Currently, only chacha with a 64-bit nonce is available through the API. Would there be interest in adding the 96-bit nonce variant which is popular in some RFCs?
I believe it could be achieved either by just modifying the shared-initialize method of chacha (this would be a minor breaking change) or by defining a new cipher like chacha/rfc.
Example:
Currently, only chacha with a 64-bit nonce is available through the API. Would there be interest in adding the 96-bit nonce variant which is popular in some RFCs? I believe it could be achieved either by just modifying the shared-initialize method of chacha (this would be a minor breaking change) or by defining a new cipher like chacha/rfc. Example: