chacha20poly1305

my $bits1="THIRTY_TWO_BIT ";

my $bits2="SIXTY_FOUR_BIT ";

my $x86_asm="x86cpuid.o:bn-586.o co-586.o x86-mont.o x86-gf2m.o:des-586.o crypt586.o:aes-586.o vpaes-x86.o aesni-x86.o:bf-586.o:md5-586.o:sha1-586.o sha256-586.o sha512-586.o:cast-586.o:rc4-586.o:rmd-586.o:rc5-586.o:wp_block.o wp-mmx.o:cmll-x86.o:ghash-x86.o:";

my $x86_asm="x86cpuid.o:bn-586.o co-586.o x86-mont.o x86-gf2m.o:des-586.o crypt586.o:aes-586.o vpaes-x86.o aesni-x86.o:bf-586.o:md5-586.o:sha1-586.o sha256-586.o sha512-586.o:cast-586.o:rc4-586.o:rmd-586.o:rc5-586.o:wp_block.o wp-mmx.o:cmll-x86.o:ghash-x86.o:::";

my $x86_elf_asm="$x86_asm:elf";

my $x86_64_asm="x86_64cpuid.o:x86_64-gcc.o x86_64-mont.o x86_64-mont5.o x86_64-gf2m.o rsaz_exp.o rsaz-x86_64.o rsaz-avx2.o::aes-x86_64.o vpaes-x86_64.o bsaes-x86_64.o aesni-x86_64.o aesni-sha1-x86_64.o aesni-sha256-x86_64.o::md5-x86_64.o:sha1-x86_64.o sha256-x86_64.o sha512-x86_64.o::rc4-x86_64.o rc4-md5-x86_64.o:::wp-x86_64.o:cmll-x86_64.o cmll_misc.o:ghash-x86_64.o aesni-gcm-x86_64.o:";

my $ia64_asm="ia64cpuid.o:bn-ia64.o ia64-mont.o::aes_core.o aes_cbc.o aes-ia64.o::md5-ia64.o:sha1-ia64.o sha256-ia64.o sha512-ia64.o::rc4-ia64.o rc4_skey.o:::::ghash-ia64.o::void";

my $sparcv9_asm="sparcv9cap.o sparccpuid.o:bn-sparcv9.o sparcv9-mont.o sparcv9a-mont.o vis3-mont.o sparct4-mont.o sparcv9-gf2m.o:des_enc-sparc.o fcrypt_b.o dest4-sparcv9.o:aes_core.o aes_cbc.o aes-sparcv9.o aest4-sparcv9.o::md5-sparcv9.o:sha1-sparcv9.o sha256-sparcv9.o sha512-sparcv9.o::::::camellia.o cmll_misc.o cmll_cbc.o cmllt4-sparcv9.o:ghash-sparcv9.o::void";

my $sparcv8_asm=":sparcv8.o:des_enc-sparc.o fcrypt_b.o:::::::::::::void";

my $alpha_asm="alphacpuid.o:bn_asm.o alpha-mont.o:::::sha1-alpha.o:::::::ghash-alpha.o::void";

my $mips64_asm=":bn-mips.o mips-mont.o::aes_cbc.o aes-mips.o:::sha1-mips.o sha256-mips.o sha512-mips.o::::::::";

my $x86_64_asm="x86_64cpuid.o:x86_64-gcc.o x86_64-mont.o x86_64-mont5.o x86_64-gf2m.o rsaz_exp.o rsaz-x86_64.o rsaz-avx2.o::aes-x86_64.o vpaes-x86_64.o bsaes-x86_64.o aesni-x86_64.o aesni-sha1-x86_64.o aesni-sha256-x86_64.o::md5-x86_64.o:sha1-x86_64.o sha256-x86_64.o sha512-x86_64.o::rc4-x86_64.o rc4-md5-x86_64.o:::wp-x86_64.o:cmll-x86_64.o cmll_misc.o:ghash-x86_64.o aesni-gcm-x86_64.o::chacha_vec.o:poly1305_vec.o";

my $ia64_asm="ia64cpuid.o:bn-ia64.o ia64-mont.o::aes_core.o aes_cbc.o aes-ia64.o::md5-ia64.o:sha1-ia64.o sha256-ia64.o sha512-ia64.o::rc4-ia64.o rc4_skey.o:::::ghash-ia64.o::::void";

my $sparcv9_asm="sparcv9cap.o sparccpuid.o:bn-sparcv9.o sparcv9-mont.o sparcv9a-mont.o vis3-mont.o sparct4-mont.o sparcv9-gf2m.o:des_enc-sparc.o fcrypt_b.o dest4-sparcv9.o:aes_core.o aes_cbc.o aes-sparcv9.o aest4-sparcv9.o::md5-sparcv9.o:sha1-sparcv9.o sha256-sparcv9.o sha512-sparcv9.o::::::camellia.o cmll_misc.o cmll_cbc.o cmllt4-sparcv9.o:ghash-sparcv9.o::::void";

my $sparcv8_asm=":sparcv8.o:des_enc-sparc.o fcrypt_b.o:::::::::::::::void";

my $alpha_asm="alphacpuid.o:bn_asm.o alpha-mont.o:::::sha1-alpha.o:::::::ghash-alpha.o::::void";

my $mips64_asm=":bn-mips.o mips-mont.o::aes_cbc.o aes-mips.o:::sha1-mips.o sha256-mips.o sha512-mips.o::::::::::";

my $mips32_asm=$mips64_asm; $mips32_asm =~ s/\s*sha512\-mips\.o//;

my $s390x_asm="s390xcap.o s390xcpuid.o:bn-s390x.o s390x-mont.o s390x-gf2m.o::aes-s390x.o aes-ctr.o aes-xts.o:::sha1-s390x.o sha256-s390x.o sha512-s390x.o::rc4-s390x.o:::::ghash-s390x.o:";

my $armv4_asm="armcap.o armv4cpuid.o:bn_asm.o armv4-mont.o armv4-gf2m.o::aes_cbc.o aes-armv4.o:::sha1-armv4-large.o sha256-armv4.o sha512-armv4.o:::::::ghash-armv4.o::void";

my $parisc11_asm="pariscid.o:bn_asm.o parisc-mont.o::aes_core.o aes_cbc.o aes-parisc.o:::sha1-parisc.o sha256-parisc.o sha512-parisc.o::rc4-parisc.o:::::ghash-parisc.o::32";

my $parisc20_asm="pariscid.o:pa-risc2W.o parisc-mont.o::aes_core.o aes_cbc.o aes-parisc.o:::sha1-parisc.o sha256-parisc.o sha512-parisc.o::rc4-parisc.o:::::ghash-parisc.o::64";

my $ppc32_asm="ppccpuid.o ppccap.o:bn-ppc.o ppc-mont.o ppc64-mont.o::aes_core.o aes_cbc.o aes-ppc.o:::sha1-ppc.o sha256-ppc.o::::::::";

my $ppc64_asm="ppccpuid.o ppccap.o:bn-ppc.o ppc-mont.o ppc64-mont.o::aes_core.o aes_cbc.o aes-ppc.o:::sha1-ppc.o sha256-ppc.o sha512-ppc.o::::::::";

my $no_asm=":::::::::::::::void";

my $s390x_asm="s390xcap.o s390xcpuid.o:bn-s390x.o s390x-mont.o s390x-gf2m.o::aes-s390x.o aes-ctr.o aes-xts.o:::sha1-s390x.o sha256-s390x.o sha512-s390x.o::rc4-s390x.o:::::ghash-s390x.o:::";

my $armv4_asm="armcap.o armv4cpuid.o:bn_asm.o armv4-mont.o armv4-gf2m.o::aes_cbc.o aes-armv4.o:::sha1-armv4-large.o sha256-armv4.o sha512-armv4.o:::::::ghash-armv4.o::chacha_vec.o::void";

my $parisc11_asm="pariscid.o:bn_asm.o parisc-mont.o::aes_core.o aes_cbc.o aes-parisc.o:::sha1-parisc.o sha256-parisc.o sha512-parisc.o::rc4-parisc.o:::::ghash-parisc.o::::32";

my $parisc20_asm="pariscid.o:pa-risc2W.o parisc-mont.o::aes_core.o aes_cbc.o aes-parisc.o:::sha1-parisc.o sha256-parisc.o sha512-parisc.o::rc4-parisc.o:::::ghash-parisc.o::::64";

my $ppc32_asm="ppccpuid.o ppccap.o:bn-ppc.o ppc-mont.o ppc64-mont.o::aes_core.o aes_cbc.o aes-ppc.o:::sha1-ppc.o sha256-ppc.o::::::::::";

my $ppc64_asm="ppccpuid.o ppccap.o:bn-ppc.o ppc-mont.o ppc64-mont.o::aes_core.o aes_cbc.o aes-ppc.o:::sha1-ppc.o sha256-ppc.o sha512-ppc.o::::::::::";

my $no_asm=":::::::::::::::::void";

# As for $BSDthreads. Idea is to maintain "collective" set of flags,

# which would cover all BSD flavors. -pthread applies to them all, 

my $idx_cmll_obj = $idx++;

my $idx_modes_obj = $idx++;

my $idx_engines_obj = $idx++;

my $idx_chacha_obj = $idx++;

my $idx_poly1305_obj = $idx++;

my $idx_perlasm_scheme = $idx++;

my $idx_dso_scheme = $idx++;

my $idx_shared_target = $idx++;

my $bf_enc	="bf_enc.o";

my $cast_enc="c_enc.o";

my $rc4_enc="rc4_enc.o rc4_skey.o";

my $chacha_enc="chacha_enc.o";

my $poly1305 ="poly1305.o";

my $rc5_enc="rc5_enc.o";

my $md5_obj="";

my $sha1_obj="";

print "IsMK1MF=$IsMK1MF\n";

my @fields = split(/\s*:\s*/,$table{$target} . ":" x 30 , -1);

my @fields = split(/\s*:\s*/,$table{$target} . ":" x 32 , -1);

my $cc = $fields[$idx_cc];

# Allow environment CC to override compiler...

if($ENV{CC}) {

my $ar = $ENV{'AR'} || "ar";

my $arflags = $fields[$idx_arflags];

my $multilib = $fields[$idx_multilib];

my $chacha_obj = $fields[$idx_chacha_obj];

my $poly1305_obj = $fields[$idx_poly1305_obj];

# if $prefix/lib$multilib is not an existing directory, then

# assume that it's not searched by linker automatically, in

$bf_obj=$bf_enc		unless ($bf_obj =~ /\.o$/);

$cast_obj=$cast_enc	unless ($cast_obj =~ /\.o$/);

$rc4_obj=$rc4_enc	unless ($rc4_obj =~ /\.o$/);

$chacha_obj=$chacha_enc	unless ($chacha_obj =~ /\.o$/);

$poly1305_obj=$poly1305	unless ($poly1305_obj =~ /\.o$/);

$rc5_obj=$rc5_enc	unless ($rc5_obj =~ /\.o$/);

if ($sha1_obj =~ /\.o$/)

	{

	s/^BF_ENC=.*$/BF_ENC= $bf_obj/;

	s/^CAST_ENC=.*$/CAST_ENC= $cast_obj/;

	s/^RC4_ENC=.*$/RC4_ENC= $rc4_obj/;

	s/^CHACHA_ENC=.*$/CHACHA_ENC= $chacha_obj/;

	s/^POLY1305=.*$/POLY1305= $poly1305_obj/;

	s/^RC5_ENC=.*$/RC5_ENC= $rc5_obj/;

	s/^MD5_ASM_OBJ=.*$/MD5_ASM_OBJ= $md5_obj/;

	s/^SHA1_ASM_OBJ=.*$/SHA1_ASM_OBJ= $sha1_obj/;

print "BF_ENC        =$bf_obj\n";

print "CAST_ENC      =$cast_obj\n";

print "RC4_ENC       =$rc4_obj\n";

print "CHACHA_ENC    =$chacha_obj\n";

print "POLY1305      =$poly1305_obj\n";

print "RC5_ENC       =$rc5_obj\n";

print "MD5_OBJ_ASM   =$md5_obj\n";

print "SHA1_OBJ_ASM  =$sha1_obj\n";

	(my $cc,my $cflags,my $unistd,my $thread_cflag,my $sys_id,my $lflags,

	my $bn_ops,my $cpuid_obj,my $bn_obj,my $des_obj,my $aes_obj, my $bf_obj,

	my $md5_obj,my $sha1_obj,my $cast_obj,my $rc4_obj,my $rmd160_obj,

	my $rc5_obj,my $wp_obj,my $cmll_obj,my $modes_obj, my $engines_obj,

	my $perlasm_scheme,my $dso_scheme,my $shared_target,my $shared_cflag,

	my $shared_ldflag,my $shared_extension,my $ranlib,my $arflags,my $multilib)=

	split(/\s*:\s*/,$table{$target} . ":" x 30 , -1);

	my $md5_obj,my $sha1_obj,my $cast_obj,my $rc4_obj,my $chacha_obj,

	my $poly1305_obj,my $rmd160_obj,my $rc5_obj,my $wp_obj,my $cmll_obj,

	my $modes_obj, my $engines_obj,my $perlasm_scheme,my $dso_scheme,

	my $shared_target,my $shared_cflag, my $shared_ldflag,

	my $shared_extension,my $ranlib,my $arflags,my $multilib)=

	split(/\s*:\s*/,$table{$target} . ":" x 32 , -1);

	print <<EOF

\$sha1_obj     = $sha1_obj

\$cast_obj     = $cast_obj

\$rc4_obj      = $rc4_obj

\$chacha_obj   = $chacha_obj

\$poly1305_obj = $poly1305_obj

\$rmd160_obj   = $rmd160_obj

\$rc5_obj      = $rc5_obj

\$wp_obj       = $wp_obj

	foreach $target (sort keys %table)

		{

		@fields = split(/\s*:\s*/,$table{$target} . ":" x 30 , -1);

		@fields = split(/\s*:\s*/,$table{$target} . ":" x 31 , -1);

		if ($fields[$idx_dso_scheme-1] =~ /^(beos|dl|dlfcn|win32|vms)$/)

			{

CAST_ENC= c_enc.o

RC4_ENC= rc4_enc.o

RC5_ENC= rc5_enc.o

CHACHA_ENC= chacha_enc.o

POLY1305= poly1305.o

MD5_ASM_OBJ= 

SHA1_ASM_OBJ= 

RMD160_ASM_OBJ= 

	bn ec rsa dsa ecdsa dh ecdh dso engine \

	buffer bio stack lhash rand err \

	evp asn1 pem x509 x509v3 conf txt_db pkcs7 pkcs12 comp ocsp ui krb5 \

	cms pqueue ts jpake srp store cmac

	cms pqueue ts jpake srp store cmac poly1305 chacha

# keep in mind that the above list is adjusted by ./Configure

# according to no-xxx arguments...

		WP_ASM_OBJ='$(WP_ASM_OBJ)'			\

		MODES_ASM_OBJ='$(MODES_ASM_OBJ)'		\

		ENGINES_ASM_OBJ='$(ENGINES_ASM_OBJ)'		\

		CHACHA_ENC='$(CHACHA_ENC)'			\

		POLY1305='$(POLY1305)'				\

		PERLASM_SCHEME='$(PERLASM_SCHEME)'		\

		FIPSLIBDIR='${FIPSLIBDIR}'			\

		FIPSDIR='${FIPSDIR}'				\

#endif

#undef BUFSIZE

#define BUFSIZE	((long)1024*8+1)

#define BUFSIZE	((long)1024*8+64)

int run=0;

static int mr=0;

static int do_multi(int multi);

#endif

#define ALGOR_NUM	30

#define ALGOR_NUM	33

#define SIZE_NUM	5

#define RSA_NUM		4

#define DSA_NUM		3

  "aes-128 cbc","aes-192 cbc","aes-256 cbc",

  "camellia-128 cbc","camellia-192 cbc","camellia-256 cbc",

  "evp","sha256","sha512","whirlpool",

  "aes-128 ige","aes-192 ige","aes-256 ige","ghash" };

  "aes-128 ige","aes-192 ige","aes-256 ige","ghash",

  "aes-128 gcm", "aes-256 gcm", "chacha20 poly1305",

};

static double results[ALGOR_NUM][SIZE_NUM];

static int lengths[SIZE_NUM]={16,64,256,1024,8*1024};

#ifndef OPENSSL_NO_RSA

#define D_IGE_192_AES   27

#define D_IGE_256_AES   28

#define D_GHASH		29

#define D_AES_128_GCM	30

#define D_AES_256_GCM	31

#define D_CHACHA20_POLY1305	32

	double d=0.0;

	long c[ALGOR_NUM][SIZE_NUM];

#define	R_DSA_512	0

			{

			doit[D_GHASH]=1;

			}

		else if (strcmp(*argv,"aes-128-gcm") == 0)

			{

			doit[D_AES_128_GCM]=1;

			}

		else if (strcmp(*argv,"aes-256-gcm") == 0)

			{

			doit[D_AES_256_GCM]=1;

			}

		else

#endif

#ifndef OPENSSL_NO_CAMELLIA

			}

		else

#endif

#if !defined(OPENSSL_NO_CHACHA) && !defined(OPENSSL_NO_POLY1305)

			if (strcmp(*argv,"chacha20-poly1305") == 0)

			{

			doit[D_CHACHA20_POLY1305]=1;

			}

		else

#endif

#ifndef OPENSSL_NO_RSA

			if (strcmp(*argv,"rsa") == 0)

			{

#endif

#ifndef OPENSSL_NO_AES

			BIO_printf(bio_err,"aes-128-cbc aes-192-cbc aes-256-cbc ");

			BIO_printf(bio_err,"aes-128-ige aes-192-ige aes-256-ige ");

			BIO_printf(bio_err,"aes-128-ige aes-192-ige aes-256-ige\n");

			BIO_printf(bio_err,"aes-128-gcm aes-256-gcm ");

#endif

#ifndef OPENSSL_NO_CAMELLIA

			BIO_printf(bio_err,"\n");

#endif

#ifndef OPENSSL_NO_RC4

			BIO_printf(bio_err,"rc4");

#endif

#if !defined(OPENSSL_NO_CHACHA) && !defined(OPENSSL_NO_POLY1305)

			BIO_printf(bio_err," chacha20-poly1305");

#endif

			BIO_printf(bio_err,"\n");

	c[D_IGE_192_AES][0]=count;

	c[D_IGE_256_AES][0]=count;

	c[D_GHASH][0]=count;

	c[D_AES_128_GCM][0]=count;

	c[D_CHACHA20_POLY1305][0]=count;

	for (i=1; i<SIZE_NUM; i++)

		{

		CRYPTO_gcm128_release(ctx);

		}

	if (doit[D_AES_128_GCM])

		{

		const EVP_AEAD *aead = EVP_aead_aes_128_gcm();

		static const unsigned char nonce[32] = {0};

		size_t nonce_len;

		EVP_AEAD_CTX ctx;

		EVP_AEAD_CTX_init(&ctx, aead, key32, EVP_AEAD_key_length(aead), EVP_AEAD_DEFAULT_TAG_LENGTH, NULL);

		nonce_len = EVP_AEAD_nonce_length(aead);

		for (j=0; j<SIZE_NUM; j++)

			{

			print_message(names[D_AES_128_GCM],c[D_AES_128_GCM][j],lengths[j]);

			Time_F(START);

			for (count=0,run=1; COND(c[D_AES_128_GCM][j]); count++)

				EVP_AEAD_CTX_seal(&ctx,buf, BUFSIZE, nonce, nonce_len, buf, lengths[j], NULL, 0);

			d=Time_F(STOP);

			print_result(D_AES_128_GCM,j,count,d);

			}

		EVP_AEAD_CTX_cleanup(&ctx);

		}

	if (doit[D_AES_256_GCM])

		{

		const EVP_AEAD *aead = EVP_aead_aes_256_gcm();

		static const unsigned char nonce[32] = {0};

		size_t nonce_len;

		EVP_AEAD_CTX ctx;

		EVP_AEAD_CTX_init(&ctx, aead, key32, EVP_AEAD_key_length(aead), EVP_AEAD_DEFAULT_TAG_LENGTH, NULL);

		nonce_len = EVP_AEAD_nonce_length(aead);

		for (j=0; j<SIZE_NUM; j++)

			{

			print_message(names[D_AES_256_GCM],c[D_AES_256_GCM][j],lengths[j]);

			Time_F(START);

			for (count=0,run=1; COND(c[D_AES_256_GCM][j]); count++)

				EVP_AEAD_CTX_seal(&ctx,buf, BUFSIZE, nonce, nonce_len, buf, lengths[j], NULL, 0);

			d=Time_F(STOP);

			print_result(D_AES_256_GCM,j,count,d);

			}

		EVP_AEAD_CTX_cleanup(&ctx);

		}

#endif

#if !defined(OPENSSL_NO_CHACHA) && !defined(OPENSSL_NO_POLY1305)

	if (doit[D_CHACHA20_POLY1305])

		{

		const EVP_AEAD *aead = EVP_aead_chacha20_poly1305();

		static const unsigned char nonce[32] = {0};

		size_t nonce_len;

		EVP_AEAD_CTX ctx;

		EVP_AEAD_CTX_init(&ctx, aead, key32, EVP_AEAD_key_length(aead), EVP_AEAD_DEFAULT_TAG_LENGTH, NULL);

		nonce_len = EVP_AEAD_nonce_length(aead);

		for (j=0; j<SIZE_NUM; j++)

			{

			print_message(names[D_CHACHA20_POLY1305],c[D_CHACHA20_POLY1305][j],lengths[j]);

			Time_F(START);

			for (count=0,run=1; COND(c[D_CHACHA20_POLY1305][j]); count++)

				EVP_AEAD_CTX_seal(&ctx,buf, BUFSIZE, nonce, nonce_len, buf, lengths[j], NULL, 0);

			d=Time_F(STOP);

			print_result(D_CHACHA20_POLY1305,j,count,d);

			}

		EVP_AEAD_CTX_cleanup(&ctx);

		}

#endif

#ifndef OPENSSL_NO_CAMELLIA

	if (doit[D_CBC_128_CML])

		{

#

# OpenSSL/crypto/chacha/Makefile

#

DIR=	chacha

TOP=	../..

CC=	cc

CPP=    $(CC) -E

INCLUDES=

CFLAG=-g

AR=		ar r

CFLAGS= $(INCLUDES) $(CFLAG)

ASFLAGS= $(INCLUDES) $(ASFLAG)

AFLAGS= $(ASFLAGS)

CHACHA_ENC=chacha_enc.o

GENERAL=Makefile

TEST=chachatest.o

APPS=

LIB=$(TOP)/libcrypto.a

LIBSRC=

LIBOBJ=$(CHACHA_ENC)

SRC= $(LIBSRC)

EXHEADER=chacha.h

HEADER=	$(EXHEADER)

ALL=    $(GENERAL) $(SRC) $(HEADER)

top:

	(cd ../..; $(MAKE) DIRS=crypto SDIRS=$(DIR) sub_all)

all:	lib

lib:	$(LIBOBJ)

	$(AR) $(LIB) $(LIBOBJ)

	$(RANLIB) $(LIB) || echo Never mind.

	@touch lib

files:

	$(PERL) $(TOP)/util/files.pl Makefile >> $(TOP)/MINFO

links:

	@$(PERL) $(TOP)/util/mklink.pl ../../include/openssl $(EXHEADER)

	@$(PERL) $(TOP)/util/mklink.pl ../../test $(TEST)

	@$(PERL) $(TOP)/util/mklink.pl ../../apps $(APPS)

install:

	@[ -n "$(INSTALLTOP)" ] # should be set by top Makefile...

	@headerlist="$(EXHEADER)"; for i in $$headerlist ; \

	do  \

	(cp $$i $(INSTALL_PREFIX)$(INSTALLTOP)/include/openssl/$$i; \

	chmod 644 $(INSTALL_PREFIX)$(INSTALLTOP)/include/openssl/$$i ); \

	done;

tags:

	ctags $(SRC)

tests:

lint:

	lint -DLINT $(INCLUDES) $(SRC)>fluff

depend:

	@[ -n "$(MAKEDEPEND)" ] # should be set by upper Makefile...

	$(MAKEDEPEND) -- $(CFLAG) $(INCLUDES) $(DEPFLAG) -- $(PROGS) $(LIBSRC)

dclean:

	$(PERL) -pe 'if (/^# DO NOT DELETE THIS LINE/) {print; exit(0);}' $(MAKEFILE) >Makefile.new

	mv -f Makefile.new $(MAKEFILE)

clean:

	rm -f *.o *.obj lib tags core .pure .nfs* *.old *.bak fluff

# DO NOT DELETE THIS LINE -- make depend depends on it.

/* ====================================================================

 * Copyright (c) 2011-2013 The OpenSSL Project.  All rights reserved.

 *

 * Redistribution and use in source and binary forms, with or without

 * modification, are permitted provided that the following conditions

 * are met:

 *

 * 1. Redistributions of source code must retain the above copyright

 *    notice, this list of conditions and the following disclaimer.

 *

 * 2. Redistributions in binary form must reproduce the above copyright

 *    notice, this list of conditions and the following disclaimer in

 *    the documentation and/or other materials provided with the

 *    distribution.

 *

 * 3. All advertising materials mentioning features or use of this

 *    software must display the following acknowledgment:

 *    "This product includes software developed by the OpenSSL Project

 *    for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)"

 *

 * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to

 *    endorse or promote products derived from this software without

 *    prior written permission. For written permission, please contact

 *    licensing@OpenSSL.org.

 *

 * 5. Products derived from this software may not be called "OpenSSL"

 *    nor may "OpenSSL" appear in their names without prior written

 *    permission of the OpenSSL Project.

 *

 * 6. Redistributions of any form whatsoever must retain the following

 *    acknowledgment:

 *    "This product includes software developed by the OpenSSL Project

 *    for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)"

 *

 * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY

 * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE

 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR

 * PURPOSE ARE DISCLAIMED.  IN NO EVENT SHALL THE OpenSSL PROJECT OR

 * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,

 * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT

 * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;

 * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)

 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,

 * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)

 * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED

 * OF THE POSSIBILITY OF SUCH DAMAGE.

 * ====================================================================

 */

#ifndef HEADER_CHACHA_H

#define HEADER_CHACHA_H

#include <openssl/opensslconf.h>

#if defined(OPENSSL_NO_CHACHA)

#error ChaCha support is disabled.

#endif

#include <stddef.h>

#ifdef  __cplusplus

extern "C" {

#endif

/* CRYPTO_chacha_20 encrypts |in_len| bytes from |in| with the given key and

 * nonce and writes the result to |out|, which may be equal to |in|. The

 * initial block counter is specified by |counter|. */

void CRYPTO_chacha_20(unsigned char *out,

		      const unsigned char *in, size_t in_len,

		      const unsigned char key[32],

		      const unsigned char nonce[8],

		      size_t counter);

#ifdef  __cplusplus

}

#endif

#endif