# HG changeset patch # User Laman # Date 2018-07-06 11:18:00 # Node ID c0f165783af4d5325730f346a26252ee2f50581c init commit diff --git a/blake.js b/blake.js new file mode 100644 --- /dev/null +++ b/blake.js @@ -0,0 +1,108 @@ +import {str2utf8} from "./util.js"; + +const MASK=0xffffffff; +const BLOCK_LEN=64; + +const IV=[0x6A09E667,0xBB67AE85,0x3C6EF372,0xA54FF53A,0x510E527F,0x9B05688C,0x1F83D9AB,0x5BE0CD19]; + +const SIGMA=[ + [0,1,2,3,4,5,6,7,8,9,10,11,12,13,14,15], + [14,10,4,8,9,15,13,6,1,12,0,2,11,7,5,3], + [11,8,12,0,5,2,15,13,10,14,3,6,7,1,9,4], + [7,9,3,1,13,12,11,14,2,6,5,10,4,0,15,8], + [9,0,5,7,2,4,10,15,14,1,11,12,6,8,3,13], + [2,12,6,10,0,11,8,3,4,13,7,5,15,14,1,9], + [12,5,1,15,14,13,4,10,0,7,6,3,9,2,8,11], + [13,11,7,14,12,1,3,9,5,0,15,4,8,6,2,10], + [6,15,14,9,11,3,0,8,12,2,13,7,1,4,10,5], + [10,2,8,4,7,6,1,5,15,11,9,14,3,12,13,0] +]; + +function rrot(x,shift){ + return ((x>>>shift)|(x<<(32-shift)))&MASK; +} + +function g(arr,ia,ib,ic,id,x,y){ + let a=arr[ia], b=arr[ib], c=arr[ic], d=arr[id]; + // console.log(">> "+[a,b,c,d,x,y].map(x=>(x>>>0).toString(16))); + a=(a+b+x)&MASK; d=rrot(d^a,16); + // console.log([a,d].map(x=>(x>>>0).toString(16))); + c=(c+d)&MASK; b=rrot(b^c,12); + // console.log([c,b].map(x=>(x>>>0).toString(16))); + a=(a+b+y)&MASK; d=rrot(d^a,8); + // console.log([a,d].map(x=>(x>>>0).toString(16))); + c=(c+d)&MASK; b=rrot(b^c,7); + // console.log([c,b].map(x=>(x>>>0).toString(16))); + // console.log("<< "+[a,b,c,d].map(x=>(x>>>0).toString(16))); + arr[ia]=a; arr[ib]=b; arr[ic]=c; arr[id]=d; +} + +function f(state,data,offset,last){ + console.log("... "+data.map(x=>(x>>>0).toString(16))); + let v=state.concat(IV); + v[12]^=offset&MASK; + v[13]^=0; // !! offset>>>32 + if(last){v[14]^=MASK;} + + for(let i=0;i<10;i++){ + console.log(i+": "+(v.map(x=>(x>>>0).toString(16))).join(" ")); + let perm=SIGMA[i%10]; + g(v,0,4,8,12,data[perm[0]],data[perm[1]]); + g(v,1,5,9,13,data[perm[2]],data[perm[3]]); + g(v,2,6,10,14,data[perm[4]],data[perm[5]]); + g(v,3,7,11,15,data[perm[6]],data[perm[7]]); + + g(v,0,5,10,15,data[perm[8]],data[perm[9]]); + g(v,1,6,11,12,data[perm[10]],data[perm[11]]); + g(v,2,7,8,13,data[perm[12]],data[perm[13]]); + g(v,3,4,9,14,data[perm[14]],data[perm[15]]); + } + + for(let i=0;i<8;i++){ + state[i]^=v[i]^v[i+8]; + } +} + +function blake2s(data,dataLen,keyLen=0,outputLen=32){ + let state=IV.slice(); + state[0]^=0x01010000^(keyLen<<8)^outputLen; + + if(data.length>1){ + for(let i=0;iacc|b<<(i*8)); +} + +function bytes2int32s(arr){ + let res=[]; + for(let i=0;i>>=8; + } + return res; +} + +function int32s2bytes(arr){ + return arr.map(int322bytes).reduce((acc,bytes)=>acc.concat(bytes)); +} + +let msg=[97,98,99]; +let data=[bytes2int32s(msg).concat(0,0,0,0,0,0,0,0,0,0,0,0,0,0,0)]; +//console.log(int32s2bytes(blake2s(data,msg.length)).map(x=>x.toString(16)).join(" ")); +console.log(int32s2bytes(blake2s(data,msg.length,outputLen=16)).map(x=>x.toString(16)).join(" ")); diff --git a/chacha.js b/chacha.js new file mode 100644 --- /dev/null +++ b/chacha.js @@ -0,0 +1,49 @@ +// https://tools.ietf.org/html/rfc7693 + +MASK=0xffffffff; + +function int2bytes(x){ + var res=new Array(4); + for(var i=0;i<4;i++){ + res[i]=x&0xff; + x>>>=8; + } + return res; +} + +function lrot(x,shift){ + return (x<>>(32-shift))&MASK; +} + +function quarterRound(arr,ia,ib,ic,id){ + var a=arr[ia], b=arr[ib], c=arr[ic], d=arr[id]; + a=(a+b)&MASK; d=lrot(d^a,16); + c=(c+d)&MASK; b=lrot(b^c,12); + a=(a+b)&MASK; d=lrot(d^a,8); + c=(c+d)&MASK; b=lrot(b^c,7); + arr[ia]=a; arr[ib]=b; arr[ic]=c; arr[id]=d; +} + +function chacha(key,nonce,position){ + var x=input.slice(); + + for(var i=0;i<10;i++){ + // column round + quarterRound(x,0,4,8,12); + quarterRound(x,1,5,9,13); + quarterRound(x,2,6,10,14); + quarterRound(x,3,7,11,15); + // diagonal round + quarterRound(x,0,5,10,15); + quarterRound(x,1,6,11,12); + quarterRound(x,2,7,8,13); + quarterRound(x,3,4,9,14); + } + + return x.map((xi,i)=>(xi+input[i])&MASK); +} + +function encrypt(message,key){ + var nonce=Date.now(); + var nonce0=nonce; +} diff --git a/crypto.html b/crypto.html new file mode 100644 --- /dev/null +++ b/crypto.html @@ -0,0 +1,12 @@ + + + + + + + diff --git a/util.js b/util.js new file mode 100644 --- /dev/null +++ b/util.js @@ -0,0 +1,29 @@ +export function str2utf8(s){ + let res=[]; + let c=s.codePointAt(0); + for(let i=0;c!==undefined;i++,c=s.codePointAt(i)){ + console.log(c); + if(c<0x80){res.push(c);} + else if(c<0x800){ + res.push(0b11000000|(c>>>6)); + res.push(0b10000000|(c&0b111111)); + } + else if(c<0x10000){ + res.push(0b11100000|(c>>>12)); + res.push(0b10000000|((c>>>6)&0b111111)); + res.push(0b10000000|(c&0b111111)); + } + else{ + res.push(0b11110000|(c>>>18)); + res.push(0b10000000|((c>>>12)&0b111111)); + res.push(0b10000000|((c>>>6)&0b111111)); + res.push(0b10000000|(c&0b111111)); + } + } + return res; +} + +console.log(str2utf8("$").map(x=>x.toString(16))); +console.log(str2utf8("¢").map(x=>x.toString(16))); +console.log(str2utf8("€").map(x=>x.toString(16))); +console.log(str2utf8("𐍈").map(x=>x.toString(16)));