Commit message (Collapse) | Author | Files | Lines | ||
---|---|---|---|---|---|
2018-09-16 | crypto: make MIT | Jason A. Donenfeld | 39 | -39/+39 | |
2018-09-16 | qemu: always pull and reset against integration tree | Jason A. Donenfeld | 1 | -0/+5 | |
2018-09-16 | global: remove non-essential inline annotations | Jason A. Donenfeld | 5 | -30/+23 | |
2018-09-16 | send/receive: reduce number of sg entries | Jason A. Donenfeld | 2 | -2/+2 | |
This reduces stack usage to quell warnings on powerpc. | |||||
2018-09-15 | simd: add __must_check annotation | Jason A. Donenfeld | 1 | -2/+2 | |
Suggested-by: Andy Lutomirski <luto@amacapital.net> | |||||
2018-09-13 | chacha20-arm: swap scalar and neon functions | Jason A. Donenfeld | 1 | -697/+697 | |
This brings us closer to the original code. | |||||
2018-09-12 | poly1305: precompute 5*r in init instead of blocks | Jason A. Donenfeld | 2 | -6/+18 | |
2018-09-12 | curve25519-x86_64: remove useless define | Jason A. Donenfeld | 1 | -1/+0 | |
2018-09-12 | chacha20: add constant for words in block | Jason A. Donenfeld | 2 | -2/+3 | |
2018-09-11 | poly1305: rename finish to final | Jason A. Donenfeld | 5 | -13/+13 | |
2018-09-11 | kconfig: make NEON depend on CPU_V7 | Jason A. Donenfeld | 1 | -3/+3 | |
2018-09-11 | crypto: make sure UML is properly disabled | Jason A. Donenfeld | 1 | -4/+4 | |
2018-09-11 | crypto: do not use compound literals in selftests | Jason A. Donenfeld | 2 | -7704/+7710 | |
gcc can't apply section attributes to compound literals, so we can't mark the actual data as __initconst. We thus waste space instead, but this shouldn't matter much, since it's cleared after init anyway, and because this is only for debugging. | |||||
2018-09-10 | blake2s-x86_64: fix whitespace errors | Jason A. Donenfeld | 1 | -2/+2 | |
2018-09-10 | version: bump snapshot0.0.20180910 | Jason A. Donenfeld | 2 | -2/+2 | |
2018-09-10 | poly1305: switch to donna | Jason A. Donenfeld | 3 | -183/+398 | |
2018-09-08 | poly1305: rewrite self tests from scratch | Jason A. Donenfeld | 1 | -1529/+831 | |
This removes the old cruft and makes things a bit more idiomatic. | |||||
2018-09-06 | compat: move simd.h from crypto to compat since it's going upstream | Jason A. Donenfeld | 2 | -0/+4 | |
2018-09-06 | compat: arch-namespace certain includes | Jason A. Donenfeld | 5 | -8/+8 | |
2018-09-06 | compat: support neon.h on old kernels | Jason A. Donenfeld | 2 | -0/+14 | |
Reported-by: Philipp Richter <richterphilipp.pops@gmail.com> | |||||
2018-09-06 | crypto: use CRYPTOGAMS license | Jason A. Donenfeld | 9 | -23/+27 | |
2018-09-06 | curve25519: arm: do not modify sp directly | Jason A. Donenfeld | 1 | -3/+3 | |
Thumb doesn't like this. Reported-by: Roman Mamedov <rm@romanrm.net> | |||||
2018-09-04 | version: bump snapshot0.0.20180904 | Jason A. Donenfeld | 2 | -2/+2 | |
2018-09-04 | global: always find OOM unlikely | Jason A. Donenfeld | 6 | -17/+17 | |
Suggested-by: Sultan Alsawaf <sultanxda@gmail.com> | |||||
2018-09-04 | global: prefer sizeof(*pointer) when possible | Jason A. Donenfeld | 15 | -53/+44 | |
Suggested-by: Sultan Alsawaf <sultanxda@gmail.com> | |||||
2018-09-03 | global: satisfy check_patch.pl errors | Jason A. Donenfeld | 6 | -26/+27 | |
2018-09-03 | crypto: import zinc | Jason A. Donenfeld | 56 | -6553/+13141 | |
2018-09-02 | uapi: reformat | Jason A. Donenfeld | 1 | -81/+83 | |
2018-09-02 | tools: ipc: do not warn on unrecognized netlink attributes | Jason A. Donenfeld | 1 | -17/+0 | |
It makes extending things more difficult. | |||||
2018-09-02 | netlink: insert peer version placeholder | Jason A. Donenfeld | 3 | -3/+17 | |
While we don't want people to ever use old protocols, people will complain if the API "changes", so explicitly make the unset protocol mean the latest, and add a dummy mechanism of specifying the protocol on a per-peer basis, which we hope nobody actually ever uses. | |||||
2018-08-28 | curve25519-arm: prefix immediates with # | Jason A. Donenfeld | 1 | -18/+18 | |
2018-08-28 | curve25519-arm: do not waste 32 bytes of stack | Jason A. Donenfeld | 1 | -88/+88 | |
2018-08-28 | curve25519-arm: use ordinary prolog and epilogue | Samuel Neves | 1 | -18/+6 | |
Signed-off-by: Samuel Neves <sneves@dei.uc.pt> | |||||
2018-08-28 | curve25519-arm: add spaces after commas | Jason A. Donenfeld | 1 | -2074/+2074 | |
2018-08-28 | curve25519-arm: cleanups from lkml | Jason A. Donenfeld | 1 | -33/+30 | |
Suggested-by: Ard Biesheuvel <ard.biesheuvel@linaro.org> | |||||
2018-08-28 | curve25519-arm: reformat | Jason A. Donenfeld | 1 | -2096/+2096 | |
2018-08-28 | curve25519-x86_64: let the compiler decide when/how to load constants | Samuel Neves | 1 | -5/+2 | |
Signed-off-by: Samuel Neves <sneves@dei.uc.pt> | |||||
2018-08-28 | curve25519-hacl64: use formally verified C for comparisons | Jason A. Donenfeld | 1 | -6/+19 | |
The previous code had been proved in Z3, but this new code from upstream KreMLin is directly generated from the F*, which is preferable. The assembly generated is identical. | |||||
2018-08-28 | crypto: use unaligned helpers | Jason A. Donenfeld | 9 | -55/+61 | |
This is not useful for WireGuard, but for the general use case we probably want it this way, and the speed difference is mostly lost in the noise. | |||||
2018-08-28 | Kconfig: use new-style help marker | Jason A. Donenfeld | 1 | -2/+2 | |
2018-08-28 | compat: rng_is_initialized made it into 4.19 | Jason A. Donenfeld | 1 | -53/+53 | |
2018-08-28 | global: run through clang-format | Jason A. Donenfeld | 28 | -795/+1654 | |
This is the worst commit in the whole repo, making the code much less readable, but so it goes with upstream maintainers. We are now woefully wrapped at 80 columns. | |||||
2018-08-21 | wg-quick: check correct variable for route deduplication | Jason A. Donenfeld | 1 | -1/+1 | |
Reported-by: John Sager <john@sager.me.uk> | |||||
2018-08-12 | wg-quick: darwin: prefer system paths for tools | Jason A. Donenfeld | 1 | -1/+1 | |
The only things wg-quick(8) needs from Homebrew are bash(1) and wg(8). Other than that, it's explicitly coded against the native system utilities. Since wg-quick(8) and bash(1) are invoked in auto_su by their full absolute path (via $SELF and $BASH, respectively), we can simply set the $PATH to be prefixed by the default system binary paths. This way, if users install tools that conflict with system tools -- such as GNU coreutils -- we won't accidently call those. Reported-by: Deirdre Connolly <durumcrustulum@gmail.com> | |||||
2018-08-09 | version: bump snapshot0.0.20180809 | Jason A. Donenfeld | 2 | -2/+2 | |
2018-08-09 | netlink: don't start over iteration on multipart non-first allowedips | Jason A. Donenfeld | 2 | -2/+28 | |
Reported-by: Matt Layher <mdlayher@gmail.com> | |||||
2018-08-09 | timers: include header in right file | Jason A. Donenfeld | 2 | -2/+2 | |
2018-08-07 | curve25519-hacl64: correct u64_gte_mask | Samuel Neves | 1 | -3/+1 | |
Remove signed right shifts. Previously u64_gte_mask was only correct for x < 2^63. Z3 script proving correctness: >>> from z3 import * >>> >>> x = BitVec("x", 64) >>> y = BitVec("y", 64) >>> >>> t = LShR(x^((x^y)|((x-y)^y)), 63) - 1 >>> >>> prove(If(UGE(x, y), BitVecVal(-1, 64), BitVecVal(0, 64)) == t) proved Signed-off-by: Samuel Neves <sneves@dei.uc.pt> | |||||
2018-08-07 | curve25519-hacl64: simplify u64_eq_mask | Samuel Neves | 1 | -8/+3 | |
Avoid signed right shift. Z3 script showing equivalence: >>> from z3 import * >>> >>> x = BitVec("x", 64) >>> y = BitVec("y", 64) >>> >>> # Before ... x_ = ~(x ^ y) >>> x_ &= x_ << 32 >>> x_ &= x_ << 16 >>> x_ &= x_ << 8 >>> x_ &= x_ << 4 >>> x_ &= x_ << 2 >>> x_ &= x_ << 1 >>> x_ >>= 63 >>> >>> # After ... y_ = x ^ y >>> y_ = y_ | -y_ >>> y_ = LShR(y_, 63) - 1 >>> >>> prove(x_ == y_) proved Signed-off-by: Samuel Neves <sneves@dei.uc.pt> | |||||
2018-08-07 | chacha20: use memmove in case buffers overlap | Jason A. Donenfeld | 1 | -1/+1 | |
Suggested-by: Samuel Neves <sneves@dei.uc.pt> |