jmg
/
ed448goldilocks
1
0
Fork 0
Code Issues 0 Pull Requests 0 Releases 0 Wiki Activity

Commit Graph

  • *
  • *
  • *
  • *
  • *
  • *
  • *
  • *
  • *
  • *
  • *
  • *
  • *
  • *
  • *
  • *
  • *
  • *
  • | *
  • * |
  • * |
  • * |
  • * |
  • | *
  • * |
  • * |
  • * |
  • * |
  • * |
  • * |
  • * |
  • * |
  • * |
  • * |
  • * |
  • * |
  • * |
  • * |
  • * |
  • * |
  • * |
  • * |
  • * |
  • * |
  • * |
  • * |
  • * |
  • * |
  • | *
  • | *
  • * |
  • * |
  • * |
  • * |
  • * |
  • * |
  • * |
  • * |
  • * |
  • * |
  • * |
  • * |
  • * |
  • * |
  • * |
  • * |
  • | *
  • * |
  • * |
  • * |
  • * |
  • * |
  • * |
  • * |
  • * |
  • * |
  • * |
  • * |
  • * |
  • * |
  • * |
  • * |
  • * |
  • * |
  • * |
  • * |
  • * |
  • * |
  • * |
  • * |
  • * |
  • * |
  • * |
  • * |
  • * |
  • | *
  • * |
  • * |
  • | *
  • * |
  • 18e7c31 more tests and benchmarks by Mike Hamburg 2015-03-27 19:09:10 -0700
  • 59ab6ce working on c++ benchmark by Mike Hamburg 2015-03-27 18:32:54 -0700
  • cfd623e Doxygenation by Mike Hamburg 2015-03-27 13:54:34 -0700
  • 4d995ac Doxygenation by Mike Hamburg 2015-03-27 13:53:08 -0700
  • df69e59 make copies inline by Mike Hamburg 2015-03-27 13:30:24 -0700
  • 20bf44e fix bug in decaf_fast double scalar mul. progressing in tests and documentation by Mike Hamburg 2015-03-26 16:52:03 -0700
  • f7324fa fix bug in decaf_fast double scalar mul. progressing in tests and documentation by Mike Hamburg 2015-03-26 16:48:07 -0700
  • faeb1fb decaf tests coming online by Mike Hamburg 2015-03-26 15:51:22 -0700
  • 5c57268 working on precomputed in hxx by Mike Hamburg 2015-03-25 18:43:39 -0700
  • d675971 demagication header and general cleanup by Mike Hamburg 2015-03-25 12:03:03 -0700
  • 5f919a4 start on c++ wrapper by Mike Hamburg 2015-03-24 18:43:52 -0700
  • 05ec4fc minor cleanup by Mike Hamburg 2015-03-24 18:00:29 -0700
  • 2dacf20 add scalar invert; unopt and opt; tests. It might be faster with dedicated montsqr and/or blinded egcd, but this is good enough for now by Mike Hamburg 2015-03-24 17:52:51 -0700
  • b2dc216 finish porting precomputed verify to decaf_fast. Remove tables as dependency of decaf slow by Mike Hamburg 2015-03-24 16:25:42 -0700
  • 616536d history by Mike Hamburg 2015-03-23 17:46:59 -0700
  • 023ef46 make dsmul for verify always take base point to simplify api by Mike Hamburg 2015-03-23 17:38:02 -0700
  • af2502d code size and gcc cleanliness related changes by Mike Hamburg 2015-03-23 17:29:56 -0700
  • eaaebf8 eliminate constant_time.h, though still using big_register_t :-/ by Mike Hamburg 2015-03-23 16:55:16 -0700
  • 9ce5cbf perf improvement in keygen, sign by Mike Hamburg 2015-03-22 18:47:14 -0700
  • edb25d0 perf improvement in keygen, sign; fix perf regression for decaf versions of these by Mike Hamburg 2015-03-22 18:46:03 -0700
  • c8bf038 code size related improvements by Michael Hamburg 2015-03-16 16:56:51 -0700
  • 59ed8f5 change gf to a struct so that its alignment works on earlier clang by Michael Hamburg 2015-03-16 16:23:41 -0700
  • 746b050 optimizing and cleanup; there is still a perf regression in decaf_fast but it is now smaller, and there isnt as big a space regression due to more careful noinline by Mike Hamburg 2015-03-13 18:15:37 -0700
  • 393785a fix some mul/sqr-after-add bugs on arch_neon_experimental. Deprecate arch_neon because the experiment seems to be a success anyway by Mike Hamburg 2015-03-07 16:15:51 -0800
  • be0b5b8 fix some mul/sqr-after-add bugs on arch_neon_experimental. Deprecate arch_neon because the experiment seems to be a success anyway by Mike Hamburg 2015-03-07 16:15:51 -0800
  • 9349167 gcc cleanliness by Mike Hamburg 2015-03-06 17:07:55 -0800
  • 3051dc4 precompute/precomputed sm works. needs demagication. slight perf regression in this build for some reason? by Mike Hamburg 2015-03-06 16:58:35 -0800
  • dace435 precomputed scalarmul almost ported, but doesnt work yet by Mike Hamburg 2015-03-06 16:20:49 -0800
  • f5b9826 precomputed scalarmul almost ported, but doesnt work yet by Mike Hamburg 2015-03-06 16:00:31 -0800
  • 7c8a2a7 Faster scalarmul is ported from Goldilocks, modulo a bit of magic. Of course, it's the one that doesn't matter as much because we have the monty ladder. Next up, port wNAF and recomputation? by Mike Hamburg 2015-03-06 11:58:49 -0800
  • d36b1b0 begin porting faster scalarmul algos (currently broken tho) by Mike Hamburg 2015-03-05 23:54:23 -0800
  • 284bc0b yep, selection-based is slightly faster. using constant_time.h for now... by Mike Hamburg 2015-03-05 15:28:06 -0800
  • d7fef55 test alternative selection-based ladder by Michael Hamburg 2015-03-05 15:23:24 -0800
  • 62d7f13 some more simplification... by Mike Hamburg 2015-03-04 23:52:23 -0800
  • 2422a26 getting simpler by Mike Hamburg 2015-03-04 18:31:45 -0800
  • a5834af test is in and passing; slightly simplified so far but nothing major by Mike Hamburg 2015-03-04 16:41:07 -0800
  • 7681070 more factoring and bug fixes. Need to put direct_scalarmul in pathological test cases and then simplify it by Mike Hamburg 2015-03-04 16:03:17 -0800
  • edd2883 condswap is the main remaining bottleneck on monty ladder. comment in a pragma but dont actually use it yet... by Mike Hamburg 2015-03-04 15:29:52 -0800
  • 43241c6 OK decaf mont ladder works but should simplify by Michael Hamburg 2015-03-04 14:02:09 -0800
  • 543df14 decaf direct scalarmul montgomery version coded but WRONG by Michael Hamburg 2015-03-03 18:12:14 -0800
  • e84fd3f define experimental direct_scalarmul, which can be implemented as monty ladder (at least for comparison purposes at the beginning) by Michael Hamburg 2015-03-03 16:43:10 -0800
  • aab80b7 faster code can now use non-reduced field ops by Michael Hamburg 2015-03-03 16:06:04 -0800
  • e154bb7 faster code can now use non-reduced field ops by Michael Hamburg 2015-03-03 16:05:32 -0800
  • a36a82d faster code can now use non-reduced field ops by Michael Hamburg 2015-03-03 16:01:04 -0800
  • 90cb3b2 dedicated double by Michael Hamburg 2015-03-03 15:44:01 -0800
  • ae24f96 copying existing decaf impl to "fast" version. not that fast yet, but uses native field mul code. Also rework precomputed tables to be agnostic of underlying impl by Michael Hamburg 2015-03-03 13:58:28 -0800
  • c7daa6d going to change this branch to be decaf-only, with the main branch being main-goldilocks-only. but first, remove irrelelevant sqrt(-d) by Mike Hamburg 2015-03-03 12:30:19 -0800
  • ccfeb08 adjust history.txt. Also, that last fix on RDRAND is thanks to John Mark Gurney. by Mike Hamburg 2015-03-01 13:31:12 -0800
  • 5cf6038 adjust history.txt. Also, that last fix on RDRAND is thanks to John Mark Gurney. by Mike Hamburg 2015-03-01 13:23:31 -0800
  • b981251 fix rax input for rdrand detection by Mike Hamburg 2015-03-01 13:17:51 -0800
  • 39ca07a fix rax input for rdrand detection by Mike Hamburg 2015-03-01 13:12:46 -0800
  • 6c9230e SHAKE-based rng by Mike Hamburg 2015-02-27 18:45:54 -0800
  • cdc4ab2 doh i had identity swapped with base; sigs work now but they need a comprehensive test by Michael Hamburg 2015-02-25 17:44:51 -0800
  • a3f7056 Remove impossible todo; sigs still don't work by Michael Hamburg 2015-02-25 17:43:34 -0800
  • 4eb8567 decaf signatures, but they dont work yet by Michael Hamburg 2015-02-25 17:37:06 -0800
  • 608eb2e Begin work on decaf_crypto. Have an ECDH analog now. Add decaf_bzero. Remove a bunch of testing from bench.c. by Michael Hamburg 2015-02-25 16:50:50 -0800
  • b274e35 Add "precomputed" API to decaf. It doesnt actually precompute in the mini decaf impl, but it passes tests. by Mike Hamburg 2015-02-25 11:51:42 -0800
  • d280028 define _BSD_SOURCE for endian by Michael Hamburg 2015-02-18 18:12:52 -0800
  • 4c508f3 minor doc fix by Michael Hamburg 2015-02-18 17:57:01 -0800
  • ade8246 bench shake; API_VIS on shake by Michael Hamburg 2015-02-18 17:56:16 -0800
  • f4c76b7 SHAKE and SHA3 instances (experimental) based on code from David Leon Gil. Tested by hand but needs automatic KAT. I might also want to include Keyak or some similar duplex construction eventually. by Michael Hamburg 2015-02-18 17:50:16 -0800
  • 994812c differentiate curve by Mike Hamburg 2015-02-16 18:32:16 -0800
  • c50e8e8 decaf is now 32-bit clean by Mike Hamburg 2015-02-16 18:15:43 -0800
  • 26cff22 fix decaf decode identity by Michael Hamburg 2015-02-09 18:23:08 -0800
  • dfdb355 check me: remove special case on decode by Michael Hamburg 2015-02-02 17:15:14 -0800
  • f3c6a5a s/multilpy/multiply/g; thanks Robert Ransom by Michael Hamburg 2015-02-01 18:48:07 -0800
  • de6d61e fuse crandom seed+buffer because they are accessed as a single object. probably needs a bit more testing though by Michael Hamburg 2015-02-01 10:16:49 -0800
  • 294efc8 fuse crandom seed+buffer because they are accessed as a single object. probably needs a bit more testing though by Michael Hamburg 2015-02-01 10:16:49 -0800
  • 201a8a2 moving toward field/arch independence by Michael Hamburg 2015-01-30 19:15:54 -0800
  • acf4443 DECAF_SER_BYTES -> DECAF_SCALAR_BYTES in scalar codec by Michael Hamburg 2015-01-30 12:04:26 -0800
  • c08c4f4 scalar_copy by Michael Hamburg 2015-01-30 11:57:33 -0800
  • 5622eb9 dont unroll when optimizing for size unless -DDECAF_FORCE_UNROLL by Mike Hamburg 2015-01-29 18:02:07 -0800
  • bcf7c88 fix another couple undeclared / misnamed function bugs by Mike Hamburg 2015-01-29 17:53:12 -0800
  • a924ff4 comments by Michael Hamburg 2015-01-29 15:27:56 -0800
  • 06be9ef decaf double and double-scalarmul, but needs to be tested by Michael Hamburg 2015-01-29 15:02:00 -0800
  • d4f4d0e ready for prime time? by Michael Hamburg 2015-01-29 14:26:54 -0800
  • 83c59a6 decaf scalars work by Michael Hamburg 2015-01-29 13:52:16 -0800
  • 8e10a91 remove GCC error by Mike Hamburg 2015-01-28 22:51:25 -0800
  • 8967a9d some scalar code which is probably wrong by Michael Hamburg 2015-01-28 18:16:18 -0800
  • 0dc21dd negation properties for elligator by Michael Hamburg 2015-01-28 17:19:15 -0800
  • d2ab89b better docs on Elligator by Michael Hamburg 2015-01-28 16:53:42 -0800
  • 6ae70da better docs on Elligator by Michael Hamburg 2015-01-28 16:50:22 -0800
  • 27129a1 remove extra comments on decaf elligator by Michael Hamburg 2015-01-28 16:42:55 -0800
  • dc1e4ed decaf elligator by Michael Hamburg 2015-01-28 16:41:58 -0800
  • 74dbbf0 a few more doc points by Michael Hamburg 2015-01-27 13:33:33 -0800
  • 04ecdb3 documentation for decaf by Michael Hamburg 2015-01-27 13:21:15 -0800
  • b3f7d97 decaf scalarmul signed w=2 working. Surprisingly only twice as slow as Goldilocks by Mike Hamburg 2015-01-27 00:56:00 -0800
  • 524c78c one more minor change by Michael Hamburg 2015-01-26 19:33:42 -0800
  • ffb44b4 decaf tuning and simplification by Michael Hamburg 2015-01-26 19:30:51 -0800
  • 07906ec testing for decaf by Michael Hamburg 2015-01-26 19:00:52 -0800
  • 3988b1a decaf first cut by Michael Hamburg 2015-01-26 18:35:49 -0800
  • e251453 simple extended form is in. Probably simplify it more... by Mike Hamburg 2015-01-25 15:15:58 -0800
  • 812163f decaf uses high bit instead of low bit by Mike Hamburg 2015-01-25 10:31:50 -0800
  • 34a2931 decaf no longer needs sqrt(-d) etc; may simplify port to other curves by Mike Hamburg 2015-01-24 19:27:31 -0800
  • 4333b7c pass pathological decaf test cases! by Michael Hamburg 2015-01-23 17:53:09 -0800
  • f4424c3 fix sha512 goof on p521 by Michael Hamburg 2015-01-23 15:38:43 -0800
  • 12a5d08 decaf seems to work for monty; needs more testing, negative testing. Now should match sage script exactly. by Michael Hamburg 2015-01-23 15:37:03 -0800
  • 4f27b22 decaf ladder is "correct", but not yet serializing to decaf by Michael Hamburg 2015-01-23 12:53:40 -0800
  • 57e721e fix(?) perf regr in verify pre by Mike Hamburg 2015-01-22 18:52:04 -0800
  • 9f64f51 fix(?) perf regr in verify pre by Mike Hamburg 2015-01-22 18:52:04 -0800