diff options
| author | Adam Ierymenko <adam.ierymenko@gmail.com> | 2013-09-14 13:51:08 -0400 |
|---|---|---|
| committer | Adam Ierymenko <adam.ierymenko@gmail.com> | 2013-09-14 13:51:08 -0400 |
| commit | 660f92b6a7f91f9a4c53e0c40ce188a6f8878f04 (patch) | |
| tree | c41908584b00915a7d78293e32ed6a649aa9c618 /node | |
| parent | 09c8b4bbb37250df95ee898bcd6a0e090049d225 (diff) | |
| download | infinitytier-660f92b6a7f91f9a4c53e0c40ce188a6f8878f04.tar.gz infinitytier-660f92b6a7f91f9a4c53e0c40ce188a6f8878f04.zip | |
Add test vectors for ensuring identical C25519 operation across systems.
Diffstat (limited to 'node')
| -rw-r--r-- | node/C25519.cpp | 4 | ||||
| -rw-r--r-- | node/Poly1305.cpp | 2 | ||||
| -rw-r--r-- | node/Poly1305.hpp | 10 |
3 files changed, 14 insertions, 2 deletions
diff --git a/node/C25519.cpp b/node/C25519.cpp index 69a0a2f2..06123c90 100644 --- a/node/C25519.cpp +++ b/node/C25519.cpp @@ -2151,6 +2151,10 @@ static void get_hram(unsigned char *hram, const unsigned char *sm, const unsigne SHA512::hash(hram,playground,(unsigned int)smlen); } +// This is the original sign and verify code -- the versions in sign() and +// verify() below the fold are slightly modified in terms of how they behave +// in relation to the message, but the algorithms are the same. + #if 0 int crypto_sign_keypair( unsigned char *pk, diff --git a/node/Poly1305.cpp b/node/Poly1305.cpp index 7061ec2f..542aab27 100644 --- a/node/Poly1305.cpp +++ b/node/Poly1305.cpp @@ -138,7 +138,7 @@ static int crypto_onetimeauth(unsigned char *out,const unsigned char *in,unsigne ////////////////////////////////////////////////////////////////////////////// ////////////////////////////////////////////////////////////////////////////// -void Poly1305::computeAuthCode(void *auth,const void *data,unsigned int len,const void *key) +void Poly1305::mac(void *auth,const void *data,unsigned int len,const void *key) throw() { crypto_onetimeauth((unsigned char *)auth,(const unsigned char *)data,len,(const unsigned char *)key); diff --git a/node/Poly1305.hpp b/node/Poly1305.hpp index c61abcea..afe7439f 100644 --- a/node/Poly1305.hpp +++ b/node/Poly1305.hpp @@ -30,8 +30,16 @@ namespace ZeroTier { +#define ZT_POLY1305_KEY_LEN 32 +#define ZT_POLY1305_MAC_LEN 16 + /** * Poly1305 one-time authentication code + * + * This takes a one-time-use 32-byte key and generates a 16-byte message + * authentication code. The key must never be re-used for a different + * message. Normally this is done by taking a base key and mangling it + * using a nonce and possibly other data, as in Packet. */ class Poly1305 { @@ -44,7 +52,7 @@ public: * @param len Length of data to authenticate in bytes * @param key 32-byte one-time use key to authenticate data (must not be reused) */ - static void computeAuthCode(void *auth,const void *data,unsigned int len,const void *key) + static void mac(void *auth,const void *data,unsigned int len,const void *key) throw(); }; |