aboutsummaryrefslogtreecommitdiffstats
path: root/src/per_curve/decaf.tmpl.c (follow)
Commit message (Expand)AuthorAgeFilesLines
* Expand bit to mask as inline functionJohan Pascal2020-11-231-1/+1
* Avoid branching on mask bit extension.Johan Pascal2020-11-221-2/+1
* Fix windows build and package installationJohan Pascal2020-11-191-2/+2
* Thanks Johan Pascal: remove gf_hibit, since it was a relic from p521 daysMichael Hamburg2019-02-241-11/+11
* Merge with master from the original depotJohan Pascal2018-05-071-1/+1
|\
| * minor fixes: fix unreachable code, fix an integer used in boolean context, thanks to Sofi CeliMichael Hamburg2018-04-101-1/+1
* | windows_compatibilitymrolinek2018-03-171-12/+36
|/
* Add missing FIELD_LITERAL for RISTRETTO_FACTOROlivier Chéron2017-11-101-2/+2
* change the misleading mul_by_cofactor functions to mul_by_ratio, and create ENCODE_RATIO and DECODE_ratio constants to represent thisMichael Hamburg2017-10-151-18/+10
* Incorporate test vectors from DalekMichael Hamburg2017-10-131-13/+6
* toggle elligator sign back to match DalekMichael Hamburg2017-10-131-1/+1
* inverse elligator works, but at what cost?!?!!?Michael Hamburg2017-10-071-14/+15
* CFRG crypto back to working, just need to do elligator inversion for identity on x25519Michael Hamburg2017-10-061-27/+24
* working out sign bugs; then on to invert elligator ristrettoMichael Hamburg2017-10-051-5/+11
* ed25519 ristretto inverse works except at the identity pointMichael Hamburg2017-10-051-20/+18
* elligator apparently(?) working for ed448Michael Hamburg2017-10-051-26/+43
* add ristretto widget. elligator is correct, but inverse is not yetMichael Hamburg2017-10-041-8/+0
* ristretto patched in, except elligator. still need to test against vectors thoughMichael Hamburg2017-10-041-162/+122
* fix assertion on x25519/x448(0), thanks Olivier CheronMichael Hamburg2017-06-141-8/+9
* restore declaration of deisogenize which was causing build failure in gccMike Hamburg2017-05-241-0/+9
* working on decaffeinating ed25519Michael Hamburg2017-05-221-27/+44
* rename publicly-visible macros to DECAF_ namespaceMichael Hamburg2017-05-021-9/+9
* add decaf_edXXX_convert_public_key_to_xXXX; thanks Johan PascalMichael Hamburg2017-05-021-0/+44
* internal VECTOR_ALIGNED instead of __attribute((aligned(32))), thanks OlivierMichael Hamburg2017-04-261-2/+1
* unroll loops in arch_32/f_impl.c except on -OsMichael Hamburg2017-04-221-5/+3
* x448 generate_key -> derive_public_key to match ed448 nomenclatureMichael Hamburg2017-04-221-0/+7
* error: shifting a negativeHamburg2016-04-151-1/+1
* change eddsa encoding names to show that they multiply_by_cofactorMichael Hamburg2016-03-021-2/+2
* change x### function names again, this time to decaf_x###, decaf_x###_generate_keyMichael Hamburg2016-03-021-3/+3
* decaf_###_x_direct_scalarmul -> decaf_x###_direct_scalarmulMichael Hamburg2016-03-021-10/+10
* working through the TODOs. Correct the sign of the to/from EdDSA conversions (but is it correct for future curves?). SHA-3 now throws exceptions on over-long outputMichael Hamburg2016-03-021-4/+4
* lowerCamelCase -> snake_case. Put decaf_ in front of all (most?) identifiers, except for SHAKE which is being removed before 1.0 release (for future refactoring)Michael Hamburg2016-03-011-5/+5
* minor changes; clear a few TODOsMichael Hamburg2016-02-271-28/+21
* eddsa provisional passMichael Hamburg2016-02-261-10/+81
* eddsa-25519 now using sha512. But problem! We are using IsoEd25519 so we actually need an isogeny anyway to get to Ed25519 properMichael Hamburg2016-02-261-7/+12
* move context arguments to the end of hash functions. Ed25519 doesnt support contexts.Michael Hamburg2016-02-231-0/+1
* EdDSA 448 seems to be working. Needs more testing, code moved around. EdDSA 255 not working yet; needs SHA512Michael Hamburg2016-02-221-12/+73
* eddsa key generation, at least for goldilocks. needs parameterized hash function; sign/verify; rename; put in right placeMichael Hamburg2016-02-201-2/+54
* add explicit GF_HEADROOM per field+arch for unreduced arith; fortunately unreduced arith is very rareMichael Hamburg2016-02-051-48/+51
* remove constant_time_lookup_xxMichael Hamburg2016-01-291-19/+8
* slight changes to the deisogenize code; hopefully clearer?Michael Hamburg2016-01-291-15/+12
* predeclare deisogenizeMichael Hamburg2016-01-291-0/+9
* factor out elligator, decaf, scalar code. scalar_halve is now publicMichael Hamburg2016-01-291-565/+44
* homogenize invsqrt codeMichael Hamburg2016-01-291-55/+38
* dont go via asm anymore. also reduce the number of templated expressionsMichael Hamburg2016-01-291-1/+1
* move everything over to more-tolerable templatingMichael Hamburg2016-01-291-4/+2
* move more generation to pythonMichael Hamburg2016-01-291-14/+32
* move easy scalar computations to pythonMichael Hamburg2016-01-291-11/+10
* template curve_dataMichael Hamburg2016-01-291-2/+18
* no more API_NS2.Michael Hamburg2016-01-291-4/+4
Copyright © 1996 – 2023 Jason A. Donenfeld. All Rights Reverse Engineered.