yggdrasil/ring
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
12,657 Commits 2 Branches 0 Tags
Commit Graph

12657 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Brian Smith
e0948076a5 Partial merge of BoringSSL '43f8891': Add saturated X25519 for x86_64+ADX running Linux 
Add the new code but don't plumb it in yet.
 2023-09-29 12:04:04 -07:00
Brian Smith
8730214c8f Skip BoringSSL 'df9955b': Handle ChaCha20 counter overflow consistently. 
*ring* doesn't (intentionally) overflow any counters.
 2023-09-29 11:58:40 -07:00
Brian Smith
c274480f40 NFC: Remove more unused constant-time utilities. 2023-09-29 11:54:54 -07:00
Brian Smith
3a77fe16f8
Merge pull request #1659 from briansmith/b/merge-boringssl-16 
Merge BoringSSL through d605df5b6f8462c1f3005da82d718ec067f46b70
 2023-09-29 11:52:02 -07:00
Brian Smith
2e6d759e56 NFC: Remove dead code from syncing with BoringSSL. 
*ring* doesn't use the BoringSSL code that uses these constant-time
utilities.
 2023-09-29 10:30:01 -07:00
Brian Smith
fbd505fa80
Merge pull request #1661 from briansmith/revert-1657-unsafe-cleanup 
Revert "Document or remove some uses of `unsafe`"
 2023-09-29 10:15:01 -07:00
Brian Smith
de138ee2e7
Revert "Document or remove some uses of unsafe" 2023-09-29 10:14:25 -07:00
Brian Smith
238ff8b191
Merge pull request #1657 from joshlf/unsafe-cleanup 
Document or remove some uses of `unsafe`
 2023-09-29 10:14:19 -07:00
Brian Smith
7b59320e3e Merge BoringSSL 'd605df5': Use packed representation for large Curve25519 table 2023-09-28 19:58:53 -07:00
Brian Smith
2d8fbe09e9 Import currently-unused utilities in crypto/internal.h 
Bring these in as they were in 4a0393fcf37d7dbd090a5bb2293601a9ec7605da.
The next merge will modify these.
 2023-09-28 18:14:14 -07:00
Brian Smith
2270dc6943 Rename crypto_word back to crypto_word_t. 
Originally I was trying to be pedantic and avoid any use of `_t`-
suffixed names. However, this hasn't really accomplished anything
except annoying me, so just do what BoringSSL does.
 2023-09-28 18:11:05 -07:00
Brian Smith
8e3548f082 Ignore BoringSSL 'be0fdf7'..'4a0393f' 2023-09-28 17:54:49 -07:00
Brian Smith
03de1fa014 Merge BoringSSL '55b069d': Add a value barrier when checking for point doubling. 2023-09-28 17:43:49 -07:00
Brian Smith
12d7b067db Ignore BoringSSL 'e30750c'..'6cf9820'. 2023-09-28 17:32:52 -07:00
Brian Smith
30171c0829 Partial merge of BoringSSL 'da757e6': Add constant-time validation for curve25519. 
Don't add the constant-time validation tests since we need to develop the
framework for it first.

Do add the public-from-private test.
 2023-09-28 17:30:25 -07:00
Joshua Liebow-Feeser
4056fb9f6a Document or remove some uses of unsafe 2023-09-29 00:27:21 +00:00
Brian Smith
e17b48df3c Take BoringSSL '5fcd47d': Add prefetch to aes_hw_ctr32_encrypt_blocks. 2023-09-28 17:09:39 -07:00
Brian Smith
ece6692887 NFC: Remove no-longer-relevant comment. 
Commit 784fa2961b82ab80c209ba3970b4a064828e53cd should have deleted
this comment. The analogous comment was deleted in BoringSSL in that
merged commit.
 2023-09-28 17:08:54 -07:00
Brian Smith
ae630da35d Ignore BoringSSL '85e6453'..'825bec8'. 2023-09-28 17:06:57 -07:00
Brian Smith
784fa2961b Merge BoringSSL 'e7c3f47': Remove H from GCM128_KEY. 2023-09-28 16:59:49 -07:00
Brian Smith
14142649d3 Merge BoringSSL '62f9751': Don't make assumptions about GCM128_CONTEXT layout in aesni-gcm-x86_64.pl. 2023-09-28 16:57:34 -07:00
Brian Smith
1d14b3de74 Partial merge of BoringSSL 'a7f83c4': Don't make assumptions about GCM128_CONTEXT layout in aesv8-gcm-armv8.pl. 
This is modifying not-yet-used code.
 2023-09-28 16:18:31 -07:00
Brian Smith
bc5d2c3676
Merge pull request #1658 from briansmith/b/merge-boringssl-15 
Merge BoringSSL through 4c8bcf0da2951cacd8ed8eaa7fd2df4b22fca23b
 2023-09-28 16:16:00 -07:00
Brian Smith
af45ee28f2 Add newly-added files to Cargo.toml to fix package job. 2023-09-28 15:04:48 -07:00
Brian Smith
12fc9fd03a Ignore BoringSSL '4b6d950'..'4c8bcf0' 2023-09-28 14:35:23 -07:00
Brian Smith
183332021f Merge BoringSSL 'ece1f86': Re-add go:build ignore lines 2023-09-28 14:33:29 -07:00
Brian Smith
83e464de4e Ignore BoringSSL 'd9f209b'..'5748eb8'. 2023-09-28 14:32:22 -07:00
Brian Smith
6e85944940 Merge BoringSSL 'aa31748': Generate 64-bit Curve25519 and P256 code for MSVC 2023-09-28 14:28:33 -07:00
Brian Smith
5b32c4bbcb Ignore BoringSSL 'c5f762d'..'32b5130' 2023-09-28 13:58:26 -07:00
Brian Smith
4f9ec49e2e No-op merge of BoringSSL '89de6e1': Move RSA (en|de)cryption out of the FIPS module. 2023-09-28 13:56:33 -07:00
Brian Smith
2e5a55ebae
Merge pull request #1656 from briansmith/b/merge-boringssl-14 
Merge BoringSSL through 7b9b9baa95449d49019f7ce45b94963f8763005f
 2023-09-28 13:54:06 -07:00
Brian Smith
4faa980ca2 Ignore BoringSSL '082e953'..'7b9b9ba'. 2023-09-28 12:49:00 -07:00
Brian Smith
88331f0737 Take BoringSSL 'abb9af8': Work around a NASM bug. 2023-09-28 12:42:21 -07:00
Brian Smith
533ecb6d83 Ignore BoringSSL 'bffae8a'..'3a7dfdb9'. 2023-09-28 12:40:32 -07:00
Brian Smith
c833ff64f9 Merge BoringSSL 'ebd43ef': Move data from .text to .rodata on x86_64 2023-09-28 12:38:20 -07:00
Brian Smith
126bfcd51b Ignore BoringSSL 'bade461'..'7864b14'. 2023-09-28 12:36:56 -07:00
Brian Smith
7dcdf3cf13 Merge BoringSSL 'e18ba27': Move constants from .text to .rodata on aarch64. 2023-09-28 12:35:08 -07:00
Brian Smith
58bb53d6a5 Ignore BoringSSL '49d7b2d'..'badf673'. 2023-09-28 12:19:56 -07:00
Brian Smith
58565c6ac0 No-op merge of BoringSSL '70e415d': Remove if'd-out OCB-AES assembly 
*ring* already had removed the code.
 2023-09-28 12:14:54 -07:00
Brian Smith
f3b8acf010 Ignore BoringSSL '5e356a8'..'0586618' 2023-09-28 12:08:22 -07:00
Brian Smith
c93317d75e Skip BoringSSL 'a9ce915': Add ABI tests for bn_add_words, etc. 
*ring* doesn't incoroprate the ABI tests (unfortunately).
 2023-09-28 12:07:07 -07:00
Brian Smith
4cffc8548a Skip BoringSSL 'd4396e3': Avoid branches in GCC in bn/generic.c. 
*ring* doesn't use bn/generic.c.
 2023-09-28 12:06:24 -07:00
Brian Smith
0671a90267 Partial merge of BoringSSL 'd1b4516': Add bn_add_words and bn_sub_words assembly for aarch64. 
Bring in the new code as we'll likely use it soon, but not now.

Merged as-is except with the "arm_arch.h" include changed to what we need.
 2023-09-28 12:05:52 -07:00
Brian Smith
88572523e3 Skip BoringSSL '3a16df9'. 
*ring* doesn't use bn/generic.c. Instead it uses limbs.c. Likely we need to
optimize limbs.c but not now.
 2023-09-28 12:04:02 -07:00
Brian Smith
bcb347b975 No-op merge of BoringSSL '8f220ec'. 
We don't have padding.c yet.
 2023-09-28 11:51:08 -07:00
Brian Smith
1d98a7975f Ignore BoringSSL '210674b'. 2023-09-28 11:49:26 -07:00
Brian Smith
8166b6855f Merge BoringSSL '53b876a'. 
The *ring* counterpart to `copy_from_prebuf` is `LIMBS_select_512_32`
which is already written very (too?) conservatively w.r.t. compiler-
introduced side channels. I inspected the generated code before/after
adding additional `value_barrier_w` and it made no difference.
 2023-09-28 11:47:45 -07:00
Brian Smith
25c999046b Ignore BoringSSL '1967621'..'aa83c12'. 2023-09-28 11:07:20 -07:00
Brian Smith
0be8d58a4e
Merge pull request #1654 from briansmith/b/merge-boringssl-13 
Merge BoringSSL through a43c76dbe30d619188dc685b7d432a92e7c2b66b
 2023-09-28 11:02:25 -07:00
Brian Smith
a02e49b0b0 Use ring-core/arm_arch.h in aesv8-gcm-armv8.pl. 
The code isn't used yet but we should avoid the openssl/ include before
we forget it is there.
 2023-09-28 10:44:07 -07:00