ed448goldilocks

Commit Graph

Author	SHA1	Message	Date
Michael Hamburg	5717005809	dont look for immintrin on GCC pre-4.4. Also dont build with -maes; need to autoconfig other flags	8 years ago
Michael Hamburg	e69e00269f	rename publicly-visible macros to DECAF_ namespace	8 years ago
Michael Hamburg	f22d082756	fix? register allocation on x86-64	8 years ago
Michael Hamburg	aef9fd8677	add DEFAULT_SOURCE in word.h	8 years ago
Michael Hamburg	bd2a516210	generator should now be python3 clean	8 years ago
Michael Hamburg	bb1eef3712	tear out STROBE. Probably will re-introduce later	8 years ago
Mike Hamburg	b8f6e3d007	change x86-64 non-BMI2 asm constraints for gcc compat; thanks Olivier Cheron	8 years ago
Andrew Bennett	80c0bd5d7d	Don't redefine le64toh on modern FreeBSD, NetBSD, and DragonflyBSD.	8 years ago
Michael Hamburg	a01e875d4a	move strobe and crypto to TOY areas	9 years ago
Andrew Bennett	c558c0ecdb	x86_64/i386 and illumos/solaris/SunOS compatibility fixes. * SunOS linker doesn't support --gc-sections * Add portable_endian.h with __sun version of htole64 and le64toh * Replace portable endian code in shake.c with inclusion of portable_endian.h * Replace portable endian code in word.h with inclusion of portable_endian.h * Add explicit extern reference to word.h for posix_memalign when __sun defined * Replace references to u_int_t with uint_t * rdtsc call in shake.c was only working on 32-bit i386 * rdtsc call in bench_decaf.cxx was inaccurate on 64-bit x86_64 when clang absent * Fix two signed/unsigned comparison errors in test_decaf.cxx	9 years ago
Michael Hamburg	2104923b6f	fix embarassing arch_ref64 bug; improve code for p25519 arch_32	9 years ago
Michael Hamburg	f8dc967ae1	add explicit GF_HEADROOM per field+arch for unreduced arith; fortunately unreduced arith is very rare	9 years ago
Michael Hamburg	b693b33d0c	slight changes to the deisogenize code; hopefully clearer?	9 years ago
Michael Hamburg	a585d7f148	factor out elligator, decaf, scalar code. scalar_halve is now public	9 years ago
Michael Hamburg	8b906e1d44	remove unused PRIXWORD macros	9 years ago
Michael Hamburg	86e44e69c6	fixed the mixed-arch bug, but it comes from a long-standing todo	9 years ago
Michael Hamburg	a69002875c	reverse convention for constant_time_select, resolving a TODO	9 years ago
Michael Hamburg	37e0886300	simplify elligator, in a way that shouldnt change its output. I think it uses the opposite convention from the paper for sign(s) though.	9 years ago
Michael Hamburg	4de70b837c	separate out strobe and spongerng from shake. strobe is experimental. spongerng is experimental internally but the interface should be pretty good (except for any camelCase vs snake_case issues). shake should be stable	9 years ago
Mike Hamburg	8d6c51ee28	Separate API word size from arch word size. This enables compiling a 32-bit arch on a 64-bit platform, eg NEON on AARCH64. It's probably more useful for cross-platform testing, though. The breakdown is as follows: * decaf_bool_t, decaf_word_t and decaf_error_t are as defined in the API. * DECAF_WORD_BITS is the size of a decaf_word_t. * decaf_word_t is used for scalars, so on every curve the scalar impls are the same (i.e. they follow the API's word size). * SC_LIMB macro always takes a 64-bit word. * non-prefixed word_t, mask_t, etc are as defined by the per-curve arch. * ARCH_WORD_BITS is the size of a word_t. * word_t is used for gf elements, so the curves may have different guts.	9 years ago
Mike Hamburg	0016b2675c	arm asm -> __asm__	9 years ago
Michael Hamburg	64efd989d6	use SC_LIMB in generated tables. Add a new "TODO" category, UNIFY for code that might be unified with other code	9 years ago
Mike Hamburg	7b7a27eac8	move (non-hot) add/sub to per_field.c and make them not inline	9 years ago
Michael Hamburg	2e23ac747b	move (some of the?) per-field code to src/per_field.c	9 years ago
Mike Hamburg	a5bed6b351	Working on getting cross-arch working again. Several TODOs. Currently compiles and passes tests on x86_64 with arch_32 and DECAF_FORCE_32_BIT=1 (as well as the native settigs of course), so that's a start. Want to make serialization routine cross-arch. Need to check that perf is good enough (likely). Current routine in p25519/arch_32 is almost cross-arch, but has known bugs (FIXMEs). Needs to take into account separate p and, for NEON, the LIMBPERM. Want to decouple arches for each curve/field. Currently the split between decaf_word_t and word_t makes this fraught with peril. Fix is probably to rename decaf_word_t to decaf_api_word_t and fix it to either uint32 or uint64, then make internal things separate per field. That way we don't have to try arch detection in the header, which is nice. Need to make decaf_gen_tables use SC_LIMB. Might as well get rid of API_NS there too.	9 years ago
Michael Hamburg	6bc97fb756	need an include/arch_*/arch_intrinsics.h for other arches	9 years ago
Michael Hamburg	facad6c2ac	unify decaf_crypto c versions, still need to unify with c++	9 years ago
Mike Hamburg	704b424982	dual scalarmul because of TLS discussion	9 years ago
Mike Hamburg	c6d7fdec35	some alignment and gcc-related fixes. Unfortunately, the python ffi still dies for alignment-related reasons :-(	9 years ago
Michael Hamburg	a1f5348e18	beginning to separate errors from bools. not there yet though	9 years ago
Michael Hamburg	196e9a85f8	cleanup word.h	9 years ago
Michael Hamburg	ab9060636f	remove unused gf_subx_RAW	9 years ago
Michael Hamburg	ce75aee929	move various arch things to word.h or their arch files	9 years ago
Michael Hamburg	23726f4f73	clear a todo from f_arithmetic.c	9 years ago
Michael Hamburg	5af980b85a	wipe out the multiple layers of rename between decaf_fast and field. still some serious HACKs in the include prio to avoid multiple definition of struct gf	9 years ago
Michael Hamburg	b6c12d7e38	doh	9 years ago
Mike Hamburg	8a1315e15f	get rid of unchecked isqrt. will be a tiny slowdown for p448 invert, called only in batch_invert	9 years ago
Mike Hamburg	93edb223bb	remove inverse from f_field.h	9 years ago
Mike Hamburg	0b59ddc2bf	move config to prime directories	9 years ago
Michael Hamburg	8202c43eba	remove ah = a*19	9 years ago
Michael Hamburg	03ecad0551	it compiles, but it certainly doesnt work yet	10 years ago
Michael Hamburg	b5f7c2eff8	tidy up	10 years ago
Michael Hamburg	f18cf359c6	remove files used by goldilocks/master, leaving only decaf	10 years ago
Mike Hamburg	d675971fee	demagication header and general cleanup	10 years ago
Mike Hamburg	9ce5cbf53c	perf improvement in keygen, sign	10 years ago
Mike Hamburg	edb25d093c	perf improvement in keygen, sign; fix perf regression for decaf versions of these	10 years ago
Mike Hamburg	7681070015	more factoring and bug fixes. Need to put direct_scalarmul in pathological test cases and then simplify it	10 years ago
Mike Hamburg	c7daa6d74b	going to change this branch to be decaf-only, with the main branch being main-goldilocks-only. but first, remove irrelelevant sqrt(-d)	10 years ago
Michael Hamburg	de6d61e554	fuse crandom seed+buffer because they are accessed as a single object. probably needs a bit more testing though	10 years ago
Michael Hamburg	294efc87f3	fuse crandom seed+buffer because they are accessed as a single object. probably needs a bit more testing though	10 years ago

1 2

89 Commits (992183a8bf6d1457c78e375ccfd26afc9c776f9e)