather than u32bit for the blocks argument of encrypt_n	lloyd	2010-10-12	2	-25/+25
\|
*	Completely remove the second parameter to SecureVector which specifies	lloyd	2010-09-14	1	-6/+6
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	the initial/default length of the array, update all users to instead pass the value to the constructor. This is a old vestigal thing from a class (SecureBuffer) that used this compile-time constant in order to store the values in an array. However this was changed way back in 2002 to use the same allocator hooks as the rest of the containers, so the only advantage to using the length field was that the initial length was set and didn't have to be set in the constructor which was midly convenient. However this directly conflicts with the desire to be able to (eventually) use std::vector with a custom allocator, since of course vector doesn't support this. Fortunately almost all of the uses are in classes which have only a single constructor, so there is little to no duplication by instead initializing the size in the constructor.
*	Big, invasive but mostly automated change, with a further attempt at	lloyd	2010-09-07	1	-3/+3
\| \| \| \| \| \| \| \| \| \| \| \| \| \|	harmonising MemoryRegion with std::vector: The MemoryRegion::clear() function would zeroise the buffer, but keep the memory allocated and the size unchanged. This is very different from STL's clear(), which is basically the equivalent to what is called destroy() in MemoryRegion. So to be able to replace MemoryRegion with a std::vector, we have to rename destroy() to clear() and we have to expose the current functionality of clear() in some other way, since vector doesn't support this operation. Do so by adding a global function named zeroise() which takes a MemoryRegion which is zeroed. Remove clear() to ensure all callers are updated.
*	The SSSE3 intrinsics apparently work under Sun Studio as well	lloyd	2010-09-07	1	-0/+1
\|
*	Add also AES-192 using SSSE3	lloyd	2010-08-12	2	-23/+149
\|
*	Support AES-256 is the SSSE3 implementation	lloyd	2010-08-12	2	-5/+93
\|
*	Use _mm_set_epi32 instead of _mm_set_epi64x - VC++ obnoxiously only	lloyd	2010-08-11	2	-79/+79
\| \| \| \|	supports epi64x in 64-bit mode.
*	Only enable aes_ssse3 when compiling with GCC or Clang. For some dumbass	lloyd	2010-08-09	1	-0/+7
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	reasons, Intel C++ rejects const __m128i foo = _mm_set_epi64x(...) though it will accept if you use one of the _mm_set1 variants. And Visual C++ doesn't know about _mm_set_epi64x() in 32-bit mode for similarly dumb reasons - it works fine compiling for 64 bit but for whatever reason they don't offer this function when compiling as 32 bit. Unfortunately there isn't a good way to specify it's OK with a particular compiler with one arch but not another, so just disable it globally for the time being. The workaround for VC++ is probably to use _mm_set_epi32 and break up the input values into 32 bit chunks. ICC is a lost cause I fear.
*	Add an implementation of AES-128 using SSSE3 instructions. It runs in	lloyd	2010-08-09	3	-0/+454
	constant time and on a Nehalem is significantly faster than the table based version. This implementation technique was invented by Mike Hamburg and described in a paper in CHES 2009 "Accelerating AES with Vector Permute Instructions". This code is basically a translation of his public domain x86-64 assembly code into intrinsics. Todo: Adding support for AES-192 and AES-256; this just requires implementing the key schedules. Currently only tested on an i7 with GCC (32 and 64 bit code); testing/optimization on 32-bit processors with SSSE3 like the Atom, and with Visual C++ and other compilers, are also todos.