sleeping_kangaroo12 0.0.1 → 0.0.5
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/LICENSE.md +27 -0
- data/README.md +48 -53
- data/ext/Rakefile +12 -37
- data/ext/binding/sleeping_kangaroo12.c +1 -16
- data/ext/{xkcp → k12}/Makefile +0 -0
- data/ext/k12/Makefile.build +118 -0
- data/ext/k12/README.markdown +86 -0
- data/ext/k12/lib/ARMv8Asha3/KeccakP-1600-ARMv8Asha3.S +623 -0
- data/ext/k12/lib/ARMv8Asha3/KeccakP-1600-SnP.h +65 -0
- data/ext/k12/lib/ARMv8Asha3/KeccakP-1600-opt64.c +227 -0
- data/ext/{xkcp/lib/low/KeccakP-1600/compact → k12/lib/Inplace32BI}/KeccakP-1600-SnP.h +4 -9
- data/ext/{xkcp/lib/low/KeccakP-1600/plain-32bits-inplace → k12/lib/Inplace32BI}/KeccakP-1600-inplace32BI.c +65 -160
- data/ext/k12/lib/KangarooTwelve.c +332 -0
- data/ext/{xkcp/lib/high/KangarooTwelve → k12/lib}/KangarooTwelve.h +53 -16
- data/ext/{xkcp/lib/low/KeccakP-1600/AVX2 → k12/lib/Optimized64}/KeccakP-1600-AVX2.s +122 -558
- data/ext/k12/lib/Optimized64/KeccakP-1600-AVX512-plainC.c +241 -0
- data/ext/k12/lib/Optimized64/KeccakP-1600-AVX512.s +551 -0
- data/ext/k12/lib/Optimized64/KeccakP-1600-SnP.h +74 -0
- data/ext/{xkcp/lib/low/KeccakP-1600/common/KeccakP-1600-64.macros → k12/lib/Optimized64/KeccakP-1600-opt64.c} +447 -169
- data/ext/k12/lib/Optimized64/KeccakP-1600-runtimeDispatch.c +406 -0
- data/ext/k12/lib/Optimized64/KeccakP-1600-timesN-AVX2.c +419 -0
- data/ext/k12/lib/Optimized64/KeccakP-1600-timesN-AVX512.c +458 -0
- data/ext/k12/lib/Optimized64/KeccakP-1600-timesN-SSSE3.c +438 -0
- data/ext/{xkcp/lib/low/KeccakP-1600/plain-64bits → k12/lib/Plain64}/KeccakP-1600-SnP.h +14 -20
- data/ext/{xkcp/lib/low/KeccakP-1600/ref-64bits/KeccakP-1600-reference.h → k12/lib/Plain64/KeccakP-1600-plain64.c} +9 -8
- data/ext/{xkcp/lib/common → k12/lib}/align.h +3 -2
- data/ext/{xkcp/lib/common → k12/lib}/brg_endian.h +0 -0
- data/ext/{xkcp → k12}/support/Build/ExpandProducts.xsl +0 -0
- data/ext/{xkcp → k12}/support/Build/ToGlobalMakefile.xsl +0 -0
- data/ext/{xkcp → k12}/support/Build/ToOneTarget.xsl +0 -0
- data/ext/{xkcp → k12}/support/Build/ToTargetConfigFile.xsl +0 -0
- data/ext/{xkcp → k12}/support/Build/ToTargetMakefile.xsl +10 -16
- data/ext/{xkcp → k12}/support/Build/ToVCXProj.xsl +0 -0
- data/lib/sleeping_kangaroo12/binding.rb +2 -1
- data/lib/sleeping_kangaroo12/build/loader.rb +1 -0
- data/lib/sleeping_kangaroo12/build/platform.rb +1 -0
- data/lib/sleeping_kangaroo12/digest.rb +38 -4
- data/lib/sleeping_kangaroo12/version.rb +1 -1
- metadata +48 -288
- data/ext/config/xkcp.build +0 -17
- data/ext/xkcp/LICENSE +0 -1
- data/ext/xkcp/Makefile.build +0 -200
- data/ext/xkcp/README.markdown +0 -296
- data/ext/xkcp/lib/HighLevel.build +0 -143
- data/ext/xkcp/lib/LowLevel.build +0 -757
- data/ext/xkcp/lib/high/KangarooTwelve/KangarooTwelve.c +0 -301
- data/ext/xkcp/lib/high/Keccak/FIPS202/KeccakHash.c +0 -81
- data/ext/xkcp/lib/high/Keccak/FIPS202/KeccakHash.h +0 -125
- data/ext/xkcp/lib/high/Keccak/FIPS202/SimpleFIPS202.c +0 -48
- data/ext/xkcp/lib/high/Keccak/FIPS202/SimpleFIPS202.h +0 -79
- data/ext/xkcp/lib/high/Keccak/KeccakDuplex.c +0 -81
- data/ext/xkcp/lib/high/Keccak/KeccakDuplex.h +0 -73
- data/ext/xkcp/lib/high/Keccak/KeccakDuplex.inc +0 -195
- data/ext/xkcp/lib/high/Keccak/KeccakSponge.c +0 -111
- data/ext/xkcp/lib/high/Keccak/KeccakSponge.h +0 -76
- data/ext/xkcp/lib/high/Keccak/KeccakSponge.inc +0 -314
- data/ext/xkcp/lib/high/Keccak/PRG/KeccakPRG.c +0 -61
- data/ext/xkcp/lib/high/Keccak/PRG/KeccakPRG.h +0 -67
- data/ext/xkcp/lib/high/Keccak/PRG/KeccakPRG.inc +0 -128
- data/ext/xkcp/lib/high/Keccak/SP800-185/SP800-185.c +0 -93
- data/ext/xkcp/lib/high/Keccak/SP800-185/SP800-185.h +0 -599
- data/ext/xkcp/lib/high/Keccak/SP800-185/SP800-185.inc +0 -573
- data/ext/xkcp/lib/high/Ketje/Ketjev2.c +0 -87
- data/ext/xkcp/lib/high/Ketje/Ketjev2.h +0 -88
- data/ext/xkcp/lib/high/Ketje/Ketjev2.inc +0 -274
- data/ext/xkcp/lib/high/Keyak/Keyakv2.c +0 -132
- data/ext/xkcp/lib/high/Keyak/Keyakv2.h +0 -217
- data/ext/xkcp/lib/high/Keyak/Keyakv2.inc +0 -81
- data/ext/xkcp/lib/high/Keyak/Motorist.inc +0 -953
- data/ext/xkcp/lib/high/Kravatte/Kravatte.c +0 -533
- data/ext/xkcp/lib/high/Kravatte/Kravatte.h +0 -115
- data/ext/xkcp/lib/high/Kravatte/KravatteModes.c +0 -557
- data/ext/xkcp/lib/high/Kravatte/KravatteModes.h +0 -247
- data/ext/xkcp/lib/high/Xoodyak/Cyclist.h +0 -66
- data/ext/xkcp/lib/high/Xoodyak/Cyclist.inc +0 -336
- data/ext/xkcp/lib/high/Xoodyak/Xoodyak-parameters.h +0 -26
- data/ext/xkcp/lib/high/Xoodyak/Xoodyak.c +0 -55
- data/ext/xkcp/lib/high/Xoodyak/Xoodyak.h +0 -35
- data/ext/xkcp/lib/high/Xoofff/Xoofff.c +0 -634
- data/ext/xkcp/lib/high/Xoofff/Xoofff.h +0 -147
- data/ext/xkcp/lib/high/Xoofff/XoofffModes.c +0 -483
- data/ext/xkcp/lib/high/Xoofff/XoofffModes.h +0 -241
- data/ext/xkcp/lib/high/common/Phases.h +0 -25
- data/ext/xkcp/lib/low/KeccakP-1600/ARM/KeccakP-1600-SnP.h +0 -41
- data/ext/xkcp/lib/low/KeccakP-1600/ARM/KeccakP-1600-inplace-32bi-armv6m-le-armcc.s +0 -1666
- data/ext/xkcp/lib/low/KeccakP-1600/ARM/KeccakP-1600-inplace-32bi-armv6m-le-gcc.s +0 -1655
- data/ext/xkcp/lib/low/KeccakP-1600/ARM/KeccakP-1600-inplace-32bi-armv7a-le-armcc.s +0 -1268
- data/ext/xkcp/lib/low/KeccakP-1600/ARM/KeccakP-1600-inplace-32bi-armv7a-le-gcc.s +0 -1264
- data/ext/xkcp/lib/low/KeccakP-1600/ARM/KeccakP-1600-inplace-32bi-armv7m-le-armcc.s +0 -1178
- data/ext/xkcp/lib/low/KeccakP-1600/ARM/KeccakP-1600-inplace-32bi-armv7m-le-gcc.s +0 -1175
- data/ext/xkcp/lib/low/KeccakP-1600/ARM/KeccakP-1600-u1-32bi-armv6m-le-armcc.s +0 -1338
- data/ext/xkcp/lib/low/KeccakP-1600/ARM/KeccakP-1600-u1-32bi-armv6m-le-gcc.s +0 -1336
- data/ext/xkcp/lib/low/KeccakP-1600/ARM/KeccakP-1600-u2-32bi-armv6m-le-armcc.s +0 -1343
- data/ext/xkcp/lib/low/KeccakP-1600/ARM/KeccakP-1600-u2-32bi-armv6m-le-gcc.s +0 -1339
- data/ext/xkcp/lib/low/KeccakP-1600/ARMv7A-NEON/KeccakP-1600-SnP.h +0 -42
- data/ext/xkcp/lib/low/KeccakP-1600/ARMv7A-NEON/KeccakP-1600-armv7a-le-neon-armcc.s +0 -823
- data/ext/xkcp/lib/low/KeccakP-1600/ARMv7A-NEON/KeccakP-1600-armv7a-le-neon-gcc.s +0 -831
- data/ext/xkcp/lib/low/KeccakP-1600/ARMv8A/KeccakP-1600-SnP.h +0 -31
- data/ext/xkcp/lib/low/KeccakP-1600/ARMv8A/KeccakP-1600-armv8a-neon.s +0 -540
- data/ext/xkcp/lib/low/KeccakP-1600/AVR8/KeccakP-1600-SnP.h +0 -42
- data/ext/xkcp/lib/low/KeccakP-1600/AVR8/KeccakP-1600-avr8-compact.s +0 -733
- data/ext/xkcp/lib/low/KeccakP-1600/AVR8/KeccakP-1600-avr8-fast.s +0 -1121
- data/ext/xkcp/lib/low/KeccakP-1600/AVX2/KeccakP-1600-SnP.h +0 -52
- data/ext/xkcp/lib/low/KeccakP-1600/AVX512/C/KeccakP-1600-AVX512.c +0 -623
- data/ext/xkcp/lib/low/KeccakP-1600/AVX512/C/KeccakP-1600-SnP.h +0 -47
- data/ext/xkcp/lib/low/KeccakP-1600/AVX512/C/u12/KeccakP-1600-AVX512-config.h +0 -6
- data/ext/xkcp/lib/low/KeccakP-1600/AVX512/C/u6/KeccakP-1600-AVX512-config.h +0 -6
- data/ext/xkcp/lib/low/KeccakP-1600/AVX512/C/ua/KeccakP-1600-AVX512-config.h +0 -6
- data/ext/xkcp/lib/low/KeccakP-1600/AVX512/KeccakP-1600-AVX512.s +0 -1031
- data/ext/xkcp/lib/low/KeccakP-1600/AVX512/KeccakP-1600-SnP.h +0 -53
- data/ext/xkcp/lib/low/KeccakP-1600/XOP/KeccakP-1600-SnP.h +0 -44
- data/ext/xkcp/lib/low/KeccakP-1600/XOP/KeccakP-1600-XOP.c +0 -476
- data/ext/xkcp/lib/low/KeccakP-1600/XOP/u6/KeccakP-1600-XOP-config.h +0 -6
- data/ext/xkcp/lib/low/KeccakP-1600/XOP/ua/KeccakP-1600-XOP-config.h +0 -6
- data/ext/xkcp/lib/low/KeccakP-1600/common/KeccakP-1600-unrolling.macros +0 -305
- data/ext/xkcp/lib/low/KeccakP-1600/compact/KeccakP-1600-compact64.c +0 -420
- data/ext/xkcp/lib/low/KeccakP-1600/plain-32bits-inplace/KeccakP-1600-SnP.h +0 -43
- data/ext/xkcp/lib/low/KeccakP-1600/plain-64bits/KeccakP-1600-opt64.c +0 -565
- data/ext/xkcp/lib/low/KeccakP-1600/plain-64bits/lcu6/KeccakP-1600-opt64-config.h +0 -7
- data/ext/xkcp/lib/low/KeccakP-1600/plain-64bits/lcua/KeccakP-1600-opt64-config.h +0 -7
- data/ext/xkcp/lib/low/KeccakP-1600/plain-64bits/lcua-shld/KeccakP-1600-opt64-config.h +0 -8
- data/ext/xkcp/lib/low/KeccakP-1600/plain-64bits/u6/KeccakP-1600-opt64-config.h +0 -6
- data/ext/xkcp/lib/low/KeccakP-1600/plain-64bits/ua/KeccakP-1600-opt64-config.h +0 -6
- data/ext/xkcp/lib/low/KeccakP-1600/ref-32bits/KeccakP-1600-SnP.h +0 -44
- data/ext/xkcp/lib/low/KeccakP-1600/ref-32bits/KeccakP-1600-reference.h +0 -23
- data/ext/xkcp/lib/low/KeccakP-1600/ref-32bits/KeccakP-1600-reference32BI.c +0 -625
- data/ext/xkcp/lib/low/KeccakP-1600/ref-64bits/KeccakP-1600-SnP.h +0 -44
- data/ext/xkcp/lib/low/KeccakP-1600/ref-64bits/KeccakP-1600-reference.c +0 -440
- data/ext/xkcp/lib/low/KeccakP-1600/x86-64/KeccakP-1600-SnP.h +0 -42
- data/ext/xkcp/lib/low/KeccakP-1600/x86-64/KeccakP-1600-x86-64-gas.s +0 -1196
- data/ext/xkcp/lib/low/KeccakP-1600/x86-64/KeccakP-1600-x86-64-gas_Apple.s +0 -1124
- data/ext/xkcp/lib/low/KeccakP-1600/x86-64/KeccakP-1600-x86-64-shld-gas.s +0 -1196
- data/ext/xkcp/lib/low/KeccakP-1600-times2/ARMv7A-NEON/KeccakP-1600-inplace-pl2-armv7a-neon-le-armcc.s +0 -1392
- data/ext/xkcp/lib/low/KeccakP-1600-times2/ARMv7A-NEON/KeccakP-1600-inplace-pl2-armv7a-neon-le-gcc.s +0 -1394
- data/ext/xkcp/lib/low/KeccakP-1600-times2/ARMv7A-NEON/KeccakP-1600-times2-SnP.h +0 -42
- data/ext/xkcp/lib/low/KeccakP-1600-times2/AVX512/AVX512u12/SIMD512-2-config.h +0 -7
- data/ext/xkcp/lib/low/KeccakP-1600-times2/AVX512/AVX512u4/SIMD512-2-config.h +0 -7
- data/ext/xkcp/lib/low/KeccakP-1600-times2/AVX512/AVX512ufull/SIMD512-2-config.h +0 -7
- data/ext/xkcp/lib/low/KeccakP-1600-times2/AVX512/KeccakP-1600-times2-SIMD512.c +0 -850
- data/ext/xkcp/lib/low/KeccakP-1600-times2/AVX512/KeccakP-1600-times2-SnP.h +0 -51
- data/ext/xkcp/lib/low/KeccakP-1600-times2/SIMD128/KeccakP-1600-times2-SIMD128.c +0 -957
- data/ext/xkcp/lib/low/KeccakP-1600-times2/SIMD128/KeccakP-1600-times2-SnP.h +0 -49
- data/ext/xkcp/lib/low/KeccakP-1600-times2/SIMD128/SSSE3-u2/SIMD128-config.h +0 -8
- data/ext/xkcp/lib/low/KeccakP-1600-times2/SIMD128/SSSE3-ua/SIMD128-config.h +0 -8
- data/ext/xkcp/lib/low/KeccakP-1600-times2/SIMD128/XOP-u2/SIMD128-config.h +0 -9
- data/ext/xkcp/lib/low/KeccakP-1600-times2/SIMD128/XOP-ua/SIMD128-config.h +0 -9
- data/ext/xkcp/lib/low/KeccakP-1600-times2/fallback-on1/KeccakP-1600-times2-SnP.h +0 -45
- data/ext/xkcp/lib/low/KeccakP-1600-times2/fallback-on1/KeccakP-1600-times2-on1.c +0 -37
- data/ext/xkcp/lib/low/KeccakP-1600-times4/AVX2/KeccakP-1600-times4-SIMD256.c +0 -1321
- data/ext/xkcp/lib/low/KeccakP-1600-times4/AVX2/KeccakP-1600-times4-SnP.h +0 -55
- data/ext/xkcp/lib/low/KeccakP-1600-times4/AVX2/u12/SIMD256-config.h +0 -7
- data/ext/xkcp/lib/low/KeccakP-1600-times4/AVX2/u6/SIMD256-config.h +0 -7
- data/ext/xkcp/lib/low/KeccakP-1600-times4/AVX2/ua/SIMD256-config.h +0 -7
- data/ext/xkcp/lib/low/KeccakP-1600-times4/AVX512/AVX512u12/SIMD512-4-config.h +0 -7
- data/ext/xkcp/lib/low/KeccakP-1600-times4/AVX512/AVX512u4/SIMD512-4-config.h +0 -7
- data/ext/xkcp/lib/low/KeccakP-1600-times4/AVX512/AVX512ufull/SIMD512-4-config.h +0 -7
- data/ext/xkcp/lib/low/KeccakP-1600-times4/AVX512/KeccakP-1600-times4-SIMD512.c +0 -881
- data/ext/xkcp/lib/low/KeccakP-1600-times4/AVX512/KeccakP-1600-times4-SnP.h +0 -51
- data/ext/xkcp/lib/low/KeccakP-1600-times4/fallback-on1/KeccakP-1600-times4-SnP.h +0 -45
- data/ext/xkcp/lib/low/KeccakP-1600-times4/fallback-on1/KeccakP-1600-times4-on1.c +0 -37
- data/ext/xkcp/lib/low/KeccakP-1600-times4/fallback-on2/KeccakP-1600-times4-SnP.h +0 -45
- data/ext/xkcp/lib/low/KeccakP-1600-times4/fallback-on2/KeccakP-1600-times4-on2.c +0 -38
- data/ext/xkcp/lib/low/KeccakP-1600-times8/AVX512/KeccakP-1600-times8-SIMD512.c +0 -1615
- data/ext/xkcp/lib/low/KeccakP-1600-times8/AVX512/KeccakP-1600-times8-SnP.h +0 -57
- data/ext/xkcp/lib/low/KeccakP-1600-times8/AVX512/u12/SIMD512-config.h +0 -7
- data/ext/xkcp/lib/low/KeccakP-1600-times8/AVX512/u4/SIMD512-config.h +0 -7
- data/ext/xkcp/lib/low/KeccakP-1600-times8/AVX512/ua/SIMD512-config.h +0 -7
- data/ext/xkcp/lib/low/KeccakP-1600-times8/fallback-on1/KeccakP-1600-times8-SnP.h +0 -45
- data/ext/xkcp/lib/low/KeccakP-1600-times8/fallback-on1/KeccakP-1600-times8-on1.c +0 -37
- data/ext/xkcp/lib/low/KeccakP-1600-times8/fallback-on2/KeccakP-1600-times8-SnP.h +0 -45
- data/ext/xkcp/lib/low/KeccakP-1600-times8/fallback-on2/KeccakP-1600-times8-on2.c +0 -38
- data/ext/xkcp/lib/low/KeccakP-1600-times8/fallback-on4/KeccakP-1600-times8-SnP.h +0 -45
- data/ext/xkcp/lib/low/KeccakP-1600-times8/fallback-on4/KeccakP-1600-times8-on4.c +0 -38
- data/ext/xkcp/lib/low/KeccakP-200/ARM/KeccakP-200-SnP.h +0 -41
- data/ext/xkcp/lib/low/KeccakP-200/ARM/KeccakP-200-armv6m-le-armcc.s +0 -442
- data/ext/xkcp/lib/low/KeccakP-200/ARM/KeccakP-200-armv6m-le-gcc.s +0 -446
- data/ext/xkcp/lib/low/KeccakP-200/ARM/KeccakP-200-armv7m-le-armcc.s +0 -419
- data/ext/xkcp/lib/low/KeccakP-200/ARM/KeccakP-200-armv7m-le-gcc.s +0 -427
- data/ext/xkcp/lib/low/KeccakP-200/AVR8/KeccakP-200-SnP.h +0 -41
- data/ext/xkcp/lib/low/KeccakP-200/AVR8/KeccakP-200-avr8-fast.s +0 -647
- data/ext/xkcp/lib/low/KeccakP-200/compact/KeccakP-200-SnP.h +0 -39
- data/ext/xkcp/lib/low/KeccakP-200/compact/KeccakP-200-compact.c +0 -190
- data/ext/xkcp/lib/low/KeccakP-200/ref/KeccakP-200-SnP.h +0 -43
- data/ext/xkcp/lib/low/KeccakP-200/ref/KeccakP-200-reference.c +0 -412
- data/ext/xkcp/lib/low/KeccakP-200/ref/KeccakP-200-reference.h +0 -23
- data/ext/xkcp/lib/low/KeccakP-400/ARM/KeccakP-400-SnP.h +0 -41
- data/ext/xkcp/lib/low/KeccakP-400/ARM/KeccakP-400-armv6m-le-armcc.s +0 -454
- data/ext/xkcp/lib/low/KeccakP-400/ARM/KeccakP-400-armv6m-le-gcc.s +0 -458
- data/ext/xkcp/lib/low/KeccakP-400/ARM/KeccakP-400-armv7m-le-armcc.s +0 -455
- data/ext/xkcp/lib/low/KeccakP-400/ARM/KeccakP-400-armv7m-le-gcc.s +0 -458
- data/ext/xkcp/lib/low/KeccakP-400/AVR8/KeccakP-400-SnP.h +0 -41
- data/ext/xkcp/lib/low/KeccakP-400/AVR8/KeccakP-400-avr8-fast.s +0 -728
- data/ext/xkcp/lib/low/KeccakP-400/ref/KeccakP-400-SnP.h +0 -43
- data/ext/xkcp/lib/low/KeccakP-400/ref/KeccakP-400-reference.c +0 -414
- data/ext/xkcp/lib/low/KeccakP-400/ref/KeccakP-400-reference.h +0 -23
- data/ext/xkcp/lib/low/KeccakP-800/ARM/KeccakP-800-SnP.h +0 -42
- data/ext/xkcp/lib/low/KeccakP-800/ARM/KeccakP-800-u1-armv6m-le-armcc.s +0 -527
- data/ext/xkcp/lib/low/KeccakP-800/ARM/KeccakP-800-u1-armv6m-le-gcc.s +0 -533
- data/ext/xkcp/lib/low/KeccakP-800/ARM/KeccakP-800-u2-armv6m-le-armcc.s +0 -528
- data/ext/xkcp/lib/low/KeccakP-800/ARM/KeccakP-800-u2-armv6m-le-gcc.s +0 -534
- data/ext/xkcp/lib/low/KeccakP-800/ARM/KeccakP-800-u2-armv7a-le-armcc.s +0 -521
- data/ext/xkcp/lib/low/KeccakP-800/ARM/KeccakP-800-u2-armv7a-le-gcc.s +0 -527
- data/ext/xkcp/lib/low/KeccakP-800/ARM/KeccakP-800-u2-armv7m-le-armcc.s +0 -517
- data/ext/xkcp/lib/low/KeccakP-800/ARM/KeccakP-800-u2-armv7m-le-gcc.s +0 -523
- data/ext/xkcp/lib/low/KeccakP-800/ARM/KeccakP-800-uf-armv7m-le-armcc.s +0 -550
- data/ext/xkcp/lib/low/KeccakP-800/ARM/KeccakP-800-uf-armv7m-le-gcc.s +0 -556
- data/ext/xkcp/lib/low/KeccakP-800/ARMv8A/KeccakP-800-SnP.h +0 -32
- data/ext/xkcp/lib/low/KeccakP-800/ARMv8A/KeccakP-800-armv8a-neon.s +0 -432
- data/ext/xkcp/lib/low/KeccakP-800/AVR8/KeccakP-800-SnP.h +0 -42
- data/ext/xkcp/lib/low/KeccakP-800/AVR8/KeccakP-800-avr8-fast.s +0 -929
- data/ext/xkcp/lib/low/KeccakP-800/compact/KeccakP-800-SnP.h +0 -40
- data/ext/xkcp/lib/low/KeccakP-800/compact/KeccakP-800-compact.c +0 -244
- data/ext/xkcp/lib/low/KeccakP-800/plain/KeccakP-800-SnP.h +0 -46
- data/ext/xkcp/lib/low/KeccakP-800/plain/KeccakP-800-opt32-bis.macros +0 -184
- data/ext/xkcp/lib/low/KeccakP-800/plain/KeccakP-800-opt32.c +0 -454
- data/ext/xkcp/lib/low/KeccakP-800/plain/KeccakP-800-opt32.macros +0 -459
- data/ext/xkcp/lib/low/KeccakP-800/plain/KeccakP-800-unrolling-bis.macros +0 -83
- data/ext/xkcp/lib/low/KeccakP-800/plain/KeccakP-800-unrolling.macros +0 -88
- data/ext/xkcp/lib/low/KeccakP-800/plain/lcu2/KeccakP-800-opt32-config.h +0 -7
- data/ext/xkcp/lib/low/KeccakP-800/plain/lcua/KeccakP-800-opt32-config.h +0 -7
- data/ext/xkcp/lib/low/KeccakP-800/plain/u2/KeccakP-800-opt32-config.h +0 -7
- data/ext/xkcp/lib/low/KeccakP-800/plain/ua/KeccakP-800-opt32-config.h +0 -7
- data/ext/xkcp/lib/low/KeccakP-800/ref/KeccakP-800-SnP.h +0 -44
- data/ext/xkcp/lib/low/KeccakP-800/ref/KeccakP-800-reference.c +0 -437
- data/ext/xkcp/lib/low/KeccakP-800/ref/KeccakP-800-reference.h +0 -23
- data/ext/xkcp/lib/low/Ketje/OptimizedAsmARM/Ket.h +0 -57
- data/ext/xkcp/lib/low/Ketje/OptimizedAsmARM/KetjeJr-armv7m-le-armcc.s +0 -475
- data/ext/xkcp/lib/low/Ketje/OptimizedAsmARM/KetjeJr-armv7m-le-gcc.s +0 -480
- data/ext/xkcp/lib/low/Ketje/OptimizedAsmARM/KetjeSr-armv7m-le-armcc.s +0 -590
- data/ext/xkcp/lib/low/Ketje/OptimizedAsmARM/KetjeSr-armv7m-le-gcc.s +0 -590
- data/ext/xkcp/lib/low/Ketje/OptimizedLE/Ket.c +0 -126
- data/ext/xkcp/lib/low/Ketje/OptimizedLE/Ket.h +0 -68
- data/ext/xkcp/lib/low/Ketje/OptimizedLE/Ket.inc +0 -174
- data/ext/xkcp/lib/low/Ketje/SnP-compliant/Ket.c +0 -80
- data/ext/xkcp/lib/low/Ketje/SnP-compliant/Ket.h +0 -68
- data/ext/xkcp/lib/low/Ketje/SnP-compliant/Ket.inc +0 -142
- data/ext/xkcp/lib/low/Xoodoo/ARM/Xoodoo-SnP.h +0 -55
- data/ext/xkcp/lib/low/Xoodoo/ARM/Xoodoo-u1-armv6m-le-armcc.s +0 -1086
- data/ext/xkcp/lib/low/Xoodoo/ARM/Xoodoo-u1-armv6m-le-gcc.s +0 -1092
- data/ext/xkcp/lib/low/Xoodoo/ARM/Xoodoo-uf-armv6-le-armcc.s +0 -721
- data/ext/xkcp/lib/low/Xoodoo/ARM/Xoodoo-uf-armv6-le-gcc.s +0 -726
- data/ext/xkcp/lib/low/Xoodoo/ARM/Xoodoo-uf-armv7m-le-armcc.s +0 -723
- data/ext/xkcp/lib/low/Xoodoo/ARM/Xoodoo-uf-armv7m-le-gcc.s +0 -729
- data/ext/xkcp/lib/low/Xoodoo/ARM/Xoodyak-u1-armv6m-le-armcc.s +0 -1164
- data/ext/xkcp/lib/low/Xoodoo/ARM/Xoodyak-u1-armv6m-le-gcc.s +0 -1165
- data/ext/xkcp/lib/low/Xoodoo/ARM/Xoodyak-uf-armv6-le-armcc.s +0 -562
- data/ext/xkcp/lib/low/Xoodoo/ARM/Xoodyak-uf-armv6-le-gcc.s +0 -563
- data/ext/xkcp/lib/low/Xoodoo/ARM/Xoodyak-uf-armv7m-le-armcc.s +0 -563
- data/ext/xkcp/lib/low/Xoodoo/ARM/Xoodyak-uf-armv7m-le-gcc.s +0 -565
- data/ext/xkcp/lib/low/Xoodoo/ARMv7A-NEON/Xoodoo-SnP.h +0 -55
- data/ext/xkcp/lib/low/Xoodoo/ARMv7A-NEON/Xoodoo-uf-armv7a-neon-le-armcc.s +0 -476
- data/ext/xkcp/lib/low/Xoodoo/ARMv7A-NEON/Xoodoo-uf-armv7a-neon-le-gcc.s +0 -485
- data/ext/xkcp/lib/low/Xoodoo/ARMv7A-NEON/Xoodyak-uf-armv7a-neon-le-armcc.s +0 -362
- data/ext/xkcp/lib/low/Xoodoo/ARMv7A-NEON/Xoodyak-uf-armv7a-neon-le-gcc.s +0 -367
- data/ext/xkcp/lib/low/Xoodoo/AVR8/Xoodoo-SnP.h +0 -43
- data/ext/xkcp/lib/low/Xoodoo/AVR8/Xoodoo-avr8-u1.s +0 -1341
- data/ext/xkcp/lib/low/Xoodoo/AVX512/Xoodoo-SIMD512.c +0 -581
- data/ext/xkcp/lib/low/Xoodoo/AVX512/Xoodoo-SnP.h +0 -58
- data/ext/xkcp/lib/low/Xoodoo/AVX512/Xoodyak-full-block-SIMD512.c +0 -332
- data/ext/xkcp/lib/low/Xoodoo/SSE2/Xoodoo-SIMD128.c +0 -329
- data/ext/xkcp/lib/low/Xoodoo/SSE2/Xoodoo-SnP.h +0 -53
- data/ext/xkcp/lib/low/Xoodoo/SSE2/Xoodyak-full-block-SIMD128.c +0 -355
- data/ext/xkcp/lib/low/Xoodoo/Xoodoo.h +0 -79
- data/ext/xkcp/lib/low/Xoodoo/plain/Xoodoo-SnP.h +0 -56
- data/ext/xkcp/lib/low/Xoodoo/plain/Xoodoo-optimized.c +0 -399
- data/ext/xkcp/lib/low/Xoodoo/plain/Xoodyak-full-blocks.c +0 -127
- data/ext/xkcp/lib/low/Xoodoo/ref/Xoodoo-SnP.h +0 -43
- data/ext/xkcp/lib/low/Xoodoo/ref/Xoodoo-reference.c +0 -253
- data/ext/xkcp/lib/low/Xoodoo-times16/AVX512/Xoodoo-times16-SIMD512.c +0 -1044
- data/ext/xkcp/lib/low/Xoodoo-times16/AVX512/Xoodoo-times16-SnP.h +0 -49
- data/ext/xkcp/lib/low/Xoodoo-times16/fallback-on1/Xoodoo-times16-SnP.h +0 -45
- data/ext/xkcp/lib/low/Xoodoo-times16/fallback-on1/Xoodoo-times16-on1.c +0 -37
- data/ext/xkcp/lib/low/Xoodoo-times4/ARMv7A-NEON/Xoodoo-times4-ARMv7A.s +0 -1587
- data/ext/xkcp/lib/low/Xoodoo-times4/ARMv7A-NEON/Xoodoo-times4-SnP.h +0 -48
- data/ext/xkcp/lib/low/Xoodoo-times4/AVX512/Xoodoo-times4-SIMD512.c +0 -1202
- data/ext/xkcp/lib/low/Xoodoo-times4/AVX512/Xoodoo-times4-SnP.h +0 -48
- data/ext/xkcp/lib/low/Xoodoo-times4/SSSE3/Xoodoo-times4-SIMD128.c +0 -484
- data/ext/xkcp/lib/low/Xoodoo-times4/SSSE3/Xoodoo-times4-SnP.h +0 -44
- data/ext/xkcp/lib/low/Xoodoo-times4/fallback-on1/Xoodoo-times4-SnP.h +0 -45
- data/ext/xkcp/lib/low/Xoodoo-times4/fallback-on1/Xoodoo-times4-on1.c +0 -37
- data/ext/xkcp/lib/low/Xoodoo-times8/AVX2/Xoodoo-times8-SIMD256.c +0 -939
- data/ext/xkcp/lib/low/Xoodoo-times8/AVX2/Xoodoo-times8-SnP.h +0 -49
- data/ext/xkcp/lib/low/Xoodoo-times8/AVX512/Xoodoo-times8-SIMD512.c +0 -1216
- data/ext/xkcp/lib/low/Xoodoo-times8/AVX512/Xoodoo-times8-SnP.h +0 -48
- data/ext/xkcp/lib/low/Xoodoo-times8/fallback-on1/Xoodoo-times8-SnP.h +0 -45
- data/ext/xkcp/lib/low/Xoodoo-times8/fallback-on1/Xoodoo-times8-on1.c +0 -37
- data/ext/xkcp/lib/low/common/PlSnP-Fallback.inc +0 -290
- data/ext/xkcp/lib/low/common/SnP-Relaned.h +0 -141
- data/ext/xkcp/support/Kernel-PMU/Kernel-pmu.md +0 -133
- data/ext/xkcp/support/Kernel-PMU/Makefile +0 -8
- data/ext/xkcp/support/Kernel-PMU/enable_arm_pmu.c +0 -129
- data/ext/xkcp/support/Kernel-PMU/load-module +0 -1
- data/ext/xkcp/util/KeccakSum/KeccakSum.c +0 -394
- data/ext/xkcp/util/KeccakSum/base64.c +0 -86
- data/ext/xkcp/util/KeccakSum/base64.h +0 -12
@@ -0,0 +1,332 @@
|
|
1
|
+
/*
|
2
|
+
K12 based on the eXtended Keccak Code Package (XKCP)
|
3
|
+
https://github.com/XKCP/XKCP
|
4
|
+
|
5
|
+
KangarooTwelve, designed by Guido Bertoni, Joan Daemen, Michaël Peeters, Gilles Van Assche, Ronny Van Keer and Benoît Viguier.
|
6
|
+
|
7
|
+
Implementation by Gilles Van Assche and Ronny Van Keer, hereby denoted as "the implementer".
|
8
|
+
|
9
|
+
For more information, feedback or questions, please refer to the Keccak Team website:
|
10
|
+
https://keccak.team/
|
11
|
+
|
12
|
+
To the extent possible under law, the implementer has waived all copyright
|
13
|
+
and related or neighboring rights to the source code in this file.
|
14
|
+
http://creativecommons.org/publicdomain/zero/1.0/
|
15
|
+
*/
|
16
|
+
|
17
|
+
#include <assert.h>
|
18
|
+
#include <string.h>
|
19
|
+
#include "KangarooTwelve.h"
|
20
|
+
#include "KeccakP-1600-SnP.h"
|
21
|
+
|
22
|
+
/* ---------------------------------------------------------------- */
|
23
|
+
|
24
|
+
#define K12_security 128
|
25
|
+
#define K12_capacity (2*K12_security)
|
26
|
+
#define K12_capacityInBytes (K12_capacity/8)
|
27
|
+
#define K12_rate (1600-K12_capacity)
|
28
|
+
#define K12_rateInBytes (K12_rate/8)
|
29
|
+
#define K12_rateInLanes (K12_rate/64)
|
30
|
+
|
31
|
+
static void KangarooTwelve_F_Initialize(KangarooTwelve_F *instance)
|
32
|
+
{
|
33
|
+
KeccakP1600_Initialize(instance->state);
|
34
|
+
instance->byteIOIndex = 0;
|
35
|
+
instance->squeezing = 0;
|
36
|
+
}
|
37
|
+
|
38
|
+
static void KangarooTwelve_F_Absorb(KangarooTwelve_F *instance, const unsigned char *data, size_t dataByteLen)
|
39
|
+
{
|
40
|
+
size_t i, j;
|
41
|
+
uint8_t partialBlock;
|
42
|
+
const unsigned char *curData;
|
43
|
+
const uint8_t rateInBytes = K12_rateInBytes;
|
44
|
+
|
45
|
+
assert(instance->squeezing == 0);
|
46
|
+
|
47
|
+
i = 0;
|
48
|
+
curData = data;
|
49
|
+
while(i < dataByteLen) {
|
50
|
+
if ((instance->byteIOIndex == 0) && (dataByteLen >= (i + rateInBytes))) {
|
51
|
+
#ifdef KeccakP1600_12rounds_FastLoop_supported
|
52
|
+
/* processing full blocks first */
|
53
|
+
j = KeccakP1600_12rounds_FastLoop_Absorb(instance->state, K12_rateInLanes, curData, dataByteLen - i);
|
54
|
+
i += j;
|
55
|
+
curData += j;
|
56
|
+
#endif
|
57
|
+
for(j=dataByteLen-i; j>=rateInBytes; j-=rateInBytes) {
|
58
|
+
KeccakP1600_AddBytes(instance->state, curData, 0, rateInBytes);
|
59
|
+
KeccakP1600_Permute_12rounds(instance->state);
|
60
|
+
curData+=rateInBytes;
|
61
|
+
}
|
62
|
+
i = dataByteLen - j;
|
63
|
+
} else {
|
64
|
+
/* normal lane: using the message queue */
|
65
|
+
if ((dataByteLen - i) + instance->byteIOIndex > (size_t)rateInBytes) {
|
66
|
+
partialBlock = rateInBytes-instance->byteIOIndex;
|
67
|
+
} else {
|
68
|
+
partialBlock = (uint8_t)(dataByteLen - i);
|
69
|
+
}
|
70
|
+
i += partialBlock;
|
71
|
+
|
72
|
+
KeccakP1600_AddBytes(instance->state, curData, instance->byteIOIndex, partialBlock);
|
73
|
+
curData += partialBlock;
|
74
|
+
instance->byteIOIndex += partialBlock;
|
75
|
+
if (instance->byteIOIndex == rateInBytes) {
|
76
|
+
KeccakP1600_Permute_12rounds(instance->state);
|
77
|
+
instance->byteIOIndex = 0;
|
78
|
+
}
|
79
|
+
}
|
80
|
+
}
|
81
|
+
}
|
82
|
+
|
83
|
+
static void KangarooTwelve_F_AbsorbLastFewBits(KangarooTwelve_F *instance, unsigned char delimitedData)
|
84
|
+
{
|
85
|
+
const unsigned int rateInBytes = K12_rateInBytes;
|
86
|
+
|
87
|
+
assert(delimitedData != 0);
|
88
|
+
assert(instance->squeezing == 0);
|
89
|
+
|
90
|
+
/* Last few bits, whose delimiter coincides with first bit of padding */
|
91
|
+
KeccakP1600_AddByte(instance->state, delimitedData, instance->byteIOIndex);
|
92
|
+
/* If the first bit of padding is at position rate-1, we need a whole new block for the second bit of padding */
|
93
|
+
if ((delimitedData >= 0x80) && (instance->byteIOIndex == (rateInBytes-1)))
|
94
|
+
KeccakP1600_Permute_12rounds(instance->state);
|
95
|
+
/* Second bit of padding */
|
96
|
+
KeccakP1600_AddByte(instance->state, 0x80, rateInBytes-1);
|
97
|
+
KeccakP1600_Permute_12rounds(instance->state);
|
98
|
+
instance->byteIOIndex = 0;
|
99
|
+
instance->squeezing = 1;
|
100
|
+
}
|
101
|
+
|
102
|
+
static void KangarooTwelve_F_Squeeze(KangarooTwelve_F *instance, unsigned char *data, size_t dataByteLen)
|
103
|
+
{
|
104
|
+
size_t i, j;
|
105
|
+
unsigned int partialBlock;
|
106
|
+
const unsigned int rateInBytes = K12_rateInBytes;
|
107
|
+
unsigned char *curData;
|
108
|
+
|
109
|
+
if (!instance->squeezing)
|
110
|
+
KangarooTwelve_F_AbsorbLastFewBits(instance, 0x01);
|
111
|
+
|
112
|
+
i = 0;
|
113
|
+
curData = data;
|
114
|
+
while(i < dataByteLen) {
|
115
|
+
if ((instance->byteIOIndex == rateInBytes) && (dataByteLen >= (i + rateInBytes))) {
|
116
|
+
for(j=dataByteLen-i; j>=rateInBytes; j-=rateInBytes) {
|
117
|
+
KeccakP1600_Permute_12rounds(instance->state);
|
118
|
+
KeccakP1600_ExtractBytes(instance->state, curData, 0, rateInBytes);
|
119
|
+
curData+=rateInBytes;
|
120
|
+
}
|
121
|
+
i = dataByteLen - j;
|
122
|
+
} else {
|
123
|
+
/* normal lane: using the message queue */
|
124
|
+
if (instance->byteIOIndex == rateInBytes) {
|
125
|
+
KeccakP1600_Permute_12rounds(instance->state);
|
126
|
+
instance->byteIOIndex = 0;
|
127
|
+
}
|
128
|
+
partialBlock = (unsigned int)(dataByteLen - i);
|
129
|
+
if (partialBlock+instance->byteIOIndex > rateInBytes)
|
130
|
+
partialBlock = rateInBytes-instance->byteIOIndex;
|
131
|
+
i += partialBlock;
|
132
|
+
|
133
|
+
KeccakP1600_ExtractBytes(instance->state, curData, instance->byteIOIndex, partialBlock);
|
134
|
+
curData += partialBlock;
|
135
|
+
instance->byteIOIndex += partialBlock;
|
136
|
+
}
|
137
|
+
}
|
138
|
+
}
|
139
|
+
|
140
|
+
/* ---------------------------------------------------------------- */
|
141
|
+
|
142
|
+
typedef enum {
|
143
|
+
NOT_INITIALIZED,
|
144
|
+
ABSORBING,
|
145
|
+
FINAL,
|
146
|
+
SQUEEZING
|
147
|
+
} KCP_Phases;
|
148
|
+
typedef KCP_Phases KangarooTwelve_Phases;
|
149
|
+
|
150
|
+
#define K12_chunkSize 8192
|
151
|
+
#define K12_suffixLeaf 0x0B /* '110': message hop, simple padding, inner node */
|
152
|
+
|
153
|
+
#ifndef KeccakP1600_disableParallelism
|
154
|
+
|
155
|
+
void KangarooTwelve_Process2Leaves(const unsigned char *input, unsigned char *output);
|
156
|
+
void KangarooTwelve_Process4Leaves(const unsigned char *input, unsigned char *output);
|
157
|
+
void KangarooTwelve_Process8Leaves(const unsigned char *input, unsigned char *output);
|
158
|
+
|
159
|
+
#define ProcessLeaves( Parallellism ) \
|
160
|
+
while (inputByteLen >= Parallellism * K12_chunkSize) { \
|
161
|
+
unsigned char intermediate[Parallellism*K12_capacityInBytes]; \
|
162
|
+
\
|
163
|
+
KangarooTwelve_Process##Parallellism##Leaves(input, intermediate); \
|
164
|
+
input += Parallellism * K12_chunkSize; \
|
165
|
+
inputByteLen -= Parallellism * K12_chunkSize; \
|
166
|
+
ktInstance->blockNumber += Parallellism; \
|
167
|
+
KangarooTwelve_F_Absorb(&ktInstance->finalNode, intermediate, Parallellism * K12_capacityInBytes); \
|
168
|
+
}
|
169
|
+
|
170
|
+
#endif // KeccakP1600_disableParallelism
|
171
|
+
|
172
|
+
static unsigned int right_encode(unsigned char * encbuf, size_t value)
|
173
|
+
{
|
174
|
+
unsigned int n, i;
|
175
|
+
size_t v;
|
176
|
+
|
177
|
+
for (v = value, n = 0; v && (n < sizeof(size_t)); ++n, v >>= 8)
|
178
|
+
; /* empty */
|
179
|
+
for (i = 1; i <= n; ++i) {
|
180
|
+
encbuf[i-1] = (unsigned char)(value >> (8 * (n-i)));
|
181
|
+
}
|
182
|
+
encbuf[n] = (unsigned char)n;
|
183
|
+
return n + 1;
|
184
|
+
}
|
185
|
+
|
186
|
+
int KangarooTwelve_Initialize(KangarooTwelve_Instance *ktInstance, size_t outputByteLen)
|
187
|
+
{
|
188
|
+
ktInstance->fixedOutputLength = outputByteLen;
|
189
|
+
ktInstance->queueAbsorbedLen = 0;
|
190
|
+
ktInstance->blockNumber = 0;
|
191
|
+
ktInstance->phase = ABSORBING;
|
192
|
+
KangarooTwelve_F_Initialize(&ktInstance->finalNode);
|
193
|
+
return 0;
|
194
|
+
}
|
195
|
+
|
196
|
+
int KangarooTwelve_Update(KangarooTwelve_Instance *ktInstance, const unsigned char *input, size_t inputByteLen)
|
197
|
+
{
|
198
|
+
if (ktInstance->phase != ABSORBING)
|
199
|
+
return 1;
|
200
|
+
|
201
|
+
if (ktInstance->blockNumber == 0) {
|
202
|
+
/* First block, absorb in final node */
|
203
|
+
unsigned int len = (inputByteLen < (K12_chunkSize - ktInstance->queueAbsorbedLen)) ? (unsigned int)inputByteLen : (K12_chunkSize - ktInstance->queueAbsorbedLen);
|
204
|
+
KangarooTwelve_F_Absorb(&ktInstance->finalNode, input, len);
|
205
|
+
input += len;
|
206
|
+
inputByteLen -= len;
|
207
|
+
ktInstance->queueAbsorbedLen += len;
|
208
|
+
if ((ktInstance->queueAbsorbedLen == K12_chunkSize) && (inputByteLen != 0)) {
|
209
|
+
/* First block complete and more input data available, finalize it */
|
210
|
+
const unsigned char padding = 0x03; /* '110^6': message hop, simple padding */
|
211
|
+
ktInstance->queueAbsorbedLen = 0;
|
212
|
+
ktInstance->blockNumber = 1;
|
213
|
+
KangarooTwelve_F_Absorb(&ktInstance->finalNode, &padding, 1);
|
214
|
+
ktInstance->finalNode.byteIOIndex = (ktInstance->finalNode.byteIOIndex + 7) & ~7; /* Zero padding up to 64 bits */
|
215
|
+
}
|
216
|
+
} else if (ktInstance->queueAbsorbedLen != 0) {
|
217
|
+
/* There is data in the queue, absorb further in queue until block complete */
|
218
|
+
unsigned int len = (inputByteLen < (K12_chunkSize - ktInstance->queueAbsorbedLen)) ? (unsigned int)inputByteLen : (K12_chunkSize - ktInstance->queueAbsorbedLen);
|
219
|
+
KangarooTwelve_F_Absorb(&ktInstance->queueNode, input, len);
|
220
|
+
input += len;
|
221
|
+
inputByteLen -= len;
|
222
|
+
ktInstance->queueAbsorbedLen += len;
|
223
|
+
if (ktInstance->queueAbsorbedLen == K12_chunkSize) {
|
224
|
+
unsigned char intermediate[K12_capacityInBytes];
|
225
|
+
ktInstance->queueAbsorbedLen = 0;
|
226
|
+
++ktInstance->blockNumber;
|
227
|
+
KangarooTwelve_F_AbsorbLastFewBits(&ktInstance->queueNode, K12_suffixLeaf);
|
228
|
+
KangarooTwelve_F_Squeeze(&ktInstance->queueNode, intermediate, K12_capacityInBytes);
|
229
|
+
KangarooTwelve_F_Absorb(&ktInstance->finalNode, intermediate, K12_capacityInBytes);
|
230
|
+
}
|
231
|
+
}
|
232
|
+
|
233
|
+
#ifndef KeccakP1600_disableParallelism
|
234
|
+
if (KeccakP1600times8_IsAvailable()) {
|
235
|
+
ProcessLeaves(8);
|
236
|
+
}
|
237
|
+
|
238
|
+
if (KeccakP1600times4_IsAvailable()) {
|
239
|
+
ProcessLeaves(4);
|
240
|
+
}
|
241
|
+
|
242
|
+
if (KeccakP1600times2_IsAvailable()) {
|
243
|
+
ProcessLeaves(2);
|
244
|
+
}
|
245
|
+
#endif
|
246
|
+
|
247
|
+
while (inputByteLen > 0) {
|
248
|
+
unsigned int len = (inputByteLen < K12_chunkSize) ? (unsigned int)inputByteLen : K12_chunkSize;
|
249
|
+
KangarooTwelve_F_Initialize(&ktInstance->queueNode);
|
250
|
+
KangarooTwelve_F_Absorb(&ktInstance->queueNode, input, len);
|
251
|
+
input += len;
|
252
|
+
inputByteLen -= len;
|
253
|
+
if (len == K12_chunkSize) {
|
254
|
+
unsigned char intermediate[K12_capacityInBytes];
|
255
|
+
++ktInstance->blockNumber;
|
256
|
+
KangarooTwelve_F_AbsorbLastFewBits(&ktInstance->queueNode, K12_suffixLeaf);
|
257
|
+
KangarooTwelve_F_Squeeze(&ktInstance->queueNode, intermediate, K12_capacityInBytes);
|
258
|
+
KangarooTwelve_F_Absorb(&ktInstance->finalNode, intermediate, K12_capacityInBytes);
|
259
|
+
} else {
|
260
|
+
ktInstance->queueAbsorbedLen = len;
|
261
|
+
}
|
262
|
+
}
|
263
|
+
|
264
|
+
return 0;
|
265
|
+
}
|
266
|
+
|
267
|
+
int KangarooTwelve_Final(KangarooTwelve_Instance *ktInstance, unsigned char *output, const unsigned char *customization, size_t customByteLen)
|
268
|
+
{
|
269
|
+
unsigned char encbuf[sizeof(size_t)+1+2];
|
270
|
+
unsigned char padding;
|
271
|
+
|
272
|
+
if (ktInstance->phase != ABSORBING)
|
273
|
+
return 1;
|
274
|
+
|
275
|
+
/* Absorb customization | right_encode(customByteLen) */
|
276
|
+
if ((customByteLen != 0) && (KangarooTwelve_Update(ktInstance, customization, customByteLen) != 0))
|
277
|
+
return 1;
|
278
|
+
if (KangarooTwelve_Update(ktInstance, encbuf, right_encode(encbuf, customByteLen)) != 0)
|
279
|
+
return 1;
|
280
|
+
|
281
|
+
if (ktInstance->blockNumber == 0) {
|
282
|
+
/* Non complete first block in final node, pad it */
|
283
|
+
padding = 0x07; /* '11': message hop, final node */
|
284
|
+
} else {
|
285
|
+
unsigned int n;
|
286
|
+
|
287
|
+
if (ktInstance->queueAbsorbedLen != 0) {
|
288
|
+
/* There is data in the queue node */
|
289
|
+
unsigned char intermediate[K12_capacityInBytes];
|
290
|
+
++ktInstance->blockNumber;
|
291
|
+
KangarooTwelve_F_AbsorbLastFewBits(&ktInstance->queueNode, K12_suffixLeaf);
|
292
|
+
KangarooTwelve_F_Squeeze(&ktInstance->queueNode, intermediate, K12_capacityInBytes);
|
293
|
+
KangarooTwelve_F_Absorb(&ktInstance->finalNode, intermediate, K12_capacityInBytes);
|
294
|
+
}
|
295
|
+
--ktInstance->blockNumber; /* Absorb right_encode(number of Chaining Values) || 0xFF || 0xFF */
|
296
|
+
n = right_encode(encbuf, ktInstance->blockNumber);
|
297
|
+
encbuf[n++] = 0xFF;
|
298
|
+
encbuf[n++] = 0xFF;
|
299
|
+
KangarooTwelve_F_Absorb(&ktInstance->finalNode, encbuf, n);
|
300
|
+
padding = 0x06; /* '01': chaining hop, final node */
|
301
|
+
}
|
302
|
+
KangarooTwelve_F_AbsorbLastFewBits(&ktInstance->finalNode, padding);
|
303
|
+
if (ktInstance->fixedOutputLength != 0) {
|
304
|
+
ktInstance->phase = FINAL;
|
305
|
+
KangarooTwelve_F_Squeeze(&ktInstance->finalNode, output, ktInstance->fixedOutputLength);
|
306
|
+
return 0;
|
307
|
+
}
|
308
|
+
ktInstance->phase = SQUEEZING;
|
309
|
+
return 0;
|
310
|
+
}
|
311
|
+
|
312
|
+
int KangarooTwelve_Squeeze(KangarooTwelve_Instance *ktInstance, unsigned char *output, size_t outputByteLen)
|
313
|
+
{
|
314
|
+
if (ktInstance->phase != SQUEEZING)
|
315
|
+
return 1;
|
316
|
+
KangarooTwelve_F_Squeeze(&ktInstance->finalNode, output, outputByteLen);
|
317
|
+
return 0;
|
318
|
+
}
|
319
|
+
|
320
|
+
int KangarooTwelve(const unsigned char *input, size_t inputByteLen,
|
321
|
+
unsigned char *output, size_t outputByteLen,
|
322
|
+
const unsigned char *customization, size_t customByteLen)
|
323
|
+
{
|
324
|
+
KangarooTwelve_Instance ktInstance;
|
325
|
+
|
326
|
+
if (outputByteLen == 0)
|
327
|
+
return 1;
|
328
|
+
KangarooTwelve_Initialize(&ktInstance, outputByteLen);
|
329
|
+
if (KangarooTwelve_Update(&ktInstance, input, inputByteLen) != 0)
|
330
|
+
return 1;
|
331
|
+
return KangarooTwelve_Final(&ktInstance, output, customization, customByteLen);
|
332
|
+
}
|
@@ -1,10 +1,10 @@
|
|
1
1
|
/*
|
2
|
-
|
2
|
+
K12 based on the eXtended Keccak Code Package (XKCP)
|
3
3
|
https://github.com/XKCP/XKCP
|
4
4
|
|
5
5
|
KangarooTwelve, designed by Guido Bertoni, Joan Daemen, Michaël Peeters, Gilles Van Assche, Ronny Van Keer and Benoît Viguier.
|
6
6
|
|
7
|
-
Implementation by Ronny Van Keer, hereby denoted as "the implementer".
|
7
|
+
Implementation by Gilles Van Assche and Ronny Van Keer, hereby denoted as "the implementer".
|
8
8
|
|
9
9
|
For more information, feedback or questions, please refer to the Keccak Team website:
|
10
10
|
https://keccak.team/
|
@@ -17,23 +17,24 @@ http://creativecommons.org/publicdomain/zero/1.0/
|
|
17
17
|
#ifndef _KangarooTwelve_h_
|
18
18
|
#define _KangarooTwelve_h_
|
19
19
|
|
20
|
-
#include "config.h"
|
21
|
-
#ifdef XKCP_has_KeccakP1600
|
22
|
-
|
23
20
|
#include <stddef.h>
|
21
|
+
#include <stdint.h>
|
24
22
|
#include "align.h"
|
25
|
-
#include "
|
26
|
-
#include "Phases.h"
|
23
|
+
#include "KeccakP-1600-SnP.h"
|
27
24
|
|
28
|
-
typedef
|
25
|
+
typedef struct KangarooTwelve_FStruct {
|
26
|
+
uint8_t state[KeccakP1600_stateSizeInBytes];
|
27
|
+
uint8_t byteIOIndex;
|
28
|
+
uint8_t squeezing;
|
29
|
+
} KangarooTwelve_F;
|
29
30
|
|
30
|
-
typedef struct {
|
31
|
-
|
32
|
-
|
31
|
+
typedef struct KangarooTwelve_InstanceStruct {
|
32
|
+
ALIGN(KeccakP1600_stateAlignment) KangarooTwelve_F queueNode;
|
33
|
+
ALIGN(KeccakP1600_stateAlignment) KangarooTwelve_F finalNode;
|
33
34
|
size_t fixedOutputLength;
|
34
35
|
size_t blockNumber;
|
35
36
|
unsigned int queueAbsorbedLen;
|
36
|
-
|
37
|
+
int phase;
|
37
38
|
} KangarooTwelve_Instance;
|
38
39
|
|
39
40
|
/** Extendable ouput function KangarooTwelve.
|
@@ -45,7 +46,7 @@ typedef struct {
|
|
45
46
|
* @param customByteLen The length of the customization string in bytes.
|
46
47
|
* @return 0 if successful, 1 otherwise.
|
47
48
|
*/
|
48
|
-
int KangarooTwelve(const unsigned char *input, size_t inputByteLen, unsigned char *output, size_t outputByteLen, const unsigned char *customization, size_t customByteLen
|
49
|
+
int KangarooTwelve(const unsigned char *input, size_t inputByteLen, unsigned char *output, size_t outputByteLen, const unsigned char *customization, size_t customByteLen);
|
49
50
|
|
50
51
|
/**
|
51
52
|
* Function to initialize a KangarooTwelve instance.
|
@@ -90,8 +91,44 @@ int KangarooTwelve_Final(KangarooTwelve_Instance *ktInstance, unsigned char *out
|
|
90
91
|
*/
|
91
92
|
int KangarooTwelve_Squeeze(KangarooTwelve_Instance *ktInstance, unsigned char *output, size_t outputByteLen);
|
92
93
|
|
93
|
-
#
|
94
|
-
|
95
|
-
|
94
|
+
#if !defined(KeccakP1600_disableParallelism) && defined(KeccakP1600_enable_simd_options)
|
95
|
+
/**
|
96
|
+
* Functions to selectively disable the use of CPU features. Should be rarely
|
97
|
+
* needed; if you're not sure this is what you want, don't worry about it.
|
98
|
+
*
|
99
|
+
* /!\ WARNING /!\: Calling these functions REQUIRES that there are no
|
100
|
+
* KangarooTwelve instances in use. The effects are global and affect the code
|
101
|
+
* paths taken by every call, as well as the details of the represented states.
|
102
|
+
* Calling these functions in the middle of your program (as opposed to during
|
103
|
+
* setup) is PROBABLY WRONG.
|
104
|
+
*
|
105
|
+
* These functions are at present only used to increase test suite coverage,
|
106
|
+
* and demonstrate comparative performance between implementations in different
|
107
|
+
* instruction sets. To enable them, the macro KeccakP1600_enable_simd_options
|
108
|
+
* must be defined at compile time.
|
109
|
+
*
|
110
|
+
* They can potentially also be useful in an environment where it is
|
111
|
+
* detrimental to online large vector units on the CPU, since doing so can lead
|
112
|
+
* to downclocking, performance hits in other threads sharing the same CPU
|
113
|
+
* core, and short delays while the CPU's power license is increased to online
|
114
|
+
* the vector unit.
|
115
|
+
*
|
116
|
+
* In the majority of situations, however, this should rarely matter and it is
|
117
|
+
* usually the case that the performance difference will be a wash or even an
|
118
|
+
* overall improvement despite the downsides.
|
119
|
+
*
|
120
|
+
* @return 1 if the feature was enabled and available and has been turned off,
|
121
|
+
* 0 if it was already disabled or unavailable.
|
122
|
+
*/
|
123
|
+
int KangarooTwelve_DisableAVX512(void);
|
124
|
+
int KangarooTwelve_DisableAVX2(void);
|
125
|
+
int KangarooTwelve_DisableSSSE3(void);
|
126
|
+
|
127
|
+
/**
|
128
|
+
* Function to reset all CPU features to enabled-if-available. Calling this
|
129
|
+
* always has no effect if no CPU features have been explicitly disabled.
|
130
|
+
*/
|
131
|
+
void KangarooTwelve_EnableAllCpuFeatures(void);
|
132
|
+
#endif // !KeccakP1600_disableParallelism && KeccakP1600_enable_simd_options
|
96
133
|
|
97
134
|
#endif
|