poly1305_8h_source.html

 // poly1305.h - written and placed in the public domain by Jeffrey Walton and Jean-Pierre Munch
 //              Based on Andy Polyakov's Base-2^26 scalar multiplication implementation for OpenSSL.
 //              Copyright assigned to the Crypto++ project


 #ifndef CRYPTOPP_POLY1305_H
 #define CRYPTOPP_POLY1305_H

 #include "cryptlib.h"
 #include "seckey.h"
 #include "secblock.h"
 #include "argnames.h"
 #include "algparam.h"

 NAMESPACE_BEGIN(CryptoPP)

 template <class T>
 class CRYPTOPP_NO_VTABLE Poly1305_Base : public FixedKeyLength<32, SimpleKeyingInterface::UNIQUE_IV, 16>, public MessageAuthenticationCode
 {
         CRYPTOPP_COMPILE_ASSERT(T::DEFAULT_KEYLENGTH == 16);
         CRYPTOPP_COMPILE_ASSERT(T::BLOCKSIZE == 16);

 public:
         static std::string StaticAlgorithmName() {return std::string("Poly1305(") + T::StaticAlgorithmName() + ")";}

         CRYPTOPP_CONSTANT(DIGESTSIZE=T::BLOCKSIZE)
         CRYPTOPP_CONSTANT(BLOCKSIZE=T::BLOCKSIZE)

         Poly1305_Base() : m_used(true) {}

         void Resynchronize (const byte *iv, int ivLength=-1);
         void GetNextIV (RandomNumberGenerator &rng, byte *iv);

         void UncheckedSetKey(const byte *key, unsigned int length, const NameValuePairs &params);
         void Update(const byte *input, size_t length);
         void TruncatedFinal(byte *mac, size_t size);
         void Restart();

         unsigned int BlockSize() const {return BLOCKSIZE;}
         unsigned int DigestSize() const {return DIGESTSIZE;}

 protected:
         void HashBlocks(const byte *input, size_t length, word32 padbit);
         void HashFinal(byte *mac, size_t length);

         typename T::Encryption m_cipher;

         // Accumulated hash, clamped r-key, and encrypted nonce
         FixedSizeAlignedSecBlock<word32, 5> m_h;
         FixedSizeAlignedSecBlock<word32, 4> m_r;
         FixedSizeAlignedSecBlock<word32, 4> m_n;

         // Accumulated message bytes and index
         FixedSizeAlignedSecBlock<byte, BLOCKSIZE> m_acc;
         size_t m_idx;

         // Track nonce reuse; assert in debug but continue
         bool m_used;
 };

 template <class T>
 class Poly1305 : public MessageAuthenticationCodeFinal<Poly1305_Base<T> >
 {
 public:
         CRYPTOPP_CONSTANT(DEFAULT_KEYLENGTH=Poly1305_Base<T>::DEFAULT_KEYLENGTH)


         Poly1305() {}

         Poly1305(const byte *key, size_t keyLength=DEFAULT_KEYLENGTH, const byte *nonce=NULL, size_t nonceLength=0)
                 {this->SetKey(key, keyLength, MakeParameters(Name::IV(), ConstByteArrayParameter(nonce, nonceLength)));}
 };

 NAMESPACE_END

 #endif  // CRYPTOPP_POLY1305_H
ConstByteArrayParameter
Used to pass byte array input as part of a NameValuePairs object.
Definition: algparam.h:29

argnames.h
Standard names for retrieving values by name when working with NameValuePairs.

MessageAuthenticationCode
Interface for message authentication codes.
Definition: cryptlib.h:1111

Poly1305_Base::m_acc
FixedSizeAlignedSecBlock< byte, BLOCKSIZE > m_acc
Definition: poly1305.h:97

Poly1305_Base
Poly1305 message authentication code base class.
Definition: poly1305.h:61

FixedKeyLength
Inherited by keyed algorithms with fixed key length.
Definition: seckey.h:127

algparam.h
Classes for working with NameValuePairs.

Poly1305_Base::DigestSize
unsigned int DigestSize() const
Provides the digest size of the hash.
Definition: poly1305.h:83

byte
uint8_t byte
Definition: Common.h:57

SimpleKeyingInterface::SetKey
virtual void SetKey(const byte *key, size_t length, const NameValuePairs &params=g_nullNameValuePairs)
Sets or reset the key of this object.
Definition: cryptlib.cpp:97

Poly1305_Base::m_h
FixedSizeAlignedSecBlock< word32, 5 > m_h
Definition: poly1305.h:92

T
#define T(i, x)

NAMESPACE_BEGIN
#define NAMESPACE_BEGIN(x)
Definition: config.h:200

Poly1305_Base::StaticAlgorithmName
static std::string StaticAlgorithmName()
Definition: poly1305.h:67

cryptlib.h
Abstract base classes that provide a uniform interface to this library.

Poly1305_Base::m_cipher
T::Encryption m_cipher
Definition: poly1305.h:89

Poly1305_Base::m_r
FixedSizeAlignedSecBlock< word32, 4 > m_r
Definition: poly1305.h:93

RandomNumberGenerator
Interface for random number generators.
Definition: cryptlib.h:1188

MessageAuthenticationCodeFinal
Provides class member functions to key a message authentication code.
Definition: seckey.h:379

Poly1305_Base::m_used
bool m_used
Definition: poly1305.h:101

secblock.h
Classes and functions for secure memory allocations.

Poly1305_Base::m_n
FixedSizeAlignedSecBlock< word32, 4 > m_n
Definition: poly1305.h:94

CRYPTOPP_COMPILE_ASSERT
#define CRYPTOPP_COMPILE_ASSERT(assertion)
Definition: misc.h:139

MakeParameters
AlgorithmParameters MakeParameters(const char *name, const T &value, bool throwIfNotUsed=true)
Create an object that implements NameValuePairs.
Definition: algparam.h:498

Poly1305_Base::m_idx
size_t m_idx
Definition: poly1305.h:98

seckey.h
Classes and functions for implementing secret key algorithms.

SimpleKeyingInterface
Interface for algorithms that take byte strings as keys.
Definition: cryptlib.h:524

FixedSizeAlignedSecBlock< word32, 5 >

CRYPTOPP_CONSTANT
#define CRYPTOPP_CONSTANT(x)
Definition: config.h:540

Poly1305
Poly1305 message authentication code.
Definition: poly1305.h:147

CRYPTOPP_NO_VTABLE
#define CRYPTOPP_NO_VTABLE
Definition: config.h:369

size
uint8_t const size_t const size
Definition: sha3.h:20

NAMESPACE_END
#define NAMESPACE_END
Definition: config.h:201

Poly1305_Base::BlockSize
unsigned int BlockSize() const
Provides the block size of the compression function.
Definition: poly1305.h:82

Poly1305::Poly1305
Poly1305(const byte *key, size_t keyLength=DEFAULT_KEYLENGTH, const byte *nonce=NULL, size_t nonceLength=0)
Construct a Poly1305.
Definition: poly1305.h:164

CryptoPP

word32
unsigned int word32
Definition: config.h:231

NameValuePairs
Interface for retrieving values given their names.
Definition: cryptlib.h:279