| Portability | portable |
|---|---|
| Stability | beta |
| Maintainer | Thomas.DuBuisson@gmail.com |
| Safe Haskell | None |
Crypto.Modes
Contents
Description
Authors: Thomas DuBuisson
Generic mode implementations useable by any correct BlockCipher
instance Be aware there are no tests for CFB mode yet. See
Crypto.
- getIV :: (BlockCipher k, CryptoRandomGen g) => g -> Either GenError (IV k, g)
- getIVIO :: BlockCipher k => IO (IV k)
- zeroIV :: BlockCipher k => IV k
- dblIV :: BlockCipher k => IV k -> IV k
- ecb :: BlockCipher k => k -> ByteString -> ByteString
- unEcb :: BlockCipher k => k -> ByteString -> ByteString
- cbc :: BlockCipher k => k -> IV k -> ByteString -> (ByteString, IV k)
- unCbc :: BlockCipher k => k -> IV k -> ByteString -> (ByteString, IV k)
- cfb :: BlockCipher k => k -> IV k -> ByteString -> (ByteString, IV k)
- unCfb :: BlockCipher k => k -> IV k -> ByteString -> (ByteString, IV k)
- ofb :: BlockCipher k => k -> IV k -> ByteString -> (ByteString, IV k)
- unOfb :: BlockCipher k => k -> IV k -> ByteString -> (ByteString, IV k)
- ctr :: BlockCipher k => (IV k -> IV k) -> k -> IV k -> ByteString -> (ByteString, IV k)
- unCtr :: BlockCipher k => (IV k -> IV k) -> k -> IV k -> ByteString -> (ByteString, IV k)
- siv :: BlockCipher k => k -> k -> [ByteString] -> ByteString -> Maybe ByteString
- unSiv :: BlockCipher k => k -> k -> [ByteString] -> ByteString -> Maybe ByteString
- siv' :: BlockCipher k => k -> k -> [ByteString] -> ByteString -> Maybe ByteString
- unSiv' :: BlockCipher k => k -> k -> [ByteString] -> ByteString -> Maybe ByteString
- cbcMac' :: BlockCipher k => k -> ByteString -> ByteString
- cbcMac :: BlockCipher k => k -> ByteString -> ByteString
- cMac :: BlockCipher k => k -> ByteString -> ByteString
- cMac' :: BlockCipher k => k -> ByteString -> ByteString
Initialization Vector Type, Modifiers (for all ciphers, all modes that use IVs)
getIV :: (BlockCipher k, CryptoRandomGen g) => g -> Either GenError (IV k, g)Source
Obtain an IV using the provided CryptoRandomGenerator.
zeroIV :: BlockCipher k => IV kSource
Obtain an IV made only of zeroes
dblIV :: BlockCipher k => IV k -> IV kSource
Perform doubling as defined by the CMAC and SIV papers
Blockcipher modes for lazy bytestrings. Versions for strict bytestrings are in Classes.
ecb :: BlockCipher k => k -> ByteString -> ByteStringSource
Cook book mode - not really a mode at all. If you don't know what you're doing, don't use this mode^H^H^H^H library.
unEcb :: BlockCipher k => k -> ByteString -> ByteStringSource
ECB decrypt, complementary to ecb.
cbc :: BlockCipher k => k -> IV k -> ByteString -> (ByteString, IV k)Source
Cipher block chaining encryption for lazy bytestrings
unCbc :: BlockCipher k => k -> IV k -> ByteString -> (ByteString, IV k)Source
Cipher block chaining decryption for lazy bytestrings
cfb :: BlockCipher k => k -> IV k -> ByteString -> (ByteString, IV k)Source
Ciphertext feed-back encryption mode for lazy bytestrings (with s == blockSize)
unCfb :: BlockCipher k => k -> IV k -> ByteString -> (ByteString, IV k)Source
Ciphertext feed-back decryption mode for lazy bytestrings (with s == blockSize)
ofb :: BlockCipher k => k -> IV k -> ByteString -> (ByteString, IV k)Source
Output feedback mode for lazy bytestrings
unOfb :: BlockCipher k => k -> IV k -> ByteString -> (ByteString, IV k)Source
Output feedback mode for lazy bytestrings
ctr :: BlockCipher k => (IV k -> IV k) -> k -> IV k -> ByteString -> (ByteString, IV k)Source
Counter mode for lazy bytestrings
unCtr :: BlockCipher k => (IV k -> IV k) -> k -> IV k -> ByteString -> (ByteString, IV k)Source
Counter mode for lazy bytestrings
siv :: BlockCipher k => k -> k -> [ByteString] -> ByteString -> Maybe ByteStringSource
SIV (Synthetic IV) mode for lazy bytestrings. First argument is the optional list of bytestrings to be authenticated but not encrypted As required by the specification this algorithm may return nothing when certain constraints aren't met.
unSiv :: BlockCipher k => k -> k -> [ByteString] -> ByteString -> Maybe ByteStringSource
SIV (Synthetic IV) for lazy bytestrings. First argument is the optional list of bytestrings to be authenticated but not encrypted. As required by the specification this algorithm may return nothing when authentication fails.
siv' :: BlockCipher k => k -> k -> [ByteString] -> ByteString -> Maybe ByteStringSource
SIV (Synthetic IV) mode for strict bytestrings. First argument is the optional list of bytestrings to be authenticated but not encrypted. As required by the specification this algorithm may return nothing when certain constraints aren't met.
unSiv' :: BlockCipher k => k -> k -> [ByteString] -> ByteString -> Maybe ByteStringSource
SIV (Synthetic IV) for strict bytestrings First argument is the optional list of bytestrings to be authenticated but not encrypted As required by the specification this algorithm may return nothing when authentication fails.
Authentication modes
cbcMac' :: BlockCipher k => k -> ByteString -> ByteStringSource
Cipher block chaining message authentication
cbcMac :: BlockCipher k => k -> ByteString -> ByteStringSource
Cipher block chaining message authentication
cMac :: BlockCipher k => k -> ByteString -> ByteStringSource
Obtain the cmac for lazy bytestrings
cMac' :: BlockCipher k => k -> ByteString -> ByteStringSource
Obtain the cmac for strict bytestrings