216 Commits (02449ed54be723241500ab870b49dcafe2549058)
 

Author SHA1 Message Date
  Michael Hamburg 02449ed54b encoding is no longer EXPLICIT_CON 9 years ago
  Michael Hamburg db0a12de2a working on breaking up include files 9 years ago
  Michael Hamburg 629a782fff Elligator now passes tests, but there are likely still missing preimages of rotations of the identity point. Also, projscaling elligator probably works, but it needs testing 9 years ago
  Michael Hamburg 89dfab34a8 remove hinting from forward elligator, at least in 25519. leaving test in broken state because, well, it is broken 9 years ago
  Michael Hamburg a53f9876f5 OK, most tests are now passing. Remaining known problems: 9 years ago
  Michael Hamburg 5a3fe27c03 more rigorous tests. elligator still fails. problem: extracting xy is quite technical 9 years ago
  Michael Hamburg 202ed7fea2 change 2torque to torque, which is 4torque in ed25519 case 9 years ago
  Michael Hamburg f68833cd1e passing everything but elligator with curve25519! though there are probably some lurking bugs... 9 years ago
  Michael Hamburg 092bbfd9a0 swap over to Curve25519 from PinkBikeShed. Elligator still doesnt work (closer than with pinkbikeshed tho...). Need to deal with the sign T to make EC tests pass. Somehow the high level crypto all passes .. i guess because everything stays in the subgroup 9 years ago
  Michael Hamburg d974612404 restore test which got clobbered somehow 9 years ago
  Michael Hamburg e4cb764842 inverting elligator now mostly works, except for identity and overflow issues 9 years ago
  Michael Hamburg cbb8cceea9 elligator doesnt work; gonna compare some things to see why 9 years ago
  Michael Hamburg 4a76f50bc1 minor comment change 9 years ago
  Michael Hamburg d6461059f5 round-trip works 9 years ago
  Michael Hamburg 371192bfa0 actually elligator only almost works because of r=1 being weird. round-trip doesnt work 9 years ago
  Michael Hamburg a14dbafd2b decode and elligator work. probably encode still buggy. 9 years ago
  Michael Hamburg 2b0c51f4b3 scalar arithmetic passing. on to ec, which surely doesnt work 9 years ago
  Michael Hamburg d81034d466 decode works 9 years ago
  Michael Hamburg 4b0bf31fc9 progress checkin. compiles. working on point decode. have switched some of the Ds over. BTW, you can see that this is using PinkBikeShed instead of the real Curve25519; this is temporary 9 years ago
  Michael Hamburg cc79f559b3 remove direct ladder for now 9 years ago
  Michael Hamburg 03ecad0551 it compiles, but it certainly doesnt work yet 9 years ago
  Mike Hamburg 40b1f8b85e initial replace 448->255; doesnt compile yet 9 years ago
  Michael Hamburg e65e322f94 addition chain for curve25519 9 years ago
  Michael Hamburg 6c81eec339 addition chain for curve25519 9 years ago
  Michael Hamburg 2b5f3beb31 sagelike and clike routines for decaffeinating curve25519 9 years ago
  Michael Hamburg d95a1f229d auxilliary sage scripts, working on decaffeinate_curve25519.sage" 9 years ago
  Michael Hamburg 66c41fdbb6 sagetest actually tests something, though not all i want to test 9 years ago
  Michael Hamburg 906d7fe1fc begin testing framework 9 years ago
  Michael Hamburg 4fe3b9d06a begin groundwork for sage testing 9 years ago
  Michael Hamburg 6947f380bb comments related to paper 9 years ago
  Michael Hamburg 16f5679853 remove change which was used to work around test code limitations 9 years ago
  Michael Hamburg 0241632a25 Create functions for inverting Elligator. 9 years ago
  Michael Hamburg 424d88868d new version of nonuniform map from paper. definitely not as optimized as it could be but who cares? 9 years ago
  Michael Hamburg 07530b4ce5 switch base points to reflect draft-irtf-cfrg-curves-01. base point now computed by gen_tables 9 years ago
  Mike Hamburg a1d33e0b6a change decaf_gen_tables to use FIELD_LITERAL so that `make bat` makes a portable bat 9 years ago
  Mike Hamburg 45a271dc0c fix most of SUPERCOP stuff. However, the results of `make bat` still are not portable because the generated tables use arch specific field element layout 9 years ago
  Michael Hamburg 0fc9ab3c8c repent of that templating wickedness. at least until i can figure out the right way to do it 9 years ago
  Mike Hamburg 97e98f5081 restore LBITS because NEON code needs it 9 years ago
  Michael Hamburg ea67df7d5b fix duplicate/missing symbols from C++ wrapper 9 years ago
  Michael Hamburg c80d8d01db work around GCC bug 40315 9 years ago
  Mike Hamburg 1f673479f5 remove EXPLICIT_CON for serializing a point 9 years ago
  Michael Hamburg fc3be89e4c trying to templatize 9 years ago
  Michael Hamburg 4d07cdf2ee rename decaf::decaf to decaf::EcGroup to avoid naming conflict; discard top and bottom two benchmarks to avoid descheduling issues which cause calibration to say THz 9 years ago
  Michael Hamburg e6441d0c3c working on templatization 9 years ago
  Mike Hamburg da7c5427b1 remove set_ui on NEON, which i had missed 9 years ago
  Mike Hamburg 9f7b8eb1ca restore wno-overlength-strings (it was used for NEON) 9 years ago
  Mike Hamburg febe900161 makefile rpath settings 9 years ago
  Michael Hamburg b5f7c2eff8 tidy up 9 years ago
  Michael Hamburg f18cf359c6 remove files used by goldilocks/master, leaving only decaf 9 years ago
  Mike Hamburg 484e05b472 shuffling permutation. tested and benched on NEON; slightly faster than goldilocks original except verification which is slightly slower 9 years ago