1
mirror of https://github.com/jedisct1/libsodium.git synced 2024-12-20 02:25:14 -07:00
Commit Graph

973 Commits

Author SHA1 Message Date
Frank Denis
c7418dfd58 zero the poly1305 state in crypto_secretbox_chacha20poly1305* 2014-06-20 16:28:00 -07:00
Frank Denis
bc24968993 Document ChaCha20Poly1305 2014-06-20 00:07:12 -07:00
Frank Denis
5e89fc9303 Import secretbox_chacha20poly1305.exp 2014-06-19 23:07:20 -07:00
Frank Denis
bd1490a6cd Add AEAD_CHACHA20_POLY1305
With a twist: in order to be consistent with the crypto_stream
interface, the tag has to come before the ciphertext.
2014-06-19 22:49:33 -07:00
Frank Denis
9cba9c39e3 + crypto_onetimeauth streaming interface 2014-06-19 20:32:37 -07:00
Frank Denis
4df5a1b404 + poly1305 streaming interface (2) 2014-06-19 20:14:56 -07:00
Frank Denis
b6fbb0ca6a + poly1305 streaming interface 2014-06-19 20:04:48 -07:00
Frank Denis
ffdbac52ce poly1305_state_internal_t alignment is fine; add intermediary void * cast. 2014-06-19 19:39:50 -07:00
Frank Denis
c914f6a1af Remove implementation-specific header crypto_onetimeauth_poly1305_donna.h
Remove macro magic for poly1305_donna by the way
2014-06-19 19:26:40 -07:00
Frank Denis
47f409a0c8 Expose poly1305_context as crypto_onetimeauth_poly1305_state 2014-06-19 18:55:21 -07:00
Frank Denis
3ae2cb5c26 Indent 2014-06-19 18:45:56 -07:00
Frank Denis
b0f798aa66 + crypto_stream_chacha20_xor_ic() to set the initial value of the block counter 2014-06-19 00:28:02 -07:00
Frank Denis
098bad385b Disable memset_s test for now.
Targeting OSX < 10.9 with -macosx-version-min doesn't work as expected:
memset_s is detected as present even though it won't actually work on
OSX <= 10.8
2014-06-18 17:49:28 -07:00
Frank Denis
64154fb9f5 Use RtlGenRandom() instead of CryptGenRandom() on Windows 2014-06-15 22:39:10 -07:00
Frank Denis
18cabe2c14 Another Objective-C wrapper 2014-06-14 11:55:51 -07:00
Frank Denis
bc11c90bf5 Merge branch 'master' of github.com:jedisct1/libsodium
* 'master' of github.com:jedisct1/libsodium:
  Avoid naming a function select() in order to avoid confusion with select(2)
  Comment dead code generated by qhasm
  Remove useless access() before open()
  Add annotations for Coverity FPs
  test/default/sign.c: make the test vectors static
  Make crypto_sign() test code more explicit. crypto_sign() doesn't just need the secret key. The public key has to follow. Which is why the test vectors are laid out in this order. But this can confuse static analysis, as well as people looking at the test in order to better understand how crypto_sign() works. So, just copy the sk and the pk into a dedicated buffer, for clarity.
  Disable the pwhash_scrypt_ll test that requires 1 Gb RAM. This is way too much for many devices and for VPS users.
2014-06-13 17:17:31 -07:00
Frank Denis
7b7e223d39 Do not allocate more memory than needed in the easy interfaces.
And compute m_boxed_len as (ZEROBYTES || message len) to match the way the
documentation describes the output.
2014-06-13 17:15:34 -07:00
Frank Denis
dfade241e7 Avoid naming a function select() in order to avoid confusion with select(2) 2014-06-09 19:29:08 -07:00
Frank Denis
9b3da167fd Comment dead code generated by qhasm 2014-06-09 19:27:54 -07:00
Frank Denis
3acdfa99a6 Remove useless access() before open() 2014-06-09 19:27:54 -07:00
Frank Denis
befd9c257d Add annotations for Coverity FPs 2014-06-09 19:27:54 -07:00
Frank Denis
1fcb676aed test/default/sign.c: make the test vectors static 2014-06-09 19:27:54 -07:00
Frank Denis
06e089ef6a Make crypto_sign() test code more explicit.
crypto_sign() doesn't just need the secret key. The public key has to follow.
Which is why the test vectors are laid out in this order.
But this can confuse static analysis, as well as people looking at the test
in order to better understand how crypto_sign() works.
So, just copy the sk and the pk into a dedicated buffer, for clarity.
2014-06-09 19:27:49 -07:00
Frank Denis
8560366cd8 Disable the pwhash_scrypt_ll test that requires 1 Gb RAM.
This is way too much for many devices and for VPS users.
2014-06-07 10:16:03 -07:00
Frank Denis
6aacecac60 Rename curve25519/ref10 files to avoid duplicate file names.
Sharing code between curve25519 and ed25519 would be way better, but
until then, having distinct file names is required for Cocoapods, and makes
things easier in Visual Studio.
2014-06-06 23:36:27 -07:00
Frank Denis
fee99c1b2e Remove the ref curve25519 implementation from the tree. 2014-06-06 14:25:04 -07:00
Frank Denis
a0a3741ea3 Replace curve25519 ref implementation with latest ref10 from Supercop. 2014-06-06 08:42:19 -07:00
Frank Denis
2058eaea99 Revert bd8cbd3175
Go back to masking the high bit in curve25519 instead of processing the
key as a 256-bit value.
2014-06-06 08:22:11 -07:00
Frank Denis
6145edc563 Revert "Make curve25519-donna-c64 handle non-canonical points like the ref implementation."
This reverts commit bd8cbd3175.

Conflicts:
	src/libsodium/crypto_scalarmult/curve25519/donna_c64/smult_curve25519_donna_c64.c
	test/default/scalarmult7.c
	test/default/scalarmult8.c
2014-06-06 08:19:49 -07:00
Frank Denis
c2290bbfaf Do not suggest running anything but make install with root privileges. 2014-06-05 22:17:11 -07:00
Frank Denis
42b2d5c8e7 Indent 2014-06-03 23:51:51 -07:00
Frank Denis
e737c94271 More test/default/pwhash_scrypt_ll.c fixes 2014-06-03 23:48:25 -07:00
Frank Denis
f341a4c9a3 Make arguments match the format string in test/default/pwhash_scrypt_ll.c ... 2014-06-03 23:22:38 -07:00
Frank Denis
6afdc96783 Merge pull request #167 from truenull/master
Tarsnap test vectors tested on Windows
2014-06-03 22:53:47 -07:00
Anders Johansson
1d4849465b Change spaces to tab in Makefile.am after pwhash_scrypt_ll addition 2014-06-03 13:04:26 +02:00
Anders Johansson
e7e4ab514c To comply with C89:
- Moved variable declarations to top of function
 - Constant output buffer inside the function

Moved strlen calls from main to inside function to make code easier to read.

Also switched from fancy quotes to single quotes in expected output
2014-06-03 12:15:39 +02:00
Anders Johansson
e477e51323 Fix Travis g++ errors 2014-06-01 21:31:44 +02:00
Anders Johansson
d47d5d8623 Add test for Tarsnap testvectors to low-level scrypt interface 2014-06-01 20:58:20 +02:00
Frank Denis
4c9a993225 Remove useless #include 2014-05-27 08:53:46 -07:00
Frank Denis
eca4b52911 Add extra braces for int128 initializers 2014-05-27 08:53:10 -07:00
Frank Denis
9981651750 aes128ctr: use an union to avoid breaking aliasing rules. 2014-05-26 15:36:16 -07:00
Frank Denis
c712feaae3 Avoid redefinition of be32enc() on NetBSD. 2014-05-26 00:12:02 -07:00
Frank Denis
b47755fac1 Mention crypto_box_seed_keypair 2014-05-25 19:25:44 -07:00
Jan Varho
9f52b0f0e9 Change crypto_box_seed_keypair to use SHA-512 of the seed
This makes it compatible with what js-nacl and racl do.
2014-05-25 19:13:04 -07:00
Frank Denis
c4f7adeda4 Merge pull request #161 from jvarho/crypto-box-seed-keypair
Add crypto_box_seed_keypair
2014-05-25 19:09:27 -07:00
Jan Varho
f438116b6b Test crypto_box_seed_keypair 2014-05-23 10:33:58 +03:00
Jan Varho
c565993885 Add crypto_box_seed_keypair like crypto_sign_seed_keypair
Uses sk = seed.
2014-05-23 10:25:45 +03:00
Frank Denis
2270e4dc02 Merge pull request #159 from evoskuil/master
Minor VS build/package updates.
2014-05-21 00:04:46 -07:00
evoskuil
e5648e21a2 Remove use of $(DefaultLinkage) for values reflected in the VS props UI. 2014-05-21 00:01:26 -07:00
evoskuil
d790237af3 Generalize dependency references (unused) for nuget package. 2014-05-21 00:00:40 -07:00