(ab | ba) >= 0 is used to make optimization analysis for compiler more difficult. I see that with (ab | ba) == 0, it would be much easier for compiler to conclude than loop could exit early as soon as first a[i] != b[i] is seen.
- Queries
- All Stories
- Search
- Advanced Search
- Transactions
- Transaction Logs
Feed Advanced Search
Advanced Search
Advanced Search
Sep 1 2021
Sep 1 2021
jukivili added a comment to T5581: buf_eq_const() function in cipher/bufhelp.h may get wrong result.
Aug 26 2021
Aug 26 2021
jukivili committed rC47e425e07995: Add ARMv8-CE HW acceleration for GCM-SIV counter mode (authored by jukivili).
Add ARMv8-CE HW acceleration for GCM-SIV counter mode
jukivili committed rC9e3b0446653f: mpi/longlong: fix variable shadowing from MIPS umul_ppmm macros (authored by jukivili).
mpi/longlong: fix variable shadowing from MIPS umul_ppmm macros
jukivili committed rC33aebb30d210: Add x86 HW acceleration for GCM-SIV counter mode (authored by jukivili).
Add x86 HW acceleration for GCM-SIV counter mode
Add AES-GCM-SIV mode (RFC 8452)
Add SIV mode (RFC 5297)
Aug 13 2021
Aug 13 2021
jukivili committed rCa5982e35088a: tests/bench-slope: allow non-FIPS ECC benchmarking in non-FIPS mode (authored by jukivili).
tests/bench-slope: allow non-FIPS ECC benchmarking in non-FIPS mode
Jul 31 2021
Jul 31 2021
Jul 7 2021
Jul 7 2021
jukivili committed rCb98ca3f798ab: tests/basic: use SHA256 instead of RMD160 for SHAKE extract testing (authored by jukivili).
tests/basic: use SHA256 instead of RMD160 for SHAKE extract testing
That crcalgo can be any digest algorithm and SHA256 seems best option to me.
Jul 6 2021
Jul 6 2021
jukivili committed rC69fdcb543323: ec: add zSeries/s390x accelerated scalar multiplication (authored by jukivili).
ec: add zSeries/s390x accelerated scalar multiplication
jukivili committed rC4b76fa6a1f92: rinjdael-s390x: fix UBSAN warning on using index beyond end of array (authored by jukivili).
rinjdael-s390x: fix UBSAN warning on using index beyond end of array
Jul 2 2021
Jul 2 2021
jukivili committed rC3f4a59299134: tests/t-mpi-point: add one more NIST P-256 reduction test-vector (authored by jukivili).
tests/t-mpi-point: add one more NIST P-256 reduction test-vector
In T5510#147840, @catenacyber wrote:Got a new bug with regression range ccfa9f2c1427b40483984198c3df41f8057f69f8:6dfab8cfb94ccb485a15b13df3c499cbb06fddf2
curve=23 secp256r1 point=04555555ffffffffffffffffffffffffffffffffffffffffffffffffffffffffff73a865e2e128733884fb82ce625ade822f7d8a59a4dcc09266966cf1bf082856 bignum=2020ff2020202020202020202020202020202020202020202020202020202020 nettle: 0 045549408909dd3e772d7d669f8fba2248d334b54be3d18833223d944a328948c76198ac3b29712256dcd9ce1a09471f04267684e1edd45910d61d0b7847db2d58 gcrypt: 0 047a6ec0df23082c8ce54c2b536d76b30464f4e1e690bb77665d298f05f0bee6806e7db3377141cc71ee30dcb8ffb7240bc3ecf29132ab5eb4ae03c067cea0d561
Jul 1 2021
Jul 1 2021
jukivili committed rC9911069388e7: bench-slope: add X25519 and X448 scalar multiplication (authored by jukivili).
bench-slope: add X25519 and X448 scalar multiplication
jukivili committed rC2fcac487069f: mpi: optimizations for MPI scanning and printing (authored by jukivili).
mpi: optimizations for MPI scanning and printing
mpi/ec: cache converted field_table MPIs
jukivili committed rC38d80fdfddd0: mpi_ec_get_affine: fast path for Z==1 case (authored by jukivili).
mpi_ec_get_affine: fast path for Z==1 case
jukivili committed rC165237776389: tests/t-mpi-point: add reduction test-vectors for secp256k1 (authored by jukivili).
tests/t-mpi-point: add reduction test-vectors for secp256k1
Jun 30 2021
Jun 30 2021
jukivili committed rCfc92c609dfdb: ec-nist: fix 'mod p' carry adjustment and output masking (authored by jukivili).
ec-nist: fix 'mod p' carry adjustment and output masking
Thanks a lot.
Jun 28 2021
Jun 28 2021
P192, P224, P256 and P384 are affected.
Attached patch should fix the issue:
0001-ec-nist-fix-output-masking-for-P192-P224-P256-and-P3.patch6 KBDownload
Thanks for reporting. There is two commits in that commit range, including https://dev.gnupg.org/rC9d909cb67e70fd792926ac1e2ab305b2cc96bc27 which adds fast reduction for NIST curves. So obviously something is wrong there. Is secp192r1 only curve that is giving wrong results?
Jun 24 2021
Jun 24 2021
mpi/ec: add fast reduction for secp256k1
jukivili committed rC9d909cb67e70: mpi/ec: add fast reduction functions for NIST curves (authored by jukivili).
mpi/ec: add fast reduction functions for NIST curves
Jun 19 2021
Jun 19 2021
jukivili committed rC9c12226c31d4: mpi/ec: small optimization for ec_mulm_25519 (authored by jukivili).
mpi/ec: small optimization for ec_mulm_25519
jukivili committed rC9722da5bfc4a: mpi/longlong.h: fix missing macro parameter parentheses (authored by jukivili).
mpi/longlong.h: fix missing macro parameter parentheses
jukivili committed rCccfa9f2c1427: mpi/ec: small optimization for ec_mulm_448 (authored by jukivili).
mpi/ec: small optimization for ec_mulm_448
jukivili committed rCa0871a1e817f: tests/t-mpi-point: add NIST curve multiplication test vectors (authored by jukivili).
tests/t-mpi-point: add NIST curve multiplication test vectors
tests/bench-slope: add ECC benchmarking
tests/benchmark: add benchmark for Ed448
Jun 3 2021
Jun 3 2021
jukivili committed rCec7db47e9998: Set vZZ.16b register to zero before use in armv8 gcm implementation (authored by larma).
Set vZZ.16b register to zero before use in armv8 gcm implementation
jukivili committed rC761a1a0d30ea: Fix wrong code execution in Poly1305 ARM/NEON implementation (authored by jukivili).
Fix wrong code execution in Poly1305 ARM/NEON implementation
May 17 2021
May 17 2021
jukivili committed rC14bb6d4ea0dc: cipher: Fix memory leaks for EdDSA. (authored by Tianjia Zhang <tianjia.zhang@linux.alibaba.com>).
cipher: Fix memory leaks for EdDSA.
jukivili committed rCa1f5d87ed49b: Always include <config.h> in cipher assembly codes (authored by H.J. Lu <hjl.tools@gmail.com>).
Always include <config.h> in cipher assembly codes
Apr 28 2021
Apr 28 2021
hwf-x86: fix use of wrong operand type
Apr 26 2021
Apr 26 2021
jukivili committed rCeb96baf28473: hash_buffers: add output length param for XOF support (authored by jukivili).
hash_buffers: add output length param for XOF support
jukivili committed rCe866c01e645d: keccak: add hash_buffers functions for SHAKE128 & SHAKE256 (authored by jukivili).
keccak: add hash_buffers functions for SHAKE128 & SHAKE256
jukivili committed rC580ae61db5fe: md: remove hash_buffer function from algorithms (authored by jukivili).
md: remove hash_buffer function from algorithms
jukivili committed rCf53d541d0947: Add XOF output support for internal _gcry_md_hash_buffers (authored by jukivili).
Add XOF output support for internal _gcry_md_hash_buffers
jukivili committed rC4770ad72607f: Use memset for constant length wipememory2 (authored by jukivili).
Use memset for constant length wipememory2
Apr 12 2021
Apr 12 2021
jukivili committed rC9bc3d8de6e2a: mpi: harden add_n_cond, sub_n_cond and abs_cond against EM leakage (authored by jukivili).
mpi: harden add_n_cond, sub_n_cond and abs_cond against EM leakage
jukivili committed rCc7c25b6e6e6b: mpi: harden set_cond functions against EM leakage (authored by jukivili).
mpi: harden set_cond functions against EM leakage
jukivili committed rC1266f5bb02b7: mpi: harden swap_cond functions against EM leakage (authored by jukivili).
mpi: harden swap_cond functions against EM leakage
Apr 6 2021
Apr 6 2021
Note that rndjent.c is already build with -O0 as can be seen in example above. That warning could be silenced by surrounding pragma with #ifdef __OPTIMIZE__ (with should be supported by GCC and Clang).
Apr 1 2021
Apr 1 2021
cipher-gcm-ppc: add big-endian support
jukivili committed rC1cf5a568f2b2: mpi/aarch64: use C_SYMBOL_NAME for assembly function names (authored by jukivili).
mpi/aarch64: use C_SYMBOL_NAME for assembly function names
Mar 30 2021
Mar 30 2021
@werner Can you comment about bugfix release?
These functions are internal to library and, for example, on linux/windows builds are not externally available.
Mar 29 2021
Mar 29 2021
This patch should work if configure properly detects need for extra underscore on C symbols:
0001-mpi-aarch64-use-C_SYMBOL_NAME-for-assembly-function-.patch4 KBDownload
Mar 26 2021
Mar 26 2021
jukivili committed rC56da81ac4720: tests/basic: add decryption check to check_ocb_cipher_checksum (authored by jukivili).
tests/basic: add decryption check to check_ocb_cipher_checksum
jukivili committed rC68bb0ddc5504: rijndael-s390x: fix checksum calculation in OCB decryption (authored by jukivili).
rijndael-s390x: fix checksum calculation in OCB decryption
jukivili committed rC21c273cecfd5: tests/basic: OCB large buffer check: make input buffer non-repeatable (authored by jukivili).
tests/basic: OCB large buffer check: make input buffer non-repeatable
Mar 25 2021
Mar 25 2021
Thanks for the report.
Mar 12 2021
Mar 12 2021
jukivili closed T4531: PowerPC performance improvements, a subtask of T4460: libgcrypt performance TODOs, as Resolved.
Mar 9 2021
Mar 9 2021
jukivili renamed T5040: Improve PPC code using code from CRYPTOGRAMs from Impove PPC code using code from CRYPTOGRAMs to Improve PPC code using code from CRYPTOGRAMs.
jukivili closed T4630: libgcrypt: POWER GHASH Vector Acceleration, a subtask of T4531: PowerPC performance improvements, as Resolved.
jukivili committed rC760ef8baee06: cipher-gcm-ppc: tweak for better performance (authored by jukivili).
cipher-gcm-ppc: tweak for better performance
jukivili committed rC43302b960f54: Compile arch specific GCM implementations only on target arch (authored by jukivili).
Compile arch specific GCM implementations only on target arch
VPMSUMD acceleration for GCM mode on PPC
jukivili committed rC8892510bb8f4: configure.ac: fix digest implementations going to cipher list (authored by jukivili).
configure.ac: fix digest implementations going to cipher list
Pushed to master with two commits:
Mar 7 2021
Mar 7 2021
I posted patch-set to mailing-list. Please check if AUTHORS/LICENSES updates are ok.
https://lists.gnupg.org/pipermail/gcrypt-devel/2021-March/005120.html
Mar 6 2021
Mar 6 2021
Fixed typos and applied to master. Thanks.
jukivili committed rC7c4c992fe96f: src/hwfeatures: add reminder about documenting new HW features (authored by jukivili).
src/hwfeatures: add reminder about documenting new HW features
doc: Document newly added optimizations
Mar 3 2021
Mar 3 2021
jukivili committed rCd1fcf3975c57: cipher-gcm-intel-pclmul: fix compiling with i386 gcc-4.7 (authored by jukivili).
cipher-gcm-intel-pclmul: fix compiling with i386 gcc-4.7
jukivili committed rC2b84da922660: poly1305: make --disable-asm work on x86, aarch64 and ppc (authored by jukivili).
poly1305: make --disable-asm work on x86, aarch64 and ppc
poly1305: fix compiling on i386 gcc-4.7
jukivili committed rCe72498a54fde: rijndael: add x86_64 VAES/AVX2 accelerated implementation (authored by jukivili).
rijndael: add x86_64 VAES/AVX2 accelerated implementation
jukivili committed rC0e7e60241a0d: camellia: add x86_64 VAES/AVX2 accelerated implementation (authored by jukivili).
camellia: add x86_64 VAES/AVX2 accelerated implementation
jukivili committed rCffe1d5319703: rijndael-aesni: add 8-block parallel code path for XTS (authored by jukivili).
rijndael-aesni: add 8-block parallel code path for XTS
jukivili committed rCeb404d890453: hwf-x86: add "intel-vaes-vpclmul" HW feature (authored by jukivili).
hwf-x86: add "intel-vaes-vpclmul" HW feature
Feb 12 2021
Feb 12 2021
jukivili updated subscribers of rC3f42f727a069: Make sure the grcy_get_config string is always null-terminated..
Feb 6 2021
Feb 6 2021
jukivili closed T5256: libgcrypt, convert Intel syntax x86_64 assembly files to AT&T syntax as Resolved.
Problem with clang and these files was resolved by replacement of assembler macros with C preprocessor macros.
Feb 4 2021
Feb 4 2021
jukivili added a comment to rC8716e4b2ada2: global: make sure that bulk config string is null-terminated.
The 'what != NULL' case is handled by the "Strip trailing LF" part at the end of function. These data strings always end with '\n', so null-termination gets done there.
Feb 3 2021
Feb 3 2021
jukivili committed rC24af2a55d862: sha256-avx2: fix reading beyond end of input buffer (authored by jukivili).
sha256-avx2: fix reading beyond end of input buffer
jukivili committed rC8716e4b2ada2: global: make sure that bulk config string is null-terminated (authored by jukivili).
global: make sure that bulk config string is null-terminated
Add handling for -Og with O-flag munging
ecc-ecdh: fix memory leak
jukivili committed rCf46a6bd9b3d7: tests: allow running 'make check' with ASAN (authored by jukivili).
tests: allow running 'make check' with ASAN
jukivili committed rC6fc11291282a: jent: silence ubsan warning about signed overflow (authored by jukivili).
jent: silence ubsan warning about signed overflow
Fix ubsan warnings for i386 build
md: clear bctx.count at final function
Fix building with --disable-asm on x86
Jan 31 2021
Jan 31 2021
Does it build if configure with parameter 'ac_cv_sys_symbol_underscore=yes'? <path-to-libgcrypt-source>/configure ac_cv_sys_symbol_underscore=yes --host=aarch64-apple-darwin ...
Jan 29 2021
Jan 29 2021
Thanks for your report.
jukivili committed rC512c0c752769: hash-common: fix heap overflow when writing more data after final (authored by jukivili).
hash-common: fix heap overflow when writing more data after final
Jan 28 2021
Jan 28 2021
Patch for this bug is available here, "attachment-0001.bin": https://lists.gnupg.org/pipermail/gcrypt-devel/2021-January/005079.html
I tested xenial with gcc-5.3 (xenial distro repo) and gcc-5.4 (xenial-updates distro repo) and libgcrypt 1.9.0 from git repo and from tarball. I did not get any errors.