Skip to content
free C++ class library of cryptographic schemes
C++ Shell Assembly C Other
Branch: master
Clone or download
noloader Make XTS mode parallelizable (GH #891)
On CoffeeLake performance increased from 3.4 cpb to 1.75 cpb. On Core2Duo performance increased from 27 cpb to 19 cpb.
Latest commit 8e8e95c Oct 13, 2019
Permalink
Type Name Latest commit message Commit time
Failed to load latest commit information.
.github Fix spelling errors Nov 12, 2017
TestData Regenerate ElGamal test data Aug 24, 2019
TestPrograms Fix AVX2 feature test under Clang 3.3 Jul 21, 2019
TestScripts Remove temp file in cryptest.sh Oct 13, 2019
TestVectors Update comments Oct 13, 2019
.appveyor.yml Remove CMake testing support (GH #506) Sep 17, 2017
.gitattributes Enforce LF line endings for shell scripts (#451) Jul 28, 2017
.gitignore Add *.cxx to .gitignore Jul 6, 2018
.travis.yml Re-enable UBsan tests on Travis Dec 12, 2018
3way.cpp Switch to rotlConstant and rotrConstant Nov 25, 2017
3way.h Remove unneeded Doxygen directive Jan 19, 2018
Doxyfile Post-release version increment Apr 29, 2019
Filelist.txt Add XTS block cipher mode of operation (GH #891, PR #892) Oct 12, 2019
GNUmakefile Add -DCRYPTOPP_DISABLE_ASM for 'make deps' recipe Sep 30, 2019
GNUmakefile-cross Add -DCRYPTOPP_DISABLE_ASM for 'make deps' recipe Sep 30, 2019
History.txt Prepare for Crypto++ 8.2 release Apr 28, 2019
Install.txt Prepare for Crypto++ 6.1 release Feb 22, 2018
License.txt Add ARM SHA256 asm implementation from Cryptogams (GH #840, PR #840) May 19, 2019
Readme.txt Update README Jun 15, 2019
adhoc.cpp.proto Rework GNUmakefiles for XL C/C++ changes Jul 31, 2018
adler32.cpp Remove double semicolons after sed'ing defines Oct 4, 2019
adler32.h Don't add semicolon to CRYPTOPP_CONSTANT abd DOCUMENTED_TYPEDEF (GH #889 Oct 3, 2019
adv_simd.h Fix semicolons in adv_simd.h Oct 13, 2019
aes.h Don't add semicolon to CRYPTOPP_CONSTANT abd DOCUMENTED_TYPEDEF (GH #889 Oct 3, 2019
aes_armv4.S Add ARM SHA256 asm implementation from Cryptogams (GH #840, PR #840) May 19, 2019
aes_armv4.h Rename files with dashes to underscores (GH #736) Nov 10, 2018
algebra.cpp Change file preamble to include "originally written by Wei Dai" Jan 27, 2017
algebra.h Clear clang-tidy warnings Jan 24, 2018
algparam.cpp Remove g_pAssignIntToInteger pointer, add CRYPTOPP_NO_ASSIGN_TO_INTEG… Mar 25, 2017
algparam.h Make config.h more Autoconf friendly (GH #835, PR #836) May 17, 2019
allocate.cpp Avoid circular dependency using AlignedAllocate (GH #885) Sep 28, 2019
allocate.h Avoid circular dependency using AlignedAllocate (GH #885) Sep 28, 2019
arc4.cpp Clear clang-tidy warnings Jan 25, 2018
arc4.h Don't add semicolon to CRYPTOPP_CONSTANT abd DOCUMENTED_TYPEDEF (GH #889 Oct 3, 2019
argnames.h Change Doxygen comment style from //! to /// Nov 29, 2017
aria.cpp Clear unused variable warning Nov 12, 2018
aria.h Clear clang-tidy warnings Jan 24, 2018
aria_simd.cpp Update comments Jul 22, 2019
ariatab.cpp Add CRYPTOPP_TABLE, remove CRYPTOPP_SECTION Jan 21, 2018
arm_simd.h Update documentation Jan 27, 2019
asn.cpp Make bt const in BERDecodePeekLength Oct 8, 2019
asn.h Make bt const in BERDecodePeekLength Oct 8, 2019
authenc.cpp Make AuthenticatedSymmetricCipherBase::ProcessData overflow safe Jan 30, 2019
authenc.h Fix clang warnings (GH #771) Jan 2, 2019
base32.cpp Add Base32 extended hex encoder and decoder (GH #534) Nov 28, 2017
base32.h Remove unneeded Doxygen directive Jan 19, 2018
base64.cpp Cleanup use of unnamed namespaces in encoders and decoders Nov 12, 2017
base64.h Remove unneeded Doxygen directive Jan 19, 2018
basecode.cpp Add additional Encoder and Decoder alphabet test (GH #562) Jan 13, 2018
basecode.h Clear lgtm findings Jun 4, 2019
bds10.zip Re-add bds10.zip Nov 12, 2016
bench.h Split public key benchmarks into integers and elliptic curves Aug 7, 2019
bench1.cpp Split public key benchmarks into integers and elliptic curves Aug 7, 2019
bench2.cpp Add XTS block cipher mode of operation (GH #891, PR #892) Oct 12, 2019
bench3.cpp Split public key benchmarks into integers and elliptic curves Aug 7, 2019
bfinit.cpp Revert BlowfishCompat changes (PR #877) Oct 12, 2019
blake2.cpp Remove C++11 constexpr code for CRYPTOPP_ALIGN_DATA (PR #830) May 1, 2019
blake2.h Don't add semicolon to CRYPTOPP_CONSTANT abd DOCUMENTED_TYPEDEF (GH #889 Oct 3, 2019
blake2b_simd.cpp Fix missing _mm_roti_epi32 and _mm_roti_epi64 under GCC (GH #859) Jul 2, 2019
blake2s_simd.cpp Fix missing _mm_roti_epi32 and _mm_roti_epi64 under GCC (GH #859) Jul 2, 2019
blowfish.cpp Revert BlowfishCompat changes (PR #877) Oct 12, 2019
blowfish.h Revert BlowfishCompat changes (PR #877) Oct 12, 2019
blumshub.cpp Clear clang-tidy warnings Jan 25, 2018
blumshub.h Cleanup Doxygen directives Jan 22, 2018
camellia.cpp Sync CRYPTOPP_{BIG|LITTLE}_ENDIAN with Autotools Oct 28, 2018
camellia.h Remove unneeded Doxygen directive Jan 19, 2018
cast.cpp Make CAST temporaries class members Apr 7, 2018
cast.h Make CAST temporaries class members Apr 7, 2018
casts.cpp CRYPTOPP 5.6.3 RC6 checkin Nov 5, 2015
cbcmac.cpp CRYPTOPP 5.6.3 RC6 checkin Nov 5, 2015
cbcmac.h Update documentation Jan 23, 2018
ccm.cpp Comments, constants and whitespace Sep 30, 2017
ccm.h Fix clang warnings (GH #771) Jan 2, 2019
chacha.cpp Use PowerPC unaligned loads and stores with Power8 (GH #825, PR #826) Apr 28, 2019
chacha.h Fix stray semicolons uder MSVC (GH #889) Oct 12, 2019
chacha_avx.cpp Whitespace check-in Jun 9, 2019
chacha_simd.cpp Fix missing _mm_roti_epi32 and _mm_roti_epi64 under GCC (GH #859) Jul 2, 2019
chachapoly.cpp Clear truncation warnings with early MSVC compilers Oct 3, 2019
chachapoly.h Add IETF XChaCha20Poly1305 (GH #727, PR #795) Feb 6, 2019
cham.cpp Remove double semicolons after sed'ing defines Oct 4, 2019
cham.h Update documentation Feb 1, 2019
cham_simd.cpp Clear Clang warning on SSE2 load Jul 22, 2019
channels.cpp Revert "Revert "Clear Visual Studio warnings (Issue 412)"" Jun 2, 2017
channels.h Cleanup Doxygen directives Jan 22, 2018
cmac.cpp Add XTS block cipher mode of operation (GH #891, PR #892) Oct 12, 2019
cmac.h Add XTS block cipher mode of operation (GH #891, PR #892) Oct 12, 2019
config.h Make config.h more Autoconf friendly (GH #835, PR #836) May 17, 2019
config_align.h Make config.h more Autoconf friendly (GH #835, PR #836) May 17, 2019
config_asm.h Fix Rijndael recursion overflow when -DCRYPTOPP_DISABLE_SSSE3 (GH #880,… Sep 29, 2019
config_cpu.h Add define for CRYPTOPP_BOOL_ARM64 Aug 18, 2019
config_cxx.h Add CRYPTOPP_CXX14 define Jul 22, 2019
config_dll.h Avoid circular dependency using AlignedAllocate (GH #885) Sep 28, 2019
config_int.h Make config.h more Autoconf friendly (GH #835, PR #836) May 17, 2019
config_misc.h Cleanup stray semicolons Oct 4, 2019
config_ns.h Cleanup stray semicolons Oct 4, 2019
config_os.h Make config.h more Autoconf friendly (GH #835, PR #836) May 17, 2019
config_ver.h Cutover to CRYPTOPP_LLVM_CLANG_VERSION (GH #845) May 21, 2019
cpu.cpp Don't add semicolon to CRYPTOPP_CONSTANT abd DOCUMENTED_TYPEDEF (GH #889 Oct 3, 2019
cpu.h Fix Rijndael recursion overflow when -DCRYPTOPP_DISABLE_SSSE3 (GH #880,… Sep 29, 2019
crc.cpp Rename files with dashes to underscores (GH #736) Nov 10, 2018
crc.h Don't add semicolon to CRYPTOPP_CONSTANT abd DOCUMENTED_TYPEDEF (GH #889 Oct 3, 2019
crc_simd.cpp Fix <arm_neon.h> include for ARM64 with MSVC compiler (GH #776) Jan 4, 2019
cryptdll.vcxproj Avoid circular dependency using AlignedAllocate (GH #885) Sep 28, 2019
cryptdll.vcxproj.filters Avoid circular dependency using AlignedAllocate (GH #885) Sep 28, 2019
cryptest.nmake Add XTS block cipher mode of operation (GH #891, PR #892) Oct 12, 2019
cryptest.sh Remove temp file in cryptest.sh Oct 13, 2019
cryptest.sln Restore Win32 as default configuration Oct 9, 2016
cryptest.vcxproj Fix CopyToRoot target with spaces in path Aug 5, 2019
cryptest.vcxproj.filters Add ed25519 (GH #764, PR #767) Dec 24, 2018
cryptest.vcxproj.user Fix ECP leakage in Add() and Double() (GH #869, PR #871) Aug 5, 2019
cryptlib.cpp Clear sign conversion warnings Sep 29, 2019
cryptlib.h Add Certificate interface (GH #884) Sep 28, 2019
cryptlib.vcxproj Add XTS block cipher mode of operation (GH #891, PR #892) Oct 12, 2019
cryptlib.vcxproj.filters Add XTS block cipher mode of operation (GH #891, PR #892) Oct 12, 2019
cryptopp.mapfile Fix Solaris mapfile Nov 9, 2018
cryptopp.rc Post-release version increment Apr 29, 2019
cryptopp.supp Add Valgrind suppression file to file list (GH #543) Nov 29, 2017
darn.cpp Clear warning C4702: unreachable code Dec 14, 2018
darn.h Update comments Aug 19, 2019
datatest.cpp Use ConstBytePtr in TestDataNameValuePairs (GH #827) Apr 29, 2019
default.cpp Fix LegacyDecryptor and LegacyDecryptorWithMAC (GH #714) Sep 11, 2018
default.h Don't add semicolon to CRYPTOPP_CONSTANT abd DOCUMENTED_TYPEDEF (GH #889 Oct 3, 2019
des.cpp Miscellaneos warning fixes (GH #739) Nov 14, 2018
des.h Update documentation Jan 23, 2018
dessp.cpp Removed VC++ 5.0 and 6.0 workarounds (Issue 342) Dec 3, 2016
dh.cpp Change file preamble to include "originally written by Wei Dai" Jan 27, 2017
dh.h Remove unneeded Doxygen directive Jan 19, 2018
dh2.cpp Clear unused variable warnings under MSVC Aug 17, 2017
dh2.h Update documentation Jan 23, 2018
dll.cpp Clear unknown pragma warning under GCC Jan 17, 2018
dll.h Remove Thread and Socket classes (GH #208, PR #703) Aug 18, 2018
dlltest.cpp Fix Clang warning on missing template definitions Aug 16, 2017
dlltest.vcxproj Add Test vectors and data to VS project files Dec 15, 2018
dlltest.vcxproj.filters Split source files to support Base Implementation + SIMD implementati… Aug 17, 2017
dmac.h Don't add semicolon to CRYPTOPP_CONSTANT abd DOCUMENTED_TYPEDEF (GH #889 Oct 3, 2019
donna.h Add ed25519 SignStream and VerifyStream functions (GH #796, PR #797) Feb 11, 2019
donna_32.cpp Clear unreachable code warnings with early MSVC compilers Oct 3, 2019
donna_32.h Update documentation Dec 24, 2018
donna_64.cpp Clear unreachable code warnings with early MSVC compilers Oct 3, 2019
donna_64.h Update documentation Dec 24, 2018
donna_sse.cpp Clear unreachable code warnings with early MSVC compilers Oct 3, 2019
donna_sse.h Update documentation Dec 24, 2018
drbg.h Don't add semicolon to CRYPTOPP_CONSTANT abd DOCUMENTED_TYPEDEF (GH #889 Oct 3, 2019
dsa.cpp Change file preamble to include "originally written by Wei Dai" Jan 27, 2017
dsa.h Update documentation Oct 8, 2019
eax.cpp Comments, constants and whitespace Sep 30, 2017
eax.h Add algorithm provider member function to Algorithm class Jul 6, 2018
ec2n.cpp Fix ECP leakage in Add() and Double() (GH #869, PR #871) Aug 5, 2019
ec2n.h Fix ECP leakage in Add() and Double() (GH #869, PR #871) Aug 5, 2019
eccrypto.cpp Fix ECP leakage in Add() and Double() (GH #869, PR #871) Aug 5, 2019
eccrypto.h Fix ECP leakage in Add() and Double() (GH #869, PR #871) Aug 5, 2019
ecp.cpp Fix ECP::Double and brainpoolP256r1 (GH #878) Aug 26, 2019
ecp.h Restore ECP ABI (GH #869) Aug 9, 2019
ecpoint.h Remove unneeded Doxygen directive Jan 19, 2018
elgamal.cpp Clear MS LNK4221 and libtool warnings Oct 17, 2018
elgamal.h Update documentation Sep 26, 2019
emsa2.cpp Fix Clang specialization and definition warnings (GH #300, GH #533) Dec 26, 2017
emsa2.h Remove unneeded Doxygen directive Jan 19, 2018
eprecomp.cpp Change file preamble to include "originally written by Wei Dai" Jan 27, 2017
eprecomp.h Update documentation Jan 23, 2018
esign.cpp Removed "typedef SHA1 SHA" (Issue 369) Apr 24, 2017
esign.h Remove unneeded Doxygen directive Jan 19, 2018
factory.h Remove unneeded Doxygen directive Jan 19, 2018
fhmqv.h Update documentation Sep 26, 2019
files.cpp Add C++ nullptr support (Issue 383) Mar 1, 2017
files.h Remove unneeded Doxygen directive Jan 19, 2018
filters.cpp Remove double semicolons after sed'ing defines Oct 4, 2019
filters.h Don't add semicolon to CRYPTOPP_CONSTANT abd DOCUMENTED_TYPEDEF (GH #889 Oct 3, 2019
fips140.cpp Clear unreachable code warnings under VC++ Aug 8, 2019
fips140.h Remove unneeded Doxygen directive Jan 19, 2018
fipsalgt.cpp Remove unused "USING_NAMESPACE(std)" Jan 15, 2018
fipstest.cpp Fix IsDebuggerPresent guard for ARM64 (GH #776) Jan 5, 2019
fltrimpl.h Cleared fall through warnings under GCC 7 (Issue 441) Jul 17, 2017
gcm.cpp Update comments Jul 22, 2019
gcm.h Fix clang warnings (GH #771) Jan 2, 2019
gcm_simd.cpp Update comments Jul 22, 2019
gf256.cpp Change file preamble to include "originally written by Wei Dai" Jan 27, 2017
gf256.h Change Doxygen comment style from //! to /// Nov 29, 2017
gf2_32.cpp Switch to rotlConstant and rotrConstant Nov 25, 2017
gf2_32.h Change Doxygen comment style from //! to /// Nov 29, 2017
gf2n.cpp Fix missing symbols in Windows DLL Feb 22, 2019
gf2n.h Use carryless multiplies for NIST b233 and k233 curves (GH #783, PR #784 Jan 16, 2019
gf2n_simd.cpp Rework SSE2 and AVX2 loads and stores Jun 9, 2019
gfpcrypt.cpp Update asserts in gfpcrypt.cpp Aug 24, 2019
gfpcrypt.h Update documentation Sep 26, 2019
gost.cpp Cleared SunCC warning "key hides GOST::Base::key" Sep 15, 2016
gost.h Update documentation Jan 23, 2018
gzip.cpp Clear conversion wanrings under MSVC Aug 20, 2018
gzip.h Remove unneeded Doxygen directive Jan 19, 2018
hashfwd.h Fix AlgorithmName for SHA3-based classes Feb 13, 2019
hc128.cpp Cleanup HC128 and HC256 OperateKeystream Oct 25, 2018
hc128.h Prepare for Crypto++ 8.0 release Dec 27, 2018
hc256.cpp Cleanup HC128 and HC256 OperateKeystream Oct 25, 2018
hc256.h Prepare for Crypto++ 8.0 release Dec 27, 2018
hex.cpp Cleanup use of unnamed namespaces in encoders and decoders Nov 12, 2017
hex.h Remove unneeded Doxygen directive Jan 19, 2018
hight.cpp Place HIGHT F0 and F1 in unnamed namespace Jun 24, 2018
hight.h Update documentation Jul 4, 2019
hkdf.h Fix use of MaxDerivedKeyLength (GH #874) Aug 16, 2019
hmac.cpp Clear UBsan warning in hmac.cpp Oct 12, 2019
hmac.h Don't add semicolon to CRYPTOPP_CONSTANT abd DOCUMENTED_TYPEDEF (GH #889 Oct 3, 2019
hmqv.h Update documentation Sep 26, 2019
hrtimer.cpp hrtimer.cpp: fix Win32 DLL-Import build (#425) May 26, 2017
hrtimer.h Remove unneeded Doxygen directive Jan 19, 2018
ida.cpp Make GF2_32 class member of RawIDA Dec 3, 2018
ida.h Fix -Wreorder warning using GCC Dec 6, 2018
idea.cpp Change file preamble to include "originally written by Wei Dai" Jan 27, 2017
idea.h Remove unneeded Doxygen directive Jan 19, 2018
integer.cpp Update comments Jun 9, 2019
integer.h Update documentation Jul 8, 2019
iterhash.cpp Update comments in IterHashBase and friends Jul 21, 2018
iterhash.h Don't add semicolon to CRYPTOPP_CONSTANT abd DOCUMENTED_TYPEDEF (GH #889 Oct 3, 2019
kalyna.cpp Sync CRYPTOPP_{BIG|LITTLE}_ENDIAN with Autotools Oct 28, 2018
kalyna.h Fix Kalyna512_Info parameter (GH #662) Jun 2, 2018
kalynatab.cpp Add proper declaration for Kalyna tables; and split from definitions Oct 28, 2018
keccak.cpp Add SHAKE-128 and SHAKE-256 (GH #805, PR #806) Feb 13, 2019
keccak.h Don't add semicolon to CRYPTOPP_CONSTANT abd DOCUMENTED_TYPEDEF (GH #889 Oct 3, 2019
keccak_core.cpp Add SHAKE-128 and SHAKE-256 (GH #805, PR #806) Feb 13, 2019
keccak_simd.cpp Update comments Jul 22, 2019
lea.cpp Remove double semicolons after sed'ing defines Oct 4, 2019
lea.h Update documentation Jul 4, 2019
lea_simd.cpp Remove double semicolons after sed'ing defines Oct 4, 2019
lubyrack.h Don't add semicolon to CRYPTOPP_CONSTANT abd DOCUMENTED_TYPEDEF (GH #889 Oct 3, 2019
luc.cpp Fix Clang warning on missing template definitions Aug 16, 2017
luc.h Update documentation Apr 2, 2018
mars.cpp Switch to rotlConstant and rotrConstant Nov 25, 2017
mars.h Update documentation Jan 23, 2018
marss.cpp Whitespace checkin Sep 10, 2016
md2.cpp Whitespace checkin Sep 10, 2016
md2.h Don't add semicolon to CRYPTOPP_CONSTANT abd DOCUMENTED_TYPEDEF (GH #889 Oct 3, 2019
md4.cpp Switch to rotlConstant and rotrConstant Nov 25, 2017
md4.h Change Doxygen comment style from //! to /// Nov 29, 2017
md5.cpp Back-off on Hash asserts (GH #652) May 6, 2018
md5.h Remove unneeded Doxygen directive Jan 19, 2018
mdc.h Clear GCC -Wcast-align warnings on ARM Jan 21, 2018
mersenne.h Remove double semicolons after sed'ing defines Oct 4, 2019
misc.cpp Clear unreachable code warnings with early MSVC compilers Oct 3, 2019
misc.h Clear signed/unsigned warnings under Clang Oct 6, 2019
modarith.h Update documentation Aug 12, 2019
modes.cpp Add XTS block cipher mode of operation (GH #891, PR #892) Oct 12, 2019
modes.h Add XTS block cipher mode of operation (GH #891, PR #892) Oct 12, 2019
modexppc.h Revert "Revert "Clear Visual Studio warnings (Issue 412)"" Jun 2, 2017
mqueue.cpp Clear C4742 warning using MSVC (GH #591) Feb 24, 2018
mqueue.h Change Doxygen comment style from //! to /// Nov 29, 2017
mqv.cpp Fix ECP leakage in Add() and Double() (GH #869, PR #871) Aug 5, 2019
mqv.h Update documentation Sep 26, 2019
naclite.h Don't add semicolon to CRYPTOPP_CONSTANT abd DOCUMENTED_TYPEDEF (GH #889 Oct 3, 2019
nbtheory.cpp Make config.h more Autoconf friendly (GH #835, PR #836) May 17, 2019
nbtheory.h Clear virtual dtor warning under Clang Oct 6, 2019
neon_simd.cpp Add Thumb and Arm versions of CPU_ProbeARMv7() May 26, 2019
nr.h CRYPTOPP 5.6.3 RC6 checkin Nov 5, 2015
oaep.cpp C++17 compatible lambda expressions to replace `bind2nd` (#559) Jan 12, 2018
oaep.h Update documentation Jan 23, 2018
oids.h Add some missing OID's used in X.509 certificates Oct 1, 2019
osrng.cpp Fix .Net 2002 compile Aug 27, 2019
osrng.h Avoid potential uninitialized read in AutoSeededX917RNG Jul 6, 2019
ossig.h Remove extra ;s from ossig.h (PR #625) Mar 31, 2018
padlkrng.cpp Run autoupdate and libtoolize if available Jul 27, 2018
padlkrng.h Add algorithm provider member function to Algorithm class Jul 6, 2018
panama.cpp Cleanup Panama cihers Dec 7, 2018
panama.h Don't add semicolon to CRYPTOPP_CONSTANT abd DOCUMENTED_TYPEDEF (GH #889 Oct 3, 2019
pch.cpp CRYPTOPP 5.6.3 RC6 checkin Nov 5, 2015
pch.h Cleanup Doxygen directives Jan 22, 2018
pkcspad.cpp Fix Clang specialization and definition warnings (GH #300, GH #533) Dec 26, 2017
pkcspad.h Remove unneeded Doxygen directive Jan 19, 2018
poly1305.cpp Update Poly1305 nonce length check Jun 4, 2019
poly1305.h Don't add semicolon to CRYPTOPP_CONSTANT abd DOCUMENTED_TYPEDEF (GH #889 Oct 3, 2019
polynomi.cpp Change file preamble to include "originally written by Wei Dai" Jan 27, 2017
polynomi.h Cleanup Doxygen directives Jan 22, 2018
ppc_power7.cpp Fix POWER8 compile when -DCRYPTOPP_DISABLE_ALTIVEC Nov 23, 2018
ppc_power8.cpp Use vec_revb when POWER9 is available Nov 23, 2018
ppc_power9.cpp Fix SIGILL in TestDARN() function Nov 30, 2018
ppc_simd.cpp Add Power9 Random Number Generator support (GH #747, PR #748) Nov 27, 2018
ppc_simd.h Use PowerPC unaligned loads and stores with Power8 (GH #825, PR #826) Apr 28, 2019
pssr.cpp C++17 compatible lambda expressions to replace `bind2nd` (#559) Jan 12, 2018
pssr.h Update documentation Jan 23, 2018
pubkey.cpp Add C++ nullptr support (Issue 383) Mar 1, 2017
pubkey.h Add asserts to pubkey.h Aug 26, 2019
pwdbased.h Fix use of MaxDerivedKeyLength (GH #874) Aug 16, 2019
queue.cpp Switch to PtrAdd and PtrSub in ByteQueue Jul 10, 2018
queue.h Remove unneeded Doxygen directive Jan 19, 2018
rabbit.cpp Update comments to make it clear the keystream is written Jul 29, 2018
rabbit.h Prepare for Crypto++ 8.0 release Dec 27, 2018
rabin.cpp Add asserts to validation routines Jan 29, 2017
rabin.h Remove unneeded Doxygen directive Jan 19, 2018
randpool.cpp Use <time.h> for Borland/Embarcadero (GH #512) Sep 20, 2017
randpool.h Remove AsymmetricAlgorithm::BERDecode (GH #569) Jan 21, 2018
rc2.cpp Switch to rotlConstant and rotrConstant Nov 25, 2017
rc2.h Don't add semicolon to CRYPTOPP_CONSTANT abd DOCUMENTED_TYPEDEF (GH #889 Oct 3, 2019
rc5.cpp Switch to rotlConstant and rotrConstant Nov 25, 2017
rc5.h Remove unneeded Doxygen directive Jan 19, 2018
rc6.cpp Clear clang-tidy warnings Jan 2, 2018
rc6.h Update documentation Jan 23, 2018
rdrand-masm.cmd spelling fixes Dec 27, 2016
rdrand-nasm.sh Rename rdrand.S to rdrand.s Mar 23, 2017
rdrand.asm Whitespace check-in Aug 7, 2019
rdrand.cpp Clear unreachable code warnings with early MSVC compilers Oct 3, 2019
rdrand.h Add Power9 Random Number Generator support (GH #747, PR #748) Nov 27, 2018
rdrand.s Rename rdrand.S to rdrand.s Mar 23, 2017
rdseed.asm Whitespace check-in Aug 7, 2019
rdtables.cpp Add Power8 AES decryption Sep 12, 2017
regtest1.cpp Add SHAKE-128 and SHAKE-256 (GH #805, PR #806) Feb 13, 2019
regtest2.cpp Add IETF XChaCha (GH #727, PR #794) Feb 6, 2019
regtest3.cpp Cleanup XTS regtest name Oct 13, 2019
regtest4.cpp Cleanup head notes and includes Jul 28, 2018
resource.h Whitespace checkin Sep 10, 2016
rijndael.cpp Remove double semicolons after sed'ing defines Oct 4, 2019
rijndael.h Make config.h more Autoconf friendly (GH #835, PR #836) May 17, 2019
rijndael_simd.cpp Update comments Jul 22, 2019
ripemd.cpp Switch to rotlConstant and rotrConstant Nov 25, 2017
ripemd.h Update documentation Jan 23, 2018
rng.cpp Clear truncation warning in rng.cpp (PR #867) Jul 25, 2019
rng.h Remove unneeded Doxygen directive Jan 19, 2018
rsa.cpp Add PKCS #1 SHA3-based signatures (GH #517) Oct 5, 2017
rsa.h Don't add semicolon to CRYPTOPP_CONSTANT abd DOCUMENTED_TYPEDEF (GH #889 Oct 3, 2019
rw.cpp Make config.h more Autoconf friendly (GH #835, PR #836) May 17, 2019
rw.h Update documentation Jan 23, 2018
safer.cpp Switch to rotlConstant and rotrConstant Nov 25, 2017
safer.h Remove unneeded Doxygen directive Jan 19, 2018
salsa.cpp Remove C++11 constexpr code for CRYPTOPP_ALIGN_DATA (PR #830) May 1, 2019
salsa.h Fix stray semicolons uder MSVC (GH #889) Oct 12, 2019
scrypt.cpp Fix use of MaxDerivedKeyLength (GH #874) Aug 16, 2019
scrypt.h Fix use of MaxDerivedKeyLength (GH #874) Aug 16, 2019
seal.cpp Switch to rotlConstant and rotrConstant Nov 25, 2017
seal.h Update documentation Jan 23, 2018
secblock.h Avoid circular dependency using AlignedAllocate (GH #885) Sep 28, 2019
secblockfwd.h Add BytePtr and ConstBytePtr overloads for SecByteBlock (GH #890) Oct 3, 2019
seckey.h Don't add semicolon to CRYPTOPP_CONSTANT abd DOCUMENTED_TYPEDEF (GH #889 Oct 3, 2019
seed.cpp Fix Clang 5.0 "runtime error: addition of unsigned offset to 0xXXXX o… Dec 16, 2017
seed.h Remove unneeded Doxygen directive Jan 19, 2018
serpent.cpp Switch to rotlConstant and rotrConstant Nov 25, 2017
serpent.h Add header guard for serpentp.h Jun 3, 2019
serpentp.h Add header guard for serpentp.h Jun 3, 2019
setenv-android-gcc.sh Exit setenv script if not sourced Jun 1, 2019
setenv-embedded.sh Exit setenv script if not sourced Jun 1, 2019
setenv-ios.sh Exit setenv script if not sourced Jun 1, 2019
sha.cpp Breakout sha_block_data_order and sha_block_data_order_neon (GH #847) May 27, 2019
sha.h Add CRYPTOPP_DISABLE_MIXED_ASM define and feature test (GH #756, PR #757 Dec 5, 2018
sha1_armv4.S Breakout sha_block_data_order and sha_block_data_order_neon (GH #847) May 27, 2019
sha1_armv4.h Use CRYPTOGAMS_armcap_P for ARM (GH #846) May 24, 2019
sha256_armv4.S Breakout sha_block_data_order and sha_block_data_order_neon (GH #847) May 27, 2019
sha256_armv4.h Use CRYPTOGAMS_armcap_P for ARM (GH #846) May 24, 2019
sha3.cpp Add SHAKE-128 and SHAKE-256 (GH #805, PR #806) Feb 13, 2019
sha3.h Don't add semicolon to CRYPTOPP_CONSTANT abd DOCUMENTED_TYPEDEF (GH #889 Oct 3, 2019
sha512_armv4.S Breakout sha_block_data_order and sha_block_data_order_neon (GH #847) May 27, 2019
sha512_armv4.h Use CRYPTOGAMS_armcap_P for ARM (GH #846) May 24, 2019
sha_simd.cpp Remove double semicolons after sed'ing defines Oct 4, 2019
shacal2.cpp Add SHACAL2 cipher AlgorithmProvider() Aug 19, 2018
shacal2.h Add SHACAL2 cipher AlgorithmProvider() Aug 19, 2018
shacal2_simd.cpp Update comments Jul 22, 2019
shake.cpp Enable extended output in SHAKE-128 and SHAKE-256 (GH #805, PR #806) Feb 13, 2019
shake.h Don't add semicolon to CRYPTOPP_CONSTANT abd DOCUMENTED_TYPEDEF (GH #889 Oct 3, 2019
shark.cpp Sync CRYPTOPP_{BIG|LITTLE}_ENDIAN with Autotools Oct 28, 2018
shark.h Update documentation Jan 23, 2018
sharkbox.cpp Whitespace checkin Sep 10, 2016
simeck.cpp Add algorithm provider member function to Algorithm class Jul 6, 2018
simeck.h Update documentation Jul 4, 2019
simeck_simd.cpp Update comments Jul 22, 2019
simon.cpp Remove double semicolons after sed'ing defines Oct 4, 2019
simon.h Update documentation Jul 4, 2019
simon128_simd.cpp Update comments Jul 22, 2019
simon64_simd.cpp Fix missing _mm_roti_epi32 and _mm_roti_epi64 under GCC (GH #859) Jul 2, 2019
simple.cpp Change file preamble to include "originally written by Wei Dai" Jan 27, 2017
simple.h Update documentation Sep 26, 2019
siphash.h Don't add semicolon to CRYPTOPP_CONSTANT abd DOCUMENTED_TYPEDEF (GH #889 Oct 3, 2019
skipjack.cpp Backed out use of "static const" to declare constant; switch to "enum… Sep 6, 2016
skipjack.h Clear documentation warnings May 22, 2019
sm3.cpp Switch to rotlConstant and rotrConstant Nov 24, 2017
sm3.h Remove unneeded Doxygen directive Jan 19, 2018
sm4.cpp Clear unreachable code warnings with early MSVC compilers Oct 3, 2019
sm4.h Update documentation Jul 4, 2019
sm4_simd.cpp Add "cc" clobber due to GCC 3.3 compile failure Dec 29, 2018
smartptr.h Removed vector_ptr Jan 22, 2018
sosemanuk.cpp Fix partial specializations for FixedSizeAllocatorWithCleanup (PR #710) Aug 24, 2018
sosemanuk.h Add CRYPTOPP_DISABLE_MIXED_ASM define and feature test (GH #756, PR #757 Dec 5, 2018
speck.cpp Remove double semicolons after sed'ing defines Oct 4, 2019
speck.h Update documentation Jul 4, 2019
speck128_simd.cpp Update comments Jul 22, 2019
speck64_simd.cpp Fix missing _mm_roti_epi32 and _mm_roti_epi64 under GCC (GH #859) Jul 2, 2019
square.cpp Switch to rotlConstant and rotrConstant Nov 25, 2017
square.h Update documentation Jan 23, 2018
squaretb.cpp Whitespace checkin Sep 10, 2016
sse_simd.cpp Use SSE2 intrinsics header in sse_simd.cpp only if needed (#759) Dec 23, 2018
stdcpp.h Guard use of <cstddef> for Microsoft compilers (GH #781) Feb 4, 2019
strciphr.cpp Add ability to Seek64 in test framework (GH #732) Nov 4, 2018
strciphr.h Don't add semicolon to CRYPTOPP_CONSTANT abd DOCUMENTED_TYPEDEF (GH #889 Oct 3, 2019
tea.cpp Guard use of volatile cast in TEA and XTEA Jun 2, 2019
tea.h Update documentation Oct 30, 2018
test.cpp Revert BlowfishCompat changes (PR #877) Oct 12, 2019
tftables.cpp Whitespace checkin Sep 10, 2016
threefish.cpp Fix "variable tracking size limit exceeded" with UBsan Nov 26, 2017
threefish.h Update documentation Jul 4, 2019
tiger.cpp Fix partial specializations for FixedSizeAllocatorWithCleanup (PR #710) Aug 24, 2018
tiger.h Add CRYPTOPP_DISABLE_MIXED_ASM define and feature test (GH #756, PR #757 Dec 5, 2018
tigertab.cpp Whitespace checkin Sep 10, 2016
trap.h Clear Doxygen warning (GH #791) Feb 1, 2019
trunhash.h Change Doxygen comment style from //! to /// Nov 29, 2017
ttmac.cpp Clear Clang warning about C++11 template extension Dec 8, 2018
ttmac.h Don't add semicolon to CRYPTOPP_CONSTANT abd DOCUMENTED_TYPEDEF (GH #889 Oct 3, 2019
tweetnacl.cpp Clear alignment warnings on ARM 32-bit platforms May 1, 2019
tweetnacl.h Add interface to TweetNaCl library (#566) Jan 18, 2018
twofish.cpp Switch to rotlConstant and rotrConstant Nov 25, 2017
twofish.h Update documentation Jan 23, 2018
validat0.cpp Whitespace check-in Jan 22, 2019
validat1.cpp Fix TestAltivecOps on AIX Jan 21, 2019
validat10.cpp Update comments Jul 30, 2018
validat2.cpp Remove double semicolons after sed'ing defines Oct 4, 2019
validat3.cpp Revert BlowfishCompat changes (PR #877) Oct 12, 2019
validat4.cpp Revert BlowfishCompat changes (PR #877) Oct 12, 2019
validat5.cpp Prepare for Crypto++ 8.2 release Apr 28, 2019
validat6.cpp Fix ECP leakage in Add() and Double() (GH #869, PR #871) Aug 5, 2019
validat7.cpp Fix ECP leakage in Add() and Double() (GH #869, PR #871) Aug 5, 2019
validat8.cpp Add private key test data for ElGamal Aug 27, 2019
validat9.cpp Add ed25519 (GH #764, PR #767) Dec 24, 2018
validate.h Add XTS block cipher mode of operation (GH #891, PR #892) Oct 12, 2019
vc60.zip Add trap.h and ossig.h to vc60.zip Sep 17, 2016
vmac.cpp Limit GCC workaround to 5.3 on PowerPC Jul 5, 2019
vmac.h Clear Asan finding in VMAC under 32-bit inline ASM (GH #860) Jul 5, 2019
vs2005.zip Update vs2005 solution files Oct 3, 2019
wake.cpp Move constant table to unnamed namespace Aug 19, 2018
wake.h Add algorithm provider member function to Algorithm class Jul 6, 2018
whrlpool.cpp Disable X32 inline assembly (GH #686, PR #704) Aug 18, 2018
whrlpool.h Add CRYPTOPP_DISABLE_MIXED_ASM define and feature test (GH #756, PR #757 Dec 5, 2018
words.h Update documentation May 31, 2019
x64dll.asm Rename XGETBV to XGETBV64 May 21, 2019
x64masm.asm CRYPTOPP 5.6.3 RC6 checkin Nov 5, 2015
xed25519.cpp Use dynamic_cast in ed25519 (GH #829) May 1, 2019
xed25519.h Don't add semicolon to CRYPTOPP_CONSTANT abd DOCUMENTED_TYPEDEF (GH #889 Oct 3, 2019
xtr.cpp Fix missed conditions for XTR-DH domain parameters generation Sep 5, 2018
xtr.h Remove unneeded Doxygen directive Jan 19, 2018
xtrcrypt.cpp Add asserts to validation routines Jan 29, 2017
xtrcrypt.h Update documentation Mar 27, 2018
xts.cpp Make XTS mode parallelizable (GH #891) Oct 13, 2019
xts.h Make XTS mode parallelizable (GH #891) Oct 13, 2019
zdeflate.cpp Call base class IsolatedInitialize Jun 3, 2019
zdeflate.h Remove unneeded Doxygen directive Jan 19, 2018
zinflate.cpp Remove extra ;s from zinflate.cpp (PR #624) Mar 31, 2018
zinflate.h Update Doxygen comments May 31, 2019
zlib.cpp Change file preamble to include "originally written by Wei Dai" Jan 27, 2017
zlib.h Update Doxygen comments May 31, 2019

Readme.txt

Crypto++: free C++ Class Library of Cryptographic Schemes
Version 8.3 - TBD

Crypto++ Library is a free C++ class library of cryptographic schemes.
Currently the library contains the following algorithms:

                   algorithm type  name

 authenticated encryption schemes  GCM, CCM, EAX, ChaCha20Poly1305 and
                                   XChaCha20Poly1305

        high speed stream ciphers  ChaCha (8/12/20), ChaCha (IETF), Panama, Salsa20,
                                   Sosemanuk, XSalsa20, XChaCha20

           AES and AES candidates  AES (Rijndael), RC6, MARS, Twofish, Serpent,
                                   CAST-256

                                   ARIA, Blowfish, Camellia, CHAM, HIGHT, IDEA,
                                   Kalyna (128/256/512), LEA, SEED, RC5, SHACAL-2,
              other block ciphers  SIMON (64/128), Skipjack, SPECK (64/128),
                                   Simeck, SM4, Threefish (256/512/1024),
                                   Triple-DES (DES-EDE2 and DES-EDE3), TEA, XTEA

  block cipher modes of operation  ECB, CBC, CBC ciphertext stealing (CTS),
                                   CFB, OFB, counter mode (CTR)

     message authentication codes  BLAKE2s, BLAKE2b, CMAC, CBC-MAC, DMAC, GMAC, HMAC,
                                   Poly1305, Poly1305 (IETF), SipHash, Two-Track-MAC,
                                   VMAC

                                   BLAKE2s, BLAKE2b, Keccack (F1600), SHA-1,
                   hash functions  SHA-2 (224/256/384/512), SHA-3 (224/256/384/512),
                                   SHAKE (128/256), SipHash, SM3, Tiger,
                                   RIPEMD (128/160/256/320), WHIRLPOOL

                                   RSA, DSA, Determinsitic DSA, ElGamal,
          public-key cryptography  Nyberg-Rueppel (NR), Rabin-Williams (RW), LUC,
                                   LUCELG, EC-based German Digital Signature (ECGDSA),
                                   DLIES (variants of DHAES), ESIGN

   padding schemes for public-key  PKCS#1 v2.0, OAEP, PSS, PSSR, IEEE P1363
                          systems  EMSA2 and EMSA5

                                   Diffie-Hellman (DH), Unified Diffie-Hellman (DH2),
            key agreement schemes  Menezes-Qu-Vanstone (MQV), Hashed MQV (HMQV),
                                   Fully Hashed MQV (FHMQV), LUCDIF, XTR-DH

      elliptic curve cryptography  ECDSA, Determinsitic ECDSA, ed25519, ECNR, ECIES,
                                   ECDH, ECMQV, x25519

          insecure or obsolescent  MD2, MD4, MD5, Panama Hash, DES, ARC4, SEAL
algorithms retained for backwards  3.0, WAKE-OFB, DESX (DES-XEX3), RC2,
     compatibility and historical  SAFER, 3-WAY, GOST, SHARK, CAST-128, Square
                            value

Other features include:

  * pseudo random number generators (PRNG): ANSI X9.17 appendix C, RandomPool,
    DARN, VIA Padlock, RDRAND, RDSEED, NIST Hash and HMAC DRBGs
  * password based key derivation functions: PBKDF1 and PBKDF2 from PKCS #5,
    PBKDF from PKCS #12 appendix B, HKDF from RFC 5869, Scrypt from RFC 7914
  * Shamir's secret sharing scheme and Rabin's information dispersal algorithm
    (IDA)
  * fast multi-precision integer (bignum) and polynomial operations
  * finite field arithmetics, including GF(p) and GF(2^n)
  * prime number generation and verification
  * useful non-cryptographic algorithms
      + DEFLATE (RFC 1951) compression/decompression with gzip (RFC 1952) and
        zlib (RFC 1950) format support
      + Hex, base-32, base-64, URL safe base-64 encoding and decoding
      + 32-bit CRC, CRC-C and Adler32 checksum
  * class wrappers for these platform and operating system features (optional):
      + high resolution timers on Windows, Unix, and Mac OS
      + /dev/random, /dev/urandom, /dev/srandom
      + Microsoft's CryptGenRandom or BCryptGenRandom on Windows
  * A high level interface for most of the above, using a filter/pipeline
    metaphor
  * benchmarks and validation testing
  * x86, x64 (x86-64), x32 (ILP32), ARM-32, Aarch32, Aarch64 and Power8 in-core code
    for the commonly used algorithms
      + run-time CPU feature detection and code selection
      + supports GCC-style and MSVC-style inline assembly, and MASM for x64
      + x86, x64 (x86-64), x32 provides MMX, SSE2, and SSE4 implementations
      + ARM-32, Aarch32 and Aarch64 provides NEON, ASIMD and ARMv8 implementations
      + Power8 provides in-core AES using NX Crypto Acceleration

The Crypto++ library was orginally written by Wei Dai. The library is now
maintained by several team members and the community. You are welcome to use it
for any purpose without paying anyone, but see License.txt for the fine print.

The following compilers are supported for this release. Please visit
http://www.cryptopp.com the most up to date build instructions and porting notes.

  * Visual Studio 2003 - 2017
  * GCC 3.3 - 9.0
  * Apple Clang 4.3 - 9.3
  * LLVM Clang 2.9 - 7.0
  * C++Builder 2015
  * Intel C++ Compiler 9 - 16.0
  * Sun Studio 12u1 - 12.6
  * IBM XL C/C++ 10.0 - 13.3

*** Important Usage Notes ***

1. If a constructor for A takes a pointer to an object B (except primitive
types such as int and char), then A owns B and will delete B at A's
destruction.  If a constructor for A takes a reference to an object B,
then the caller retains ownership of B and should not destroy it until
A no longer needs it.

2. Crypto++ is thread safe at the class level. This means you can use
Crypto++ safely in a multithreaded application, but you must provide
synchronization when multiple threads access a common Crypto++ object.

*** MSVC-Specific Information ***

To compile Crypto++ with MSVC, open "cryptest.sln" (for MSVC 2003 - 2015)
and build one or more of the following projects:

cryptest Non-DLL-Import Configuration - This builds the full static library
  along with a full test driver.
cryptest DLL-Import Configuration - This builds a static library containing
  only algorithms not in the DLL, along with a full test driver that uses
  both the DLL and the static library.
cryptdll - This builds the DLL. Please note that if you wish to use Crypto++
  as a FIPS validated module, you must use a pre-built DLL that has undergone
  the FIPS validation process instead of building your own.
dlltest - This builds a sample application that only uses the DLL.

The DLL used to provide FIPS validated cryptography. The library was moved
to the CMVP's <A HREF=
"http://csrc.nist.gov/groups/STM/cmvp/documents/140-1/140val-historical.htm">
Historical Validation List</A>. The library and the DLL are no longer considered
validated. You should no longer use the DLL.

To use the Crypto++ DLL in your application, #include "dll.h" before including
any other Crypto++ header files, and place the DLL in the same directory as
your .exe file. dll.h includes the line #pragma comment(lib, "cryptopp")
so you don't have to explicitly list the import library in your project
settings. To use a static library form of Crypto++, make the "cryptlib"
project a dependency of your application project, or specify it as
an additional library to link with in your project settings.
In either case you should check the compiler options to
make sure that the library and your application are using the same C++
run-time libraries and calling conventions.

*** DLL Memory Management ***

Because it's possible for the Crypto++ DLL to delete objects allocated
by the calling application, they must use the same C++ memory heap. Three
methods are provided to achieve this.
1.  The calling application can tell Crypto++ what heap to use. This method
    is required when the calling application uses a non-standard heap.
2.  Crypto++ can tell the calling application what heap to use. This method
    is required when the calling application uses a statically linked C++ Run
    Time Library. (Method 1 does not work in this case because the Crypto++ DLL
    is initialized before the calling application's heap is initialized.)
3.  Crypto++ can automatically use the heap provided by the calling application's
    dynamically linked C++ Run Time Library. The calling application must
    make sure that the dynamically linked C++ Run Time Library is initialized
    before Crypto++ is loaded. (At this time it is not clear if it is possible
    to control the order in which DLLs are initialized on Windows 9x machines,
    so it might be best to avoid using this method.)

When Crypto++ attaches to a new process, it searches all modules loaded
into the process space for exported functions "GetNewAndDeleteForCryptoPP"
and "SetNewAndDeleteFromCryptoPP". If one of these functions is found,
Crypto++ uses methods 1 or 2, respectively, by calling the function.
Otherwise, method 3 is used.

*** Linux and Unix-like Specific Information ***

A makefile is included for you to compile Crypto++ with GCC and compatibles.
Make sure you are using GNU Make and GNU ld. The make process will produce
two files, libcryptopp.a and cryptest.exe. Run "cryptest.exe v" for the
validation suite and "cryptest.exe tv all" for additional test vectors.

The makefile uses '-DNDEBUG -g2 -O2' CXXFLAGS by default. If you use an
alternate build system, like Autotools or CMake, then ensure the build system
includes '-DNDEBUG' for production or release builds. The Crypto++ library uses
asserts for debugging and diagnostics during development; it does not
rely on them to crash a program at runtime.

If an assert triggers in production software, then unprotected sensitive
information could be egressed from the program to the filesystem or the
platform's error reporting program, like Apport on Ubuntu or CrashReporter
on Apple.

The makefile orders object files to help remediate problems associated with
C++ static initialization order. The library does not use custom linker scripts.
If you use an alternate build system, like Autotools or CMake, and collect source
files into a list, then ensure these three are at the head of the list: 'cryptlib.cpp
cpu.cpp integer.cpp <other sources>'. They should be linked in the same order:
'cryptlib.o cpu.o integer.o <other objects>'.

If your linker supports initialization attributes, like init_priority, then you can
define CRYPTOPP_INIT_PRIORITY to control object initialization order. Set it to a
value like 250. User programs can use CRYPTOPP_USER_PRIORITY to avoid conflicts with
library values. Initialization attributes are more reliable than object file ordering,
but its not ubiquitously supported by linkers.

The makefile links to the static version of the Crypto++ library to avoid binary
planting and other LD_PRELOAD tricks. You should use the static version of the
library in your programs to help avoid unwanted redirections.

*** Side Channel Attacks ***

Crypto++ attempts to resist side channel attacks using various remediations.
The remdiations are applied as a best effort but are probably incomplete. They
are incomplete due to cpu speculation bugs like Spectre, Meltdown, Foreshadow.
The attacks target both cpu caches and internal buffers. Intel generally refers
to internal buffer attacks as "Microarchitectural Data Sampling" (MDS).

The library uses hardware instructions when possible for block ciphers, hashes
and other operations. The hardware acceleration remediates some timing
attacks. The library also uses cache-aware algoirthms and access patterns
to minimize leakage cache evictions.

Some of the public key algorithms have branches and some of the branches depend
on data that can be private or secret. The branching occurs in some field
operations like exponentiation over integers and elliptic curves. The branching
has been minimized but not completely eliminated.

Crypto++ does not enagage Specter remediations at this time. The GCC options
for Specter are -mfunction-return=thunk and -mindirect-branch=thunk, and the
library uses them during testing. If you want the Specter workarounds then add
the GCC options to your CXXFLAGS when building the library.

To help resist attacks you should disable hyperthreading on cpus. If you
suspect or find an information leak then please report it.

*** Documentation and Support ***

Crypto++ is documented through inline comments in header files, which are
processed through Doxygen to produce an HTML reference manual. You can find
a link to the manual from http://www.cryptopp.com. Also at that site is
the Crypto++ FAQ, which you should browse through before attempting to
use this library, because it will likely answer many of questions that
may come up. Finally, the site provide the wiki which has many topics
and code examples.

If you run into any problems, please try the Crypto++ mailing list.
The subscription information and the list archive are available on
http://www.cryptopp.com.

*** Source Code and Contributing ***

The source code and its planned changes are available at the following locations.

  * The Crypto++ GitHub repository allows you to view the latest (unreleased)
    Crypto++ source code via the Linux kernel's git beginning around June 2015.
    Its also serves as an incubator to nuture and grow the library.
  * The former Crypto++ SourceForge repository allows you to view the Crypto++
    source code via Apache's subversion until about July 2015. At that time,
    SourceForge had infrastructure problems and a cutover to GutHub was performed.
  * The Roadmap on the wiki provides the general direction the library is heading.
    It includes planned features and releases, and even some wishlist items.

Contributions of all types are welcomed. Contributions include the following.

  * Bug finding and fixes
  * Features and enhancements
  * Test scripts and test cases
  * Branch and release testing
  * Documentation and updates

If you think you have found a bug in the library, then you should discuss it on the
Users mailing list. Discussing it will help bring the issue to the attention of folks
who can help resolve the issue. If you want to contribute a bug fix to the library,
then make a Pull Request or make a Diff available somewhere. Also see Bug Reports on
the wiki.

Features and enhancements are welcomend additions to the library. This category tends
to be time consuming because algorithms and their test cases need to be reviewed and
merged. Please be mindful of the test cases, and attempt to procure them from an
independent source.

The library cherishes test scripts and test cases. They ensure the library is fit and
they help uncover issues with the library before users experience them. If you have
some time, then write some test cases, especially the ones that are intended to break
things.

Branch and release testing is your chance to ensure Master (and planned merges) meets
your expectations and perform as expected. If you have a few spare cycles, then please
test Master on your favorite platform. We need more testing on MinGW, Windows Phone,
Windows Store, Solaris 10 (and below), and modern iOS and OS X (including TV and
Watch builds).

Documentation and updates includes both the inline source code annotations using
Doxygen, and the online information provided in the wiki. The wiki is more verbose and
usually provides more contextual information than the API reference. Besides testing,
documentation is one of the highest returns on investment.

*** History ***

The items in this section comprise the most recent history. Please see History.txt
for the record back to Crypto++ 1.0.

8.2.0 - April 28, 2019
      - minor release, no recompile of programs required
      - expanded community input and support
        * 56 unique contributors as of this release
      - use PowerPC unaligned loads and stores with Power8
      - add SKIPJACK test vectors
      - fix SHAKE-128 and SHAKE-256 compile
      - removed IS_NEON from Makefile
      - fix Aarch64 build on Fedora 29
      - fix missing GF2NT_233_Multiply_Reduce_CLMUL in FIPS DLL
      - add missing BLAKE2 constructors
      - fix missing BlockSize() in BLAKE2 classes

8.1.0 - February 22, 2019
      - minor release, no recompile of programs required
      - expanded community input and support
        * 56 unique contributors as of this release
      - fix OS X PowerPC builds with Clang
      - add Microsoft ARM64 support
      - fix iPhone Simulator build due to missing symbols
      - add CRYPTOPP_BUGGY_SIMD_LOAD_AND_STORE
      - add carryless multiplies for NIST b233 and k233 curves
      - fix OpenMP build due to use of OpenMP 4 with down-level compilers
      - add SignStream and VerifyStream for ed25519 and large files
      - fix missing AlgorithmProvider in PanamaHash
      - add SHAKE-128 and SHAKE-256
      - fix AVX2 build due to _mm256_broadcastsi128_si256
      - add IETF ChaCha, XChaCha, ChaChaPoly1305 and XChaChaPoly1305

8.0.0 - December 28, 2018
      - major release, recompile of programs required
      - expanded community input and support
         * 54 unique contributors as of this release
      - add x25519 key exchange and ed25519 signature scheme
      - add limited Asymmetric Key Package support from RFC 5958
      - add Power9 DARN random number generator support
      - add CHAM, HC-128, HC-256, Hight, LEA, Rabbit, Simeck
      - fix FixedSizeAllocatorWithCleanup may be unaligned on some platforms
      - cutover to GNU Make-based cpu feature tests
      - rename files with dashes to underscores
      - fix LegacyDecryptor and LegacyDecryptorWithMAC use wrong MAC
      - fix incorrect AES/CBC decryption on Windows
      - avoid Singleton<T> when possible, avoid std::call_once completely
      - fix SPARC alignment problems due to GetAlignmentOf<T>() on word64
      - add ARM AES asm implementation from Cryptogams
      - remove CRYPTOPP_ALLOW_UNALIGNED_DATA_ACCESS support

7.0.0 - April 8, 2018
      - major release, recompile of programs required
      - expanded community input and support
         * 48 unique contributors as of this release
      - fix incorrect result when using Integer::ModInverse
         * may be CVE worthy, but request was not submitted
      - fix ARIA/CTR bus error on Sparc64
      - fix incorrect result when using a_exp_b_mod_c
      - fix undeclared identifier uint32_t on early Visual Studio
      - fix iPhoneSimulator build on i386
      - fix incorrect adler32 in ZlibDecompressor
      - fix Power7 test using PPC_FEATURE_ARCH_2_06
      - workaround incorrect Glibc sysconf return value on ppc64-le
      - add KeyDerivationFunction interface
      - add scrypt key derivation function
      - add Salsa20_Core transform callable from outside class
      - add sbyte, sword16, sword32 and sword64
      - remove s_nullNameValuePairs from unnamed namespace
      - ported to MSVC 2017, Xcode 9.3, Sun Studio 12.5, GCC 8.0.1,
        MacPorts GCC 7.0, Clang 4.0, Intel C++ 17.00, IBM XL C/C++ 13.1

6.1.0 - February 22, 2018
      - minor release, maintenance items
      - expanded community input and support
         * 46 unique contributors as of this release
      - use 2048-bit modulus default for DSA
      - fix build under Linuxbrew
      - use /bin/sh in GNUmakefile
      - fix missing flags for SIMON and SPECK in GNUMakefile-cross
      - fix ARM and MinGW misdetection
      - port setenv-android.sh to latest NDK
      - fix Clang check for C++11 lambdas
      - Simon and Speck to little-endian implementation
      - use LIB_MAJOR for ABI compatibility
      - fix ODR violation in AdvancedProcessBlocks_{ARCH} templates
      - handle C++17 std::uncaught_exceptions
      - ported to MSVC 2017, Xcode 8.1, Sun Studio 12.5, GCC 8.0.1,
        MacPorts GCC 7.0, Clang 4.0, Intel C++ 17.00, IBM XL C/C++ 13.1

6.0.0 - January 22, 2018
      - major release, recompile of programs required
      - expanded community input and support
         * 43 unique contributors as of this release
      - fixed CVE-2016-9939 (Issue 346, transient DoS)
      - fixed CVE-2017-9434 (Issue 414, misidentified memory error)
      - converted to BASE+SIMD implementation
         * BASE provides an architecture neutral C++ implementation
         * SIMD provides architecture specific hardware acceleration
      - improved PowerPC Power4, Power7 and Power8 support
      - added ARIA, EC German DSA, Deterministic signatures (RFC 6979),
        Kalyna, NIST Hash and HMAC DRBG, Padlock RNG, Poly1305, SipHash,
        Simon, Speck, SM3, SM4, Threefish algorithms
      - added NaCl interface from the compact library
         * x25519 key exhange and ed25519 signing provided through NaCl interface
      - improved Testing and QA
      - ported to MSVC 2017, Xcode 8.1, Sun Studio 12.5, GCC 7.3,
        MacPorts GCC 7.0, Clang 4.0, Intel C++ 17.00, IBM XL C/C++ 13.1

June 2015 - Changing of the guard. Wei Dai turned the library over to the
        community. The first community release was Crypto++ 5.6.3. Wei is
        no longer involved with the daily operations of the project. Wei
        still provides guidance when we have questions.

Originally written by Wei Dai, maintained by the Crypto++ Project
You can’t perform that action at this time.