mirror of
https://github.com/ziglang/zig.git
synced 2025-12-06 06:13:07 +00:00
d29871977f
We already have a LICENSE file that covers the Zig Standard Library. We no longer need to remind everyone that the license is MIT in every single file. Previously this was introduced to clarify the situation for a fork of Zig that made Zig's LICENSE file harder to find, and replaced it with their own license that required annual payments to their company. However that fork now appears to be dead. So there is no need to reinforce the copyright notice in every single file.
235 lines
8.5 KiB
Zig
235 lines
8.5 KiB
Zig
/// Authenticated Encryption with Associated Data
|
|
pub const aead = struct {
|
|
pub const aegis = struct {
|
|
pub const Aegis128L = @import("crypto/aegis.zig").Aegis128L;
|
|
pub const Aegis256 = @import("crypto/aegis.zig").Aegis256;
|
|
};
|
|
|
|
pub const aes_gcm = struct {
|
|
pub const Aes128Gcm = @import("crypto/aes_gcm.zig").Aes128Gcm;
|
|
pub const Aes256Gcm = @import("crypto/aes_gcm.zig").Aes256Gcm;
|
|
};
|
|
|
|
pub const aes_ocb = struct {
|
|
pub const Aes128Ocb = @import("crypto/aes_ocb.zig").Aes128Ocb;
|
|
pub const Aes256Ocb = @import("crypto/aes_ocb.zig").Aes256Ocb;
|
|
};
|
|
|
|
pub const Gimli = @import("crypto/gimli.zig").Aead;
|
|
|
|
pub const chacha_poly = struct {
|
|
pub const ChaCha20Poly1305 = @import("crypto/chacha20.zig").ChaCha20Poly1305;
|
|
pub const ChaCha12Poly1305 = @import("crypto/chacha20.zig").ChaCha12Poly1305;
|
|
pub const ChaCha8Poly1305 = @import("crypto/chacha20.zig").ChaCha8Poly1305;
|
|
pub const XChaCha20Poly1305 = @import("crypto/chacha20.zig").XChaCha20Poly1305;
|
|
pub const XChaCha12Poly1305 = @import("crypto/chacha20.zig").XChaCha12Poly1305;
|
|
pub const XChaCha8Poly1305 = @import("crypto/chacha20.zig").XChaCha8Poly1305;
|
|
};
|
|
|
|
pub const isap = @import("crypto/isap.zig");
|
|
|
|
pub const salsa_poly = struct {
|
|
pub const XSalsa20Poly1305 = @import("crypto/salsa20.zig").XSalsa20Poly1305;
|
|
};
|
|
};
|
|
|
|
/// Authentication (MAC) functions.
|
|
pub const auth = struct {
|
|
pub const hmac = @import("crypto/hmac.zig");
|
|
pub const siphash = @import("crypto/siphash.zig");
|
|
};
|
|
|
|
/// Core functions, that should rarely be used directly by applications.
|
|
pub const core = struct {
|
|
pub const aes = @import("crypto/aes.zig");
|
|
pub const Gimli = @import("crypto/gimli.zig").State;
|
|
|
|
/// Modes are generic compositions to construct encryption/decryption functions from block ciphers and permutations.
|
|
///
|
|
/// These modes are designed to be building blocks for higher-level constructions, and should generally not be used directly by applications, as they may not provide the expected properties and security guarantees.
|
|
///
|
|
/// Most applications may want to use AEADs instead.
|
|
pub const modes = @import("crypto/modes.zig");
|
|
};
|
|
|
|
/// Diffie-Hellman key exchange functions.
|
|
pub const dh = struct {
|
|
pub const X25519 = @import("crypto/25519/x25519.zig").X25519;
|
|
};
|
|
|
|
/// Elliptic-curve arithmetic.
|
|
pub const ecc = struct {
|
|
pub const Curve25519 = @import("crypto/25519/curve25519.zig").Curve25519;
|
|
pub const Edwards25519 = @import("crypto/25519/edwards25519.zig").Edwards25519;
|
|
pub const P256 = @import("crypto/pcurves/p256.zig").P256;
|
|
pub const Ristretto255 = @import("crypto/25519/ristretto255.zig").Ristretto255;
|
|
};
|
|
|
|
/// Hash functions.
|
|
pub const hash = struct {
|
|
pub const blake2 = @import("crypto/blake2.zig");
|
|
pub const Blake3 = @import("crypto/blake3.zig").Blake3;
|
|
pub const Gimli = @import("crypto/gimli.zig").Hash;
|
|
pub const Md5 = @import("crypto/md5.zig").Md5;
|
|
pub const Sha1 = @import("crypto/sha1.zig").Sha1;
|
|
pub const sha2 = @import("crypto/sha2.zig");
|
|
pub const sha3 = @import("crypto/sha3.zig");
|
|
};
|
|
|
|
/// Key derivation functions.
|
|
pub const kdf = struct {
|
|
pub const hkdf = @import("crypto/hkdf.zig");
|
|
};
|
|
|
|
/// MAC functions requiring single-use secret keys.
|
|
pub const onetimeauth = struct {
|
|
pub const Ghash = @import("crypto/ghash.zig").Ghash;
|
|
pub const Poly1305 = @import("crypto/poly1305.zig").Poly1305;
|
|
};
|
|
|
|
/// A password hashing function derives a uniform key from low-entropy input material such as passwords.
|
|
/// It is intentionally slow or expensive.
|
|
///
|
|
/// With the standard definition of a key derivation function, if a key space is small, an exhaustive search may be practical.
|
|
/// Password hashing functions make exhaustive searches way slower or way more expensive, even when implemented on GPUs and ASICs, by using different, optionally combined strategies:
|
|
///
|
|
/// - Requiring a lot of computation cycles to complete
|
|
/// - Requiring a lot of memory to complete
|
|
/// - Requiring multiple CPU cores to complete
|
|
/// - Requiring cache-local data to complete in reasonable time
|
|
/// - Requiring large static tables
|
|
/// - Avoiding precomputations and time/memory tradeoffs
|
|
/// - Requiring multi-party computations
|
|
/// - Combining the input material with random per-entry data (salts), application-specific contexts and keys
|
|
///
|
|
/// Password hashing functions must be used whenever sensitive data has to be directly derived from a password.
|
|
pub const pwhash = struct {
|
|
pub const Encoding = enum {
|
|
phc,
|
|
crypt,
|
|
};
|
|
pub const KdfError = errors.Error || std.mem.Allocator.Error;
|
|
pub const HasherError = KdfError || @import("crypto/phc_encoding.zig").Error;
|
|
pub const Error = HasherError || error{AllocatorRequired};
|
|
|
|
pub const bcrypt = @import("crypto/bcrypt.zig");
|
|
pub const scrypt = @import("crypto/scrypt.zig");
|
|
pub const pbkdf2 = @import("crypto/pbkdf2.zig").pbkdf2;
|
|
};
|
|
|
|
/// Digital signature functions.
|
|
pub const sign = struct {
|
|
pub const Ed25519 = @import("crypto/25519/ed25519.zig").Ed25519;
|
|
};
|
|
|
|
/// Stream ciphers. These do not provide any kind of authentication.
|
|
/// Most applications should be using AEAD constructions instead of stream ciphers directly.
|
|
pub const stream = struct {
|
|
pub const chacha = struct {
|
|
pub const ChaCha20IETF = @import("crypto/chacha20.zig").ChaCha20IETF;
|
|
pub const ChaCha12IETF = @import("crypto/chacha20.zig").ChaCha12IETF;
|
|
pub const ChaCha8IETF = @import("crypto/chacha20.zig").ChaCha8IETF;
|
|
pub const ChaCha20With64BitNonce = @import("crypto/chacha20.zig").ChaCha20With64BitNonce;
|
|
pub const ChaCha12With64BitNonce = @import("crypto/chacha20.zig").ChaCha12With64BitNonce;
|
|
pub const ChaCha8With64BitNonce = @import("crypto/chacha20.zig").ChaCha8With64BitNonce;
|
|
pub const XChaCha20IETF = @import("crypto/chacha20.zig").XChaCha20IETF;
|
|
pub const XChaCha12IETF = @import("crypto/chacha20.zig").XChaCha12IETF;
|
|
pub const XChaCha8IETF = @import("crypto/chacha20.zig").XChaCha8IETF;
|
|
};
|
|
|
|
pub const salsa = struct {
|
|
pub const Salsa20 = @import("crypto/salsa20.zig").Salsa20;
|
|
pub const XSalsa20 = @import("crypto/salsa20.zig").XSalsa20;
|
|
};
|
|
};
|
|
|
|
pub const nacl = struct {
|
|
const salsa20 = @import("crypto/salsa20.zig");
|
|
|
|
pub const Box = salsa20.Box;
|
|
pub const SecretBox = salsa20.SecretBox;
|
|
pub const SealedBox = salsa20.SealedBox;
|
|
};
|
|
|
|
pub const utils = @import("crypto/utils.zig");
|
|
|
|
/// This is a thread-local, cryptographically secure pseudo random number generator.
|
|
pub const random = &@import("crypto/tlcsprng.zig").interface;
|
|
|
|
const std = @import("std.zig");
|
|
|
|
pub const errors = @import("crypto/errors.zig");
|
|
|
|
test "crypto" {
|
|
const please_windows_dont_oom = std.Target.current.os.tag == .windows;
|
|
if (please_windows_dont_oom) return error.SkipZigTest;
|
|
|
|
inline for (std.meta.declarations(@This())) |decl| {
|
|
switch (decl.data) {
|
|
.Type => |t| {
|
|
if (@typeInfo(t) != .ErrorSet) {
|
|
std.testing.refAllDecls(t);
|
|
}
|
|
},
|
|
.Var => |v| {
|
|
_ = v;
|
|
},
|
|
.Fn => |f| {
|
|
_ = f;
|
|
},
|
|
}
|
|
}
|
|
|
|
_ = @import("crypto/aegis.zig");
|
|
_ = @import("crypto/aes_gcm.zig");
|
|
_ = @import("crypto/aes_ocb.zig");
|
|
_ = @import("crypto/blake2.zig");
|
|
_ = @import("crypto/chacha20.zig");
|
|
}
|
|
|
|
test "CSPRNG" {
|
|
const a = random.int(u64);
|
|
const b = random.int(u64);
|
|
const c = random.int(u64);
|
|
try std.testing.expect(a ^ b ^ c != 0);
|
|
}
|
|
|
|
test "issue #4532: no index out of bounds" {
|
|
const types = [_]type{
|
|
hash.Md5,
|
|
hash.Sha1,
|
|
hash.sha2.Sha224,
|
|
hash.sha2.Sha256,
|
|
hash.sha2.Sha384,
|
|
hash.sha2.Sha512,
|
|
hash.sha3.Sha3_224,
|
|
hash.sha3.Sha3_256,
|
|
hash.sha3.Sha3_384,
|
|
hash.sha3.Sha3_512,
|
|
hash.blake2.Blake2s128,
|
|
hash.blake2.Blake2s224,
|
|
hash.blake2.Blake2s256,
|
|
hash.blake2.Blake2b128,
|
|
hash.blake2.Blake2b256,
|
|
hash.blake2.Blake2b384,
|
|
hash.blake2.Blake2b512,
|
|
hash.Gimli,
|
|
};
|
|
|
|
inline for (types) |Hasher| {
|
|
var block = [_]u8{'#'} ** Hasher.block_length;
|
|
var out1: [Hasher.digest_length]u8 = undefined;
|
|
var out2: [Hasher.digest_length]u8 = undefined;
|
|
const h0 = Hasher.init(.{});
|
|
var h = h0;
|
|
h.update(block[0..]);
|
|
h.final(&out1);
|
|
h = h0;
|
|
h.update(block[0..1]);
|
|
h.update(block[1..]);
|
|
h.final(&out2);
|
|
|
|
try std.testing.expectEqual(out1, out2);
|
|
}
|
|
}
|