diff options
| author | Jeffrey Walton <noloader@gmail.com> | 2019-02-12 19:51:37 -0500 |
|---|---|---|
| committer | GitHub <noreply@github.com> | 2019-02-12 19:51:37 -0500 |
| commit | c6e8a61b8b7dac8ac33bf12a4b9a0b510232da83 (patch) | |
| tree | e17f8e69cefe48982a36f44e7c062b894e23ad9a /shake.h | |
| parent | e499131ea6ba23ce57f6a7e50d0c2ff3fb8eff62 (diff) | |
| download | cryptopp-git-c6e8a61b8b7dac8ac33bf12a4b9a0b510232da83.tar.gz | |
Add SHAKE-128 and SHAKE-256 (GH #805, PR #806)
Diffstat (limited to 'shake.h')
| -rw-r--r-- | shake.h | 80 |
1 files changed, 80 insertions, 0 deletions
diff --git a/shake.h b/shake.h new file mode 100644 index 00000000..6f1e7786 --- /dev/null +++ b/shake.h @@ -0,0 +1,80 @@ +// shake.h - originally written and placed in the public domain by Jeffrey Walton
+
+/// \file shake.h
+/// \brief Classes for SHAKE message digests
+/// \sa SHA3, SHAKE128, SHAKE256,
+/// <a href="https://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.202.pdf">FIPS 202,
+/// SHA-3 Standard: Permutation-Based Hash and Extendable-Output Functions</a>
+/// \since Crypto++ 8.1
+
+#ifndef CRYPTOPP_SHAKE_H
+#define CRYPTOPP_SHAKE_H
+
+#include "cryptlib.h"
+#include "secblock.h"
+
+NAMESPACE_BEGIN(CryptoPP)
+
+/// \brief SHAKE message digest base class
+/// \details SHAKE is the base class for SHAKE128 and SHAKE258.
+/// Library users should instantiate a derived class, and only use SHAKE
+/// as a base class reference or pointer.
+/// \sa SHA3, SHAKE128, SHAKE256,
+/// <a href="https://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.202.pdf">FIPS 202,
+/// SHA-3 Standard: Permutation-Based Hash and Extendable-Output Functions</a>
+/// \since Crypto++ 8.1
+class SHAKE : public HashTransformation
+{
+public:
+ /// \brief Construct a SHAKE
+ /// \param digestSize the digest size, in bytes
+ /// \details SHAKE is the base class for SHAKE128 and SHAKE256.
+ /// Library users should instantiate a derived class, and only use SHAKE
+ /// as a base class reference or pointer.
+ /// \since Crypto++ 8.1
+ SHAKE(unsigned int digestSize) : m_digestSize(digestSize) {Restart();}
+ unsigned int DigestSize() const {return m_digestSize;}
+ unsigned int OptimalDataAlignment() const {return GetAlignmentOf<word64>();}
+
+ void Update(const byte *input, size_t length);
+ void Restart();
+ void TruncatedFinal(byte *hash, size_t size);
+
+protected:
+ inline unsigned int r() const {return BlockSize();}
+
+ FixedSizeSecBlock<word64, 25> m_state;
+ unsigned int m_digestSize, m_counter;
+};
+
+/// \brief SHAKE message digest template
+/// \tparam T_Strength the strength of the digest
+/// \since Crypto++ 8.1
+template<unsigned int T_Strength>
+class SHAKE_Final : public SHAKE
+{
+public:
+ CRYPTOPP_CONSTANT(DIGESTSIZE = (T_Strength == 128 ? 32 : 64))
+ CRYPTOPP_CONSTANT(BLOCKSIZE = (T_Strength == 128 ? 1344/8 : 1088/8))
+ static std::string StaticAlgorithmName() { return "SHAKE-" + IntToString(T_Strength); }
+
+ /// \brief Construct a SHAKE-X message digest
+ SHAKE_Final() : SHAKE(DIGESTSIZE) {}
+ unsigned int BlockSize() const { return BLOCKSIZE; }
+
+private:
+ CRYPTOPP_COMPILE_ASSERT(T_Strength == 128 || T_Strength == 256);
+ CRYPTOPP_COMPILE_ASSERT(BLOCKSIZE < 200); // ensure there was no underflow in the math
+};
+
+/// \brief SHAKE128 message digest
+/// \since Crypto++ 8.1
+class SHAKE128 : public SHAKE_Final<128> {};
+
+/// \brief SHAKE256 message digest
+/// \since Crypto++ 8.1
+class SHAKE256 : public SHAKE_Final<256> {};
+
+NAMESPACE_END
+
+#endif
|