blake2b.h (1611B)
1/* SPDX-License-Identifier: GPL-2.0 OR MIT */ 2 3#ifndef _CRYPTO_BLAKE2B_H 4#define _CRYPTO_BLAKE2B_H 5 6#include <linux/bug.h> 7#include <linux/types.h> 8#include <linux/string.h> 9 10enum blake2b_lengths { 11 BLAKE2B_BLOCK_SIZE = 128, 12 BLAKE2B_HASH_SIZE = 64, 13 BLAKE2B_KEY_SIZE = 64, 14 15 BLAKE2B_160_HASH_SIZE = 20, 16 BLAKE2B_256_HASH_SIZE = 32, 17 BLAKE2B_384_HASH_SIZE = 48, 18 BLAKE2B_512_HASH_SIZE = 64, 19}; 20 21struct blake2b_state { 22 /* 'h', 't', and 'f' are used in assembly code, so keep them as-is. */ 23 u64 h[8]; 24 u64 t[2]; 25 u64 f[2]; 26 u8 buf[BLAKE2B_BLOCK_SIZE]; 27 unsigned int buflen; 28 unsigned int outlen; 29}; 30 31enum blake2b_iv { 32 BLAKE2B_IV0 = 0x6A09E667F3BCC908ULL, 33 BLAKE2B_IV1 = 0xBB67AE8584CAA73BULL, 34 BLAKE2B_IV2 = 0x3C6EF372FE94F82BULL, 35 BLAKE2B_IV3 = 0xA54FF53A5F1D36F1ULL, 36 BLAKE2B_IV4 = 0x510E527FADE682D1ULL, 37 BLAKE2B_IV5 = 0x9B05688C2B3E6C1FULL, 38 BLAKE2B_IV6 = 0x1F83D9ABFB41BD6BULL, 39 BLAKE2B_IV7 = 0x5BE0CD19137E2179ULL, 40}; 41 42static inline void __blake2b_init(struct blake2b_state *state, size_t outlen, 43 const void *key, size_t keylen) 44{ 45 state->h[0] = BLAKE2B_IV0 ^ (0x01010000 | keylen << 8 | outlen); 46 state->h[1] = BLAKE2B_IV1; 47 state->h[2] = BLAKE2B_IV2; 48 state->h[3] = BLAKE2B_IV3; 49 state->h[4] = BLAKE2B_IV4; 50 state->h[5] = BLAKE2B_IV5; 51 state->h[6] = BLAKE2B_IV6; 52 state->h[7] = BLAKE2B_IV7; 53 state->t[0] = 0; 54 state->t[1] = 0; 55 state->f[0] = 0; 56 state->f[1] = 0; 57 state->buflen = 0; 58 state->outlen = outlen; 59 if (keylen) { 60 memcpy(state->buf, key, keylen); 61 memset(&state->buf[keylen], 0, BLAKE2B_BLOCK_SIZE - keylen); 62 state->buflen = BLAKE2B_BLOCK_SIZE; 63 } 64} 65 66#endif /* _CRYPTO_BLAKE2B_H */