summaryrefslogtreecommitdiff
Commit message (Collapse)AuthorAgeFilesLines
* Add fat-s390x.c to OPT_SOURCES.s390xNiels Möller2021-07-212-1/+5
|
* Fix name of s390x/fat directory in make dist target.Niels Möller2021-07-211-1/+1
|
* Merge branch 's390x-fat' into 's390x'Niels Möller2021-07-2115-22/+92
|\ | | | | | | | | [S390x] Replace inline assembly, fix fat filenames and add FAT_TEST_LIST See merge request nettle/nettle!32
| * [S390x] add FAT_TEST_LIST variable to enable fat build testingMamone Tarsha2021-07-211-0/+1
| |
| * [S390x] Replace inline assembly and fix fat filenamesMamone Tarsha2021-07-2115-22/+91
| |
* | Merge branch 's390x-fat' into 's390x'Niels Möller2021-07-1729-20/+1021
|\ \ | |/ | | | | | | [S390x] Fat build support for AES and GHASH See merge request nettle/nettle!31
| * [S390x] Fat build support for AES and GHASHMamone Tarsha2021-07-1029-20/+1021
|/
* Merge branch 's390x-gcm' into 's390x'Niels Möller2021-07-084-3/+121
|\ | | | | | | | | [S390x] Optimize GHASH See merge request nettle/nettle!26
| * [S390x] wipe parameter block content and leftover bytes of data from stackMamone Tarsha2021-07-031-1/+1
| |
| * [S390x] wipe hash subkey from stack once GHASH operation completedMamone Tarsha2021-07-021-0/+1
| |
| * [S390x] Use uppercase for macro names in machine.m4 and enhance the ↵Mamone Tarsha2021-07-012-14/+16
| | | | | | | | documentation for GHASH implementation
| * [S390x] Update configure.ac and Makefile.inMamone Tarsha2021-06-272-2/+2
| |
| * [S390x] Implement alloc_stack and free_stack macros in machine.m4Mamone Tarsha2021-06-271-0/+18
| |
| * [S390x] Optimize GHASHMamone Tarsha2021-06-271-0/+97
|/
* gitlab-ci: Explicitly pass --enable-s390x-msa to s390x build.Niels Möller2021-05-221-1/+1
|
* Reorder and indent asm_replace_list.Niels Möller2021-05-091-5/+7
|
* ChangeLog entry for new s390x AES implementation.Niels Möller2021-05-091-0/+21
|
* Merge branch 's390x' into 's390x'Niels Möller2021-05-0915-7/+658
|\ | | | | | | | | [S390x] Basic AES optimization See merge request nettle/nettle!23
| * Append s390x-specific asm file names to asm_replace_list in configure.acMamone Tarsha2021-05-091-8/+5
| |
| * [S390x] Basic AES-192 and AES-256 optimizationsMamone Tarsha2021-05-0810-7/+440
| |
| * [S390x] Basic AES-128 optimizationmamonet2021-04-057-1/+222
|/
* Split aes-encrypt.c and aes-decrypt.c into one file per key size.Niels Möller2021-04-0112-370/+666
| | | | | | | | | | | | | | | | | Move aes128_encrypt and similar functions to their own files. To make it easier for assembly implementations to override specific AES variants. * aes-decrypt.c: Split file, keep only legacy function aes_decrypt here. * aes-decrypt-table.c (_nettle_aes_decrypt_table): New file, moved table here. * aes128-decrypt.c (aes128_decrypt): New file, moved function here. * aes192-decrypt.c (aes192_decrypt): New file, moved function here. * aes256-decrypt.c (aes256_decrypt): New file, moved function here. * aes-encrypt.c: Split file, keep only legacy function aes_encrypt here. * aes128-encrypt.c (aes128_encrypt): New file, moved function here. * aes192-encrypt.c (aes192_encrypt): New file, moved function here. * aes256-encrypt.c (aes256_encrypt): New file, moved function here. * Makefile.in (nettle_SOURCES): Add new files.
* Initial config for s390x, contributed by Mamone Tarsha.Niels Möller2021-03-284-2/+93
| | | | | | | * configure.ac: Add flag --enable-s390x-msa-x1. Add ABI check for s390x, and setup asm_path. * Makefile.in (distdir): Add s390x directory. * s390x/README: New file
* Merge branch 'wip/ueno/maybe-uninit' into 'master'Niels Möller2021-03-281-3/+9
|\ | | | | | | | | nettle-benchmark: avoid -Wmaybe-uninitialized warnings See merge request nettle/nettle!22
| * nettle-benchmark: avoid -Wmaybe-uninitialized warningsDaiki Ueno2021-03-271-3/+9
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Otherwise GCC 11 prints the following warning: nettle-benchmark.c: In function ‘time_umac’: ../umac.h:42:25: warning: ‘key’ may be used uninitialized [-Wmaybe-uninitialized] 42 | #define umac32_set_key nettle_umac32_set_key nettle-benchmark.c:395:3: note: in expansion of macro ‘umac32_set_key’ 395 | umac32_set_key (&ctx32, key); | ^~~~~~~~~~~~~~ Although this should be harmless as it's in the benchmarking code and the content of the key doesn't matter, it wouldn't hurt to explicitly initialize it. This patch also uses predefined constants for key sizes.
* | gitlab-ci: Fix only: variables: check, and quote variables.Niels Möller2021-03-271-8/+8
| |
* | gitlab-ci: Use pipeline variable S390X_ACCOUNTNiels Möller2021-03-271-7/+10
| | | | | | | | And enable remote/s390x job only when needed variables are set.
* | gitlab-ci: Add remote tests for s390x.Niels Möller2021-03-242-0/+35
|/
* Add forward declaration of struct aes_table.Niels Möller2021-03-221-0/+1
|
* ChangeLog entries for arm64 fat build.Niels Möller2021-03-221-0/+13
|
* Merge arm64 fat support into master.Niels Möller2021-03-226-113/+361
|\
| * [AArch64] Support fat build for GCM optimizationMaamoun TK2021-03-214-4/+204
| |
| * [AArch64] Use m4 macros in gcm-hash.asm and add documentation commentsMaamoun TK2021-03-211-107/+113
| |
| * [AArch64] Update README to be on par with other architecturesMaamoun TK2021-03-211-2/+44
| |
* | ChangeLog entry for nettle-3.7.2 releaseNiels Möller2021-03-221-0/+3
| |
* | NEWS entries for 3.7.2.Niels Möller2021-03-222-0/+52
|/ | | | (cherry picked from commit 7a5f86321f4c67d7219aa87ea4e2ddca677d7378)
* Fix canonical reduction in gostdsa_vko.Niels Möller2021-03-132-1/+4
| | | | | * gostdsa-vko.c (gostdsa_vko): Use ecc_mod_mul_canonical to compute the scalar used for ecc multiplication.
* Similar fix for eddsa.Niels Möller2021-03-132-3/+10
| | | | | * eddsa-hash.c (_eddsa_hash): Ensure result is canonically reduced. Two of the three call sites need that.
* Analogous fix to ecc_gostdsa_verify.Niels Möller2021-03-132-3/+6
| | | | | * ecc-gostdsa-verify.c (ecc_gostdsa_verify): Use ecc_mod_mul_canonical to compute the scalars used for ecc multiplication.
* Ensure ecdsa_sign output is canonically reduced.Niels Möller2021-03-132-2/+4
| | | | | * ecc-ecdsa-sign.c (ecc_ecdsa_sign): Ensure s output is reduced to canonical range.
* Fix bug in ecc_ecdsa_verify.Niels Möller2021-03-134-3/+44
| | | | | | | | | * ecc-ecdsa-verify.c (ecc_ecdsa_verify): Use ecc_mod_mul_canonical to compute the scalars used for ecc multiplication. * testsuite/ecdsa-verify-test.c (test_main): Add test case that triggers an assert on 64-bit platforms, without above fix. * testsuite/ecdsa-sign-test.c (test_main): Test case generating the same signature.
* Use ecc_mod_mul_canonical for point comparison.Niels Möller2021-03-132-7/+6
| | | | * eddsa-verify.c (equal_h): Use ecc_mod_mul_canonical.
* New functions ecc_mod_mul_canonical and ecc_mod_sqr_canonical.Niels Möller2021-03-118-35/+59
| | | | | | | | | | | * ecc-mod-arith.c (ecc_mod_mul_canonical, ecc_mod_sqr_canonical): New functions. * ecc-internal.h: Declare and document new functions. * curve448-eh-to-x.c (curve448_eh_to_x): Use ecc_mod_sqr_canonical. * curve25519-eh-to-x.c (curve25519_eh_to_x): Use ecc_mod_mul_canonical. * ecc-eh-to-a.c (ecc_eh_to_a): Likewise. * ecc-j-to-a.c (ecc_j_to_a): Likewise. * ecc-mul-m.c (ecc_mul_m): Likewise.
* Merge branch 'arm64'Niels Möller2021-03-046-0/+436
|\
| * aarch64: Rename arm64/v8/ --> arm64/crypto/arm64Niels Möller2021-02-034-6/+11
| |
| * aarch64: Use .arch armv8-a+crypto directive.Niels Möller2021-02-023-1/+8
| |
| * aarch64: Move m4 definitions after .file directiveNiels Möller2021-02-021-3/+3
| |
| * ChangeLog entries for arm64 gcm_hash.Niels Möller2021-01-311-0/+7
| |
| * arch64: Fix clang buildMaamoun TK2021-01-311-1/+1
| |
| * arch64: Fix copyright line and typosMaamoun TK2021-01-311-2/+2
| |
View Lorry Controller Status