Frank Denis 21ae64852a

std.crypto.kem.kyber: mitigate KyberSlash (#18316) ...

On some architectures, including AMD Zen CPUs, dividing a secret
by a constant denominator may not be a constant-time operation.

And most Kyber implementations, including ours, could leak the
hamming weight of the shared secret because of this. See:

https://kyberslash.cr.yp.to

Multiplications aren't guaranteed to be constant-time either, but
at least on the CPUs we currently support, it is.

2023-12-22 15:57:16 +00:00

..

compiler_rt

Deprecate math.doNotOptimizeAway, use mem.doNotOptimizeAway (#18011)

2023-11-23 15:06:32 -05:00

docs

autodoc: Some support for field_call (#16853)

2023-10-30 21:04:49 +00:00

include

update C language headers to LLVM 17

2023-09-19 09:37:31 -07:00

init

Grammar fixes (#18320)

2023-12-20 13:17:15 +02:00

libc

mingw-w64: add shcore def files

2023-11-02 12:20:09 -07:00

libcxx

update libcxx to latest LLVM release/17.x

2023-09-19 09:37:53 -07:00

libcxxabi

libcxxabi: update to LLVM 17

2023-09-19 09:37:31 -07:00

libunwind

libunwind: update to LLVM 17

2023-09-19 09:37:31 -07:00

std

std.crypto.kem.kyber: mitigate KyberSlash (#18316)

2023-12-22 15:57:16 +00:00

tsan

update libcxx, libcxxabi, libunwind, and tsan to llvm 13 rc1

2021-08-16 23:32:13 -07:00

build_runner.zig

lib: correct unnecessary uses of 'var'

2023-11-19 09:55:07 +00:00

c.zig

std: finish cleanup up asm

2023-07-31 03:49:21 -04:00

compiler_rt.zig

move libssp into libcompiler_rt

2023-11-10 13:12:10 -07:00

test_runner.zig

wasm: re-enable regressed tests

2023-11-01 19:47:15 +01:00

zig.h

zig.h: workaround for gcc f128 miscompilations

2023-11-12 17:30:24 -07:00