crypto_core

Primitives for `crypto_core`

This page lists all primitives grouped under operation crypto_core.

For each primitive, all listed implementations were checked across a number of compilers, compiler options, and hosts.

The progress bar shows the relative number of successes, fails, and errors:

Success. The constant-time checker didn't find any cases where the execution time of the tested code depends on secret data.
Fail. The execution time of the tested code depends on secret data.
Error.

Errors can have multiple causes:

The constant-time checker encountered an error and couldn't be completed.
Valgrind found memory issues, but none of them are related to constant-time checks.
The constant-time checker timed out after 6 minutes.
The tested code produced invalid results. More details can be found near the start of the output file. Example:
```
crypto_aead_decrypt returns nonzero 
```

The absolute number of successes, fails, and errors is shown to the left of the progress bar.

The following code was used to flag secret data, and test implementations:

1	void timecop_doit(void)
2	{
3	poison(k, klen);
4	return doit();
5	}

Click an implementation to see all checked compiler options.

aes128decrypt

Designers: Vincent Rijmen
Joan Daemen

Implementations:

dolbeau/std-1rt-nodk 0 / 9 / 0

dolbeau/std-2rt-nodk 0 / 9 / 0

dolbeau/std-4rt-nodk 0 / 9 / 0

openssl 0 / 9 / 0

ref 9 / 0 / 0

aes128encrypt

Designers: Vincent Rijmen
Joan Daemen

Implementations:

dolbeau/std-1ft 0 / 9 / 0

dolbeau/std-2ft 0 / 9 / 0

dolbeau/std-4ft 0 / 9 / 0

openssl 0 / 9 / 0

ref 9 / 0 / 0

aes256decrypt

Designers: Vincent Rijmen
Joan Daemen

Implementations:

dolbeau/std-1rt-nodk 0 / 9 / 0

dolbeau/std-2rt-nodk 0 / 9 / 0

dolbeau/std-4rt-nodk 0 / 9 / 0

openssl 0 / 9 / 0

ref 9 / 0 / 0

aes256encrypt

Designers: Vincent Rijmen
Joan Daemen

Implementations:

dolbeau/std-1ft 0 / 9 / 0

dolbeau/std-2ft 0 / 9 / 0

dolbeau/std-4ft 0 / 9 / 0

openssl 0 / 9 / 0

ref 9 / 0 / 0

hsalsa20

Description: HSalsa20 producing 32 bytes of output from 16 bytes of input,
32 bytes of key, 16 bytes of constants
Designers: Daniel J. Bernstein

Implementations:

ref 9 / 0 / 0

ref2 9 / 0 / 0

keccakf160032bits

Implementations:

inplace1600bi 9 / 0 / 0

reference1600-32bits 9 / 0 / 0

keccakf160064bits

Implementations:

compact1600 9 / 0 / 0

optimized1600lcu6 9 / 0 / 0

optimized1600lcufull 9 / 0 / 0

optimized1600lcufullshld 9 / 0 / 0

optimized1600u6 9 / 0 / 0

optimized1600ufull 9 / 0 / 0

reference1600 9 / 0 / 0

salsa20

Description: Salsa20 core producing 64 bytes of output
from 16 bytes of input, 32 bytes of key, 16 bytes of constants
Designers: Daniel J. Bernstein

Implementations:

ref 9 / 0 / 0

salsa2012

Description: Salsa20/12 core producing 64 bytes of output
from 16 bytes of input, 32 bytes of key, 16 bytes of constants
Designers: Daniel J. Bernstein

Implementations:

ref 9 / 0 / 0

salsa208

Description: Salsa20/8 core producing 64 bytes of output
from 16 bytes of input, 32 bytes of key, 16 bytes of constants
Designers: Daniel J. Bernstein

Implementations:

ref 9 / 0 / 0

Primitives for crypto_core

Primitives for `crypto_core`