kris
/
pqcrypto
mirror of https://github.com/henrydcase/pqc.git
1
1
Fork 0
Code Issues 1 Releases 2 Wiki Activity
Browse Source

Port SPHINCS+-SHAKE256 to fips202 ctx structs

tags/v0.0.1
Thom Wiggers 5 years ago
parent
98002329ad
commit
692fba119c
No known key found for this signature in database GPG Key ID: 1BB0A7CE26E363
12 changed files with 168 additions and 168 deletions
Split View
Diff Options
Show Stats Download Patch File Download Diff File
  1. +14
    -14
      crypto_sign/sphincs-shake256-128f-robust/clean/hash_shake256.c
  2. +14
    -14
      crypto_sign/sphincs-shake256-128f-simple/clean/hash_shake256.c
  3. +14
    -14
      crypto_sign/sphincs-shake256-128s-robust/clean/hash_shake256.c
  4. +14
    -14
      crypto_sign/sphincs-shake256-128s-simple/clean/hash_shake256.c
  5. +14
    -14
      crypto_sign/sphincs-shake256-192f-robust/clean/hash_shake256.c
  6. +14
    -14
      crypto_sign/sphincs-shake256-192f-simple/clean/hash_shake256.c
  7. +14
    -14
      crypto_sign/sphincs-shake256-192s-robust/clean/hash_shake256.c
  8. +14
    -14
      crypto_sign/sphincs-shake256-192s-simple/clean/hash_shake256.c
  9. +14
    -14
      crypto_sign/sphincs-shake256-256f-robust/clean/hash_shake256.c
  10. +14
    -14
      crypto_sign/sphincs-shake256-256f-simple/clean/hash_shake256.c
  11. +14
    -14
      crypto_sign/sphincs-shake256-256s-robust/clean/hash_shake256.c
  12. +14
    -14
      crypto_sign/sphincs-shake256-256s-simple/clean/hash_shake256.c

+ 14
- 14
crypto_sign/sphincs-shake256-128f-robust/clean/hash_shake256.c View File

@@ -37,14 +37,14 @@ void PQCLEAN_SPHINCSSHAKE256128FROBUST_CLEAN_gen_message_random(
unsigned char *R,
const unsigned char *sk_prf, const unsigned char *optrand,
const unsigned char *m, size_t mlen) {
uint64_t s_inc[26];
shake256incctx state;

shake256_inc_init(s_inc);
shake256_inc_absorb(s_inc, sk_prf, SPX_N);
shake256_inc_absorb(s_inc, optrand, SPX_N);
shake256_inc_absorb(s_inc, m, mlen);
shake256_inc_finalize(s_inc);
shake256_inc_squeeze(R, SPX_N, s_inc);
shake256_inc_init(&state);
shake256_inc_absorb(&state, sk_prf, SPX_N);
shake256_inc_absorb(&state, optrand, SPX_N);
shake256_inc_absorb(&state, m, mlen);
shake256_inc_finalize(&state);
shake256_inc_squeeze(R, SPX_N, &state);
}

/**
@@ -64,14 +64,14 @@ void PQCLEAN_SPHINCSSHAKE256128FROBUST_CLEAN_hash_message(

unsigned char buf[SPX_DGST_BYTES];
unsigned char *bufp = buf;
uint64_t s_inc[26];
shake256incctx state;

shake256_inc_init(s_inc);
shake256_inc_absorb(s_inc, R, SPX_N);
shake256_inc_absorb(s_inc, pk, SPX_PK_BYTES);
shake256_inc_absorb(s_inc, m, mlen);
shake256_inc_finalize(s_inc);
shake256_inc_squeeze(buf, SPX_DGST_BYTES, s_inc);
shake256_inc_init(&state);
shake256_inc_absorb(&state, R, SPX_N);
shake256_inc_absorb(&state, pk, SPX_PK_BYTES);
shake256_inc_absorb(&state, m, mlen);
shake256_inc_finalize(&state);
shake256_inc_squeeze(buf, SPX_DGST_BYTES, &state);

memcpy(digest, bufp, SPX_FORS_MSG_BYTES);
bufp += SPX_FORS_MSG_BYTES;


+ 14
- 14
crypto_sign/sphincs-shake256-128f-simple/clean/hash_shake256.c View File

@@ -37,14 +37,14 @@ void PQCLEAN_SPHINCSSHAKE256128FSIMPLE_CLEAN_gen_message_random(
unsigned char *R,
const unsigned char *sk_prf, const unsigned char *optrand,
const unsigned char *m, size_t mlen) {
uint64_t s_inc[26];
shake256incctx state;

shake256_inc_init(s_inc);
shake256_inc_absorb(s_inc, sk_prf, SPX_N);
shake256_inc_absorb(s_inc, optrand, SPX_N);
shake256_inc_absorb(s_inc, m, mlen);
shake256_inc_finalize(s_inc);
shake256_inc_squeeze(R, SPX_N, s_inc);
shake256_inc_init(&state);
shake256_inc_absorb(&state, sk_prf, SPX_N);
shake256_inc_absorb(&state, optrand, SPX_N);
shake256_inc_absorb(&state, m, mlen);
shake256_inc_finalize(&state);
shake256_inc_squeeze(R, SPX_N, &state);
}

/**
@@ -64,14 +64,14 @@ void PQCLEAN_SPHINCSSHAKE256128FSIMPLE_CLEAN_hash_message(

unsigned char buf[SPX_DGST_BYTES];
unsigned char *bufp = buf;
uint64_t s_inc[26];
shake256incctx state;

shake256_inc_init(s_inc);
shake256_inc_absorb(s_inc, R, SPX_N);
shake256_inc_absorb(s_inc, pk, SPX_PK_BYTES);
shake256_inc_absorb(s_inc, m, mlen);
shake256_inc_finalize(s_inc);
shake256_inc_squeeze(buf, SPX_DGST_BYTES, s_inc);
shake256_inc_init(&state);
shake256_inc_absorb(&state, R, SPX_N);
shake256_inc_absorb(&state, pk, SPX_PK_BYTES);
shake256_inc_absorb(&state, m, mlen);
shake256_inc_finalize(&state);
shake256_inc_squeeze(buf, SPX_DGST_BYTES, &state);

memcpy(digest, bufp, SPX_FORS_MSG_BYTES);
bufp += SPX_FORS_MSG_BYTES;


+ 14
- 14
crypto_sign/sphincs-shake256-128s-robust/clean/hash_shake256.c View File

@@ -37,14 +37,14 @@ void PQCLEAN_SPHINCSSHAKE256128SROBUST_CLEAN_gen_message_random(
unsigned char *R,
const unsigned char *sk_prf, const unsigned char *optrand,
const unsigned char *m, size_t mlen) {
uint64_t s_inc[26];
shake256incctx state;

shake256_inc_init(s_inc);
shake256_inc_absorb(s_inc, sk_prf, SPX_N);
shake256_inc_absorb(s_inc, optrand, SPX_N);
shake256_inc_absorb(s_inc, m, mlen);
shake256_inc_finalize(s_inc);
shake256_inc_squeeze(R, SPX_N, s_inc);
shake256_inc_init(&state);
shake256_inc_absorb(&state, sk_prf, SPX_N);
shake256_inc_absorb(&state, optrand, SPX_N);
shake256_inc_absorb(&state, m, mlen);
shake256_inc_finalize(&state);
shake256_inc_squeeze(R, SPX_N, &state);
}

/**
@@ -64,14 +64,14 @@ void PQCLEAN_SPHINCSSHAKE256128SROBUST_CLEAN_hash_message(

unsigned char buf[SPX_DGST_BYTES];
unsigned char *bufp = buf;
uint64_t s_inc[26];
shake256incctx state;

shake256_inc_init(s_inc);
shake256_inc_absorb(s_inc, R, SPX_N);
shake256_inc_absorb(s_inc, pk, SPX_PK_BYTES);
shake256_inc_absorb(s_inc, m, mlen);
shake256_inc_finalize(s_inc);
shake256_inc_squeeze(buf, SPX_DGST_BYTES, s_inc);
shake256_inc_init(&state);
shake256_inc_absorb(&state, R, SPX_N);
shake256_inc_absorb(&state, pk, SPX_PK_BYTES);
shake256_inc_absorb(&state, m, mlen);
shake256_inc_finalize(&state);
shake256_inc_squeeze(buf, SPX_DGST_BYTES, &state);

memcpy(digest, bufp, SPX_FORS_MSG_BYTES);
bufp += SPX_FORS_MSG_BYTES;


+ 14
- 14
crypto_sign/sphincs-shake256-128s-simple/clean/hash_shake256.c View File

@@ -37,14 +37,14 @@ void PQCLEAN_SPHINCSSHAKE256128SSIMPLE_CLEAN_gen_message_random(
unsigned char *R,
const unsigned char *sk_prf, const unsigned char *optrand,
const unsigned char *m, size_t mlen) {
uint64_t s_inc[26];
shake256incctx state;

shake256_inc_init(s_inc);
shake256_inc_absorb(s_inc, sk_prf, SPX_N);
shake256_inc_absorb(s_inc, optrand, SPX_N);
shake256_inc_absorb(s_inc, m, mlen);
shake256_inc_finalize(s_inc);
shake256_inc_squeeze(R, SPX_N, s_inc);
shake256_inc_init(&state);
shake256_inc_absorb(&state, sk_prf, SPX_N);
shake256_inc_absorb(&state, optrand, SPX_N);
shake256_inc_absorb(&state, m, mlen);
shake256_inc_finalize(&state);
shake256_inc_squeeze(R, SPX_N, &state);
}

/**
@@ -64,14 +64,14 @@ void PQCLEAN_SPHINCSSHAKE256128SSIMPLE_CLEAN_hash_message(

unsigned char buf[SPX_DGST_BYTES];
unsigned char *bufp = buf;
uint64_t s_inc[26];
shake256incctx state;

shake256_inc_init(s_inc);
shake256_inc_absorb(s_inc, R, SPX_N);
shake256_inc_absorb(s_inc, pk, SPX_PK_BYTES);
shake256_inc_absorb(s_inc, m, mlen);
shake256_inc_finalize(s_inc);
shake256_inc_squeeze(buf, SPX_DGST_BYTES, s_inc);
shake256_inc_init(&state);
shake256_inc_absorb(&state, R, SPX_N);
shake256_inc_absorb(&state, pk, SPX_PK_BYTES);
shake256_inc_absorb(&state, m, mlen);
shake256_inc_finalize(&state);
shake256_inc_squeeze(buf, SPX_DGST_BYTES, &state);

memcpy(digest, bufp, SPX_FORS_MSG_BYTES);
bufp += SPX_FORS_MSG_BYTES;


+ 14
- 14
crypto_sign/sphincs-shake256-192f-robust/clean/hash_shake256.c View File

@@ -37,14 +37,14 @@ void PQCLEAN_SPHINCSSHAKE256192FROBUST_CLEAN_gen_message_random(
unsigned char *R,
const unsigned char *sk_prf, const unsigned char *optrand,
const unsigned char *m, size_t mlen) {
uint64_t s_inc[26];
shake256incctx state;

shake256_inc_init(s_inc);
shake256_inc_absorb(s_inc, sk_prf, SPX_N);
shake256_inc_absorb(s_inc, optrand, SPX_N);
shake256_inc_absorb(s_inc, m, mlen);
shake256_inc_finalize(s_inc);
shake256_inc_squeeze(R, SPX_N, s_inc);
shake256_inc_init(&state);
shake256_inc_absorb(&state, sk_prf, SPX_N);
shake256_inc_absorb(&state, optrand, SPX_N);
shake256_inc_absorb(&state, m, mlen);
shake256_inc_finalize(&state);
shake256_inc_squeeze(R, SPX_N, &state);
}

/**
@@ -64,14 +64,14 @@ void PQCLEAN_SPHINCSSHAKE256192FROBUST_CLEAN_hash_message(

unsigned char buf[SPX_DGST_BYTES];
unsigned char *bufp = buf;
uint64_t s_inc[26];
shake256incctx state;

shake256_inc_init(s_inc);
shake256_inc_absorb(s_inc, R, SPX_N);
shake256_inc_absorb(s_inc, pk, SPX_PK_BYTES);
shake256_inc_absorb(s_inc, m, mlen);
shake256_inc_finalize(s_inc);
shake256_inc_squeeze(buf, SPX_DGST_BYTES, s_inc);
shake256_inc_init(&state);
shake256_inc_absorb(&state, R, SPX_N);
shake256_inc_absorb(&state, pk, SPX_PK_BYTES);
shake256_inc_absorb(&state, m, mlen);
shake256_inc_finalize(&state);
shake256_inc_squeeze(buf, SPX_DGST_BYTES, &state);

memcpy(digest, bufp, SPX_FORS_MSG_BYTES);
bufp += SPX_FORS_MSG_BYTES;


+ 14
- 14
crypto_sign/sphincs-shake256-192f-simple/clean/hash_shake256.c View File

@@ -37,14 +37,14 @@ void PQCLEAN_SPHINCSSHAKE256192FSIMPLE_CLEAN_gen_message_random(
unsigned char *R,
const unsigned char *sk_prf, const unsigned char *optrand,
const unsigned char *m, size_t mlen) {
uint64_t s_inc[26];
shake256incctx state;

shake256_inc_init(s_inc);
shake256_inc_absorb(s_inc, sk_prf, SPX_N);
shake256_inc_absorb(s_inc, optrand, SPX_N);
shake256_inc_absorb(s_inc, m, mlen);
shake256_inc_finalize(s_inc);
shake256_inc_squeeze(R, SPX_N, s_inc);
shake256_inc_init(&state);
shake256_inc_absorb(&state, sk_prf, SPX_N);
shake256_inc_absorb(&state, optrand, SPX_N);
shake256_inc_absorb(&state, m, mlen);
shake256_inc_finalize(&state);
shake256_inc_squeeze(R, SPX_N, &state);
}

/**
@@ -64,14 +64,14 @@ void PQCLEAN_SPHINCSSHAKE256192FSIMPLE_CLEAN_hash_message(

unsigned char buf[SPX_DGST_BYTES];
unsigned char *bufp = buf;
uint64_t s_inc[26];
shake256incctx state;

shake256_inc_init(s_inc);
shake256_inc_absorb(s_inc, R, SPX_N);
shake256_inc_absorb(s_inc, pk, SPX_PK_BYTES);
shake256_inc_absorb(s_inc, m, mlen);
shake256_inc_finalize(s_inc);
shake256_inc_squeeze(buf, SPX_DGST_BYTES, s_inc);
shake256_inc_init(&state);
shake256_inc_absorb(&state, R, SPX_N);
shake256_inc_absorb(&state, pk, SPX_PK_BYTES);
shake256_inc_absorb(&state, m, mlen);
shake256_inc_finalize(&state);
shake256_inc_squeeze(buf, SPX_DGST_BYTES, &state);

memcpy(digest, bufp, SPX_FORS_MSG_BYTES);
bufp += SPX_FORS_MSG_BYTES;


+ 14
- 14
crypto_sign/sphincs-shake256-192s-robust/clean/hash_shake256.c View File

@@ -37,14 +37,14 @@ void PQCLEAN_SPHINCSSHAKE256192SROBUST_CLEAN_gen_message_random(
unsigned char *R,
const unsigned char *sk_prf, const unsigned char *optrand,
const unsigned char *m, size_t mlen) {
uint64_t s_inc[26];
shake256incctx state;

shake256_inc_init(s_inc);
shake256_inc_absorb(s_inc, sk_prf, SPX_N);
shake256_inc_absorb(s_inc, optrand, SPX_N);
shake256_inc_absorb(s_inc, m, mlen);
shake256_inc_finalize(s_inc);
shake256_inc_squeeze(R, SPX_N, s_inc);
shake256_inc_init(&state);
shake256_inc_absorb(&state, sk_prf, SPX_N);
shake256_inc_absorb(&state, optrand, SPX_N);
shake256_inc_absorb(&state, m, mlen);
shake256_inc_finalize(&state);
shake256_inc_squeeze(R, SPX_N, &state);
}

/**
@@ -64,14 +64,14 @@ void PQCLEAN_SPHINCSSHAKE256192SROBUST_CLEAN_hash_message(

unsigned char buf[SPX_DGST_BYTES];
unsigned char *bufp = buf;
uint64_t s_inc[26];
shake256incctx state;

shake256_inc_init(s_inc);
shake256_inc_absorb(s_inc, R, SPX_N);
shake256_inc_absorb(s_inc, pk, SPX_PK_BYTES);
shake256_inc_absorb(s_inc, m, mlen);
shake256_inc_finalize(s_inc);
shake256_inc_squeeze(buf, SPX_DGST_BYTES, s_inc);
shake256_inc_init(&state);
shake256_inc_absorb(&state, R, SPX_N);
shake256_inc_absorb(&state, pk, SPX_PK_BYTES);
shake256_inc_absorb(&state, m, mlen);
shake256_inc_finalize(&state);
shake256_inc_squeeze(buf, SPX_DGST_BYTES, &state);

memcpy(digest, bufp, SPX_FORS_MSG_BYTES);
bufp += SPX_FORS_MSG_BYTES;


+ 14
- 14
crypto_sign/sphincs-shake256-192s-simple/clean/hash_shake256.c View File

@@ -37,14 +37,14 @@ void PQCLEAN_SPHINCSSHAKE256192SSIMPLE_CLEAN_gen_message_random(
unsigned char *R,
const unsigned char *sk_prf, const unsigned char *optrand,
const unsigned char *m, size_t mlen) {
uint64_t s_inc[26];
shake256incctx state;

shake256_inc_init(s_inc);
shake256_inc_absorb(s_inc, sk_prf, SPX_N);
shake256_inc_absorb(s_inc, optrand, SPX_N);
shake256_inc_absorb(s_inc, m, mlen);
shake256_inc_finalize(s_inc);
shake256_inc_squeeze(R, SPX_N, s_inc);
shake256_inc_init(&state);
shake256_inc_absorb(&state, sk_prf, SPX_N);
shake256_inc_absorb(&state, optrand, SPX_N);
shake256_inc_absorb(&state, m, mlen);
shake256_inc_finalize(&state);
shake256_inc_squeeze(R, SPX_N, &state);
}

/**
@@ -64,14 +64,14 @@ void PQCLEAN_SPHINCSSHAKE256192SSIMPLE_CLEAN_hash_message(

unsigned char buf[SPX_DGST_BYTES];
unsigned char *bufp = buf;
uint64_t s_inc[26];
shake256incctx state;

shake256_inc_init(s_inc);
shake256_inc_absorb(s_inc, R, SPX_N);
shake256_inc_absorb(s_inc, pk, SPX_PK_BYTES);
shake256_inc_absorb(s_inc, m, mlen);
shake256_inc_finalize(s_inc);
shake256_inc_squeeze(buf, SPX_DGST_BYTES, s_inc);
shake256_inc_init(&state);
shake256_inc_absorb(&state, R, SPX_N);
shake256_inc_absorb(&state, pk, SPX_PK_BYTES);
shake256_inc_absorb(&state, m, mlen);
shake256_inc_finalize(&state);
shake256_inc_squeeze(buf, SPX_DGST_BYTES, &state);

memcpy(digest, bufp, SPX_FORS_MSG_BYTES);
bufp += SPX_FORS_MSG_BYTES;


+ 14
- 14
crypto_sign/sphincs-shake256-256f-robust/clean/hash_shake256.c View File

@@ -37,14 +37,14 @@ void PQCLEAN_SPHINCSSHAKE256256FROBUST_CLEAN_gen_message_random(
unsigned char *R,
const unsigned char *sk_prf, const unsigned char *optrand,
const unsigned char *m, size_t mlen) {
uint64_t s_inc[26];
shake256incctx state;

shake256_inc_init(s_inc);
shake256_inc_absorb(s_inc, sk_prf, SPX_N);
shake256_inc_absorb(s_inc, optrand, SPX_N);
shake256_inc_absorb(s_inc, m, mlen);
shake256_inc_finalize(s_inc);
shake256_inc_squeeze(R, SPX_N, s_inc);
shake256_inc_init(&state);
shake256_inc_absorb(&state, sk_prf, SPX_N);
shake256_inc_absorb(&state, optrand, SPX_N);
shake256_inc_absorb(&state, m, mlen);
shake256_inc_finalize(&state);
shake256_inc_squeeze(R, SPX_N, &state);
}

/**
@@ -64,14 +64,14 @@ void PQCLEAN_SPHINCSSHAKE256256FROBUST_CLEAN_hash_message(

unsigned char buf[SPX_DGST_BYTES];
unsigned char *bufp = buf;
uint64_t s_inc[26];
shake256incctx state;

shake256_inc_init(s_inc);
shake256_inc_absorb(s_inc, R, SPX_N);
shake256_inc_absorb(s_inc, pk, SPX_PK_BYTES);
shake256_inc_absorb(s_inc, m, mlen);
shake256_inc_finalize(s_inc);
shake256_inc_squeeze(buf, SPX_DGST_BYTES, s_inc);
shake256_inc_init(&state);
shake256_inc_absorb(&state, R, SPX_N);
shake256_inc_absorb(&state, pk, SPX_PK_BYTES);
shake256_inc_absorb(&state, m, mlen);
shake256_inc_finalize(&state);
shake256_inc_squeeze(buf, SPX_DGST_BYTES, &state);

memcpy(digest, bufp, SPX_FORS_MSG_BYTES);
bufp += SPX_FORS_MSG_BYTES;


+ 14
- 14
crypto_sign/sphincs-shake256-256f-simple/clean/hash_shake256.c View File

@@ -37,14 +37,14 @@ void PQCLEAN_SPHINCSSHAKE256256FSIMPLE_CLEAN_gen_message_random(
unsigned char *R,
const unsigned char *sk_prf, const unsigned char *optrand,
const unsigned char *m, size_t mlen) {
uint64_t s_inc[26];
shake256incctx state;

shake256_inc_init(s_inc);
shake256_inc_absorb(s_inc, sk_prf, SPX_N);
shake256_inc_absorb(s_inc, optrand, SPX_N);
shake256_inc_absorb(s_inc, m, mlen);
shake256_inc_finalize(s_inc);
shake256_inc_squeeze(R, SPX_N, s_inc);
shake256_inc_init(&state);
shake256_inc_absorb(&state, sk_prf, SPX_N);
shake256_inc_absorb(&state, optrand, SPX_N);
shake256_inc_absorb(&state, m, mlen);
shake256_inc_finalize(&state);
shake256_inc_squeeze(R, SPX_N, &state);
}

/**
@@ -64,14 +64,14 @@ void PQCLEAN_SPHINCSSHAKE256256FSIMPLE_CLEAN_hash_message(

unsigned char buf[SPX_DGST_BYTES];
unsigned char *bufp = buf;
uint64_t s_inc[26];
shake256incctx state;

shake256_inc_init(s_inc);
shake256_inc_absorb(s_inc, R, SPX_N);
shake256_inc_absorb(s_inc, pk, SPX_PK_BYTES);
shake256_inc_absorb(s_inc, m, mlen);
shake256_inc_finalize(s_inc);
shake256_inc_squeeze(buf, SPX_DGST_BYTES, s_inc);
shake256_inc_init(&state);
shake256_inc_absorb(&state, R, SPX_N);
shake256_inc_absorb(&state, pk, SPX_PK_BYTES);
shake256_inc_absorb(&state, m, mlen);
shake256_inc_finalize(&state);
shake256_inc_squeeze(buf, SPX_DGST_BYTES, &state);

memcpy(digest, bufp, SPX_FORS_MSG_BYTES);
bufp += SPX_FORS_MSG_BYTES;


+ 14
- 14
crypto_sign/sphincs-shake256-256s-robust/clean/hash_shake256.c View File

@@ -37,14 +37,14 @@ void PQCLEAN_SPHINCSSHAKE256256SROBUST_CLEAN_gen_message_random(
unsigned char *R,
const unsigned char *sk_prf, const unsigned char *optrand,
const unsigned char *m, size_t mlen) {
uint64_t s_inc[26];
shake256incctx state;

shake256_inc_init(s_inc);
shake256_inc_absorb(s_inc, sk_prf, SPX_N);
shake256_inc_absorb(s_inc, optrand, SPX_N);
shake256_inc_absorb(s_inc, m, mlen);
shake256_inc_finalize(s_inc);
shake256_inc_squeeze(R, SPX_N, s_inc);
shake256_inc_init(&state);
shake256_inc_absorb(&state, sk_prf, SPX_N);
shake256_inc_absorb(&state, optrand, SPX_N);
shake256_inc_absorb(&state, m, mlen);
shake256_inc_finalize(&state);
shake256_inc_squeeze(R, SPX_N, &state);
}

/**
@@ -64,14 +64,14 @@ void PQCLEAN_SPHINCSSHAKE256256SROBUST_CLEAN_hash_message(

unsigned char buf[SPX_DGST_BYTES];
unsigned char *bufp = buf;
uint64_t s_inc[26];
shake256incctx state;

shake256_inc_init(s_inc);
shake256_inc_absorb(s_inc, R, SPX_N);
shake256_inc_absorb(s_inc, pk, SPX_PK_BYTES);
shake256_inc_absorb(s_inc, m, mlen);
shake256_inc_finalize(s_inc);
shake256_inc_squeeze(buf, SPX_DGST_BYTES, s_inc);
shake256_inc_init(&state);
shake256_inc_absorb(&state, R, SPX_N);
shake256_inc_absorb(&state, pk, SPX_PK_BYTES);
shake256_inc_absorb(&state, m, mlen);
shake256_inc_finalize(&state);
shake256_inc_squeeze(buf, SPX_DGST_BYTES, &state);

memcpy(digest, bufp, SPX_FORS_MSG_BYTES);
bufp += SPX_FORS_MSG_BYTES;


+ 14
- 14
crypto_sign/sphincs-shake256-256s-simple/clean/hash_shake256.c View File

@@ -37,14 +37,14 @@ void PQCLEAN_SPHINCSSHAKE256256SSIMPLE_CLEAN_gen_message_random(
unsigned char *R,
const unsigned char *sk_prf, const unsigned char *optrand,
const unsigned char *m, size_t mlen) {
uint64_t s_inc[26];
shake256incctx state;

shake256_inc_init(s_inc);
shake256_inc_absorb(s_inc, sk_prf, SPX_N);
shake256_inc_absorb(s_inc, optrand, SPX_N);
shake256_inc_absorb(s_inc, m, mlen);
shake256_inc_finalize(s_inc);
shake256_inc_squeeze(R, SPX_N, s_inc);
shake256_inc_init(&state);
shake256_inc_absorb(&state, sk_prf, SPX_N);
shake256_inc_absorb(&state, optrand, SPX_N);
shake256_inc_absorb(&state, m, mlen);
shake256_inc_finalize(&state);
shake256_inc_squeeze(R, SPX_N, &state);
}

/**
@@ -64,14 +64,14 @@ void PQCLEAN_SPHINCSSHAKE256256SSIMPLE_CLEAN_hash_message(

unsigned char buf[SPX_DGST_BYTES];
unsigned char *bufp = buf;
uint64_t s_inc[26];
shake256incctx state;

shake256_inc_init(s_inc);
shake256_inc_absorb(s_inc, R, SPX_N);
shake256_inc_absorb(s_inc, pk, SPX_PK_BYTES);
shake256_inc_absorb(s_inc, m, mlen);
shake256_inc_finalize(s_inc);
shake256_inc_squeeze(buf, SPX_DGST_BYTES, s_inc);
shake256_inc_init(&state);
shake256_inc_absorb(&state, R, SPX_N);
shake256_inc_absorb(&state, pk, SPX_PK_BYTES);
shake256_inc_absorb(&state, m, mlen);
shake256_inc_finalize(&state);
shake256_inc_squeeze(buf, SPX_DGST_BYTES, &state);

memcpy(digest, bufp, SPX_FORS_MSG_BYTES);
bufp += SPX_FORS_MSG_BYTES;


Write Preview
Loading…
Cancel
Save