kris
/
xmss-KAT-generator
1
0
Fork 0
Code Issues 0 Pull Requests 0 Releases 0 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
11 Commits
1 Branch
488 KiB
Tree: 1511c0bdf7
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '1511c0bdf7'
${ noResults }
xmss-KAT-generator/prg.c

prg.c 1.5 KiB
Raw Normal View History

added copyright notes for publishing. Removed unused file.
9 years ago
Initial commit
9 years ago
Added support for n=m=64
9 years ago
Initial commit
9 years ago
Change 'uint' to standard 'unsigned int'
9 years ago
Initial commit
9 years ago
Change 'uint' to standard 'unsigned int'
9 years ago
Initial commit
9 years ago
Added support for n=m=64
9 years ago
Initial commit
9 years ago
Added support for n=m=64
9 years ago
Initial commit
9 years ago
 12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455 
  1. /*

  2. prg.c version 20150811

  3. Andreas Hülsing

  4. Public domain.

  5. */

  6. #include "chacha.h"

  7. #include "prg.h"

  8. #include <stdio.h>

  9. 

  10. 

  11. const unsigned char zero_nonce[12] = {0};

  12. 

  13. /**

  14.  * Generates rlen output bytes using ChaCha20 with a zero nonce and counter = 0

  15.  */

  16. void prg(unsigned char *r, unsigned long long rlen, const unsigned char *key, unsigned int key_len)

  17. {  

  18.   CRYPTO_chacha_20_keystream(r, rlen, key, zero_nonce, 0);

  19. }

  20. 

  21. /**

  22.  * Generates rlen output bytes using ChaCha20.

  23.  * Nonce and counter are set depending on the address addr.

  24.  */

  25. void prg_with_counter(unsigned char *r, unsigned long long rlen, const unsigned char *key, unsigned int key_len, const unsigned char addr[16])

  26. {

  27.   int i;

  28.   unsigned char nonce[12];

  29.   if(key_len == 32){

  30.     for(i = 0; i < 12; i++)

  31.     {

  32.       nonce[i] = addr[i];

  33.     }

  34.     uint32_t counter;

  35.     counter = (((uint32_t)addr[12]) << 24)|(((uint32_t)addr[13]) << 16)|(((uint32_t)addr[14]) << 8)|addr[15];

  36.     // TODO: Check address handling. Endianess?

  37.     CRYPTO_chacha_20_keystream(r, rlen, key, nonce, counter);

  38.   } 

  39.   else 

  40.   {

  41.     if(key_len == 64)

  42.     {

  43.       for(i = 0; i < 12; i++)

  44.       {

  45. 	nonce[i] = addr[i];

  46.       }

  47.       uint32_t counter;

  48.       counter = (((uint32_t)addr[12]) << 24)|(((uint32_t)addr[13]) << 16)|(((uint32_t)addr[14]) << 8)|addr[15];

  49.       // TODO: WRONG! Uses only 32 byte of key. However, does not compile with HMAC-SHA512

  50.       CRYPTO_chacha_20_keystream(r, rlen, key, nonce, counter);

  51.     } else {

  52.       fprintf(stderr,"prg.c:: Code only supports 32 byte and 64 byte seeds");

  53.     }

  54.   }

  55. }