1 files changed, 50 insertions, 0 deletions
diff --git a/src/Crypto/Cipher/XSalsa.hs b/src/Crypto/Cipher/XSalsa.hs
new file mode 100644
index 00000000..494760e2
--- /dev/null
+++ b/src/Crypto/Cipher/XSalsa.hs
@@ -0,0 +1,50 @@
+-- |
+-- Module      : Crypto.Cipher.XSalsa
+-- License     : BSD-style
+-- Maintainer  : Brandon Hamilton <brandon.hamilton@gmail.com>
+-- Stability   : stable
+-- Portability : good
+--
+-- Implementation of XSalsa20 algorithm
+-- <https://cr.yp.to/snuffle/xsalsa-20081128.pdf>
+-- Based on the Salsa20 algorithm with 256 bit key extended with 192 bit nonce
+{-# LANGUAGE ForeignFunctionInterface #-}
+module Crypto.Cipher.XSalsa
+    ( initialize
+    , combine
+    , generate
+    , State
+    ) where
+import           Crypto.Internal.ByteArray (ByteArrayAccess, ByteArray, ScrubbedBytes)
+import qualified Crypto.Internal.ByteArray as B
+import           Crypto.Internal.Compat
+import           Crypto.Internal.Imports
+import           Foreign.Ptr
+import           Foreign.Storable
+import           Foreign.C.Types
+import           Crypto.Cipher.Salsa hiding (initialize)
+-- | Initialize a new XSalsa context with the number of rounds,
+-- the key and the nonce associated.
+initialize :: (ByteArrayAccess key, ByteArrayAccess nonce)
+           => Int    -- ^ number of rounds (8,12,20)
+           -> key    -- ^ the key (256 bits)
+           -> nonce  -- ^ the nonce (192 bits)
+           -> State  -- ^ the initial XSalsa state
+initialize nbRounds key nonce
+    | kLen /= 32                      = error "XSalsa: key length should be 256 bits"
+    | nonceLen /= 24                  = error "XSalsa: nonce length should be 192 bits"
+    | not (nbRounds `elem` [8,12,20]) = error "XSalsa: rounds should be 8, 12 or 20"
+    | otherwise = unsafeDoIO $ do
+        stPtr <- B.alloc 132 $ \stPtr ->
+            B.withByteArray nonce $ \noncePtr  ->
+            B.withByteArray key   $ \keyPtr ->
+                ccryptonite_xsalsa_init stPtr (fromIntegral nbRounds) kLen keyPtr nonceLen noncePtr
+        return $ State stPtr
+  where kLen     = B.length key
+        nonceLen = B.length nonce
+foreign import ccall "cryptonite_xsalsa_init"
+    ccryptonite_xsalsa_init :: Ptr State -> Int -> Int -> Ptr Word8 -> Int -> Ptr Word8 -> IO ()

diff --git a/src/Crypto/Cipher/XSalsa.hs b/src/Crypto/Cipher/XSalsa.hs new file mode 100644 index 00000000..494760e2 --- /dev/null +++ b/src/Crypto/Cipher/XSalsa.hs
@@ -0,0 +1,50 @@
	1	-- \|
	2	-- Module : Crypto.Cipher.XSalsa
	3	-- License : BSD-style
	4	-- Maintainer : Brandon Hamilton <brandon.hamilton@gmail.com>
	5	-- Stability : stable
	6	-- Portability : good
	7	--
	8	-- Implementation of XSalsa20 algorithm
	9	-- <https://cr.yp.to/snuffle/xsalsa-20081128.pdf>
	10	-- Based on the Salsa20 algorithm with 256 bit key extended with 192 bit nonce
	11
	12	{-# LANGUAGE ForeignFunctionInterface #-}
	13	module Crypto.Cipher.XSalsa
	14	( initialize
	15	, combine
	16	, generate
	17	, State
	18	) where
	19
	20	import Crypto.Internal.ByteArray (ByteArrayAccess, ByteArray, ScrubbedBytes)
	21	import qualified Crypto.Internal.ByteArray as B
	22	import Crypto.Internal.Compat
	23	import Crypto.Internal.Imports
	24	import Foreign.Ptr
	25	import Foreign.Storable
	26	import Foreign.C.Types
	27	import Crypto.Cipher.Salsa hiding (initialize)
	28
	29	-- \| Initialize a new XSalsa context with the number of rounds,
	30	-- the key and the nonce associated.
	31	initialize :: (ByteArrayAccess key, ByteArrayAccess nonce)
	32	=> Int -- ^ number of rounds (8,12,20)
	33	-> key -- ^ the key (256 bits)
	34	-> nonce -- ^ the nonce (192 bits)
	35	-> State -- ^ the initial XSalsa state
	36	initialize nbRounds key nonce
	37	\| kLen /= 32 = error "XSalsa: key length should be 256 bits"
	38	\| nonceLen /= 24 = error "XSalsa: nonce length should be 192 bits"
	39	\| not (nbRounds `elem` [8,12,20]) = error "XSalsa: rounds should be 8, 12 or 20"
	40	\| otherwise = unsafeDoIO $ do
	41	stPtr <- B.alloc 132 $ \stPtr ->
	42	B.withByteArray nonce $ \noncePtr ->
	43	B.withByteArray key $ \keyPtr ->
	44	ccryptonite_xsalsa_init stPtr (fromIntegral nbRounds) kLen keyPtr nonceLen noncePtr
	45	return $ State stPtr
	46	where kLen = B.length key
	47	nonceLen = B.length nonce
	48
	49	foreign import ccall "cryptonite_xsalsa_init"
	50	ccryptonite_xsalsa_init :: Ptr State -> Int -> Int -> Ptr Word8 -> Int -> Ptr Word8 -> IO ()