some cleanup

bloom · bloom · commit 691be6b5800d · 2025-08-13T16:19:30.000Z
diff --git a/Cargo.lock b/Cargo.lock
diff --git a/chacha12-blake3/Cargo.toml b/chacha12-blake3/Cargo.toml
@@ -34,4 +34,3 @@ zeroize = ["dep:zeroize", "blake3/zeroize"]
 
 [dev-dependencies]
 hex = "0.4"
-rand = "0.9"
diff --git a/chacha12/src/chacha_avx2.rs b/chacha12/src/chacha_avx2.rs
@@ -85,9 +85,11 @@ pub fn chacha_avx2<const ROUNDS: usize>(
         counter = counter.wrapping_add((input_blocks.len() as u64).div_ceil(64));
     }
 
-    let last_keystream_block_index = ((input.len() - 1) / 64) % SIMD_LANES;
-    let last_keystream_block_offset = last_keystream_block_index * 64;
-    last_keystream_block.copy_from_slice(&keystream[last_keystream_block_offset..last_keystream_block_offset + 64]);
+    if input.len() % 64 != 0 {
+        let last_keystream_block_index = ((input.len() - 1) / 64) % SIMD_LANES;
+        let last_keystream_block_offset = last_keystream_block_index * 64;
+        last_keystream_block.copy_from_slice(&keystream[last_keystream_block_offset..last_keystream_block_offset + 64]);
+    }
 
     return counter;
 }
diff --git a/chacha12/src/chacha_avx512.rs b/chacha12/src/chacha_avx512.rs
@@ -86,9 +86,11 @@ pub fn chacha_avx512<const ROUNDS: usize>(
         counter = counter.wrapping_add((input_blocks.len() as u64).div_ceil(64));
     }
 
-    let last_keystream_block_index = ((input.len() - 1) / 64) % SIMD_LANES;
-    let last_keystream_block_offset = last_keystream_block_index * 64;
-    last_keystream_block.copy_from_slice(&keystream[last_keystream_block_offset..last_keystream_block_offset + 64]);
+    if input.len() % 64 != 0 {
+        let last_keystream_block_index = ((input.len() - 1) / 64) % SIMD_LANES;
+        let last_keystream_block_offset = last_keystream_block_index * 64;
+        last_keystream_block.copy_from_slice(&keystream[last_keystream_block_offset..last_keystream_block_offset + 64]);
+    }
 
     return counter;
 }
diff --git a/chacha12/src/chacha_neon.rs b/chacha12/src/chacha_neon.rs
@@ -75,9 +75,11 @@ pub fn chacha_neon<const ROUNDS: usize>(
         counter = counter.wrapping_add((input_blocks.len() as u64).div_ceil(64));
     }
 
-    let last_keystream_block_index = ((input.len() - 1) / 64) % SIMD_LANES;
-    let last_keystream_block_offset = last_keystream_block_index * 64;
-    last_keystream_block.copy_from_slice(&keystream[last_keystream_block_offset..last_keystream_block_offset + 64]);
+    if input.len() % 64 != 0 {
+        let last_keystream_block_index = ((input.len() - 1) / 64) % SIMD_LANES;
+        let last_keystream_block_offset = last_keystream_block_index * 64;
+        last_keystream_block.copy_from_slice(&keystream[last_keystream_block_offset..last_keystream_block_offset + 64]);
+    }
 
     return counter;
 }
diff --git a/chacha12/src/chacha_wasm_simd128.rs b/chacha12/src/chacha_wasm_simd128.rs
@@ -67,9 +67,11 @@ pub fn chacha_wasm_simd128<const ROUNDS: usize>(
         counter = counter.wrapping_add((input_blocks.len() as u64).div_ceil(64));
     }
 
-    let last_keystream_block_index = ((input.len() - 1) / 64) % SIMD_LANES;
-    let last_keystream_block_offset = last_keystream_block_index * 64;
-    last_keystream_block.copy_from_slice(&keystream[last_keystream_block_offset..last_keystream_block_offset + 64]);
+    if input.len() % 64 != 0 {
+        let last_keystream_block_index = ((input.len() - 1) / 64) % SIMD_LANES;
+        let last_keystream_block_offset = last_keystream_block_index * 64;
+        last_keystream_block.copy_from_slice(&keystream[last_keystream_block_offset..last_keystream_block_offset + 64]);
+    }
 
     return counter;
 }
diff --git a/chacha12/src/lib.rs b/chacha12/src/lib.rs
@@ -36,6 +36,18 @@ const STATE_WORDS: usize = 16;
 pub struct ChaCha<const ROUNDS: usize> {
     state: [u32; STATE_WORDS],
     counter: u64,
+    /// ChaCha is a stream cipher that works with 64-byte blocks.
+    /// It means that
+    /// Thus calling multiple times `xor_keystream`:
+    /// xor_keystream(plaintext[0..3]), xor_keystream(plaintext[3..50]), xor_keystream(plaintext[50..150]);
+    /// Should be equal to calling it only once:
+    /// xor_keystream(plaintext[0..150]);
+    /// For that, we keep the last computed keystream block, as well as an index of where in the keystream
+    /// we were after completing the last call.
+    /// Then, when calling `xor_keystream` again, we first check if there is sone leftover form the last
+    /// keystream.
+    /// NOTE: the `last_keystream_block` is valid only if the previous call to `xor_keystream` had
+    /// an input.len() % 64 != 0
     last_keystream_block: [u8; 64],
     last_keystream_block_index: usize,
 }
@@ -404,8 +416,9 @@ Expected: {}",
             // thus:
             // cipher.xor_keystream(plaintext[0..10])
             // cipher.xor_keystream(plaintext[10..30])
+            // cipher.xor_keystream(plaintext[30..5])
             // should be equal to:
-            // cipher.xor_keystream(plaintext[0..30])
+            // cipher.xor_keystream(plaintext[0..35])
 
             let mut cipher = ChaCha::<20>::new(&test.key, &test.nonce);
             cipher.xor_keystream(&mut plaintext);

Original file line number	Diff line number	Diff line change
`@@ -34,4 +34,3 @@ zeroize = ["dep:zeroize", "blake3/zeroize"]`
`34`	`34`
`35`	`35`	`[dev-dependencies]`
`36`	`36`	`hex = "0.4"`
`37`		`-rand = "0.9"`
Original file line number	Diff line number	Diff line change
`@@ -85,9 +85,11 @@ pub fn chacha_avx2<const ROUNDS: usize>(`
`85`	`85`	`counter = counter.wrapping_add((input_blocks.len() as u64).div_ceil(64));`
`86`	`86`	`}`
`87`	`87`
`88`		`- let last_keystream_block_index = ((input.len() - 1) / 64) % SIMD_LANES;`
`89`		`- let last_keystream_block_offset = last_keystream_block_index * 64;`
`90`		`- last_keystream_block.copy_from_slice(&keystream[last_keystream_block_offset..last_keystream_block_offset + 64]);`
	`88`	`+ if input.len() % 64 != 0 {`
	`89`	`+ let last_keystream_block_index = ((input.len() - 1) / 64) % SIMD_LANES;`
	`90`	`+ let last_keystream_block_offset = last_keystream_block_index * 64;`
	`91`	`+ last_keystream_block.copy_from_slice(&keystream[last_keystream_block_offset..last_keystream_block_offset + 64]);`
	`92`	`+ }`
`91`	`93`
`92`	`94`	`return counter;`
`93`	`95`	`}`
Original file line number	Diff line number	Diff line change
`@@ -86,9 +86,11 @@ pub fn chacha_avx512<const ROUNDS: usize>(`
`86`	`86`	`counter = counter.wrapping_add((input_blocks.len() as u64).div_ceil(64));`
`87`	`87`	`}`
`88`	`88`
`89`		`- let last_keystream_block_index = ((input.len() - 1) / 64) % SIMD_LANES;`
`90`		`- let last_keystream_block_offset = last_keystream_block_index * 64;`
`91`		`- last_keystream_block.copy_from_slice(&keystream[last_keystream_block_offset..last_keystream_block_offset + 64]);`
	`89`	`+ if input.len() % 64 != 0 {`
	`90`	`+ let last_keystream_block_index = ((input.len() - 1) / 64) % SIMD_LANES;`
	`91`	`+ let last_keystream_block_offset = last_keystream_block_index * 64;`
	`92`	`+ last_keystream_block.copy_from_slice(&keystream[last_keystream_block_offset..last_keystream_block_offset + 64]);`
	`93`	`+ }`
`92`	`94`
`93`	`95`	`return counter;`
`94`	`96`	`}`
Original file line number	Diff line number	Diff line change
`@@ -75,9 +75,11 @@ pub fn chacha_neon<const ROUNDS: usize>(`
`75`	`75`	`counter = counter.wrapping_add((input_blocks.len() as u64).div_ceil(64));`
`76`	`76`	`}`
`77`	`77`
`78`		`- let last_keystream_block_index = ((input.len() - 1) / 64) % SIMD_LANES;`
`79`		`- let last_keystream_block_offset = last_keystream_block_index * 64;`
`80`		`- last_keystream_block.copy_from_slice(&keystream[last_keystream_block_offset..last_keystream_block_offset + 64]);`
	`78`	`+ if input.len() % 64 != 0 {`
	`79`	`+ let last_keystream_block_index = ((input.len() - 1) / 64) % SIMD_LANES;`
	`80`	`+ let last_keystream_block_offset = last_keystream_block_index * 64;`
	`81`	`+ last_keystream_block.copy_from_slice(&keystream[last_keystream_block_offset..last_keystream_block_offset + 64]);`
	`82`	`+ }`
`81`	`83`
`82`	`84`	`return counter;`
`83`	`85`	`}`
Original file line number	Diff line number	Diff line change
`@@ -67,9 +67,11 @@ pub fn chacha_wasm_simd128<const ROUNDS: usize>(`
`67`	`67`	`counter = counter.wrapping_add((input_blocks.len() as u64).div_ceil(64));`
`68`	`68`	`}`
`69`	`69`
`70`		`- let last_keystream_block_index = ((input.len() - 1) / 64) % SIMD_LANES;`
`71`		`- let last_keystream_block_offset = last_keystream_block_index * 64;`
`72`		`- last_keystream_block.copy_from_slice(&keystream[last_keystream_block_offset..last_keystream_block_offset + 64]);`
	`70`	`+ if input.len() % 64 != 0 {`
	`71`	`+ let last_keystream_block_index = ((input.len() - 1) / 64) % SIMD_LANES;`
	`72`	`+ let last_keystream_block_offset = last_keystream_block_index * 64;`
	`73`	`+ last_keystream_block.copy_from_slice(&keystream[last_keystream_block_offset..last_keystream_block_offset + 64]);`
	`74`	`+ }`
`73`	`75`
`74`	`76`	`return counter;`
`75`	`77`	`}`