| Commit message (Expand) | Author | Age | Files | Lines |
* | Expand bit to mask as inline function | Johan Pascal | 2020-11-23 | 1 | -1/+1 |
* | Avoid branching on mask bit extension. | Johan Pascal | 2020-11-22 | 1 | -2/+1 |
* | Fix windows build and package installation | Johan Pascal | 2020-11-19 | 1 | -2/+2 |
* | Thanks Johan Pascal: remove gf_hibit, since it was a relic from p521 days | Michael Hamburg | 2019-02-24 | 1 | -11/+11 |
* | Merge with master from the original depot | Johan Pascal | 2018-05-07 | 1 | -1/+1 |
|\ |
|
| * | minor fixes: fix unreachable code, fix an integer used in boolean context, thanks to Sofi Celi | Michael Hamburg | 2018-04-10 | 1 | -1/+1 |
* | | windows_compatibility | mrolinek | 2018-03-17 | 1 | -12/+36 |
|/ |
|
* | Add missing FIELD_LITERAL for RISTRETTO_FACTOR | Olivier Chéron | 2017-11-10 | 1 | -2/+2 |
* | change the misleading mul_by_cofactor functions to mul_by_ratio, and create ENCODE_RATIO and DECODE_ratio constants to represent this | Michael Hamburg | 2017-10-15 | 1 | -18/+10 |
* | Incorporate test vectors from Dalek | Michael Hamburg | 2017-10-13 | 1 | -13/+6 |
* | toggle elligator sign back to match Dalek | Michael Hamburg | 2017-10-13 | 1 | -1/+1 |
* | inverse elligator works, but at what cost?!?!!? | Michael Hamburg | 2017-10-07 | 1 | -14/+15 |
* | CFRG crypto back to working, just need to do elligator inversion for identity on x25519 | Michael Hamburg | 2017-10-06 | 1 | -27/+24 |
* | working out sign bugs; then on to invert elligator ristretto | Michael Hamburg | 2017-10-05 | 1 | -5/+11 |
* | ed25519 ristretto inverse works except at the identity point | Michael Hamburg | 2017-10-05 | 1 | -20/+18 |
* | elligator apparently(?) working for ed448 | Michael Hamburg | 2017-10-05 | 1 | -26/+43 |
* | add ristretto widget. elligator is correct, but inverse is not yet | Michael Hamburg | 2017-10-04 | 1 | -8/+0 |
* | ristretto patched in, except elligator. still need to test against vectors though | Michael Hamburg | 2017-10-04 | 1 | -162/+122 |
* | fix assertion on x25519/x448(0), thanks Olivier Cheron | Michael Hamburg | 2017-06-14 | 1 | -8/+9 |
* | restore declaration of deisogenize which was causing build failure in gcc | Mike Hamburg | 2017-05-24 | 1 | -0/+9 |
* | working on decaffeinating ed25519 | Michael Hamburg | 2017-05-22 | 1 | -27/+44 |
* | rename publicly-visible macros to DECAF_ namespace | Michael Hamburg | 2017-05-02 | 1 | -9/+9 |
* | add decaf_edXXX_convert_public_key_to_xXXX; thanks Johan Pascal | Michael Hamburg | 2017-05-02 | 1 | -0/+44 |
* | internal VECTOR_ALIGNED instead of __attribute((aligned(32))), thanks Olivier | Michael Hamburg | 2017-04-26 | 1 | -2/+1 |
* | unroll loops in arch_32/f_impl.c except on -Os | Michael Hamburg | 2017-04-22 | 1 | -5/+3 |
* | x448 generate_key -> derive_public_key to match ed448 nomenclature | Michael Hamburg | 2017-04-22 | 1 | -0/+7 |
* | error: shifting a negative | Hamburg | 2016-04-15 | 1 | -1/+1 |
* | change eddsa encoding names to show that they multiply_by_cofactor | Michael Hamburg | 2016-03-02 | 1 | -2/+2 |
* | change x### function names again, this time to decaf_x###, decaf_x###_generate_key | Michael Hamburg | 2016-03-02 | 1 | -3/+3 |
* | decaf_###_x_direct_scalarmul -> decaf_x###_direct_scalarmul | Michael Hamburg | 2016-03-02 | 1 | -10/+10 |
* | working through the TODOs. Correct the sign of the to/from EdDSA conversions (but is it correct for future curves?). SHA-3 now throws exceptions on over-long output | Michael Hamburg | 2016-03-02 | 1 | -4/+4 |
* | lowerCamelCase -> snake_case. Put decaf_ in front of all (most?) identifiers, except for SHAKE which is being removed before 1.0 release (for future refactoring) | Michael Hamburg | 2016-03-01 | 1 | -5/+5 |
* | minor changes; clear a few TODOs | Michael Hamburg | 2016-02-27 | 1 | -28/+21 |
* | eddsa provisional pass | Michael Hamburg | 2016-02-26 | 1 | -10/+81 |
* | eddsa-25519 now using sha512. But problem! We are using IsoEd25519 so we actually need an isogeny anyway to get to Ed25519 proper | Michael Hamburg | 2016-02-26 | 1 | -7/+12 |
* | move context arguments to the end of hash functions. Ed25519 doesnt support contexts. | Michael Hamburg | 2016-02-23 | 1 | -0/+1 |
* | EdDSA 448 seems to be working. Needs more testing, code moved around. EdDSA 255 not working yet; needs SHA512 | Michael Hamburg | 2016-02-22 | 1 | -12/+73 |
* | eddsa key generation, at least for goldilocks. needs parameterized hash function; sign/verify; rename; put in right place | Michael Hamburg | 2016-02-20 | 1 | -2/+54 |
* | add explicit GF_HEADROOM per field+arch for unreduced arith; fortunately unreduced arith is very rare | Michael Hamburg | 2016-02-05 | 1 | -48/+51 |
* | remove constant_time_lookup_xx | Michael Hamburg | 2016-01-29 | 1 | -19/+8 |
* | slight changes to the deisogenize code; hopefully clearer? | Michael Hamburg | 2016-01-29 | 1 | -15/+12 |
* | predeclare deisogenize | Michael Hamburg | 2016-01-29 | 1 | -0/+9 |
* | factor out elligator, decaf, scalar code. scalar_halve is now public | Michael Hamburg | 2016-01-29 | 1 | -565/+44 |
* | homogenize invsqrt code | Michael Hamburg | 2016-01-29 | 1 | -55/+38 |
* | dont go via asm anymore. also reduce the number of templated expressions | Michael Hamburg | 2016-01-29 | 1 | -1/+1 |
* | move everything over to more-tolerable templating | Michael Hamburg | 2016-01-29 | 1 | -4/+2 |
* | move more generation to python | Michael Hamburg | 2016-01-29 | 1 | -14/+32 |
* | move easy scalar computations to python | Michael Hamburg | 2016-01-29 | 1 | -11/+10 |
* | template curve_data | Michael Hamburg | 2016-01-29 | 1 | -2/+18 |
* | no more API_NS2. | Michael Hamburg | 2016-01-29 | 1 | -4/+4 |