Add support for XChaCha20 and XChaCha20-Poly1305

Mbed-TLS / mbedtls

An open source, portable, easy to use, readable and flexible TLS library, and reference implementation of the PSA Cryptography API. Releases are on a varying cadence, typically around 3 - 6 months between releases.

https://www.trustedfirmware.org/projects/mbed-tls/

Other

5.49k stars 2.59k forks source link

Add support for XChaCha20 and XChaCha20-Poly1305 #6557

Open polhenarejos opened 1 year ago

polhenarejos commented 1 year ago

Suggested enhancement

Add support for extended versions of ChaCha20 and ChaCha20-Poly1305.

I submitted a PR with it #6556

Justification

It is well known the potential issues ChaCha20 may show due to short nonce (12 bytes). eXtended ChaCha20 (XChaCha20) aims at solving it by doubling the nonce and introducing minor changes to ChaCha20.

Related with #3381

gilles-peskine-arm commented 1 year ago

Note that for a complete implementation, we'll need:

a self-test
a cipher interface
a PSA interface (first step being to specify it)