by NIIBE Yutaka | 20 Nov 01:46 2014
Picon

[git] GCRYPT - branch, master, updated. libgcrypt-1.6.0-126-ge613003

This is an automated email from the git hooks/post-receive script. It was
generated because a ref change was pushed to the repository containing
the project "The GNU crypto library".

The branch, master has been updated
       via  e6130034506013d6153465a2bedb6fb08a43f74d (commit)
      from  95eef21583d8e998efc48f22898c1ae31b77cb48 (commit)

Those revisions listed above that are new to this repository have
not appeared on any other notification email; so we list those
revisions in full, below.

- Log -----------------------------------------------------------------
commit e6130034506013d6153465a2bedb6fb08a43f74d
Author: NIIBE Yutaka <gniibe <at> fsij.org>
Date:   Wed Nov 19 15:48:12 2014 +0900

    ecc: Improve Montgomery curve implementation.

    * cipher/ecc-curves.c (_gcry_ecc_fill_in_curve): Support
    MPI_EC_MONTGOMERY.
    * cipher/ecc.c (test_ecdh_only_keys): New.
    (nist_generate_key): Call test_ecdh_only_keys for MPI_EC_MONTGOMERY.
    (check_secret_key): Handle Montgomery curve of x-coordinate only.
    * mpi/ec.c (_gcry_mpi_ec_mul_point): Resize points before the loop.
    Simplify, using pointers of Q1, Q2, PRD, and SUM.
    --

diff --git a/cipher/ecc-curves.c b/cipher/ecc-curves.c
index fd47c1d..9975bb4 100644
(Continue reading)

NIIBE Yutaka | 19 Nov 08:39 2014

[PATCH] ecc: Improve Montgomery curve implementation

Here is the change for Montgomery curve implementation.  I forgot to
submit this change in August.

Adding test_ecdh_only_keys is needed when we will support encryption
by Curve25519 in future.

The changes in _gcry_mpi_ec_mul_point are to make sure resizing the
MPI representation of points, and code clean up.

OK to commit?

    ecc: Improve Montgomery curve implementation.

    * cipher/ecc-curves.c (_gcry_ecc_fill_in_curve): Support
    MPI_EC_MONTGOMERY.
    * cipher/ecc.c (test_ecdh_only_keys): New.
    (nist_generate_key): Call test_ecdh_only_keys for MPI_EC_MONTGOMERY.
    (check_secret_key): Handle Montgomery curve of x-coordinate only.
    * mpi/ec.c (_gcry_mpi_ec_mul_point): Resize points before the loop.
    Simplify, using pointers of Q1, Q2, PRD, and SUM.
    --

diff --git a/cipher/ecc-curves.c b/cipher/ecc-curves.c
index fd47c1d..9975bb4 100644
--- a/cipher/ecc-curves.c
+++ b/cipher/ecc-curves.c
 <at>  <at>  -530,9 +530,8  <at>  <at>  _gcry_ecc_fill_in_curve (unsigned int nbits, const
char *name,
     {
     case MPI_EC_WEIERSTRASS:
(Continue reading)

by Jussi Kivilinna | 5 Nov 17:13 2014
Picon

[git] GCRYPT - branch, master, updated. libgcrypt-1.6.0-125-g95eef21

This is an automated email from the git hooks/post-receive script. It was
generated because a ref change was pushed to the repository containing
the project "The GNU crypto library".

The branch, master has been updated
       via  95eef21583d8e998efc48f22898c1ae31b77cb48 (commit)
       via  0b520128551054d83fb0bb2db8873394f38de498 (commit)
       via  c584f44543883346d5a565581ff99a0afce9c5e1 (commit)
      from  669a83ba86c38b271d85ed4bf1cabc7cc8160583 (commit)

Those revisions listed above that are new to this repository have
not appeared on any other notification email; so we list those
revisions in full, below.

- Log -----------------------------------------------------------------
commit 95eef21583d8e998efc48f22898c1ae31b77cb48
Author: Jussi Kivilinna <jussi.kivilinna <at> iki.fi>
Date:   Sun Nov 2 17:45:35 2014 +0200

    Disable NEON for CPUs that are known to have broken NEON implementation

    * src/hwf-arm.c (detect_arm_proc_cpuinfo): Add parsing for CPU version
    information and check if CPU is known to have broken NEON
    implementation.
    (_gcry_hwf_detect_arm): Filter out broken HW features.
    --

    Signed-off-by: Jussi Kivilinna <jussi.kivilinna <at> iki.fi>

diff --git a/src/hwf-arm.c b/src/hwf-arm.c
(Continue reading)

Jussi Kivilinna | 2 Nov 17:52 2014
Picon
Picon

[PATCH 1/3] chacha20: add ARMv7/NEON implementation

* cipher/Makefile.am: Add 'chacha20-armv7-neon.S'.
* cipher/chacha20-armv7-neon.S: New.
* cipher/chacha20.c (USE_NEON): New.
[USE_NEON] (_gcry_chacha20_armv7_neon_blocks): New.
(chacha20_do_setkey) [USE_NEON]: Use Neon implementation if
HWF_ARM_NEON flag set.
(selftest): Self-test encrypting buffer byte by byte.
* configure.ac [neonsupport=yes]: Add 'chacha20-armv7-neon.lo'.
--

Add Andrew Moon's public domain ARMv7/NEON implementation of ChaCha20. Original
source is available at: https://github.com/floodyberry/chacha-opt

Benchmark on Cortex-A8 (--cpu-mhz 1008):

Old:
 CHACHA20       |  nanosecs/byte   mebibytes/sec   cycles/byte
     STREAM enc |     13.45 ns/B     70.92 MiB/s     13.56 c/B
     STREAM dec |     13.45 ns/B     70.90 MiB/s     13.56 c/B

New:
 CHACHA20       |  nanosecs/byte   mebibytes/sec   cycles/byte
     STREAM enc |      6.20 ns/B     153.9 MiB/s      6.25 c/B
     STREAM dec |      6.20 ns/B     153.9 MiB/s      6.25 c/B

Signed-off-by: Jussi Kivilinna <jussi.kivilinna <at> iki.fi>
---
 cipher/Makefile.am           |    1 
 cipher/chacha20-armv7-neon.S |  710 ++++++++++++++++++++++++++++++++++++++++++
 cipher/chacha20.c            |   34 ++
(Continue reading)

And Sch | 13 Oct 16:47 2014

comparison between signed and unsigned integer

I recently added '-Wextra' to my compile flags and I get many of the following
warnings when compiling libgcrypt.

warning: comparison between signed and unsigned integer expressions [-Wsign-compare]

I have looked through them all and most of them are comparing a signed counter
with size_t or unsigned int, which should be benign. However, researching the
warning there are certain nasty bugs that appear if the signed int is ever
negative...

http://www.jwwalker.com/pages/safe-compare.html

https://www.securecoding.cert.org/confluence/display/cplusplus/INT02-CPP.+Understand+integer+conversion+rules

Now, Werner Koch said in the bug tracker that fixing this may introduce bugs, and I would agree. It probably
wouldn't be worthwhile because there are no obvious bugs ATM.

However, here is my second proposal, why not add a call to assert() before the comparison to make sure the
signed int is not negative. This shouldn't introduce any bugs AFAIK, and can be turned off globally.

____________________________________________________________
FREE 3D MARINE AQUARIUM SCREENSAVER - Watch dolphins, sharks & orcas on your desktop!
Check it out at http://www.inbox.com/marineaquarium
by Werner Koch | 9 Oct 08:31 2014
Picon

[git] GCRYPT - branch, master, updated. libgcrypt-1.6.0-122-g669a83b

This is an automated email from the git hooks/post-receive script. It was
generated because a ref change was pushed to the repository containing
the project "The GNU crypto library".

The branch, master has been updated
       via  669a83ba86c38b271d85ed4bf1cabc7cc8160583 (commit)
      from  23ecadf309f8056c35cc092e58df801ac0eab862 (commit)

Those revisions listed above that are new to this repository have
not appeared on any other notification email; so we list those
revisions in full, below.

- Log -----------------------------------------------------------------
commit 669a83ba86c38b271d85ed4bf1cabc7cc8160583
Author: Werner Koch <wk <at> gnupg.org>
Date:   Thu Oct 9 08:31:35 2014 +0200

    Register DCO for Markus Teich

    --

diff --git a/AUTHORS b/AUTHORS
index f72a421..e186a48 100644
--- a/AUTHORS
+++ b/AUTHORS
 <at>  <at>  -157,6 +157,9  <at>  <at>  Jussi Kivilinna <jussi.kivilinna <at> mbnet.fi>
 Jussi Kivilinna <jussi.kivilinna <at> iki.fi>
 2013-05-06:5186720A.4090101 <at> iki.fi:

+Markus Teich <markus dot teich at stusta dot mhn dot de>
(Continue reading)

Vitezslav Cizek | 8 Oct 14:40 2014
Picon

FIPS 186-4 compliance patches for rsa/dsa/ecdsa

Hi,
The libgcrypt code isn't compliant with the latest FIPS 186-4.
There are some changes necessary, especially in the key generation code.

I've created issue 1736.
(https://bugs.g10code.com/gnupg/issue1736)

Patches are attached there.
Can someone please review them?

--

-- 
Vita Cizek
_______________________________________________
Gcrypt-devel mailing list
Gcrypt-devel <at> gnupg.org
http://lists.gnupg.org/mailman/listinfo/gcrypt-devel
Werner Koch | 8 Oct 15:01 2014
Picon

Re: [PATCH revised] Add gcry_mpi_ec_sub.

On Tue,  7 Oct 2014 18:41, teichm <at> in.tum.de said:

> And now revised with the „signed of“ line. Sorry for the delay, but contributing
> to libgcrypt seems to be very time consuming… :(

As is the maintaining ...

Pushed.  Thanks.

Please send a DCO to this list (see doc/HACKING).

Shalom-Salam,

   Werner

--

-- 
Die Gedanken sind frei.  Ausnahmen regelt ein Bundesgesetz.

_______________________________________________
Gcrypt-devel mailing list
Gcrypt-devel <at> gnupg.org
http://lists.gnupg.org/mailman/listinfo/gcrypt-devel
by Markus Teich | 8 Oct 15:01 2014
Picon

[git] GCRYPT - branch, master, updated. libgcrypt-1.6.0-121-g23ecadf

This is an automated email from the git hooks/post-receive script. It was
generated because a ref change was pushed to the repository containing
the project "The GNU crypto library".

The branch, master has been updated
       via  23ecadf309f8056c35cc092e58df801ac0eab862 (commit)
      from  a078436be5b656e4a2acfaeb5f054b9991f617e5 (commit)

Those revisions listed above that are new to this repository have
not appeared on any other notification email; so we list those
revisions in full, below.

- Log -----------------------------------------------------------------
commit 23ecadf309f8056c35cc092e58df801ac0eab862
Author: Markus Teich <markus.teich <at> stusta.mhn.de>
Date:   Tue Oct 7 18:24:27 2014 +0200

    mpi: Add gcry_mpi_ec_sub.

    * NEWS (gcry_mpi_ec_sub): New.
    * doc/gcrypt.texi (gcry_mpi_ec_sub): New.
    * mpi/ec.c (_gcry_mpi_ec_sub, sub_points_edwards): New.
    (sub_points_montgomery, sub_points_weierstrass): New stubs.
    * src/gcrypt-int.h (_gcry_mpi_ec_sub): New.
    * src/gcrypt.h.in (gcry_mpi_ec_sub): New.
    * src/libgcrypt.def (gcry_mpi_ec_sub): New.
    * src/libgcrypt.vers (gcry_mpi_ec_sub): New.
    * src/mpi.h (_gcry_mpi_ec_sub_points): New.
    * src/visibility.c (gcry_mpi_ec_sub): New.
    * src/visibility.h (gcry_mpi_ec_sub): New.
(Continue reading)

by Werner Koch | 8 Oct 14:51 2014
Picon

[git] GCRYPT - branch, master, updated. libgcrypt-1.6.0-120-ga078436

This is an automated email from the git hooks/post-receive script. It was
generated because a ref change was pushed to the repository containing
the project "The GNU crypto library".

The branch, master has been updated
       via  a078436be5b656e4a2acfaeb5f054b9991f617e5 (commit)
       via  5c906e2cdb14e93fb4915fdc69c7353a5fa35709 (commit)
      from  de0ccd4dce7ec185a678d78878d4538dd609ca0f (commit)

Those revisions listed above that are new to this repository have
not appeared on any other notification email; so we list those
revisions in full, below.

- Log -----------------------------------------------------------------
commit a078436be5b656e4a2acfaeb5f054b9991f617e5
Author: Werner Koch <wk <at> gnupg.org>
Date:   Wed Oct 8 14:42:36 2014 +0200

    doc: Fix a configure option name.

    --

diff --git a/AUTHORS b/AUTHORS
index 860dea2..f72a421 100644
--- a/AUTHORS
+++ b/AUTHORS
 <at>  <at>  -137,7 +137,7  <at>  <at>  Authors with a DCO
 ==================

 Andrei Scherer <andsch <at> inbox.com>
(Continue reading)

by Jussi Kivilinna | 4 Oct 14:48 2014
Picon

[git] GCRYPT - branch, master, updated. libgcrypt-1.6.0-118-gde0ccd4

This is an automated email from the git hooks/post-receive script. It was
generated because a ref change was pushed to the repository containing
the project "The GNU crypto library".

The branch, master has been updated
       via  de0ccd4dce7ec185a678d78878d4538dd609ca0f (commit)
      from  30bd759f398f45b04d0a783b875f59ce9bd1e51d (commit)

Those revisions listed above that are new to this repository have
not appeared on any other notification email; so we list those
revisions in full, below.

- Log -----------------------------------------------------------------
commit de0ccd4dce7ec185a678d78878d4538dd609ca0f
Author: Jussi Kivilinna <jussi.kivilinna <at> iki.fi>
Date:   Sun Aug 31 13:17:24 2014 +0300

    Add Whirlpool AMD64/SSE2 assembly implementation

    * cipher/Makefile.am: Add 'whirlpool-sse2-amd64.S'.
    * cipher/whirlpool-sse2-amd64.S: New.
    * cipher/whirlpool.c (USE_AMD64_ASM): New.
    (whirlpool_tables_s): New.
    (rc, C0, C1, C2, C3, C4, C5, C6, C7): Combine these tables into single
    structure and replace old tables with macros of same name.
    (tab): New structure containing above tables.
    [USE_AMD64_ASM] (_gcry_whirlpool_transform_amd64)
    (whirlpool_transform): New.
    * configure.ac [host=x86_64]: Add 'whirlpool-sse2-amd64.lo'.
    --
(Continue reading)


Gmane