mirror of
https://github.com/jart/cosmopolitan.git
synced 2025-01-31 11:37:35 +00:00
957c61cbbf
This change upgrades to GCC 12.3 and GNU binutils 2.42. The GNU linker appears to have changed things so that only a single de-duplicated str table is present in the binary, and it gets placed wherever the linker wants, regardless of what the linker script says. To cope with that we need to stop using .ident to embed licenses. As such, this change does significant work to revamp how third party licenses are defined in the codebase, using `.section .notice,"aR",@progbits`. This new GCC 12.3 toolchain has support for GNU indirect functions. It lets us support __target_clones__ for the first time. This is used for optimizing the performance of libc string functions such as strlen and friends so far on x86, by ensuring AVX systems favor a second codepath that uses VEX encoding. It shaves some latency off certain operations. It's a useful feature to have for scientific computing for the reasons explained by the test/libcxx/openmp_test.cc example which compiles for fifteen different microarchitectures. Thanks to the upgrades, it's now also possible to use newer instruction sets, such as AVX512FP16, VNNI. Cosmo now uses the %gs register on x86 by default for TLS. Doing it is helpful for any program that links `cosmo_dlopen()`. Such programs had to recompile their binaries at startup to change the TLS instructions. That's not great, since it means every page in the executable needs to be faulted. The work of rewriting TLS-related x86 opcodes, is moved to fixupobj.com instead. This is great news for MacOS x86 users, since we previously needed to morph the binary every time for that platform but now that's no longer necessary. The only platforms where we need fixup of TLS x86 opcodes at runtime are now Windows, OpenBSD, and NetBSD. On Windows we morph TLS to point deeper into the TIB, based on a TlsAlloc assignment, and on OpenBSD/NetBSD we morph %gs back into %fs since the kernels do not allow us to specify a value for the %gs register. OpenBSD users are now required to use APE Loader to run Cosmo binaries and assimilation is no longer possible. OpenBSD kernel needs to change to allow programs to specify a value for the %gs register, or it needs to stop marking executable pages loaded by the kernel as mimmutable(). This release fixes __constructor__, .ctor, .init_array, and lastly the .preinit_array so they behave the exact same way as glibc. We no longer use hex constants to define math.h symbols like M_PI. |
||
|---|---|---|
| .. | ||
| test | ||
| aes.c | ||
| aes.h | ||
| aesce.c | ||
| aesce.h | ||
| aesni.c | ||
| aesni.h | ||
| asn1.h | ||
| asn1parse.c | ||
| asn1write.c | ||
| asn1write.h | ||
| base64.c | ||
| base64.h | ||
| bigmul.c | ||
| bigmul4.c | ||
| bignum.c | ||
| bignum.h | ||
| bignum_internal.h | ||
| bigshift.c | ||
| blake2b256.c | ||
| BUILD.mk | ||
| ccm.c | ||
| ccm.h | ||
| certs.c | ||
| certs.h | ||
| chacha20.c | ||
| chacha20.h | ||
| chachapoly.c | ||
| chachapoly.h | ||
| check.inc | ||
| chk.h | ||
| cipher.c | ||
| cipher.h | ||
| cipher_internal.h | ||
| cipher_wrap.c | ||
| common.h | ||
| config.h | ||
| ctr_drbg.c | ||
| ctr_drbg.h | ||
| debug.c | ||
| debug.h | ||
| des.c | ||
| des.h | ||
| describecode.c | ||
| dhm.c | ||
| dhm.h | ||
| ecdh.c | ||
| ecdh.h | ||
| ecdh_everest.c | ||
| ecdh_everest.h | ||
| ecdsa.c | ||
| ecdsa.h | ||
| ecp.c | ||
| ecp.h | ||
| ecp256.c | ||
| ecp384.c | ||
| ecp_curves.c | ||
| ecp_internal.h | ||
| ecpshl.c | ||
| endian.h | ||
| entropy.c | ||
| entropy.h | ||
| entropy_poll.c | ||
| entropy_poll.h | ||
| error.c | ||
| error.h | ||
| everest.c | ||
| everest.h | ||
| fastdiv.h | ||
| formatclientciphers.c | ||
| gcm.c | ||
| gcm.h | ||
| getalertdescription.c | ||
| getciphersuite.c | ||
| getciphersuitename.c | ||
| getsslstatename.c | ||
| hkdf.c | ||
| hkdf.h | ||
| hmac_drbg.c | ||
| hmac_drbg.h | ||
| iana.h | ||
| isciphersuitegood.c | ||
| karatsuba.c | ||
| LICENSE | ||
| math.h | ||
| md.c | ||
| md.h | ||
| md5.c | ||
| md5.h | ||
| md5t.c | ||
| mdtype.c | ||
| memory_buffer_alloc.c | ||
| memory_buffer_alloc.h | ||
| net_sockets.c | ||
| net_sockets.h | ||
| nist_kw.c | ||
| nist_kw.h | ||
| notice.c | ||
| oid.c | ||
| oid.h | ||
| param.c | ||
| pem.c | ||
| pem.h | ||
| pk.c | ||
| pk.h | ||
| pk_internal.h | ||
| pk_wrap.c | ||
| pkcs5.c | ||
| pkcs5.h | ||
| pkparse.c | ||
| pktype.c | ||
| pkwrite.c | ||
| platform.c | ||
| platform.h | ||
| poly1305.c | ||
| poly1305.h | ||
| profile.h | ||
| rando.c | ||
| README.cosmo | ||
| rsa.c | ||
| rsa.h | ||
| rsa_internal.c | ||
| rsa_internal.h | ||
| san.c | ||
| san.h | ||
| secp256r1.c | ||
| secp384r1.c | ||
| select.h | ||
| sha1.c | ||
| sha1.h | ||
| sha1t.c | ||
| sha256.c | ||
| sha256.h | ||
| sha256t.c | ||
| sha512.c | ||
| sha512.h | ||
| sha512t.c | ||
| shakedescription.c | ||
| shiftright-avx.c | ||
| shiftright.c | ||
| sigalg.c | ||
| speed.sh | ||
| srtp.c | ||
| ssl.h | ||
| ssl_cache.c | ||
| ssl_cache.h | ||
| ssl_ciphersuites.c | ||
| ssl_ciphersuites.h | ||
| ssl_cli.c | ||
| ssl_cookie.c | ||
| ssl_cookie.h | ||
| ssl_internal.h | ||
| ssl_invasive.h | ||
| ssl_msg.c | ||
| ssl_srv.c | ||
| ssl_ticket.c | ||
| ssl_ticket.h | ||
| ssl_tls.c | ||
| ssl_tls13_keys.c | ||
| ssl_tls13_keys.h | ||
| version.h | ||
| x509.c | ||
| x509.h | ||
| x509_create.c | ||
| x509_crl.c | ||
| x509_crl.h | ||
| x509_crt.c | ||
| x509_crt.h | ||
| x509_csr.c | ||
| x509_csr.h | ||
| x509write_crt.c | ||
| x509write_csr.c | ||
| zeroize.c | ||
DESCRIPTION
Mbed TLS is a crypto library built by ARM that's been released
under a more permissive license than alternatives like OpenSSL
and is useful for interoperating with systems that require TLS
SOURCE
https://github.com/ARMmbed/mbedtls/archive/refs/tags/v2.26.0.tar.gz
LICENSE
Apache 2.o
LOCAL CHANGES
- Support ECANCELED (similar to EINTR) needed by pthread_cancel()
- Strengthened server against DOS by removing expensive protections
for old Internet Explorer against Lucky Thirteen timing attacks.
- Reduce build+test latency from 15 seconds to 5 seconds.
- Features have been added that enable this library to produce SSL
certificates that can be used by Google Chrome. This required we
add featurces for editing Subject Alternative Names and Extended
Key Usage X.509 extension fields since upstream mbedtls can only
do that currently for Netscape Navigator.
- Local changes needed to be made to test_suite_ssl.datax due to it
not taking into consideration disabled features like DTLS.
- Local changes needed to be made to test_suite_x509parse.datax due
to the features we added for subject alternative name parsing.
- We've slimmed things down to meet our own specific local needs.
For example, we don't need the PSA code since we don't target ARM
hardware. We also don't need algorithms like camellia, blowfish,
ripemd, arc4, ecjpake, etc. We want security code that's simple,
readable, and easy to maintain. For example, the formally verified
eliptic curve diffie-helman code was 38 files and most of it was
dead code which could be consolidated into one < 1 kLOC file.
- The only breaking API change that's been made is to redefine int
arrays of things like long lists of ciphersuites to be uint8_t or
uint16_t instead when appropriate.
- Exported test code so it (a) doesn't have python as a build time
dependency, (b) doesn't print to stdout on success, (c) bundles
its dependencies inside a zip container so the tests are able to
run hermetically if the binary is scp'd to some machine, and (d)
doesn't have large amounts of duplicated generated code.
- Fix mbedtls_mpi_sub_abs() to not call malloc/free/memcpy since
it's called 11,124 times during as SSL handshake.
- Make P-256 and P-384 modulus goes 5x faster.
- Make chacha20 26% faster.
- Make base64 100x faster.
- Make gcm faster.