aboutsummaryrefslogtreecommitdiffstats
path: root/src/hash
Commit message (Collapse)AuthorAgeFilesLines
* MD4's M buffer was set to be 48 words instead of 16. This had beenlloyd2010-02-031-1/+1
| | | | | | | | | | | | | | extant for a long long time and was never caught because until recently the code did not depend on M.size(). However with the recent loadstore changes that use memcpy to load the entire array in one shot, an extra 128 bytes of memory would be read (but not used) in each iteration. This probably did not cause any problems except for Valgrind warnings, though in some situations it would be possible for the M buffer and MDx_HashFunctions buffer to be close enough that memcpy would be called with overlapping regions, which could cause arbitrarily weird failures since memcpy is allowed to assume they do not overlap.
* Move the get_byte template to its own header, because many fileslloyd2010-02-023-3/+0
| | | | including loadstor.h actually just needed get_byte and nothing else.
* s/j/i/ in looplloyd2010-01-211-2/+2
|
* Move Tiger::mix to anon namespace lloyd2010-01-042-14/+17
|
* Use a u32bit for the length argument to ubi_512. That value cannot possiblylloyd2009-12-231-2/+2
| | | | | | be larger than 4294967232 because you can give at most 2^32-1 bytes of data at a time to Skein_512::add_data, and Skein always needs to buffer at least one byte.
* Un-internal loadstor.h (and its header deps, rotate.h andlloyd2009-12-2119-30/+31
| | | | | | | | | | | | | | bswap.h); too many external apps rely on loadstor.h existing. Define 64-bit generic bswap in terms of 32-bit bswap, since it's not much slower if 32-bit is also generic, and much faster if it's not. This may be quite helpful on 32-bit x86 in particular. Change formulation of generic 32-bit bswap. It may be faster or slower depending on the CPU, especially the latency and throuput of rotate instructions, but should be faster on an ideally superscalar processor with rotate instructions (ie, what I expect future CPUs to look more like).
* Add missing BOTAN_DLL exports.lloyd2009-12-161-1/+1
| | | | Move most of the engine headers to internal
* Make many more headers internal-only.lloyd2009-12-1620-32/+32
| | | | | | | | | | | | | Fixes for the amalgamation generator for internal headers. Remove BOTAN_DLL exporting macros from all internal-only headers; the classes/functions there don't need to be exported, and avoiding the PIC/GOT indirection can be a big win. Add missing BOTAN_DLLs where necessary, mostly gfpmath and cvc For GCC, use -fvisibility=hidden and set BOTAN_DLL to the visibility __attribute__ to export those classes/functions.
* Full working amalgamation build, plus internal-only headers concept.lloyd2009-12-167-12/+10
|
* Remove extern decl of no longer used/included SHA-1 SSE2 functionlloyd2009-11-231-2/+0
|
* Instead of having two asm_macr.h files being switched in based on modulelloyd2009-11-144-4/+4
| | | | build magic, name them asm_macr_ARCH.h. Change all including files accordingly.
* Slightly cleaner SHA-256 F1 func; ~1% fasterlloyd2009-11-101-3/+3
|
* Cleanups - remove emails from source files, they should only live inlloyd2009-11-105-6/+6
| | | | credits.txt and thanks.txt. Remove some various bits of formatting weirdness.
* Add a new need_isa marker for info.txt that lets a module dependlloyd2009-11-061-13/+2
| | | | | | | | | | | | on a particular ISA extension rather than a list of CPUs. Much easier to edit and audit, too. Add markers on the AES-NI code and SHA-1/SSE2. Serpent and XTEA don't need it because they are generic and only depend on simd_32 which will silenty swap out a scalar version if SSE2/AltiVec isn't enabled (since it turns out on supersclar processors just doing 4 blocks in parallel can be a win even in GPRs). Add pentium3 to the list of CPUs with rdtsc, was missing. Odd!
* propagate from branch 'net.randombit.botan.1_8' (head ↵lloyd2009-11-0359-688/+718
|\ | | | | | | | | | | 6e8c18515725a70923b34118951252723dd4c29a) to branch 'net.randombit.botan' (head 77ba4ea5a4be36d6d029bcc852b2271edff0d679)
| * Conver the rest of the hash functions to use the array-based load instructions.lloyd2009-11-035-40/+41
| | | | | | | | | | | | | | I'm not totally happy with this - in particular in all cases the size is a compile time constant - it would be nice to make use of this via tempalate metaprogramming. Also for matching endian loads, a straight memcpy would do the work, which would probably be even faster.
| * Add a new looping load_be / load_le for loading large arrays at once, andlloyd2009-10-2910-49/+58
| | | | | | | | | | | | | | | | change some of the hash functions to use it as low hanging fruit. Probably could use further optimization (just unrolls x4 currently), but merely having it as syntax is good as it allows optimizing many functions at once (eg using SSE2 to do 4-way byteswaps).
| * propagate from branch 'net.randombit.botan' (head ↵lloyd2009-10-294-342/+318
| |\ | | | | | | | | | | | | | | | 4fd7eb9630271d3c1dfed21987ef864680d4ce7b) to branch 'net.randombit.botan.general-simd' (head 91df868149cdc4754d340e6103028acc82182609)
| | * Clean up prep00_15 - same speed on Core2lloyd2009-10-291-16/+10
| | |
| | * Clean up the SSE2 SHA-1 code quite a bit, make better use of C++ featureslloyd2009-10-292-308/+267
| | | | | | | | | | | | and also make it stylistically much closer to the standard SHA-1 code.
| | * Format for easier readinglloyd2009-10-291-31/+43
| | |
| | * Small cleanups (remove tab characters, change macros to fit the rest oflloyd2009-10-291-123/+121
| | | | | | | | | | | | the code stylistically, etc)
| | * propagate from branch 'net.randombit.botan' (head ↵lloyd2009-10-291-1/+14
| | |\ | | | | | | | | | | | | | | | | | | | | 8fb69dd1c599ada1008c4cab2a6d502cbcc468e0) to branch 'net.randombit.botan.general-simd' (head c05c9a6d398659891fb8cca170ed514ea7e6476d)
| | | * Rename SSE2 stuff to be generally SIMD since it supports at least SSE2lloyd2009-10-291-1/+14
| | | | | | | | | | | | | | | | and Altivec (though Altivec is seemingly slower ATM...)
| * | | Unroll SHA-1's expansion loop from x4 to x8; ~7% faster on Core2lloyd2009-10-291-1/+5
| | | |
| * | | Unroll the expansion loop in both SHA-2 implementations by 8. On a Core2,lloyd2009-10-292-13/+29
| |/ / | | | | | | | | | SHA-256 gets ~7% faster, SHA-512 ~10%.
| * / Remove the 'realname' attribute on all modules and cc/cpu/os info files.lloyd2009-10-2922-44/+0
| |/ | | | | | | | | Pretty much useless and unused, except for listing the module names in build.h and the short versions totally suffice for that.
| * Indent fixlloyd2009-10-261-1/+1
| |
| * Remove all exception specifications. The way these are designed in C++ islloyd2009-10-2235-43/+43
| | | | | | | | | | | | just too fragile and not that useful. Something like Java's checked exceptions might be nice, but simply killing the process entirely if an unexpected exception is thrown is not exactly useful for something trying to be robust.
| * Remove includes of stdio.hlloyd2009-10-071-2/+0
| |
| * Add 'Distributed under...' text to files missing it. Some format cleanupslloyd2009-10-073-20/+13
| |
| * Remove add blocks from hash function info.txt fileslloyd2009-09-2921-146/+0
| |
| * Update the implementation of Blue Midnight Wish to use the Round 2 tweakedlloyd2009-09-212-90/+122
| | | | | | | | version.
| * In BMW-512, don't use the stack, instead use class SecureBuffers to reducelloyd2009-09-152-70/+70
| | | | | | | | info leakage.
| * Add an implementation of Blue Midnight Wish (512 bit version only)lloyd2009-09-153-0/+219
| |
| * propagate from branch 'net.randombit.botan.1_8' (head ↵lloyd2009-09-152-74/+46
| |\ | | | | | | | | | | | | | | | ef51dd2869ed38dae3aeb1c3b931ca9d595580e1) to branch 'net.randombit.botan' (head fc1942640045423f411fd865cbd584090b28d7eb)
| | * Make some changes to the SSE2 implementation of SHA-1 for compatability withlloyd2009-09-131-62/+46
| | | | | | | | | | | | Visual C++.
| | * Instead of each SSE2 implementation specifying which compilers + CPUs itlloyd2009-08-271-12/+0
| | | | | | | | | | | | | | | works on, have sse2_eng rely on a specific compiler/arch; each sse2 impl depends on the engine anyway, so they will only be loaded if OK.
* | | Use negative values for adding constants >= 2^31 in the SHA-1 x86-64 asm.lloyd2009-11-031-2/+8
|/ / | | | | | | | | Seems binutils 2.20.51.0.2 breaks otherwise, and binutils maintainers claim it's not a bug. Meh.
* / Change Skein-512 to match the tweaked 1.2 specification. Round constantslloyd2009-09-151-8/+8
|/ | | | in the Threefish cipher have changed to increase diffusion.
* Add 'Distributed under the terms of the Botan license' notices to the .Slloyd2009-08-114-16/+24
| | | | | files. Were missed by the automated script that added them to the cpp/h files, it appears.
* Add support for Dragonfly BSD (a fork of FreeBSD).lloyd2009-07-253-0/+3
| | | | Contributed by Patrick Georgi
* Correct some errors in the automatically generated dependencies.lloyd2009-07-162-1/+3
|
* Move some files around to break up dependencies between directorieslloyd2009-07-162-4/+8
|
* Add a script that reads the output of print_deps.py and rewriteslloyd2009-07-155-33/+24
| | | | | | the info.txt files with the right module dependencies. Apply it across the codebase.
* Add a script that analyzes the source and prints module dependencies.lloyd2009-07-151-0/+4
| | | | | | | | | Useful for tracking where the big balls of mud are. Fix dependencies in gost_3411 (depends on the gost block cipher), and the TLS PRF (depends on HMAC). Also hide TLS_PRF::P_hash in an anonymous namespace instead of making it a private static function. I don't think this will affect binary compat, since it was statically linked.
* Avoid a crash in Skein_512::add_data if it is called with a zero-lengthlloyd2009-07-141-0/+3
| | | | input vector.
* Some modules using asm were not marked with 'load_on asm_ok'; fixlloyd2009-07-072-2/+2
|
* CPU-specific engines are now only loaded if something depends on them,lloyd2009-07-075-0/+5
| | | | | | | | | | | | and all CPU-specific implementations now depend on the appropriate engine module. The most common problem before with this was that the SSE2 module was built, but the sole SSE2 code (SHA-1) was not (for instance, on an i686). This would cause a compile warning about the unused request object. Preventing unused engines from being built will also (very slightly) speed up the lookup process on most system.
* Mark Skein_512 with the BOTAN_DLL macrolloyd2009-06-062-3/+9
| | | | | | | | | | | | | | Add a comment that the limitation of the personalization string being a maximum of 64 characters is due to the implementation and not the specification (but it makes it easy to implement, and in this particular case 64 characters is probably fine). Add some tests for the personalization option, generated by the Skein reference implementation. Disable stripping whitespace in checks/misc.cpp:strip - it strips the personalization tag, which breaks the test, and isn't needed otherwise because the test files are well-formed.