11 Commits

Author	SHA1	Message	Date
Pieter Wuille	7d1cd93234	crypto: require key on ChaCha20 initialization	2023-08-17 15:31:27 -04:00
Pieter Wuille	3da636e08b	crypto: refactor ChaCha20 classes to use Span<std::byte> interface	2023-08-17 15:26:34 -04:00
Pieter Wuille	511a8d406e	crypto: Implement RFC8439-compatible variant of ChaCha20 ... There are two variants of ChaCha20 in use. The original one uses a 64-bit nonce and a 64-bit block counter, while the one used in RFC8439 uses a 96-bit nonce and 32-bit block counter. This commit changes the interface to use the 96/32 split (but automatically incrementing the first 32-bit part of the nonce when the 32-bit block counter overflows, so to retain compatibility with >256 GiB output). Simultaneously, also merge the SetIV and Seek64 functions, as we almost always call both anyway. Co-authored-by: dhruv <856960+dhruv@users.noreply.github.com>	2023-07-07 17:16:27 -04:00
Pieter Wuille	93aee8bbda	Inline ChaCha20 32-byte specific constants	2023-01-30 18:12:21 -05:00
Pieter Wuille	62ec713961	Only support 32-byte keys in ChaCha20{,Aligned}	2023-01-30 18:12:21 -05:00
Pieter Wuille	12ff72476a	Make unrestricted ChaCha20 cipher not waste keystream bytes ... Co-authored-by: dhruv <856960+dhruv@users.noreply.github.com>	2023-01-30 18:12:21 -05:00
Pieter Wuille	6babf40213	Rename ChaCha20::Seek -> Seek64 to clarify multiple of 64	2023-01-30 18:12:21 -05:00
practicalswift	e53274868e	Don't use zero as null pointer constant (-Wzero-as-null-pointer-constant)	2022-04-26 10:41:45 +01:00
stratospher	8f79831ab5	Refactor the chacha20 differential fuzz test	2021-12-17 23:04:04 +05:30
stratospher	4d0ac72f3a	[fuzz] Add fuzzing harness to compare both implementations of ChaCha20 ... Co-authored-by: Prakash Choudhary <44579179+prakash1512@users.noreply.github.com>	2021-12-11 08:29:34 +05:30
stratospher	65ef93203c	[fuzz] Add D. J. Bernstein's implementation of ChaCha20 ... Co-authored-by: Prakash Choudhary <44579179+prakash1512@users.noreply.github.com>	2021-12-11 08:29:34 +05:30