Skip to content

Commit c9d6f8b

Browse files
jedisct1jedisct1
authored
Remove parallel variants of AEGIS-MAC (#22146)
The construction is likely to change before standardization
1 parent 6188cb8 commit c9d6f8b

File tree

3 files changed

+0
-49
lines changed

3 files changed

+0
-49
lines changed

lib/std/crypto.zig

Lines changed: 0 additions & 11 deletions
Original file line numberDiff line numberDiff line change
@@ -58,20 +58,9 @@ pub const auth = struct {
5858
pub const siphash = @import("crypto/siphash.zig");
5959
pub const aegis = struct {
6060
const variants = @import("crypto/aegis.zig");
61-
pub const Aegis128X4Mac = variants.Aegis128X4Mac;
62-
pub const Aegis128X2Mac = variants.Aegis128X2Mac;
6361
pub const Aegis128LMac = variants.Aegis128LMac;
64-
65-
pub const Aegis256X4Mac = variants.Aegis256X4Mac;
66-
pub const Aegis256X2Mac = variants.Aegis256X2Mac;
6762
pub const Aegis256Mac = variants.Aegis256Mac;
68-
69-
pub const Aegis128X4Mac_128 = variants.Aegis128X4Mac_128;
70-
pub const Aegis128X2Mac_128 = variants.Aegis128X2Mac_128;
7163
pub const Aegis128LMac_128 = variants.Aegis128LMac_128;
72-
73-
pub const Aegis256X4Mac_128 = variants.Aegis256X4Mac_128;
74-
pub const Aegis256X2Mac_128 = variants.Aegis256X2Mac_128;
7564
pub const Aegis256Mac_128 = variants.Aegis256Mac_128;
7665
};
7766
pub const cmac = @import("crypto/cmac.zig");

lib/std/crypto/aegis.zig

Lines changed: 0 additions & 34 deletions
Original file line numberDiff line numberDiff line change
@@ -562,28 +562,6 @@ pub const Aegis128X2Mac = AegisMac(Aegis128X2_256);
562562
/// - It has a large security margin against internal collisions.
563563
pub const Aegis128LMac = AegisMac(Aegis128L_256);
564564

565-
/// The `Aegis256X4Mac` message authentication function has a 256-bit key size,
566-
/// and outputs 256 bit tags. Unless theoretical multi-target attacks are a
567-
/// concern, the AEGIS-128L variant should be preferred.
568-
/// AEGIS' large state, non-linearity and non-invertibility provides the
569-
/// following properties:
570-
/// - 256 bit security against forgery.
571-
/// - Recovering the secret key from the state would require ~2^256 attempts,
572-
/// which is infeasible for any practical adversary.
573-
/// - It has a large security margin against internal collisions.
574-
pub const Aegis256X4Mac = AegisMac(Aegis256X4_256);
575-
576-
/// The `Aegis256X2Mac` message authentication function has a 256-bit key size,
577-
/// and outputs 256 bit tags. Unless theoretical multi-target attacks are a
578-
/// concern, the AEGIS-128L variant should be preferred.
579-
/// AEGIS' large state, non-linearity and non-invertibility provides the
580-
/// following properties:
581-
/// - 256 bit security against forgery.
582-
/// - Recovering the secret key from the state would require ~2^256 attempts,
583-
/// which is infeasible for any practical adversary.
584-
/// - It has a large security margin against internal collisions.
585-
pub const Aegis256X2Mac = AegisMac(Aegis256X2_256);
586-
587565
/// The `Aegis256Mac` message authentication function has a 256-bit key size,
588566
/// and outputs 256 bit tags. Unless theoretical multi-target attacks are a
589567
/// concern, the AEGIS-128L variant should be preferred.
@@ -595,21 +573,9 @@ pub const Aegis256X2Mac = AegisMac(Aegis256X2_256);
595573
/// - It has a large security margin against internal collisions.
596574
pub const Aegis256Mac = AegisMac(Aegis256_256);
597575

598-
/// AEGIS-128X4 MAC with 128-bit tags
599-
pub const Aegis128X4Mac_128 = AegisMac(Aegis128X4);
600-
601-
/// AEGIS-128X2 MAC with 128-bit tags
602-
pub const Aegis128X2Mac_128 = AegisMac(Aegis128X2);
603-
604576
/// AEGIS-128L MAC with 128-bit tags
605577
pub const Aegis128LMac_128 = AegisMac(Aegis128L);
606578

607-
/// AEGIS-256X4 MAC with 128-bit tags
608-
pub const Aegis256X4Mac_128 = AegisMac(Aegis256X4);
609-
610-
/// AEGIS-256X2 MAC with 128-bit tags
611-
pub const Aegis256X2Mac_128 = AegisMac(Aegis256X2);
612-
613579
/// AEGIS-256 MAC with 128-bit tags
614580
pub const Aegis256Mac_128 = AegisMac(Aegis256);
615581

lib/std/crypto/benchmark.zig

Lines changed: 0 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -72,10 +72,6 @@ const macs = [_]Crypto{
7272
Crypto{ .ty = crypto.auth.siphash.SipHash64(1, 3), .name = "siphash-1-3" },
7373
Crypto{ .ty = crypto.auth.siphash.SipHash128(2, 4), .name = "siphash128-2-4" },
7474
Crypto{ .ty = crypto.auth.siphash.SipHash128(1, 3), .name = "siphash128-1-3" },
75-
Crypto{ .ty = crypto.auth.aegis.Aegis128X4Mac, .name = "aegis-128x4 mac" },
76-
Crypto{ .ty = crypto.auth.aegis.Aegis256X4Mac, .name = "aegis-256x4 mac" },
77-
Crypto{ .ty = crypto.auth.aegis.Aegis128X2Mac, .name = "aegis-128x2 mac" },
78-
Crypto{ .ty = crypto.auth.aegis.Aegis256X2Mac, .name = "aegis-256x2 mac" },
7975
Crypto{ .ty = crypto.auth.aegis.Aegis128LMac, .name = "aegis-128l mac" },
8076
Crypto{ .ty = crypto.auth.aegis.Aegis256Mac, .name = "aegis-256 mac" },
8177
Crypto{ .ty = crypto.auth.cmac.CmacAes128, .name = "aes-cmac" },

0 commit comments

Comments
 (0)