package argon2

Import Path
	golang.org/x/crypto/argon2 (on go.dev)

Dependency Relation
	imports 5 packages, and imported by one package

Involved Source Files

	   #d argon2.go
		Package argon2 implements the key derivation function Argon2.
		Argon2 was selected as the winner of the Password Hashing Competition and can
		be used to derive cryptographic keys from passwords.

		For a detailed specification of Argon2 see [1].

		If you aren't sure which function you need, use Argon2id (IDKey) and
		the parameter recommendations for your scenario.

		# Argon2i

		Argon2i (implemented by Key) is the side-channel resistant version of Argon2.
		It uses data-independent memory access, which is preferred for password
		hashing and password-based key derivation. Argon2i requires more passes over
		memory than Argon2id to protect from trade-off attacks. The recommended
		parameters (taken from [2]) for non-interactive operations are time=3 and to
		use the maximum available memory.

		# Argon2id

		Argon2id (implemented by IDKey) is a hybrid version of Argon2 combining
		Argon2i and Argon2d. It uses data-independent memory access for the first
		half of the first iteration over the memory and data-dependent memory access
		for the rest. Argon2id is side-channel resistant and provides better brute-
		force cost savings due to time-memory tradeoffs than Argon2i. The recommended
		parameters for non-interactive operations (taken from [2]) are time=1 and to
		use the maximum available memory.

		[1] https://github.com/P-H-C/phc-winner-argon2/blob/master/argon2-specs.pdf
		[2] https://tools.ietf.org/html/draft-irtf-cfrg-argon2-03#section-9.3

	      blake2b.go
	      blamka_amd64.go
	      blamka_generic.go
	      blamka_amd64.s
Package-Level Type Names (only one, which is unexported)

	/* sort exporteds by: alphabet | popularity */
	/* one unexported ... *//* one unexported: */
	 type block ([...])

		As Outputs Of (at least one unexported)
			/* at least one unexported ... *//* at least one unexported: */
			func initBlocks(h0 *[72]byte, memory, threads uint32) []block
		As Inputs Of (at least 9, none are exported)
			/* 9+ unexporteds ... *//* 9+ unexporteds: */
			func blamkaSSE4(b *block)
			func extractKey(B []block, memory, threads, keyLen uint32) []byte
			func mixBlocksSSE2(out, a, b, c *block)
			func processBlock(out, in1, in2 *block)
			func processBlockGeneric(out, in1, in2 *block, xor bool)
			func processBlocks(B []block, time, memory, threads uint32, mode int)
			func processBlockSSE(out, in1, in2 *block, xor bool)
			func processBlockXOR(out, in1, in2 *block)
			func xorBlocksSSE2(out, a, b, c *block)


Package-Level Functions (total 19, in which 2 are exported)

	 func IDKey(password, salt []byte, time, memory uint32, threads uint8, keyLen uint32) []byte
		IDKey derives a key from the password, salt, and cost parameters using
		Argon2id returning a byte slice of length keyLen that can be used as
		cryptographic key. The CPU cost and parallelism degree must be greater than
		zero.

		For example, you can get a derived key for e.g. AES-256 (which needs a
		32-byte key) by doing:

			key := argon2.IDKey([]byte("some password"), salt, 1, 64*1024, 4, 32)

		The draft RFC recommends[2] time=1, and memory=64*1024 is a sensible number.
		If using that amount of memory (64 MB) is not possible in some contexts then
		the time parameter can be increased to compensate.

		The time parameter specifies the number of passes over the memory and the
		memory parameter specifies the size of the memory in KiB. For example
		memory=64*1024 sets the memory cost to ~64 MB. The number of threads can be
		adjusted to the numbers of available CPUs. The cost parameters should be
		increased as memory latency and CPU parallelism increases. Remember to get a
		good random salt.

	 func Key(password, salt []byte, time, memory uint32, threads uint8, keyLen uint32) []byte
		Key derives a key from the password, salt, and cost parameters using Argon2i
		returning a byte slice of length keyLen that can be used as cryptographic
		key. The CPU cost and parallelism degree must be greater than zero.

		For example, you can get a derived key for e.g. AES-256 (which needs a
		32-byte key) by doing:

			key := argon2.Key([]byte("some password"), salt, 3, 32*1024, 4, 32)

		The draft RFC recommends[2] time=3, and memory=32*1024 is a sensible number.
		If using that amount of memory (32 MB) is not possible in some contexts then
		the time parameter can be increased to compensate.

		The time parameter specifies the number of passes over the memory and the
		memory parameter specifies the size of the memory in KiB. For example
		memory=32*1024 sets the memory cost to ~32 MB. The number of threads can be
		adjusted to the number of available CPUs. The cost parameters should be
		increased as memory latency and CPU parallelism increases. Remember to get a
		good random salt.

	/* 17 unexporteds ... *//* 17 unexporteds: */
	 func blake2bHash(out []byte, in []byte)
		blake2bHash computes an arbitrary long hash value of in
		and writes the hash to out.

	 func blamkaGeneric(t00, t01, t02, t03, t04, t05, t06, t07, t08, t09, t10, t11, t12, t13, t14, t15 *uint64)
	 func blamkaSSE4(b *block)
	 func deriveKey(mode int, password, salt, secret, data []byte, time, memory uint32, threads uint8, keyLen uint32) []byte
	 func extractKey(B []block, memory, threads, keyLen uint32) []byte
	 func indexAlpha(rand uint64, lanes, segments, threads, n, slice, lane, index uint32) uint32
	 func init()
	 func initBlocks(h0 *[72]byte, memory, threads uint32) []block
	 func initHash(password, salt, key, data []byte, time, memory, threads, keyLen uint32, mode int) [72]byte
	 func mixBlocksSSE2(out, a, b, c *block)
	 func phi(rand, m, s uint64, lane, lanes uint32) uint32
	 func processBlock(out, in1, in2 *block)
	 func processBlockGeneric(out, in1, in2 *block, xor bool)
	 func processBlocks(B []block, time, memory, threads uint32, mode int)
	 func processBlockSSE(out, in1, in2 *block, xor bool)
	 func processBlockXOR(out, in1, in2 *block)
	 func xorBlocksSSE2(out, a, b, c *block)
Package-Level Variables (only one, which is unexported)

	/* one unexported ... *//* one unexported: */
	  var useSSE4 bool
Package-Level Constants (total 6, in which 1 are exported)

	const Version = 19
		The Argon2 version implemented by this package.

	/* 5 unexporteds ... *//* 5 unexporteds: */
	const argon2d = 0
	const argon2i = 1
	const argon2id = 2
	const blockLength = 128
	const syncPoints = 4

The pages are generated with Golds v0.4.9. (GOOS=linux GOARCH=amd64)