jmg
/
ed448goldilocks
1
0
Fork 0
Code Issues 0 Pull Requests 0 Releases 0 Wiki Activity
388 Commits
2 Branches
1.6 MiB
Tree: 83cfd6cae1
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '83cfd6cae1'
${ noResults }
Commit Graph

388 Commits (83cfd6cae1a3e85c2060bcced5a40b8a7f058720)
 

Author SHA1 Message Date
  Mike Hamburg b2dc216b40 finish porting precomputed verify to decaf_fast. Remove tables as dependency of decaf slow 10 years ago
  Mike Hamburg 616536db76 history 10 years ago
  Mike Hamburg 023ef46b1d make dsmul for verify always take base point to simplify api 10 years ago
  Mike Hamburg af2502d113 code size and gcc cleanliness related changes 10 years ago
  Mike Hamburg eaaebf807a eliminate constant_time.h, though still using big_register_t :-/ 10 years ago
  Mike Hamburg edb25d093c perf improvement in keygen, sign; fix perf regression for decaf versions of these 10 years ago
  Michael Hamburg c8bf0382c5 code size related improvements 10 years ago
  Michael Hamburg 59ed8f566c change gf to a struct so that its alignment works on earlier clang 10 years ago
  Mike Hamburg 746b050584 optimizing and cleanup; there is still a perf regression in decaf_fast but it is now smaller, and there isnt as big a space regression due to more careful noinline 10 years ago
  Mike Hamburg be0b5b8325 fix some mul/sqr-after-add bugs on arch_neon_experimental. Deprecate arch_neon because the experiment seems to be a success anyway 10 years ago
  Mike Hamburg 93491671fa gcc cleanliness 10 years ago
  Mike Hamburg 3051dc4d03 precompute/precomputed sm works. needs demagication. slight perf regression in this build for some reason? 10 years ago
  Mike Hamburg dace435cbc precomputed scalarmul almost ported, but doesnt work yet 10 years ago
  Mike Hamburg f5b9826959 precomputed scalarmul almost ported, but doesnt work yet 10 years ago
  Mike Hamburg 7c8a2a72c5 Faster scalarmul is ported from Goldilocks, modulo a bit of magic. Of course, it's the one that doesn't matter as much because we have the monty ladder. Next up, port wNAF and recomputation? 10 years ago
  Mike Hamburg d36b1b0d1b begin porting faster scalarmul algos (currently broken tho) 10 years ago
  Mike Hamburg 284bc0bd17 yep, selection-based is slightly faster. using constant_time.h for now... 10 years ago
  Michael Hamburg d7fef55d55 test alternative selection-based ladder 10 years ago
  Mike Hamburg 62d7f131d3 some more simplification... 10 years ago
  Mike Hamburg 2422a265a5 getting simpler 10 years ago
  Mike Hamburg a5834af9fc test is in and passing; slightly simplified so far but nothing major 10 years ago
  Mike Hamburg 7681070015 more factoring and bug fixes. Need to put direct_scalarmul in pathological test cases and then simplify it 10 years ago
  Mike Hamburg edd2883e59 condswap is the main remaining bottleneck on monty ladder. comment in a pragma but dont actually use it yet... 10 years ago
  Michael Hamburg 43241c6a66 OK decaf mont ladder works but should simplify 10 years ago
  Michael Hamburg 543df14916 decaf direct scalarmul montgomery version coded but WRONG 10 years ago
  Michael Hamburg e84fd3f1fd define experimental direct_scalarmul, which can be implemented as monty ladder (at least for comparison purposes at the beginning) 10 years ago
  Michael Hamburg aab80b7b51 faster code can now use non-reduced field ops 10 years ago
  Michael Hamburg e154bb7667 faster code can now use non-reduced field ops 10 years ago
  Michael Hamburg a36a82d7e1 faster code can now use non-reduced field ops 10 years ago
  Michael Hamburg 90cb3b238a dedicated double 10 years ago
  Michael Hamburg ae24f96e09 copying existing decaf impl to "fast" version. not that fast yet, but uses native field mul code. Also rework precomputed tables to be agnostic of underlying impl 10 years ago
  Mike Hamburg c7daa6d74b going to change this branch to be decaf-only, with the main branch being main-goldilocks-only. but first, remove irrelelevant sqrt(-d) 10 years ago
  Mike Hamburg ccfeb083a7 adjust history.txt. Also, that last fix on RDRAND is thanks to John Mark Gurney. 10 years ago
  Mike Hamburg 39ca07a060 fix rax input for rdrand detection 10 years ago
  Mike Hamburg 6c9230e398 SHAKE-based rng 10 years ago
  Michael Hamburg cdc4ab2bc5 doh i had identity swapped with base; sigs work now but they need a comprehensive test 10 years ago
  Michael Hamburg a3f7056262 Remove impossible todo; sigs still don't work 10 years ago
  Michael Hamburg 4eb8567730 decaf signatures, but they dont work yet 10 years ago
  Michael Hamburg 608eb2e065 Begin work on decaf_crypto. Have an ECDH analog now. Add decaf_bzero. Remove a bunch of testing from bench.c. 10 years ago
  Mike Hamburg b274e35d9a Add "precomputed" API to decaf. It doesnt actually precompute in the mini decaf impl, but it passes tests. 10 years ago
  Michael Hamburg d280028cee define _BSD_SOURCE for endian 10 years ago
  Michael Hamburg 4c508f3670 minor doc fix 10 years ago
  Michael Hamburg ade8246a3d bench shake; API_VIS on shake 10 years ago
  Michael Hamburg f4c76b7487 SHAKE and SHA3 instances (experimental) based on code from David Leon Gil. Tested by hand but needs automatic KAT. I might also want to include Keyak or some similar duplex construction eventually. 10 years ago
  Mike Hamburg 994812cf14 differentiate curve 10 years ago
  Mike Hamburg c50e8e8bf1 decaf is now 32-bit clean 10 years ago
  Michael Hamburg 26cff2228d fix decaf decode identity 10 years ago
  Michael Hamburg dfdb35510d check me: remove special case on decode 10 years ago
  Michael Hamburg f3c6a5a6a5 s/multilpy/multiply/g; thanks Robert Ransom 10 years ago
  Michael Hamburg 294efc87f3 fuse crandom seed+buffer because they are accessed as a single object. probably needs a bit more testing though 10 years ago