ed448goldilocks

Commit Graph

Author	SHA1	Message	Date
Mike Hamburg	703bb3452a	Fix two security bugs. Point::steg_encode was leaving the 24 high bits of the buffer as zero. It also ignored the size parameter. The size parameter has now been removed, the zeros fixed and a test added to make sure that it is fixed. Per https://github.com/MystenLabs/ed25519-unsafe-libs, deprecate eddsa signing with separate pubkey and privkey input. Instead decaf_ed*_keypair_sign	3 years ago
Johan Pascal	41f349ff80	Fix windows build and tests + shorter intermediate cmake target name	4 years ago
Johan Pascal	aa9c5c9b7e	Fix windows build and package installation	5 years ago
Mike Hamburg	13fe8724f3	a couple more tests for EdDSA malleability	5 years ago
Mike Hamburg	e99b0a52f8	fix malleability bug from https://eprint.iacr.org/2020/1244.pdf and add test vectors	5 years ago
Mike Hamburg	760a61ed4a	fix issues when compiling on GCC 9.1	6 years ago
Michael Hamburg	03977eba48	Minor changes. Bump version number in CMakeLists.txt, thanks Johan Pascal. Change test scripts to avoid GCC warnings, thanks Sofi Celi. Add full RFC 8032 test vectors, thanks Sofi Celi.	7 years ago
mrolinek	69308cbf99	windows_compatibility windows_testing windows_testing windows_testing windows_testing windows_testing windows_testing windows_testing windows_testing windows_testing windows_testing windows_testing windows_testing windows_testing windows_testing windows_testing windows_testing windows_testing windows_testing windows testing windows testing windows testing windows testing windows testing windows testing windows testing windows testing windows testing windows testing windows testing windows testing windows testing windows testing windows testing windows testing windows testing windows testing windows testing windows testing windows testing Revert "windows testing" This reverts commit `4b1047d433`. Revert "windows testing" This reverts commit `4deaad7796`. Revert "windows testing" This reverts commit `ce1af72cd1`. windows testing	8 years ago
Michael Hamburg	bf609436a0	fix sagetest; thanks sofi	8 years ago
Johan Pascal	a59d1045e4	cmake script	8 years ago
Mike Hamburg	fa5ac6c0f3	avoid no-prototype warning in ristretto.cxx	8 years ago
Michael Hamburg	45eb0e14d3	change the misleading mul_by_cofactor functions to mul_by_ratio, and create ENCODE_RATIO and DECODE_ratio constants to represent this	8 years ago
Michael Hamburg	98bfcb0196	IsoE25519 is now better known as Ristretto	8 years ago
Michael Hamburg	4de924c786	Incorporate test vectors from Dalek	8 years ago
Michael Hamburg	2bcccebd8d	expose mul_by_cofactor_and_encode_like_x, but need to adjust clearing ratios	8 years ago
Michael Hamburg	1a38c25d9d	CFRG crypto back to working, just need to do elligator inversion for identity on x25519	8 years ago
Michael Hamburg	2d04fa7b43	working out sign bugs; then on to invert elligator ristretto	8 years ago
Michael Hamburg	5fc32bf1e9	elligator apparently(?) working for ed448	8 years ago
Michael Hamburg	733e67e80d	whoops, bad hex decoder	8 years ago
Michael Hamburg	c82e7ae7a7	add ristretto widget. elligator is correct, but inverse is not yet	8 years ago
Michael Hamburg	b295ef7669	rename decaf_sponge_* apis to decaf_sha3_. Also reverse order on decaf_sponge_hash to make it the same as decaf_shake_hash and decaf_sha3*_hash	8 years ago
Michael Hamburg	b29565fdfd	fix assertion on x25519/x448(0), thanks Olivier Cheron	8 years ago
Michael Hamburg	c6a1cd8db6	better test	8 years ago
Michael Hamburg	a4c02cc759	better test	8 years ago
Michael Hamburg	72484a054f	test to make sure bug is gone	8 years ago
Michael Hamburg	b423ac359c	working on decaffeinating ed25519	8 years ago
Michael Hamburg	aee921fc55	fix a bug in the test scripts, thanks Johan Pascal	8 years ago
Michael Hamburg	ec4ece08f0	add decaf_edXXX_convert_public_key_to_xXXX; thanks Johan Pascal	8 years ago
Michael Hamburg	bb1eef3712	tear out STROBE. Probably will re-introduce later	8 years ago
Michael Hamburg	4caefd358b	oops also in test_ct	8 years ago
Michael Hamburg	af606fb195	x448 generate_key -> derive_public_key to match ed448 nomenclature	8 years ago
Michael Hamburg	875d2b2251	ED25519_NO_CONTEXT -> DECAF_ED25519_NO_CONTEXT; DECAF_ED25519_NO_CONTEXT -> DECAF_EDDSA_25519_SUPPORTS_CONTEXTLESS_SIGS	9 years ago
Andrew Bennett	7ec87d8616	Use magic constant ED25519_NO_CONTEXT for non-contextual operations.	9 years ago
Andrew Bennett	ef6e74bdec	Update EdDSA operations to match draft 07 from CFRG.	9 years ago
Michael Hamburg	205d4e4aac	working on the README	10 years ago
Michael Hamburg	a32fd62512	mark more things at toy	10 years ago
Michael Hamburg	a01e875d4a	move strobe and crypto to TOY areas	10 years ago
Michael Hamburg	d1e2bbec15	fix Ed448-prehash and test against newly-corrected cfrg vectors	10 years ago
Andrew Bennett	c558c0ecdb	x86_64/i386 and illumos/solaris/SunOS compatibility fixes. * SunOS linker doesn't support --gc-sections * Add portable_endian.h with __sun version of htole64 and le64toh * Replace portable endian code in shake.c with inclusion of portable_endian.h * Replace portable endian code in word.h with inclusion of portable_endian.h * Add explicit extern reference to word.h for posix_memalign when __sun defined * Replace references to u_int_t with uint_t * rdtsc call in shake.c was only working on 32-bit i386 * rdtsc call in bench_decaf.cxx was inaccurate on 64-bit x86_64 when clang absent * Fix two signed/unsigned comparison errors in test_decaf.cxx	10 years ago
Michael Hamburg	e22c967171	change eddsa encoding names to show that they multiply_by_cofactor	10 years ago
Mike Hamburg	a673fbfc63	test_ct broke because of renaming; fix it	10 years ago
Michael Hamburg	c5a9b7757b	ed25519 prehashed test vector. ed448 prehashed test vectors look invalid??	10 years ago
Michael Hamburg	4adb584654	ed25519 prehashed test vector. ed448 prehashed test vectors look invalid??	10 years ago
Michael Hamburg	3b9ffc4cc7	separate Ed25519ph from Ed25519 with awful CRTP hack	10 years ago
Michael Hamburg	f1df5e4714	lowerCamelCase -> snake_case. Put decaf_ in front of all (most?) identifiers, except for SHAKE which is being removed before 1.0 release (for future refactoring)	10 years ago
Michael Hamburg	595855b434	move eddsa.hxx to its own header. sha512.hxx; rework shake.hxx header; create prehash object. TODO: test prehash	10 years ago
Michael Hamburg	798b189a77	minor changes; clear a few TODOs	10 years ago
Michael Hamburg	6225bfd2f4	EdDSA is go!	10 years ago
Michael Hamburg	1f716044ca	eddsa provisional pass	10 years ago
Michael Hamburg	d9a9bb96b5	eddsa-25519 now using sha512. But problem! We are using IsoEd25519 so we actually need an isogeny anyway to get to Ed25519 proper	10 years ago

1 2 3 4

190 Commits (703bb3452a84fe36dcaa554535d6ce6e9802a66a)