Frank Denis
|
b93d773f7b
|
Add sodium_stackzero()
|
2017-11-10 20:48:05 +01:00 |
|
Frank Denis
|
b9d6139178
|
Check for alloca()
|
2017-11-10 02:22:38 +01:00 |
|
Frank Denis
|
40070b342a
|
Initialize the argon2 position structure a bit earlier
|
2017-11-08 12:56:33 +01:00 |
|
Frank Denis
|
8ab638b983
|
argon2: let fill_memory_blocks() accept a pass counter
|
2017-11-08 12:53:37 +01:00 |
|
Frank Denis
|
06f5c9a773
|
Funky indentation
|
2017-11-08 00:16:53 +01:00 |
|
Frank Denis
|
aa06d871ba
|
Indent
|
2017-11-07 01:07:22 +01:00 |
|
Frank Denis
|
a9b6eda279
|
+ UNPOISON macro
|
2017-11-06 23:57:23 +01:00 |
|
Frank Denis
|
ce3ca605a3
|
Better poison
|
2017-11-06 23:42:40 +01:00 |
|
Frank Denis
|
e73e2ee2c2
|
Define a POISON macro
|
2017-11-06 23:41:50 +01:00 |
|
Frank Denis
|
e7d85070dc
|
Use the default autoconf action to check for libctgrind
|
2017-11-06 23:34:45 +01:00 |
|
Frank Denis
|
bd0e0303f9
|
Comment
|
2017-11-06 23:34:41 +01:00 |
|
Frank Denis
|
f8de352e6d
|
Reduce nesting, improve readability
|
2017-11-06 21:55:20 +01:00 |
|
Frank Denis
|
1621448f6c
|
Consistent spacing
|
2017-11-06 21:31:46 +01:00 |
|
Frank Denis
|
fd14a458d7
|
Use verbose prototypes
Having only parameter types in prototypes is confusing.
So, include parameter names as well.
|
2017-11-06 20:19:50 +01:00 |
|
Frank Denis
|
780974a109
|
sc_* -> sc25519_*
|
2017-11-06 20:13:47 +01:00 |
|
Frank Denis
|
e371a870f3
|
ge_* -> ge25519_*
|
2017-11-06 20:05:33 +01:00 |
|
Frank Denis
|
fb2e83a4d1
|
fe -> fe25519
|
2017-11-06 19:40:28 +01:00 |
|
Frank Denis
|
4bd6196c96
|
Move functions not worth inlining back to core
|
2017-11-06 15:06:21 +01:00 |
|
Frank Denis
|
221350c78a
|
Import fe constants
|
2017-11-06 14:35:41 +01:00 |
|
Frank Denis
|
f523ea1656
|
Regen MSVC files
|
2017-11-06 14:33:39 +01:00 |
|
Frank Denis
|
f954997fc3
|
Move field arithmetic to include/private/, and make everything static
to get some inlining.
|
2017-11-06 14:32:01 +01:00 |
|
Frank Denis
|
2e7b8e1de9
|
Still #define the fe & ge types for now
|
2017-11-06 11:47:00 +01:00 |
|
Frank Denis
|
55a6b6bb46
|
Remove these useless #define
|
2017-11-06 11:42:02 +01:00 |
|
Frank Denis
|
1e57b1d455
|
Update comment
|
2017-11-06 11:10:29 +01:00 |
|
Frank Denis
|
d2b1d224db
|
Update after donna and ref10 merge
|
2017-11-06 11:07:26 +01:00 |
|
Frank Denis
|
7eacdc6ff0
|
Remove X25519-donna
|
2017-11-06 11:03:18 +01:00 |
|
Frank Denis
|
cdfd98e908
|
Move fe_cswap and fe_scalar_product to core
|
2017-11-06 10:52:03 +01:00 |
|
Frank Denis
|
8730d16d4b
|
Fix comment
|
2017-11-06 02:09:47 +01:00 |
|
Frank Denis
|
0a20032a8f
|
KNF
|
2017-11-06 02:00:32 +01:00 |
|
Frank Denis
|
a5b9c381e5
|
Shrink x25519_donna_c64; reuse functions from core
|
2017-11-06 01:57:05 +01:00 |
|
Frank Denis
|
1947a49020
|
Symbolically clear the round keys after aes256gcm_(en|de)crypt()
Fixes #617
|
2017-11-05 23:46:55 +01:00 |
|
Frank Denis
|
820bf58b93
|
Reduce the diff between fe_25_5/fe.h and fe_51/fe.h
|
2017-11-05 21:27:53 +01:00 |
|
Frank Denis
|
f49dd35fdf
|
Update paths
|
2017-11-05 18:26:25 +01:00 |
|
Frank Denis
|
bfd656b67b
|
core/25519: Use 51-bit limbs on platforms supporting 128 bit arithmetic
|
2017-11-05 17:50:15 +01:00 |
|
Frank Denis
|
bd82e08337
|
Move 25.5 bit field arithmetic to ref10/fe_25_5
|
2017-11-05 17:35:22 +01:00 |
|
Frank Denis
|
5cde320a08
|
Add pwhash functions to non-sumo wasm builds
Server relief is important.
|
2017-11-05 13:44:29 +01:00 |
|
Frank Denis
|
9f71f5aade
|
Ed25519 synthetic nonces: pad to 128 bytes boundaries, not 16.
Spotted by Trevor Perrin. Good catch, thanks!
|
2017-11-04 09:53:44 +01:00 |
|
Frank Denis
|
e52ab67322
|
Detect ctgrind
|
2017-11-03 17:15:02 +01:00 |
|
Frank Denis
|
b45d52a8cf
|
Tolerate sodium_crit_leave() to be called on an unlocked mutex
|
2017-11-03 15:46:19 +01:00 |
|
Frank Denis
|
8e364d29db
|
Move d2 definition close to the d definition
|
2017-11-01 19:38:16 +01:00 |
|
Frank Denis
|
f57fcb9c26
|
Use the correct type for the cmov mask
|
2017-11-01 19:37:34 +01:00 |
|
Frank Denis
|
8d5b6b1fc9
|
Leave and immediately reenter the critical section in sodium_misuse()
Keep running everything in the critical section from there.
|
2017-11-01 01:45:02 +01:00 |
|
Frank Denis
|
802830e4e6
|
Regen precomputation tables
|
2017-11-01 00:08:34 +01:00 |
|
Frank Denis
|
a366ea0839
|
Tidy up curve25519_ref10, remove comments that are not relevant any more
|
2017-10-31 20:22:48 +01:00 |
|
Frank Denis
|
a3f96045d4
|
Remove ge_scalarmult_vartime() which is not used any more
|
2017-10-31 16:10:51 +01:00 |
|
Frank Denis
|
0b734963db
|
edwards25519sha512batch_open(): check order before decoding instead of after
|
2017-10-31 16:09:43 +01:00 |
|
Frank Denis
|
1cd0633186
|
Accept non-canonical PKs if ED25519_COMPAT is defined
|
2017-10-31 16:08:45 +01:00 |
|
Frank Denis
|
5808b83092
|
ed25519_open(): reject all small order public keys and non-canonical representations
|
2017-10-31 16:07:01 +01:00 |
|
Frank Denis
|
ce56bb596f
|
edwards25519sha512batch: reuse ge_scalarmult()
Check public key and R order by the way.
|
2017-10-31 15:56:31 +01:00 |
|
Frank Denis
|
52fce922f4
|
Add constant-time edx recovery; use it in ed25519_scalarmult()
|
2017-10-31 15:41:40 +01:00 |
|