crypto_api_chachapoly 0.5.0

An implementation of ChaCha20-IETF, Poly1305 and ChachaPoly-IETF for `crypto_api`
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68

use crate::core::poly1305::{ poly1305_init, poly1305_update, poly1305_finish };
use crypto_api::{
    mac::{ MacInfo, Mac },
    rng::{ SecureRng, SecKeyGen }
};
use std::error::Error;


/// The size of a Poly1305 key (256 bits/32 bytes)
pub const POLY1305_KEY: usize = 32;
/// The size of a ChaChaPoly authentication tag
pub const POLY1305_TAG: usize = 16;


/// An implementation of [Poly1305](https://tools.ietf.org/html/rfc8439)
pub struct Poly1305;
impl Poly1305 {
    /// Creates a `Mac` instance with `Poly1305` as underlying algorithm
    pub fn mac() -> Box<dyn Mac> {
        Box::new(Self)
    }
    
    /// A helper function for the ChachaPoly-IETF AEAD construction
    pub(in crate) fn chachapoly_auth(tag: &mut[u8], ad: &[u8], data: &[u8], foot: &[u8], key: &[u8]) {
        // Init Poly1305
        let (mut r, mut s, mut u, mut a) = (vec![0; 5], vec![0; 4], vec![0; 5], vec![0; 5]);
        poly1305_init(&mut r, &mut s, &mut u, key);
        
        // Process AD, data and the footer
        poly1305_update(&mut a, &r, &u, ad, false);
        poly1305_update(&mut a, &r, &u, data, false);
        poly1305_update(&mut a, &r, &u, foot, true);
        poly1305_finish(tag, &mut a, &mut s);
    }
}
impl SecKeyGen for Poly1305 {
    fn new_sec_key(&self, buf: &mut[u8], rng: &mut dyn SecureRng) -> Result<usize, Box<dyn Error + 'static>> {
        // Verify input
        vfy_keygen!(POLY1305_KEY => buf);
        
        // Generate key
        rng.random(&mut buf[..POLY1305_KEY])?;
        Ok(POLY1305_KEY)
    }
}
impl Mac for Poly1305 {
    fn info(&self) -> MacInfo {
        MacInfo {
            name: "Poly1305", is_otm: true,
            mac_len: POLY1305_TAG,
            mac_len_r: POLY1305_TAG..(POLY1305_TAG + 1),
            key_len_r: POLY1305_KEY..(POLY1305_KEY + 1)
        }
    }
    
    fn auth(&self, buf: &mut[u8], data: &[u8], key: &[u8]) -> Result<usize, Box<dyn Error + 'static>> {
        // Verify input
        vfy_auth!(key => [POLY1305_KEY], => [buf, POLY1305_TAG]);
        
        // Authenticate data
        let (mut r, mut s, mut u, mut a) = (vec![0; 5], vec![0; 4], vec![0; 5], vec![0; 5]);
        poly1305_init(&mut r, &mut s, &mut u, key);
        poly1305_update(&mut a, &r, &u, data, true);
        poly1305_finish(buf, &mut a, &s);
        
        Ok(POLY1305_TAG)
    }
}