photon-beetle

photon-beetle/Implementations/crypto_aead/photonbeetleaead128rate128v1/avr8_speed/api.h

+#define CRYPTO_KEYBYTES     16
+#define CRYPTO_NSECBYTES    0
+#define CRYPTO_NPUBBYTES    16
+#define CRYPTO_ABYTES       16
+#define CRYPTO_NOOVERLAP    1

photon-beetle/Implementations/crypto_aead/photonbeetleaead128rate128v1/avr8_speed/assist.h

+;
+; **********************************************
+; * PHOTON-Beetle                              *
+; * Authenticated Encryption and Hash Family   *
+; *                                            *
+; * Assembly implementation for 8-bit AVR CPU  *
+; * Version 1.0 2020 by PHOTON-Beetle Team     *
+; **********************************************
+;
+;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;
+; Bitslice
+;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;
+.MACRO Reorder_8_bits i0, i1, i2, i3, i4
+    ror \i0
+    ror \i1
+    ror \i0
+    ror \i2
+    ror \i0
+    ror \i3
+    ror \i0
+    ror \i4 
+    ror \i0
+    ror \i1
+    ror \i0
+    ror \i2
+    ror \i0
+    ror \i3
+    ror \i0
+    ror \i4 
+.ENDM
+
+.MACRO InvReorder_8_bits i0, i1, i2, i3, i4
+    ror \i1
+    ror \i0
+    ror \i2
+    ror \i0
+    ror \i3
+    ror \i0
+    ror \i4 
+    ror \i0
+    ror \i1
+    ror \i0
+    ror \i2
+    ror \i0
+    ror \i3
+    ror \i0
+    ror \i4 
+    ror \i0
+.ENDM
+
+; require XH:XL be the address of the input
+Load_Reorder_32_bits:
+    ldi cnt1, 4
+reorder_8_bits_loop:
+    ld rmp, X+
+    Reorder_8_bits rmp, x0, x1, x2, x3
+    dec cnt1
+    brne reorder_8_bits_loop
+ret
+
+; require YH:YL be the address of the output
+invReorder_Store_32_bits:
+    ldi cnt1, 4
+invreorder_8_bits_loop:
+    InvReorder_8_bits rmp, x0, x1, x2, x3
+    st Y+, rmp
+    dec cnt1
+    brne invreorder_8_bits_loop
+ret
+
+; require XH:XL be the address of the input
+; require YH:YL be the address of the output
+Load_Reorder_Store_128_bits:
+    ldi cnt0, 4
+reorder_32_bits_loop:
+    rcall Load_Reorder_32_bits
+    st Y+, x0
+    st Y+, x1
+    st Y+, x2
+    st Y+, x3
+    dec cnt0
+    brne reorder_32_bits_loop
+ret
+
+; require XH:XL be the address of the input
+; require YH:YL be the address of the output
+Load_invReorder_Store_128_bits:
+    ldi cnt0, 4
+invreorder_32_bits_loop:
+    ld x0, X+
+    ld x1, X+
+    ld x2, X+
+    ld x3, X+
+    rcall invReorder_Store_32_bits
+    dec cnt0
+    brne invreorder_32_bits_loop
+ret
+
+.macro PUSH_ALL
+push    r2
+push    r3
+push    r4
+push    r5
+push    r6
+push    r7
+push    r8
+push    r9
+push    r10
+push    r11
+push    r12
+push    r13
+push    r14
+push    r15
+push    r16
+push    r17
+push    r28
+push    r29
+.endm
+
+.macro POP_ALL
+pop    r29
+pop    r28
+pop    r17
+pop    r16
+pop    r15
+pop    r14
+pop    r13
+pop    r12
+pop    r11
+pop    r10
+pop    r9
+pop    r8
+pop    r7
+pop    r6
+pop    r5
+pop    r4
+pop    r3
+pop    r2
+clr    r1
+.endm

photon-beetle/Implementations/crypto_aead/photonbeetleaead128rate128v1/avr8_speed/crypto_aead.h

+#ifdef __cplusplus
+extern "C" {
+#endif
+    
+int crypto_aead_encrypt(
+	unsigned char *c,unsigned long long *clen,
+	const unsigned char *m,unsigned long long mlen,
+	const unsigned char *ad,unsigned long long adlen,
+	const unsigned char *nsec,
+	const unsigned char *npub,
+	const unsigned char *k
+	); 
+
+
+int crypto_aead_decrypt(
+	unsigned char *m,unsigned long long *outputmlen,
+	unsigned char *nsec,
+	const unsigned char *c,unsigned long long clen,
+	const unsigned char *ad,unsigned long long adlen,
+	const unsigned char *npub,
+	const unsigned char *k
+	); 
+
+#ifdef __cplusplus
+}
+#endif

photon-beetle/Implementations/crypto_aead/photonbeetleaead128rate128v1/avr8_speed/encrypt.c

+#include <avr/io.h>
+#include <avr/sfr_defs.h>
+#include <stdlib.h>
+#include <string.h>
+#include "api.h"
+
+extern void crypto_aead_encrypt_asm(
+      unsigned char *c,         
+      const unsigned char *m,   
+      unsigned char mlen,  
+      const unsigned char *ad,  
+      unsigned char adlen, 
+      const unsigned char *npub,
+      const unsigned char *k    
+      );
+
+extern char crypto_aead_decrypt_asm(
+     unsigned char *m,          
+     const unsigned char *c,    
+     unsigned char clen,   
+     const unsigned char *ad,   
+     unsigned char adlen,  
+     const unsigned char *npub, 
+     const unsigned char *k     
+     );
+
+int crypto_aead_encrypt(
+    unsigned char *c, unsigned long long *clen,
+    const unsigned char *m, unsigned long long mlen,
+    const unsigned char *ad, unsigned long long adlen,
+    const unsigned char *nsec,
+    const unsigned char *npub,
+    const unsigned char *k
+    )
+{
+    /*
+    ... 
+    ... the code for the cipher implementation goes here,
+    ... generating a ciphertext c[0],c[1],...,c[*clen-1]
+    ... from a plaintext m[0],m[1],...,m[mlen-1]
+    ... and associated data ad[0],ad[1],...,ad[adlen-1]
+    ... and nonce npub[0],npub[1],..
+    ... and secret key k[0],k[1],...
+    ... the implementation shall not use nsec
+    ...
+    ... return 0;
+    */
+
+    (void)nsec;
+
+    crypto_aead_encrypt_asm(c, m, mlen, ad, adlen, npub, k);
+
+    *clen = mlen + CRYPTO_ABYTES;
+    return 0;
+}
+
+
+
+int crypto_aead_decrypt(
+    unsigned char *m, unsigned long long *mlen,
+    unsigned char *nsec,
+    const unsigned char *c, unsigned long long clen,
+    const unsigned char *ad, unsigned long long adlen,
+    const unsigned char *npub,
+    const unsigned char *k
+    )
+{
+    /*
+    ...
+    ... the code for the AEAD implementation goes here,
+    ... generating a plaintext m[0],m[1],...,m[*mlen-1]
+    ... and secret message number nsec[0],nsec[1],...
+    ... from a ciphertext c[0],c[1],...,c[clen-1]
+    ... and associated data ad[0],ad[1],...,ad[adlen-1]
+    ... and nonce number npub[0],npub[1],...
+    ... and secret key k[0],k[1],...
+    ...
+    ... return 0;
+    */
+    unsigned long long    mlen_;
+    char tag_is_match;
+
+    (void)nsec;
+    if (clen < CRYPTO_ABYTES) {
+        return -1;
+    }
+    mlen_ = clen - CRYPTO_ABYTES;
+
+    tag_is_match = crypto_aead_decrypt_asm(m, c, mlen_, ad, adlen, npub, k);
+
+    if (tag_is_match != 0)
+    {
+        memset(m, 0, (size_t)mlen_);
+        return -1;
+    }
+    *mlen = mlen_;
+    return 0;
+}
\ No newline at end of file

photon-beetle/Implementations/crypto_aead/photonbeetleaead128rate32v1/avr8_speed/api.h

+#define CRYPTO_KEYBYTES     16
+#define CRYPTO_NSECBYTES    0
+#define CRYPTO_NPUBBYTES    16
+#define CRYPTO_ABYTES       16
+#define CRYPTO_NOOVERLAP    1

photon-beetle/Implementations/crypto_aead/photonbeetleaead128rate32v1/avr8_speed/assist.h

+;
+; **********************************************
+; * PHOTON-Beetle                              *
+; * Authenticated Encryption and Hash Family   *
+; *                                            *
+; * Assembly implementation for 8-bit AVR CPU  *
+; * Version 1.0 2020 by PHOTON-Beetle Team     *
+; **********************************************
+;
+;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;
+; Bitslice
+;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;
+.MACRO Reorder_8_bits i0, i1, i2, i3, i4
+    ror \i0
+    ror \i1
+    ror \i0
+    ror \i2
+    ror \i0
+    ror \i3
+    ror \i0
+    ror \i4 
+    ror \i0
+    ror \i1
+    ror \i0
+    ror \i2
+    ror \i0
+    ror \i3
+    ror \i0
+    ror \i4 
+.ENDM
+
+.MACRO InvReorder_8_bits i0, i1, i2, i3, i4
+    ror \i1
+    ror \i0
+    ror \i2
+    ror \i0
+    ror \i3
+    ror \i0
+    ror \i4 
+    ror \i0
+    ror \i1
+    ror \i0
+    ror \i2
+    ror \i0
+    ror \i3
+    ror \i0
+    ror \i4 
+    ror \i0
+.ENDM
+
+; require XH:XL be the address of the input
+Load_Reorder_32_bits:
+    ldi cnt1, 4
+reorder_8_bits_loop:
+    ld rmp, X+
+    Reorder_8_bits rmp, x0, x1, x2, x3
+    dec cnt1
+    brne reorder_8_bits_loop
+ret
+
+; require YH:YL be the address of the output
+invReorder_Store_32_bits:
+    ldi cnt1, 4
+invreorder_8_bits_loop:
+    InvReorder_8_bits rmp, x0, x1, x2, x3
+    st Y+, rmp
+    dec cnt1
+    brne invreorder_8_bits_loop
+ret
+
+; require XH:XL be the address of the input
+; require YH:YL be the address of the output
+Load_Reorder_Store_128_bits:
+    ldi cnt0, 4
+reorder_32_bits_loop:
+    rcall Load_Reorder_32_bits
+    st Y+, x0
+    st Y+, x1
+    st Y+, x2
+    st Y+, x3
+    dec cnt0
+    brne reorder_32_bits_loop
+ret
+
+; require XH:XL be the address of the input
+; require YH:YL be the address of the output
+Load_invReorder_Store_128_bits:
+    ldi cnt0, 4
+invreorder_32_bits_loop:
+    ld x0, X+
+    ld x1, X+
+    ld x2, X+
+    ld x3, X+
+    rcall invReorder_Store_32_bits
+    dec cnt0
+    brne invreorder_32_bits_loop
+ret
+
+.macro PUSH_ALL
+push    r2
+push    r3
+push    r4
+push    r5
+push    r6
+push    r7
+push    r8
+push    r9
+push    r10
+push    r11
+push    r12
+push    r13
+push    r14
+push    r15
+push    r16
+push    r17
+push    r28
+push    r29
+.endm
+
+.macro POP_ALL
+pop    r29
+pop    r28
+pop    r17
+pop    r16
+pop    r15
+pop    r14
+pop    r13
+pop    r12
+pop    r11
+pop    r10
+pop    r9
+pop    r8
+pop    r7
+pop    r6
+pop    r5
+pop    r4
+pop    r3
+pop    r2
+clr    r1
+.endm

photon-beetle/Implementations/crypto_aead/photonbeetleaead128rate32v1/avr8_speed/crypto_aead.h

+#ifdef __cplusplus
+extern "C" {
+#endif
+    
+int crypto_aead_encrypt(
+	unsigned char *c,unsigned long long *clen,
+	const unsigned char *m,unsigned long long mlen,
+	const unsigned char *ad,unsigned long long adlen,
+	const unsigned char *nsec,
+	const unsigned char *npub,
+	const unsigned char *k
+	); 
+
+
+int crypto_aead_decrypt(
+	unsigned char *m,unsigned long long *outputmlen,
+	unsigned char *nsec,
+	const unsigned char *c,unsigned long long clen,
+	const unsigned char *ad,unsigned long long adlen,
+	const unsigned char *npub,
+	const unsigned char *k
+	); 
+
+#ifdef __cplusplus
+}
+#endif

photon-beetle/Implementations/crypto_aead/photonbeetleaead128rate32v1/avr8_speed/encrypt.c

+#include <avr/io.h>
+#include <avr/sfr_defs.h>
+#include <stdlib.h>
+#include <string.h>
+#include "api.h"
+
+extern void crypto_aead_encrypt_asm(
+      unsigned char *c,         
+      const unsigned char *m,   
+      unsigned char mlen,  
+      const unsigned char *ad,  
+      unsigned char adlen, 
+      const unsigned char *npub,
+      const unsigned char *k    
+      );
+
+extern char crypto_aead_decrypt_asm(
+     unsigned char *m,          
+     const unsigned char *c,    
+     unsigned char clen,   
+     const unsigned char *ad,   
+     unsigned char adlen,  
+     const unsigned char *npub, 
+     const unsigned char *k     
+     );
+
+int crypto_aead_encrypt(
+    unsigned char *c, unsigned long long *clen,
+    const unsigned char *m, unsigned long long mlen,
+    const unsigned char *ad, unsigned long long adlen,
+    const unsigned char *nsec,
+    const unsigned char *npub,
+    const unsigned char *k
+    )
+{
+    /*
+    ... 
+    ... the code for the cipher implementation goes here,
+    ... generating a ciphertext c[0],c[1],...,c[*clen-1]
+    ... from a plaintext m[0],m[1],...,m[mlen-1]
+    ... and associated data ad[0],ad[1],...,ad[adlen-1]
+    ... and nonce npub[0],npub[1],..
+    ... and secret key k[0],k[1],...
+    ... the implementation shall not use nsec
+    ...
+    ... return 0;
+    */
+
+    (void)nsec;
+
+    crypto_aead_encrypt_asm(c, m, mlen, ad, adlen, npub, k);
+
+    *clen = mlen + CRYPTO_ABYTES;
+    return 0;
+}
+
+
+
+int crypto_aead_decrypt(
+    unsigned char *m, unsigned long long *mlen,
+    unsigned char *nsec,
+    const unsigned char *c, unsigned long long clen,
+    const unsigned char *ad, unsigned long long adlen,
+    const unsigned char *npub,
+    const unsigned char *k
+    )
+{
+    /*
+    ...
+    ... the code for the AEAD implementation goes here,
+    ... generating a plaintext m[0],m[1],...,m[*mlen-1]
+    ... and secret message number nsec[0],nsec[1],...
+    ... from a ciphertext c[0],c[1],...,c[clen-1]
+    ... and associated data ad[0],ad[1],...,ad[adlen-1]
+    ... and nonce number npub[0],npub[1],...
+    ... and secret key k[0],k[1],...
+    ...
+    ... return 0;
+    */
+    unsigned long long    mlen_;
+    char tag_is_match;
+
+    (void)nsec;
+    if (clen < CRYPTO_ABYTES) {
+        return -1;
+    }
+    mlen_ = clen - CRYPTO_ABYTES;
+
+    tag_is_match = crypto_aead_decrypt_asm(m, c, mlen_, ad, adlen, npub, k);
+
+    if (tag_is_match != 0)
+    {
+        memset(m, 0, (size_t)mlen_);
+        return -1;
+    }
+    *mlen = mlen_;
+    return 0;
+}
\ No newline at end of file

photon-beetle/Implementations/crypto_hash/photonbeetlehash256rate32v1/avr8_speed/api.h

+#define CRYPTO_BYTES 32
\ No newline at end of file

photon-beetle/Implementations/crypto_hash/photonbeetlehash256rate32v1/avr8_speed/assist.h

+;
+; **********************************************
+; * PHOTON-Beetle                              *
+; * Authenticated Encryption and Hash Family   *
+; *                                            *
+; * Assembly implementation for 8-bit AVR CPU  *
+; * Version 1.0 2020 by PHOTON-Beetle Team     *
+; **********************************************
+;
+;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;
+; Bitslice
+;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;
+.MACRO Reorder_8_bits i0, i1, i2, i3, i4
+    ror \i0
+    ror \i1
+    ror \i0
+    ror \i2
+    ror \i0
+    ror \i3
+    ror \i0
+    ror \i4 
+    ror \i0
+    ror \i1
+    ror \i0
+    ror \i2
+    ror \i0
+    ror \i3
+    ror \i0
+    ror \i4 
+.ENDM
+
+.MACRO InvReorder_8_bits i0, i1, i2, i3, i4
+    ror \i1
+    ror \i0
+    ror \i2
+    ror \i0
+    ror \i3
+    ror \i0
+    ror \i4 
+    ror \i0
+    ror \i1
+    ror \i0
+    ror \i2
+    ror \i0
+    ror \i3
+    ror \i0
+    ror \i4 
+    ror \i0
+.ENDM
+
+; require XH:XL be the address of the input
+Load_Reorder_32_bits:
+    ldi cnt1, 4
+reorder_8_bits_loop:
+    ld rmp, X+
+    Reorder_8_bits rmp, x0, x1, x2, x3
+    dec cnt1
+    brne reorder_8_bits_loop
+ret
+
+; require YH:YL be the address of the output
+invReorder_Store_32_bits:
+    ldi cnt1, 4
+invreorder_8_bits_loop:
+    InvReorder_8_bits rmp, x0, x1, x2, x3
+    st Y+, rmp
+    dec cnt1
+    brne invreorder_8_bits_loop
+ret
+
+; require XH:XL be the address of the input
+; require YH:YL be the address of the output
+Load_Reorder_Store_128_bits:
+    ldi cnt0, 4
+reorder_32_bits_loop:
+    rcall Load_Reorder_32_bits
+    st Y+, x0
+    st Y+, x1
+    st Y+, x2
+    st Y+, x3
+    dec cnt0
+    brne reorder_32_bits_loop
+ret
+
+; require XH:XL be the address of the input
+; require YH:YL be the address of the output
+Load_invReorder_Store_128_bits:
+    ldi cnt0, 4
+invreorder_32_bits_loop:
+    ld x0, X+
+    ld x1, X+
+    ld x2, X+
+    ld x3, X+
+    rcall invReorder_Store_32_bits
+    dec cnt0
+    brne invreorder_32_bits_loop
+ret
+
+.macro PUSH_ALL
+push    r2
+push    r3
+push    r4
+push    r5
+push    r6
+push    r7
+push    r8
+push    r9
+push    r10
+push    r11
+push    r12
+push    r13
+push    r14
+push    r15
+push    r16
+push    r17
+push    r28
+push    r29
+.endm
+
+.macro POP_ALL
+pop    r29
+pop    r28
+pop    r17
+pop    r16
+pop    r15
+pop    r14
+pop    r13
+pop    r12
+pop    r11
+pop    r10
+pop    r9
+pop    r8
+pop    r7
+pop    r6
+pop    r5
+pop    r4
+pop    r3
+pop    r2
+clr    r1
+.endm

photon-beetle/Implementations/crypto_hash/photonbeetlehash256rate32v1/avr8_speed/crypto_hash.h

+#ifdef __cplusplus
+extern "C" {
+#endif
+
+int crypto_hash(
+	unsigned char *out,
+	const unsigned char *in,
+	unsigned long long inlen
+	);
+
+#ifdef __cplusplus
+}
+#endif
\ No newline at end of file

photon-beetle/Implementations/crypto_hash/photonbeetlehash256rate32v1/avr8_speed/hash.c

+#include <avr/io.h>
+#include <avr/sfr_defs.h>
+#include <stdlib.h>
+#include <string.h>
+#include "api.h"
+#include "crypto_hash.h"
+
+extern void crypto_hash_asm(
+    unsigned char *out,
+    const unsigned char *in,
+    unsigned char inlen
+    );
+
+int crypto_hash(
+	unsigned char *out,
+	const unsigned char *in,
+	unsigned long long inlen
+)
+{
+	/*
+	...
+	... the code for the hash function implementation goes here
+	... generating a hash value out[0],out[1],...,out[CRYPTO_BYTES-1]
+	... from a message in[0],in[1],...,in[in-1] 
+	...
+	... return 0;
+	*/
+
+    crypto_hash_asm(out, in, inlen);
+
+	return 0;
+}
\ No newline at end of file