Age | Commit message (Collapse) | Author | Files | Lines | |
---|---|---|---|---|---|
2017-02-10 | Fix copy-pasteism in CFI directives. | Adam Langley | 1 | -5/+5 | |
I don't think this actually affects anything since the cfi_restore directives aren't strictly needed anyway. (The old values are still in memory so either will do.) CLA: trivial Reviewed-by: Rich Salz <rsalz@openssl.org> Reviewed-by: Andy Polyakov <appro@openssl.org> (Merged from https://github.com/openssl/openssl/pull/2582) | |||||
2017-02-09 | bn/asm/x86_64*: add DWARF CFI directives. | Andy Polyakov | 1 | -0/+72 | |
Reviewed-by: Rich Salz <rsalz@openssl.org> | |||||
2017-02-06 | x86_64 assembly pack: Win64 SEH face-lift. | Andy Polyakov | 1 | -6/+6 | |
- harmonize handlers with guidelines and themselves; - fix some bugs in handlers; - add missing handlers in chacha and ecp_nistz256 modules; Reviewed-by: Rich Salz <rsalz@openssl.org> | |||||
2016-11-10 | bn/asm/x86_64-mont.pl: fix for CVE-2016-7055 (Low severity). | Andy Polyakov | 1 | -3/+2 | |
Reviewed-by: Rich Salz <rsalz@openssl.org> | |||||
2016-08-22 | bn/asm/x86[_64]-mont*.pl: implement slightly alternative page-walking. | Andy Polyakov | 1 | -78/+107 | |
Original strategy for page-walking was adjust stack pointer and then touch pages in order. This kind of asks for double-fault, because if touch fails, then signal will be delivered to frame above adjusted stack pointer. But touching pages prior adjusting stack pointer would upset valgrind. As compromise let's adjust stack pointer in pages, touching top of the stack. This still asks for double-fault, but at least prevents corruption of neighbour stack if allocation is to overstep the guard page. Also omit predict-non-taken hints as they reportedly trigger illegal instructions in some VM setups. Reviewed-by: Richard Levitte <levitte@openssl.org> | |||||
2016-05-29 | x86_64 assembly pack: tolerate spaces in source directory name. | Andy Polyakov | 1 | -1/+1 | |
[as it is now quoting $output is not required, but done just in case] Reviewed-by: Richard Levitte <levitte@openssl.org> | |||||
2016-05-21 | Add OpenSSL copyright to .pl files | Rich Salz | 1 | -1/+8 | |
Reviewed-by: Richard Levitte <levitte@openssl.org> | |||||
2016-03-15 | On Windows, page walking is known as __chkstk. | Emilia Kasper | 1 | -0/+2 | |
Reviewed-by: Andy Polyakov <appro@openssl.org> | |||||
2016-03-15 | Explain *cough*-dows | Emilia Kasper | 1 | -1/+1 | |
Reviewed-by: Andy Polyakov <appro@openssl.org> | |||||
2016-03-07 | bn/asm/x86[_64]-mont*.pl: complement alloca with page-walking. | Andy Polyakov | 1 | -1/+41 | |
Some OSes, *cough*-dows, insist on stack being "wired" to physical memory in strictly sequential manner, i.e. if stack allocation spans two pages, then reference to farmost one can be punishable by SEGV. But page walking can do good even on other OSes, because it guarantees that villain thread hits the guard page before it can make damage to innocent one... Reviewed-by: Rich Salz <rsalz@openssl.org> | |||||
2016-03-01 | bn/asm/x86_64-mont5.pl: unify gather procedure in hardly used path | Andy Polyakov | 1 | -62/+126 | |
and reorganize/harmonize post-conditions. Additional hardening following on from CVE-2016-0702 Reviewed-by: Richard Levitte <levitte@openssl.org> Reviewed-by: Rich Salz <rsalz@openssl.org> | |||||
2016-03-01 | crypto/bn/x86_64-mont5.pl: constant-time gather procedure. | Andy Polyakov | 1 | -33/+6 | |
At the same time remove miniscule bias in final subtraction. Performance penalty varies from platform to platform, and even with key length. For rsa2048 sign it was observed to be 4% for Sandy Bridge and 7% on Broadwell. CVE-2016-0702 Reviewed-by: Richard Levitte <levitte@openssl.org> Reviewed-by: Rich Salz <rsalz@openssl.org> | |||||
2015-12-13 | x86_64 assembly pack: tune clang version detection even further. | Andy Polyakov | 1 | -1/+1 | |
RT#4171 Reviewed-by: Kurt Roeckx <kurt@openssl.org> | |||||
2015-11-23 | x86_64 assembly pack: tune clang version detection. | Andy Polyakov | 1 | -1/+1 | |
RT#4142 Reviewed-by: Richard Levitte <levitte@openssl.org> | |||||
2014-09-12 | crypto/bn/asm/x86_64-mont*.pl: add missing clang detection. | Andy Polyakov | 1 | -0/+5 | |
Reviewed-by: Rich Salz <rsalz@openssl.org> | |||||
2014-07-09 | x86_64 assembly pack: improve masm support. | Andy Polyakov | 1 | -2/+4 | |
2013-12-09 | bn/asm/x86_64-mont5.pl: add MULX/AD*X code path. | Andy Polyakov | 1 | -1720/+141 | |
This also eliminates code duplication between x86_64-mont and x86_64-mont and optimizes even original non-MULX code. | |||||
2013-10-25 | bn/asm/x86_64-mont.pl: minor optimization [for Decoded ICache]. | Andy Polyakov | 1 | -138/+151 | |
2013-10-14 | bn/asm/*x86_64*.pl: correct assembler requirement for ad*x. | Andy Polyakov | 1 | -1/+1 | |
2013-10-03 | bn/asm/x86_64-mont*.pl: add MULX/ADCX/ADOX code path. | Andy Polyakov | 1 | -38/+1196 | |
2013-09-09 | crypto/bn/asm/x86_64-mont.pl: minor optimization. | Andy Polyakov | 1 | -13/+3 | |
2013-07-05 | bn/asm/x86_86-mont.pl: optimize reduction for Intel Core family. | Andy Polyakov | 1 | -312/+449 | |
2013-02-02 | x86_64 assembly pack: keep making Windows build more robust. | Andy Polyakov | 1 | -1/+2 | |
PR: 2963 and a number of others | |||||
2012-06-27 | x86_64 assembly pack: make it possible to compile with Perl located on | Andy Polyakov | 1 | -1/+1 | |
path with spaces. PR: 2835 | |||||
2011-10-17 | x86_64-mont.pl: minor optimization. | Andy Polyakov | 1 | -18/+13 | |
2011-08-12 | This commit completes recent modular exponentiation optimizations on | Andy Polyakov | 1 | -2/+3 | |
x86_64 platform. It targets specifically RSA1024 sign (using ideas from http://eprint.iacr.org/2011/239) and adds more than 10% on most platforms. Overall performance improvement relative to 1.0.0 is ~40% in average, with best result of 54% on Westmere. Incidentally ~40% is average improvement even for longer key lengths. | |||||
2011-08-09 | x86_64-mont.pl: futher optimization resulting in up to 48% improvement | Andy Polyakov | 1 | -181/+1050 | |
(4096-bit RSA sign benchmark on Core2) in comparison to initial version from 2005. | |||||
2011-07-05 | x86_64-mont.pl: add squaring procedure and improve RSA sign performance | Andy Polyakov | 1 | -11/+496 | |
by up to 38% (4096-bit benchmark on Core2). | |||||
2010-05-05 | Revert previous Linux-specific/centric commit#19629. If it really has to | Andy Polyakov | 1 | -1/+0 | |
be done, it's definitely not the way to do it. So far answer to the question was to ./config -Wa,--noexecstack (adopted by RedHat). | |||||
2010-05-05 | Non-executable stack in asm. | Ben Laurie | 1 | -0/+1 | |
2008-12-19 | x86_64 assembler pack: add support for Win64 SEH. | Andy Polyakov | 1 | -10/+126 | |
2008-02-27 | Make x86_64-mont.pl work with debug Win64 build. | Andy Polyakov | 1 | -0/+1 | |
2007-06-29 | Latest bn_mont.c modification broke ECDSA test. I've got math wrong, which | Andy Polyakov | 1 | -4/+1 | |
is fixed now. | |||||
2007-06-21 | Typo in x86_64-mont.pl. | Andy Polyakov | 1 | -1/+1 | |
PR: 1549 | |||||
2007-06-17 | Eliminate conditional final subtraction in Montgomery assembler modules. | Andy Polyakov | 1 | -27/+28 | |
2006-12-29 | Minor clean-up in crypto/bn/asm. | Andy Polyakov | 1 | -1/+7 | |
2006-12-08 | Minor, +10%, tune-up for x86_64-mont.pl. | Andy Polyakov | 1 | -15/+16 | |
2005-10-22 | Change bn_mul_mont declaration and BN_MONT_CTX. Update CHANGES. | Andy Polyakov | 1 | -1/+3 | |
2005-10-07 | x86_64-mont.pl readability improvement. | Andy Polyakov | 1 | -15/+14 | |
2005-10-07 | Throw in Montgomery multiplication assembler for x86_64. | Andy Polyakov | 1 | -0/+207 | |