threefish

package
v0.0.0-...-642df0c Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Jan 14, 2024 License: BSD-3-Clause, ISC Imports: 3 Imported by: 0

README

go-threefish

Tests GoDoc Go Report Card License

Threefish is a tweakable block cipher that was developed as part of the Skein hash function as a submission to the NIST hash function competition. Threefish supports block sizes of 256, 512, and 1024 bits.

The full Threefish specification is available in the footnotes^1.

Test vectors were extracted from the latest reference implementation^2.

Encryption and decryption loops have been unrolled to contain eight rounds in each iteration. This allows rotation constants to be embedded in the code without being repeated. This practice is described in detail in the paper^1 which also provides detailed performance information.

Installation

To install as a dependency in a go project:

go get -U github.com/schultz-is/go-threefish

Usage

The cipher implementations in this package fulfill the crypto/cipher cipher.Block interface. Instances returned by this library can be used with any block ciphers modes that support 256, 512, or 1024-bit block sizes.

package main

import (
	"crypto/cipher"
	"crypto/rand"
	"fmt"

	"github.com/schultz-is/go-threefish"
)

func main() {
	message := make([]byte, 128)
	copy(message, []byte("secret message"))

	// Assign a key. Generally this is derived from a known secret value. Often
	// a passphrase is derived using a key derivation function such as PBKDF2.
	key := make([]byte, 128)
	_, err := rand.Read(key)
	if err != nil {
		panic(err)
	}

	// Assign a tweak value. This allows customization of the block cipher as in
	// the UBI block chaining mode. Support for the tweak value is not available
	// in the block ciphers modes supported by the standard library.
	tweak := make([]byte, 16)
	_, err = rand.Read(tweak)
	if err != nil {
		panic(err)
	}

	// Instantiate and initialize a block cipher.
	block, err := threefish.New1024(key, tweak)
	if err != nil {
		panic(err)
	}

	// When using CBC mode, the IV needs to be unique but does not need to be
	// secure. For this reason, it can be prepended to the ciphertext.
	ciphertext := make([]byte, block.BlockSize()+len(message))
	iv := ciphertext[:block.BlockSize()]
	_, err = rand.Read(iv)
	if err != nil {
		panic(err)
	}

	mode := cipher.NewCBCEncrypter(block, iv)
	mode.CryptBlocks(ciphertext[block.BlockSize():], message)

	fmt.Printf("%x\n", ciphertext)
}

Testing

Unit tests can be run and test coverage can be viewed via the provided Makefile.

make test
make cover

Benchmarking

Benchmarks can be run and CPU and memory profiles can be generated via the provided Makefile.

make benchmark
go tool pprof cpu.prof
go tool pprof mem.prof

Performance

2019 MacBook Pro 2.3GHz Intel i9
name                      time/op     speed
Threefish256/encrypt-16   124ns ± 0%  259MB/s ± 0%
Threefish256/decrypt-16   156ns ± 0%  206MB/s ± 0%
Threefish512/encrypt-16   338ns ± 0%  189MB/s ± 0%
Threefish512/decrypt-16   310ns ± 0%  206MB/s ± 0%
Threefish1024/encrypt-16  804ns ± 0%  159MB/s ± 0%
Threefish1024/decrypt-16  778ns ± 0%  165MB/s ± 0%

Documentation

Overview

Package threefish implements the Threefish tweakable block cipher.

Threefish is a block cipher that was developed as part of the Skein hash function as a submission to the NIST hash function competition. Threefish supports block sizes of 256, 512, and 1024 bits.

For the full Threefish specification, see [1].

Test vectors were extracted from the latest reference implementation [2].

Encryption and decryption loops have been unrolled to contain eight rounds in each iteration. This allows rotation constants to be embedded in the code without being repeated. This practice is described in detail in the paper [1] which also provides detailed performance information.

[1] http://www.skein-hash.info/sites/default/files/skein1.3.pdf [2] http://www.skein-hash.info/sites/default/files/NIST_CD_102610.zip

Index

Constants

This section is empty.

Variables

This section is empty.

Functions

func New1024 

func New1024(key, tweak []byte) (cipher.Block, error)

New1024 creates a new Threefish cipher with a block size of 1024 bits. The key argument must be 64 bytes and the tweak argument must be 16 bytes.

func New256 

func New256(key, tweak []byte) (cipher.Block, error)

New256 creates a new Threefish cipher with a block size of 256 bits. The key argument must be 32 bytes and the tweak argument must be 16 bytes.

func New512 

func New512(key, tweak []byte) (cipher.Block, error)

New512 creates a new Threefish cipher with a block size of 512 bits. The key argument must be 64 bytes and the tweak argument must be 16 bytes.

Types

type KeySizeError 

type KeySizeError int

A KeySizeError is returned when the provided key isn't the correct size.

func (KeySizeError) Error 

func (e KeySizeError) Error() string

Error describes a KeySizeError.

type TweakSizeError 

type TweakSizeError struct{}

A TweakSizeError is returned when the provided tweak isn't the correct size.

func (TweakSizeError) Error 

func (e TweakSizeError) Error() string

Error describes a TweakSizeError.

Source Files

View all Source files

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.