yggdrasil/ring
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
12,656 Commits 2 Branches 0 Tags
Commit Graph

12656 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Brian Smith
8730214c8f Skip BoringSSL 'df9955b': Handle ChaCha20 counter overflow consistently. 
*ring* doesn't (intentionally) overflow any counters.
 2023-09-29 11:58:40 -07:00
Brian Smith
c274480f40 NFC: Remove more unused constant-time utilities. 2023-09-29 11:54:54 -07:00
Brian Smith
3a77fe16f8
Merge pull request #1659 from briansmith/b/merge-boringssl-16 
Merge BoringSSL through d605df5b6f8462c1f3005da82d718ec067f46b70
 2023-09-29 11:52:02 -07:00
Brian Smith
2e6d759e56 NFC: Remove dead code from syncing with BoringSSL. 
*ring* doesn't use the BoringSSL code that uses these constant-time
utilities.
 2023-09-29 10:30:01 -07:00
Brian Smith
fbd505fa80
Merge pull request #1661 from briansmith/revert-1657-unsafe-cleanup 
Revert "Document or remove some uses of `unsafe`"
 2023-09-29 10:15:01 -07:00
Brian Smith
de138ee2e7
Revert "Document or remove some uses of unsafe" 2023-09-29 10:14:25 -07:00
Brian Smith
238ff8b191
Merge pull request #1657 from joshlf/unsafe-cleanup 
Document or remove some uses of `unsafe`
 2023-09-29 10:14:19 -07:00
Brian Smith
7b59320e3e Merge BoringSSL 'd605df5': Use packed representation for large Curve25519 table 2023-09-28 19:58:53 -07:00
Brian Smith
2d8fbe09e9 Import currently-unused utilities in crypto/internal.h 
Bring these in as they were in 4a0393fcf37d7dbd090a5bb2293601a9ec7605da.
The next merge will modify these.
 2023-09-28 18:14:14 -07:00
Brian Smith
2270dc6943 Rename crypto_word back to crypto_word_t. 
Originally I was trying to be pedantic and avoid any use of `_t`-
suffixed names. However, this hasn't really accomplished anything
except annoying me, so just do what BoringSSL does.
 2023-09-28 18:11:05 -07:00
Brian Smith
8e3548f082 Ignore BoringSSL 'be0fdf7'..'4a0393f' 2023-09-28 17:54:49 -07:00
Brian Smith
03de1fa014 Merge BoringSSL '55b069d': Add a value barrier when checking for point doubling. 2023-09-28 17:43:49 -07:00
Brian Smith
12d7b067db Ignore BoringSSL 'e30750c'..'6cf9820'. 2023-09-28 17:32:52 -07:00
Brian Smith
30171c0829 Partial merge of BoringSSL 'da757e6': Add constant-time validation for curve25519. 
Don't add the constant-time validation tests since we need to develop the
framework for it first.

Do add the public-from-private test.
 2023-09-28 17:30:25 -07:00
Joshua Liebow-Feeser
4056fb9f6a Document or remove some uses of unsafe 2023-09-29 00:27:21 +00:00
Brian Smith
e17b48df3c Take BoringSSL '5fcd47d': Add prefetch to aes_hw_ctr32_encrypt_blocks. 2023-09-28 17:09:39 -07:00
Brian Smith
ece6692887 NFC: Remove no-longer-relevant comment. 
Commit 784fa2961b82ab80c209ba3970b4a064828e53cd should have deleted
this comment. The analogous comment was deleted in BoringSSL in that
merged commit.
 2023-09-28 17:08:54 -07:00
Brian Smith
ae630da35d Ignore BoringSSL '85e6453'..'825bec8'. 2023-09-28 17:06:57 -07:00
Brian Smith
784fa2961b Merge BoringSSL 'e7c3f47': Remove H from GCM128_KEY. 2023-09-28 16:59:49 -07:00
Brian Smith
14142649d3 Merge BoringSSL '62f9751': Don't make assumptions about GCM128_CONTEXT layout in aesni-gcm-x86_64.pl. 2023-09-28 16:57:34 -07:00
Brian Smith
1d14b3de74 Partial merge of BoringSSL 'a7f83c4': Don't make assumptions about GCM128_CONTEXT layout in aesv8-gcm-armv8.pl. 
This is modifying not-yet-used code.
 2023-09-28 16:18:31 -07:00
Brian Smith
bc5d2c3676
Merge pull request #1658 from briansmith/b/merge-boringssl-15 
Merge BoringSSL through 4c8bcf0da2951cacd8ed8eaa7fd2df4b22fca23b
 2023-09-28 16:16:00 -07:00
Brian Smith
af45ee28f2 Add newly-added files to Cargo.toml to fix package job. 2023-09-28 15:04:48 -07:00
Brian Smith
12fc9fd03a Ignore BoringSSL '4b6d950'..'4c8bcf0' 2023-09-28 14:35:23 -07:00
Brian Smith
183332021f Merge BoringSSL 'ece1f86': Re-add go:build ignore lines 2023-09-28 14:33:29 -07:00
Brian Smith
83e464de4e Ignore BoringSSL 'd9f209b'..'5748eb8'. 2023-09-28 14:32:22 -07:00
Brian Smith
6e85944940 Merge BoringSSL 'aa31748': Generate 64-bit Curve25519 and P256 code for MSVC 2023-09-28 14:28:33 -07:00
Brian Smith
5b32c4bbcb Ignore BoringSSL 'c5f762d'..'32b5130' 2023-09-28 13:58:26 -07:00
Brian Smith
4f9ec49e2e No-op merge of BoringSSL '89de6e1': Move RSA (en|de)cryption out of the FIPS module. 2023-09-28 13:56:33 -07:00
Brian Smith
2e5a55ebae
Merge pull request #1656 from briansmith/b/merge-boringssl-14 
Merge BoringSSL through 7b9b9baa95449d49019f7ce45b94963f8763005f
 2023-09-28 13:54:06 -07:00
Brian Smith
4faa980ca2 Ignore BoringSSL '082e953'..'7b9b9ba'. 2023-09-28 12:49:00 -07:00
Brian Smith
88331f0737 Take BoringSSL 'abb9af8': Work around a NASM bug. 2023-09-28 12:42:21 -07:00
Brian Smith
533ecb6d83 Ignore BoringSSL 'bffae8a'..'3a7dfdb9'. 2023-09-28 12:40:32 -07:00
Brian Smith
c833ff64f9 Merge BoringSSL 'ebd43ef': Move data from .text to .rodata on x86_64 2023-09-28 12:38:20 -07:00
Brian Smith
126bfcd51b Ignore BoringSSL 'bade461'..'7864b14'. 2023-09-28 12:36:56 -07:00
Brian Smith
7dcdf3cf13 Merge BoringSSL 'e18ba27': Move constants from .text to .rodata on aarch64. 2023-09-28 12:35:08 -07:00
Brian Smith
58bb53d6a5 Ignore BoringSSL '49d7b2d'..'badf673'. 2023-09-28 12:19:56 -07:00
Brian Smith
58565c6ac0 No-op merge of BoringSSL '70e415d': Remove if'd-out OCB-AES assembly 
*ring* already had removed the code.
 2023-09-28 12:14:54 -07:00
Brian Smith
f3b8acf010 Ignore BoringSSL '5e356a8'..'0586618' 2023-09-28 12:08:22 -07:00
Brian Smith
c93317d75e Skip BoringSSL 'a9ce915': Add ABI tests for bn_add_words, etc. 
*ring* doesn't incoroprate the ABI tests (unfortunately).
 2023-09-28 12:07:07 -07:00
Brian Smith
4cffc8548a Skip BoringSSL 'd4396e3': Avoid branches in GCC in bn/generic.c. 
*ring* doesn't use bn/generic.c.
 2023-09-28 12:06:24 -07:00
Brian Smith
0671a90267 Partial merge of BoringSSL 'd1b4516': Add bn_add_words and bn_sub_words assembly for aarch64. 
Bring in the new code as we'll likely use it soon, but not now.

Merged as-is except with the "arm_arch.h" include changed to what we need.
 2023-09-28 12:05:52 -07:00
Brian Smith
88572523e3 Skip BoringSSL '3a16df9'. 
*ring* doesn't use bn/generic.c. Instead it uses limbs.c. Likely we need to
optimize limbs.c but not now.
 2023-09-28 12:04:02 -07:00
Brian Smith
bcb347b975 No-op merge of BoringSSL '8f220ec'. 
We don't have padding.c yet.
 2023-09-28 11:51:08 -07:00
Brian Smith
1d98a7975f Ignore BoringSSL '210674b'. 2023-09-28 11:49:26 -07:00
Brian Smith
8166b6855f Merge BoringSSL '53b876a'. 
The *ring* counterpart to `copy_from_prebuf` is `LIMBS_select_512_32`
which is already written very (too?) conservatively w.r.t. compiler-
introduced side channels. I inspected the generated code before/after
adding additional `value_barrier_w` and it made no difference.
 2023-09-28 11:47:45 -07:00
Brian Smith
25c999046b Ignore BoringSSL '1967621'..'aa83c12'. 2023-09-28 11:07:20 -07:00
Brian Smith
0be8d58a4e
Merge pull request #1654 from briansmith/b/merge-boringssl-13 
Merge BoringSSL through a43c76dbe30d619188dc685b7d432a92e7c2b66b
 2023-09-28 11:02:25 -07:00
Brian Smith
a02e49b0b0 Use ring-core/arm_arch.h in aesv8-gcm-armv8.pl. 
The code isn't used yet but we should avoid the openssl/ include before
we forget it is there.
 2023-09-28 10:44:07 -07:00
Brian Smith
102f6719aa Remove gratuitous change to LICENSE. 
These additions break people's `cargo deny` jobs. The actual license
isn't affected by the change that updated LICENSE; it just added some
of Google's internal tracking numbers. Those numbers are not useful to
us. The next time we update LICENSE for an important reason we should
remove all the tracking numbers.
 2023-09-28 09:26:50 -07:00