Core-master/poly1305_8h_source.html

 // Copyright (c) 2019-2022 The Bitcoin Core developers

 // Distributed under the MIT software license, see the accompanying

 // file COPYING or http://www.opensource.org/licenses/mit-license.php.


 #ifndef BITCOIN_CRYPTO_POLY1305_H

 #define BITCOIN_CRYPTO_POLY1305_H


 #include <span.h>


 #include <cassert>

 #include <cstdlib>

 #include <stdint.h>


 #define POLY1305_BLOCK_SIZE 16


 namespace poly1305_donna {


 // Based on the public domain implementation by Andrew Moon

 // poly1305-donna-32.h from https://github.com/floodyberry/poly1305-donna


 typedef struct {

     uint32_t r[5];

     uint32_t h[5];

     uint32_t pad[4];

     size_t leftover;

     unsigned char buffer[POLY1305_BLOCK_SIZE];

     unsigned char final;

 } poly1305_context;


 void poly1305_init(poly1305_context *st, const unsigned char key[32]) noexcept;

 void poly1305_update(poly1305_context *st, const unsigned char *m, size_t bytes) noexcept;

 void poly1305_finish(poly1305_context *st, unsigned char mac[16]) noexcept;


 }  // namespace poly1305_donna


 class Poly1305

 {

     poly1305_donna::poly1305_context m_ctx;


 public:

     static constexpr unsigned TAGLEN{16};


     static constexpr unsigned KEYLEN{32};


     Poly1305(Span<const std::byte> key) noexcept

     {

         assert(key.size() == KEYLEN);

         poly1305_donna::poly1305_init(&m_ctx, UCharCast(key.data()));

     }


     Poly1305& Update(Span<const std::byte> msg) noexcept

     {

         poly1305_donna::poly1305_update(&m_ctx, UCharCast(msg.data()), msg.size());

         return *this;

     }


     void Finalize(Span<std::byte> out) noexcept

     {

         assert(out.size() == TAGLEN);

         poly1305_donna::poly1305_finish(&m_ctx, UCharCast(out.data()));

     }

 };


 #endif // BITCOIN_CRYPTO_POLY1305_H

Poly1305
C++ wrapper with std::byte Span interface around poly1305_donna code.
Definition: poly1305.h:38

Poly1305::m_ctx
poly1305_donna::poly1305_context m_ctx
Definition: poly1305.h:39

Poly1305::KEYLEN
static constexpr unsigned KEYLEN
Length of the keys expected by the constructor.
Definition: poly1305.h:46

Poly1305::Update
Poly1305 & Update(Span< const std::byte > msg) noexcept
Process message bytes.
Definition: poly1305.h:56

Poly1305::Finalize
void Finalize(Span< std::byte > out) noexcept
Write authentication tag to 16-byte out.
Definition: poly1305.h:63

Poly1305::TAGLEN
static constexpr unsigned TAGLEN
Length of the output produced by Finalize().
Definition: poly1305.h:43

Poly1305::Poly1305
Poly1305(Span< const std::byte > key) noexcept
Construct a Poly1305 object with a given 32-byte key.
Definition: poly1305.h:49

Span< const std::byte >

poly1305_donna
Definition: poly1305.cpp:10

poly1305_donna::poly1305_update
void poly1305_update(poly1305_context *st, const unsigned char *m, size_t bytes) noexcept
Definition: poly1305.cpp:186

poly1305_donna::poly1305_init
void poly1305_init(poly1305_context *st, const unsigned char key[32]) noexcept
Definition: poly1305.cpp:15

poly1305_donna::poly1305_finish
void poly1305_finish(poly1305_context *st, unsigned char mac[16]) noexcept
Definition: poly1305.cpp:100

tests_wycheproof_generate.msg
def msg
Definition: tests_wycheproof_generate.py:56

tests_wycheproof_generate.out
string out
Definition: tests_wycheproof_generate.py:28

POLY1305_BLOCK_SIZE
#define POLY1305_BLOCK_SIZE
Definition: poly1305.h:14

span.h

UCharCast
unsigned char * UCharCast(char *c)
Definition: span.h:288

poly1305_donna::poly1305_context
Definition: poly1305.h:21

poly1305_donna::poly1305_context::leftover
size_t leftover
Definition: poly1305.h:25

assert
assert(!tx.IsCoinBase())