mirrors/cosmopolitan
1
0
Fork 0
mirror of https://github.com/jart/cosmopolitan.git synced 2025-02-07 06:53:33 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions
mirror of https://github.com/jart/cosmopolitan
375 commits 9 branches 118 tags 319 MiB
C 80.2%
Assembly 6.9%
Lua 5.4%
C++ 2.7%
Shell 2.1%
Other 2.5%
Find a file
Justine Tunney ea83cc0ad0 Make stronger crypto nearly as fast 
One of the disadvantages of x25519 and ℘256 is it only provides 126 bits
of security, so that seems like a weak link in the chain, if we're using
ECDHE-ECDSA-AES256-GCM-SHA384. The U.S. government wants classified data
to be encrypted using a curve at least as strong as ℘384, which provides
192 bits of security, but if you read the consensus of stack exchange it
would give you the impression that ℘384 is three times slower.

This change (as well as the previous one) makes ℘384 three times as fast
by tuning its modulus and multiplication subroutines with new tests that
should convincingly show: the optimized code behaves the same way as the
old code. Some of the diff noise from the previous change is now removed
too, so that our vendored fork can be more easily compared with upstream
sources. So you can now have stronger cryptography without compromises.

℘384 modulus Justine                        l:         28𝑐          9𝑛𝑠
℘384 modulus MbedTLS NIST                   l:        127𝑐         41𝑛𝑠
℘384 modulus MbedTLS MPI                    l:      1,850𝑐        597𝑛𝑠

The benchmarks above show the improvements made by secp384r1() which is
an important function since it needs to be called 13,000 times whenever
someone establishes a connection to your web server. The same's true of
Mul6x6Adx() which is able to multiply 384-bit numbers in 73 cycles, but
only if your CPU was purchased after 2014 when Broadwell was introduced
2021-07-26 16:19:45 -07:00
.github Create FUNDING.yml 2021-01-29 14:56:22 -08:00
.vscode Get VSCode working with Linux and WSL (#116) 2021-03-09 10:12:39 -08:00
ape Attempt to make LLD happy 2021-07-05 19:10:06 -07:00
build Add SNI support to redbean and improve SSL perf 2021-07-23 13:56:13 -07:00
dsp Remove garbage collector macro from header (#114) 2021-03-07 20:23:29 -08:00
examples Add SNI support to redbean and improve SSL perf 2021-07-23 13:56:13 -07:00
libc Make stronger crypto nearly as fast 2021-07-26 16:19:45 -07:00
net Add SNI support to redbean and improve SSL perf 2021-07-23 13:56:13 -07:00
test Make stronger crypto nearly as fast 2021-07-26 16:19:45 -07:00
third_party Make stronger crypto nearly as fast 2021-07-26 16:19:45 -07:00
tool Add SNI support to redbean and improve SSL perf 2021-07-23 13:56:13 -07:00
usr/share Add HTTP/HTTPS Fetch() API to redbean 2021-07-07 21:44:27 -07:00
.clang-format Add x86_64-linux-gnu emulator 2020-08-25 04:43:42 -07:00
.gitignore Make terminal ui binaries work well everywhere 2020-10-19 06:38:31 -07:00
.travis.yml Disable Travis emails 2021-03-07 08:29:43 -08:00
CONTRIBUTING.md Add CONTRIBUTING.md 2021-04-11 00:55:53 -07:00
LICENSE Add title to the LICENSE file 2021-02-27 13:25:59 -08:00
Makefile Add SNI support to redbean and improve SSL perf 2021-07-23 13:56:13 -07:00
README.md Cosmopolitan 1.0 2021-05-16 20:35:10 -07:00

README.md

Cosmopolitan Honeybadger

Cosmopolitan

Cosmopolitan Libc makes C a build-once run-anywhere language, like Java, except it doesn't need an interpreter or virtual machine. Instead, it reconfigures stock GCC and Clang to output a POSIX-approved polyglot format that runs natively on Linux + Mac + Windows + FreeBSD + OpenBSD + NetBSD + BIOS with the best possible performance and the tiniest footprint imaginable.

Background

For an introduction to this project, please read the αcτµαlly pδrταblε εxεcµταblε blog post and cosmopolitan libc website. We also have API documentation.

Getting Started

If you're doing your development work on Linux or BSD then you need just five files to get started. Here's what you do on Linux:

wget https://justine.lol/cosmopolitan/cosmopolitan-amalgamation-1.0.zip
unzip cosmopolitan-amalgamation-1.0.zip
printf 'main() { printf("hello world\\n"); }\n' >hello.c
gcc -g -Os -static -nostdlib -nostdinc -fno-pie -no-pie -mno-red-zone \
  -fno-omit-frame-pointer -pg -mnop-mcount \
  -o hello.com.dbg hello.c -fuse-ld=bfd -Wl,-T,ape.lds \
  -include cosmopolitan.h crt.o ape.o cosmopolitan.a
objcopy -S -O binary hello.com.dbg hello.com

You now have a portable program. Please note that your APE binary will assimilate itself as a conventional resident of your platform after the first run, so it can be fast and efficient for subsequent executions.

./hello.com
bash -c './hello.com'  # zsh/fish workaround (we upstreamed patches)

So if you intend to copy the binary to Windows or Mac then please do that before you run it, not after.

MacOS

If you're developing on MacOS you can install the GNU compiler collection for x86_64-elf via homebrew:

brew install x86_64-elf-gcc

Then in the above scripts just replace gcc and objcopy with x86_64-elf-gcc and x86_64-elf-objcopy to compile your APE binary.

Windows

If you're developing on Windows then you need to download an x86_64-pc-linux-gnu toolchain beforehand. See the Compiling on Windows tutorial. It's needed because the ELF object format is what makes universal binaries possible.

Source Builds

Cosmopolitan can be compiled from source on any Linux distro. GNU make needs to be installed beforehand. This is a freestanding hermetic repository that bootstraps using a vendored static gcc9 executable. No further dependencies are required.

wget https://justine.lol/cosmopolitan/cosmopolitan-1.0.tar.gz
tar xf cosmopolitan-1.0.tar.gz  # see releases page
cd cosmopolitan
make -j16
o//examples/hello.com
find o -name \*.com | xargs ls -rShal | less

Support Vector

Platform Min Version Circa
AMD K8 Venus 2005
Intel Core 2006
New Technology Vista 2006
GNU/Systemd 2.6.18 2007
XNU's Not UNIX! 15.6 2018
FreeBSD 12 2018
OpenBSD 6.4 2018
NetBSD 9.1 2020
GNU Make 3.80 2010