Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Disable AVX2 Serpent on MSVC | Jack Lloyd | 2019-09-27 | 1 | -0/+6 |
| | | | | | | MSVC 19.24.28117 miscompiles it GH #2120 | ||||
* | Merge GH #2119 Optimize CTR_BE::seek | Jack Lloyd | 2019-09-27 | 1 | -1/+20 |
|\ | |||||
| * | Optimize CTR_BE::seek | Jack Lloyd | 2019-09-26 | 1 | -1/+20 |
| | | |||||
* | | Merge GH #2117 ChaCha20Poly1305 optimizations | Jack Lloyd | 2019-09-26 | 1 | -7/+10 |
|\ \ | |/ |/| | |||||
| * | Avoid memory allocations during ChaCha20Poly1305 start and finish | Jack Lloyd | 2019-09-26 | 1 | -7/+10 |
| | | | | | | | | Saves about .5 cbp with 1024 byte messages | ||||
* | | Add tests for SIMD_4x32::shift_elems_{left,right} | Jack Lloyd | 2019-09-25 | 1 | -0/+6 |
| | | |||||
* | | Merge CLMUL and PMULL code | Jack Lloyd | 2019-09-25 | 12 | -510/+287 |
|/ | | | | Same algorithms were used just using SSSE3 vs NEON | ||||
* | Fix warning "type attributes ignored after type is already defined" | Jack Lloyd | 2019-09-25 | 1 | -1/+1 |
| | |||||
* | Merge GH #2110 Properly decode error-status OCSP responses | Jack Lloyd | 2019-09-24 | 3 | -6/+27 |
|\ | |||||
| * | add status code to OCSP responses | Patrick Schmidt | 2019-09-24 | 3 | -6/+27 |
| | | |||||
* | | Add a RWLock | Jack Lloyd | 2019-09-23 | 5 | -9/+107 |
| | | |||||
* | | add X.509 Usage_Type::ENCRYPTION | René Meusel | 2019-09-18 | 2 | -1/+5 |
|/ | |||||
* | Merge GH #2104 Add a variant of RandomNumberGenerator::random_vec | Jack Lloyd | 2019-09-13 | 7 | -15/+26 |
|\ | |||||
| * | Add a variant of RandomNumberGenerator::random_vec | Jack Lloyd | 2019-09-13 | 7 | -15/+26 |
| | | | | | | | | | | This avoids the unlock(rng.random_vec(...)) pattern which is pretty wasteful in terms of heap overhead. | ||||
* | | Merge GH #2103 Fix AES vperm in single amalgmation mode | Jack Lloyd | 2019-09-13 | 1 | -3/+11 |
|\ \ | |||||
| * | | Fix AES vperm in single file amalgamation | Jack Lloyd | 2019-09-12 | 1 | -3/+11 |
| |/ | | | | | | | Nothing enabled ssse3 in that case. | ||||
* | | Merge GH #2102 Support loading an EC point with affine zero coordinate | Jack Lloyd | 2019-09-13 | 2 | -2/+3 |
|\ \ | |||||
| * | | Support loading an EC point with affine zero coordinates. | Jack Lloyd | 2019-09-12 | 2 | -2/+3 |
| |/ | | | | | | | | | | | | | | | For example it is possible to construct a point with x coordinate of zero whenenver b has a square root modulo p. Found during integration with https://github.com/catenacyber/elliptic-curve-differential-fuzzer | ||||
* | | Fix a leak in Extensions::add when duplicate OID attempted | Jack Lloyd | 2019-09-13 | 1 | -1/+5 |
| | | |||||
* | | Add tests | Jack Lloyd | 2019-09-12 | 2 | -1/+11 |
| | | | | | | | | | | Also implement Extensions::get_extension_bits which was declared but not implemented ! | ||||
* | | Add Extensions::remove | Jack Lloyd | 2019-09-10 | 2 | -1/+18 |
|/ | | | | From #2073 | ||||
* | Merge GH #2061 Add header deprecation warnings | Jack Lloyd | 2019-09-08 | 164 | -47/+410 |
|\ | |||||
| * | Walk back on deprecating these | Jack Lloyd | 2019-09-06 | 1 | -2/+8 |
| | | |||||
| * | Moar | Jack Lloyd | 2019-09-06 | 2 | -1/+3 |
| | | |||||
| * | Deprecate many publically available headers | Jack Lloyd | 2019-09-06 | 162 | -45/+400 |
| | | |||||
* | | Disable vperm AES on big-endian systems | Jack Lloyd | 2019-09-07 | 1 | -0/+2 |
| | | | | | | | | | | All the constants need to be tweaked and possibly other changes are required. | ||||
* | | Add support for vector permute AES using AltiVec | Jack Lloyd | 2019-09-07 | 3 | -0/+28 |
| | | | | | | | | Slower than T-tables on the machines I've tried, but constant time. | ||||
* | | Unroll xor_buf by 32 bytes | Jack Lloyd | 2019-09-06 | 1 | -37/+46 |
| | | | | | | | | Improves overall ChaCha and AES-NI GCM by 1-3% | ||||
* | | Optimizations for CTR_BE::add_counter | Jack Lloyd | 2019-09-06 | 1 | -14/+9 |
| | | | | | | | | This is in the hot path for GCM | ||||
* | | In aes_vperm avoid loading from data segment | Jack Lloyd | 2019-09-06 | 1 | -17/+12 |
| | | | | | | | | I do not understand the mechanism but this is slightly faster. | ||||
* | | Style tweaks | Jack Lloyd | 2019-09-06 | 1 | -25/+34 |
|/ | |||||
* | Remove the scalar SIMD_4x32 implementation | Jack Lloyd | 2019-09-05 | 2 | -160/+34 |
| | | | | | | On platforms without a SIMD engine, the scalar version does offer some slight performance increase due to unrolling but is probably not worth it in terms of code size. | ||||
* | Merge GH #2096 Unroll POWER8 AES instructions by 4x | Jack Lloyd | 2019-09-04 | 3 | -110/+350 |
|\ | |||||
| * | Unroll POWER8 AES instructions by 4x | Jack Lloyd | 2019-09-04 | 1 | -105/+328 |
| | | | | | | | | Improves performance by 20-30% on POWER9 | ||||
| * | Fix gcc warnings in Altivec SIMD_4x32 code | Jack Lloyd | 2019-09-04 | 1 | -5/+10 |
| | | |||||
| * | Avoid dynamic endian dispatch if we don't need it | Jack Lloyd | 2019-09-04 | 1 | -0/+12 |
| | | |||||
* | | Make ssse3/sse2 dependencies explicit rather than implicit | Jack Lloyd | 2019-09-04 | 6 | -0/+8 |
| | | | | | | | | Previously --disable-sse2/--disable-ssse3 would not work as expected | ||||
* | | Add build support | Jack Lloyd | 2019-09-04 | 1 | -2/+13 |
| | | |||||
* | | Some cleanups | Jack Lloyd | 2019-09-04 | 1 | -54/+52 |
| | | |||||
* | | Unroll blocks by 2x | Jack Lloyd | 2019-09-03 | 2 | -70/+188 |
| | | |||||
* | | Avoid runtime endian dispatch when value is known statically | Jack Lloyd | 2019-09-01 | 1 | -8/+34 |
| | | |||||
* | | Support NEON for AES vector permutes | Jack Lloyd | 2019-09-01 | 5 | -110/+169 |
|/ | | | | Rename aes_ssse3 -> aes_vperm | ||||
* | Merge GH #2093 Abstract the SSSE3 code for vector permute AES | Jack Lloyd | 2019-09-01 | 3 | -614/+512 |
|\ | |||||
| * | Build fixes | Jack Lloyd | 2019-08-31 | 2 | -3/+2 |
| | | |||||
| * | Abstract the AES SSSE3 implementation to support other SIMD | Jack Lloyd | 2019-08-31 | 3 | -613/+512 |
| | | |||||
* | | Fix warning - always_inline attribute wants also inline | Jack Lloyd | 2019-08-31 | 1 | -1/+1 |
|/ | |||||
* | Merge GH #2092 Add BOTAN_FORCE_INLINE to fix BLAKE2b MSVC performance issue | Jack Lloyd | 2019-08-31 | 2 | -3/+20 |
|\ | |||||
| * | Add BOTAN_FORCE_INLINE and use it in BLAKE2b | Jack Lloyd | 2019-08-31 | 2 | -3/+20 |
| | | | | | | | | Closes #2089 | ||||
* | | Fix PBKDF2 with zero iterations | Jack Lloyd | 2019-08-31 | 1 | -0/+6 |
|/ | | | | | | | | | | | It would go into a very long loop. OpenSSL treats iterations==0 same as iterations==1 but this seems confusing. Instead just reject it. Unrelated, fix a divide by zero if asked to tune with 0 byte output. Closes GH #2088 | ||||
* | Fixes and tweaks from feedback | David Carlier | 2019-08-28 | 2 | -27/+25 |
| |