1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283848586878889909192 |
- /* This file is in the public domain. */
- #include <sys/cdefs.h>
- __FBSDID("$FreeBSD$");
- #include <opencrypto/xform_auth.h>
- #include <opencrypto/xform_poly1305.h>
- #include <sodium/crypto_onetimeauth_poly1305.h>
- struct poly1305_xform_ctx {
- struct crypto_onetimeauth_poly1305_state state;
- };
- CTASSERT(sizeof(union authctx) >= sizeof(struct poly1305_xform_ctx));
- CTASSERT(POLY1305_KEY_LEN == crypto_onetimeauth_poly1305_KEYBYTES);
- CTASSERT(POLY1305_HASH_LEN == crypto_onetimeauth_poly1305_BYTES);
- void
- Poly1305_Init(void *polyctx)
- {
- /* Nop */
- }
- void
- Poly1305_Setkey(struct poly1305_xform_ctx *polyctx,
- const uint8_t key[__min_size(POLY1305_KEY_LEN)], size_t klen)
- {
- int rc;
- if (klen != POLY1305_KEY_LEN)
- panic("%s: Bogus keylen: %u bytes", __func__, (unsigned)klen);
- rc = crypto_onetimeauth_poly1305_init(&polyctx->state, key);
- if (rc != 0)
- panic("%s: Invariant violated: %d", __func__, rc);
- }
- static void
- xform_Poly1305_Setkey(void *ctx, const uint8_t *key, u_int klen)
- {
- Poly1305_Setkey(ctx, key, klen);
- }
- int
- Poly1305_Update(struct poly1305_xform_ctx *polyctx, const void *data,
- size_t len)
- {
- int rc;
- rc = crypto_onetimeauth_poly1305_update(&polyctx->state, data, len);
- if (rc != 0)
- panic("%s: Invariant violated: %d", __func__, rc);
- return (0);
- }
- static int
- xform_Poly1305_Update(void *ctx, const void *data, u_int len)
- {
- return (Poly1305_Update(ctx, data, len));
- }
- void
- Poly1305_Final(uint8_t digest[__min_size(POLY1305_HASH_LEN)],
- struct poly1305_xform_ctx *polyctx)
- {
- int rc;
- rc = crypto_onetimeauth_poly1305_final(&polyctx->state, digest);
- if (rc != 0)
- panic("%s: Invariant violated: %d", __func__, rc);
- }
- static void
- xform_Poly1305_Final(uint8_t *digest, void *ctx)
- {
- Poly1305_Final(digest, ctx);
- }
- struct auth_hash auth_hash_poly1305 = {
- .type = CRYPTO_POLY1305,
- .name = "Poly-1305",
- .keysize = POLY1305_KEY_LEN,
- .hashsize = POLY1305_HASH_LEN,
- .ctxsize = sizeof(struct poly1305_xform_ctx),
- .blocksize = crypto_onetimeauth_poly1305_BYTES,
- .Init = Poly1305_Init,
- .Setkey = xform_Poly1305_Setkey,
- .Update = xform_Poly1305_Update,
- .Final = xform_Poly1305_Final,
- };
|