readme

README.md

@@ -1,5 +1,4 @@
-SipHash
+# SipHash
-=======
 
 Reference implementation of SipHash, a family of pseudorandom functions
 optimized for speed on short messages.
@@ -13,8 +12,7 @@ SipHash was designed by [Jean-Philippe Aumasson](https://131002.net) and
 [Daniel J. Bernstein](http://cr.yp.to). 
 
 
-Usage
+## Usage
------
 
 Running
 
@@ -22,17 +20,23 @@ Running
   make
 ```
 
-will build sanity checks (test vectors) for SipHash-2-4, the default
+will build tests for 
-version of SipHash:
+
+* SipHash-2-4, the default version of SipHash returning 64-bit tags
+* SipHash-2-4  with doubled tag size, i.e. 128-bit tags
+* HalfSipHash-2-4, a version of SipHash working with 32-bit words and
+  returning 32-bit tags by default
+* HalfSipHash-2-4 with doubled tag size, i.e. 64-bit tags
+
 
 ```C
-  ./siphash24_test
+  ./test
 ```
 
 verifies 64 test vectors, and
 
 ```C
-  ./siphash24_debug
+  ./debug
 ```
 
 does the same and prints intermediate values.
@@ -49,30 +53,8 @@ Obviously, if the number of rounds is modified then the test vectors
 won't verify.
 
 
-128-bit tags (experimental)
----------------------------
 
-In addition to the original SipHash, which returns 64-bit tags, this
+## Intellectual property
-reference code implements an experimental mode to return 128-bit tags.
-This mode is enabled when the constant `DOUBLE` is defined.
-
-Running 
-
-```sh
-  make double
-```
-
-will build `siphash24_test_double` and `siphash24_debug_double`.
-
-SipHash with 128-bit tags targets PRF security with 128-bit key and
-128-bit tags. In particular, any attack trying up to 2^s should
-succeed with probability at most 2^(s - 128).
-
-The **128-bit mode is experimental**, use at your own risk. 
-
-
-Intellectual property
----------------------
 
 The SipHash reference code is released under [CC0
 license](https://creativecommons.org/publicdomain/zero/1.0/), a public
@@ -82,8 +64,7 @@ We aren't aware of any patents or patent applications relevant to
 SipHash, and we aren't planning to apply for any.
 
 
-References
+## References
-----------
 
 The [SipHash page](https://131002.net/siphash) includes
 * a list of third-party implementations and modules

halfsiphash.c

@@ -0,0 +1,150 @@
+
+/*
+   SipHash reference C implementation
+
+   Copyright (c) 2012-2014 Jean-Philippe Aumasson
+   <jeanphilippe.aumasson@gmail.com>
+   Copyright (c) 2012-2014 Daniel J. Bernstein <djb@cr.yp.to>
+
+   To the extent possible under law, the author(s) have dedicated all copyright
+   and related and neighboring rights to this software to the public domain
+   worldwide. This software is distributed without any warranty.
+
+   You should have received a copy of the CC0 Public Domain Dedication along
+   with
+   this software. If not, see
+   <http://creativecommons.org/publicdomain/zero/1.0/>.
+ */
+#include <assert.h>
+#include <stdint.h>
+#include <stdio.h>
+#include <string.h>
+
+/* default: SipHash-2-4 */
+#define cROUNDS 2
+#define dROUNDS 4
+
+#define ROTL(x, b) (uint32_t)(((x) << (b)) | ((x) >> (32 - (b))))
+
+#define U32TO8_LE(p, v)                                                     \
+    (p)[0] = (uint8_t)((v));                                                \
+    (p)[1] = (uint8_t)((v) >> 8);                                           \
+    (p)[2] = (uint8_t)((v) >> 16);                                          \
+    (p)[3] = (uint8_t)((v) >> 24);
+
+#define U32TO8_LE(p, v)                                                     \
+    (p)[0] = (uint8_t)((v));                                                \
+    (p)[1] = (uint8_t)((v) >> 8);                                           \
+    (p)[2] = (uint8_t)((v) >> 16);                                          \
+    (p)[3] = (uint8_t)((v) >> 24);
+
+#define U8TO32_LE(p)                                                        \
+    (((uint32_t)((p)[0])) | ((uint32_t)((p)[1]) << 8) |                     \
+     ((uint32_t)((p)[2]) << 16) | ((uint32_t)((p)[3]) << 24))               \
+
+#define SIPROUND                                                            \
+    do {                                                                    \
+        v0 += v1;                                                           \
+        v1 = ROTL(v1,  7);                                                  \
+        v1 ^= v0;                                                           \
+        v0 = ROTL(v0, 16);                                                  \
+        v2 += v3;                                                           \
+        v3 = ROTL(v3,  8);                                                  \
+        v3 ^= v2;                                                           \
+        v0 += v3;                                                           \
+        v3 = ROTL(v3, 11);                                                  \
+        v3 ^= v0;                                                           \
+        v2 += v1;                                                           \
+        v1 = ROTL(v1,  9);                                                  \
+        v1 ^= v2;                                                           \
+        v2 = ROTL(v2, 16);                                                  \
+    } while (0)
+
+#ifdef DEBUG
+#define TRACE                                                               \
+    do {                                                                    \
+        printf("(%3d) v0 %08x\n", (int)inlen, v0);                          \
+        printf("(%3d) v1 %08x\n", (int)inlen, v1);                          \
+        printf("(%3d) v2 %08x\n", (int)inlen, v2);                          \
+        printf("(%3d) v3 %08x\n", (int)inlen, v3);                          \
+    } while (0)
+#else
+#define TRACE
+#endif
+
+int halfsiphash(const uint8_t *in, const size_t inlen, const uint8_t *k, uint8_t *out, const size_t outlen) {
+
+    assert( (outlen == 4) || (outlen == 8));
+    uint32_t v0 = 0x736f6d65;
+    uint32_t v1 = 0x646f7261;
+    uint32_t v2 = 0x6c796765;
+    uint32_t v3 = 0x74656462;
+    uint32_t k0 = U8TO32_LE(k);
+    uint32_t k1 = U8TO32_LE(k + 4);
+    uint32_t m;
+    int i;
+    const uint8_t *end = in + inlen - (inlen % sizeof(uint32_t));
+    const int left = inlen & 7;
+    uint32_t b = ((uint32_t)inlen) << 24;
+    v3 ^= k1;
+    v2 ^= k0;
+    v1 ^= k1;
+    v0 ^= k0;
+
+    if (outlen == 8) v1 ^= 0xee;
+
+    for (; in != end; in += 4) {
+        m = U8TO32_LE(in);
+        v3 ^= m;
+
+        TRACE;
+        for (i = 0; i < cROUNDS; ++i)
+            SIPROUND;
+
+        v0 ^= m;
+    }
+
+    switch (left) {
+        case 3:
+            b |= ((uint32_t)in[2]) << 16;
+        case 2:
+            b |= ((uint32_t)in[1]) << 8;
+        case 1:
+            b |= ((uint32_t)in[0]);
+            break;
+        case 0:
+            break;
+    }
+
+    v3 ^= b;
+
+    TRACE;
+    for (i = 0; i < cROUNDS; ++i)
+        SIPROUND;
+
+    v0 ^= b;
+
+    if (outlen == 16) v2 ^= 0xee;
+    else v2 ^= 0xff;
+
+    TRACE;
+    for (i = 0; i < dROUNDS; ++i)
+        SIPROUND;
+
+    b = v0 ^ v1 ^ v2 ^ v3;
+    U32TO8_LE(out, b);
+
+    if (outlen == 4) return 0;
+
+    v1 ^= 0xdd;
+
+    TRACE;
+    for (i = 0; i < dROUNDS; ++i)
+        SIPROUND;
+
+    b = v0 ^ v1 ^ v2 ^ v3;
+    U32TO8_LE(out + 4, b);
+
+    return 0;
+}
+

main.c

@@ -1,204 +0,0 @@
-/*
-   SipHash reference C implementation
-   Copyright (c) 2012 Jean-Philippe Aumasson <jeanphilippe.aumasson@gmail.com>
-   Copyright (c) 2012 Daniel J. Bernstein <djb@cr.yp.to>
-   To the extent possible under law, the author(s) have dedicated all copyright
-   and related and neighboring rights to this software to the public domain
-   worldwide. This software is distributed without any warranty.
-   You should have received a copy of the CC0 Public Domain Dedication along with
-   this software. If not, see <http://creativecommons.org/publicdomain/zero/1.0/>.
- */
-
-#include <stdint.h>
-#include <stdio.h>
-#include <string.h>
-
-#define MAXLEN 64
-#define KEYLEN 16
-#ifndef DOUBLE
-#define HASHLEN 8
-#else
-#define HASHLEN 16
-#endif
-
-
-extern int  siphash( uint8_t *out, const uint8_t *in, uint64_t inlen, const uint8_t *k );
-
-/*
-   SipHash-2-4 output with
-   k = 00 01 02 ...
-   and
-   in = (empty string)
-   in = 00 (1 byte)
-   in = 00 01 (2 bytes)
-   in = 00 01 02 (3 bytes)
-   ...
-   in = 00 01 02 ... 3e (63 bytes)
- */
-const uint8_t vectors[MAXLEN][HASHLEN] =
-{
-#ifndef DOUBLE
-  { 0x31, 0x0e, 0x0e, 0xdd, 0x47, 0xdb, 0x6f, 0x72, },
-  { 0xfd, 0x67, 0xdc, 0x93, 0xc5, 0x39, 0xf8, 0x74, },
-  { 0x5a, 0x4f, 0xa9, 0xd9, 0x09, 0x80, 0x6c, 0x0d, },
-  { 0x2d, 0x7e, 0xfb, 0xd7, 0x96, 0x66, 0x67, 0x85, },
-  { 0xb7, 0x87, 0x71, 0x27, 0xe0, 0x94, 0x27, 0xcf, },
-  { 0x8d, 0xa6, 0x99, 0xcd, 0x64, 0x55, 0x76, 0x18, },
-  { 0xce, 0xe3, 0xfe, 0x58, 0x6e, 0x46, 0xc9, 0xcb, },
-  { 0x37, 0xd1, 0x01, 0x8b, 0xf5, 0x00, 0x02, 0xab, },
-  { 0x62, 0x24, 0x93, 0x9a, 0x79, 0xf5, 0xf5, 0x93, },
-  { 0xb0, 0xe4, 0xa9, 0x0b, 0xdf, 0x82, 0x00, 0x9e, },
-  { 0xf3, 0xb9, 0xdd, 0x94, 0xc5, 0xbb, 0x5d, 0x7a, },
-  { 0xa7, 0xad, 0x6b, 0x22, 0x46, 0x2f, 0xb3, 0xf4, },
-  { 0xfb, 0xe5, 0x0e, 0x86, 0xbc, 0x8f, 0x1e, 0x75, },
-  { 0x90, 0x3d, 0x84, 0xc0, 0x27, 0x56, 0xea, 0x14, },
-  { 0xee, 0xf2, 0x7a, 0x8e, 0x90, 0xca, 0x23, 0xf7, },
-  { 0xe5, 0x45, 0xbe, 0x49, 0x61, 0xca, 0x29, 0xa1, },
-  { 0xdb, 0x9b, 0xc2, 0x57, 0x7f, 0xcc, 0x2a, 0x3f, },
-  { 0x94, 0x47, 0xbe, 0x2c, 0xf5, 0xe9, 0x9a, 0x69, },
-  { 0x9c, 0xd3, 0x8d, 0x96, 0xf0, 0xb3, 0xc1, 0x4b, },
-  { 0xbd, 0x61, 0x79, 0xa7, 0x1d, 0xc9, 0x6d, 0xbb, },
-  { 0x98, 0xee, 0xa2, 0x1a, 0xf2, 0x5c, 0xd6, 0xbe, },
-  { 0xc7, 0x67, 0x3b, 0x2e, 0xb0, 0xcb, 0xf2, 0xd0, },
-  { 0x88, 0x3e, 0xa3, 0xe3, 0x95, 0x67, 0x53, 0x93, },
-  { 0xc8, 0xce, 0x5c, 0xcd, 0x8c, 0x03, 0x0c, 0xa8, },
-  { 0x94, 0xaf, 0x49, 0xf6, 0xc6, 0x50, 0xad, 0xb8, },
-  { 0xea, 0xb8, 0x85, 0x8a, 0xde, 0x92, 0xe1, 0xbc, },
-  { 0xf3, 0x15, 0xbb, 0x5b, 0xb8, 0x35, 0xd8, 0x17, },
-  { 0xad, 0xcf, 0x6b, 0x07, 0x63, 0x61, 0x2e, 0x2f, },
-  { 0xa5, 0xc9, 0x1d, 0xa7, 0xac, 0xaa, 0x4d, 0xde, },
-  { 0x71, 0x65, 0x95, 0x87, 0x66, 0x50, 0xa2, 0xa6, },
-  { 0x28, 0xef, 0x49, 0x5c, 0x53, 0xa3, 0x87, 0xad, },
-  { 0x42, 0xc3, 0x41, 0xd8, 0xfa, 0x92, 0xd8, 0x32, },
-  { 0xce, 0x7c, 0xf2, 0x72, 0x2f, 0x51, 0x27, 0x71, },
-  { 0xe3, 0x78, 0x59, 0xf9, 0x46, 0x23, 0xf3, 0xa7, },
-  { 0x38, 0x12, 0x05, 0xbb, 0x1a, 0xb0, 0xe0, 0x12, },
-  { 0xae, 0x97, 0xa1, 0x0f, 0xd4, 0x34, 0xe0, 0x15, },
-  { 0xb4, 0xa3, 0x15, 0x08, 0xbe, 0xff, 0x4d, 0x31, },
-  { 0x81, 0x39, 0x62, 0x29, 0xf0, 0x90, 0x79, 0x02, },
-  { 0x4d, 0x0c, 0xf4, 0x9e, 0xe5, 0xd4, 0xdc, 0xca, },
-  { 0x5c, 0x73, 0x33, 0x6a, 0x76, 0xd8, 0xbf, 0x9a, },
-  { 0xd0, 0xa7, 0x04, 0x53, 0x6b, 0xa9, 0x3e, 0x0e, },
-  { 0x92, 0x59, 0x58, 0xfc, 0xd6, 0x42, 0x0c, 0xad, },
-  { 0xa9, 0x15, 0xc2, 0x9b, 0xc8, 0x06, 0x73, 0x18, },
-  { 0x95, 0x2b, 0x79, 0xf3, 0xbc, 0x0a, 0xa6, 0xd4, },
-  { 0xf2, 0x1d, 0xf2, 0xe4, 0x1d, 0x45, 0x35, 0xf9, },
-  { 0x87, 0x57, 0x75, 0x19, 0x04, 0x8f, 0x53, 0xa9, },
-  { 0x10, 0xa5, 0x6c, 0xf5, 0xdf, 0xcd, 0x9a, 0xdb, },
-  { 0xeb, 0x75, 0x09, 0x5c, 0xcd, 0x98, 0x6c, 0xd0, },
-  { 0x51, 0xa9, 0xcb, 0x9e, 0xcb, 0xa3, 0x12, 0xe6, },
-  { 0x96, 0xaf, 0xad, 0xfc, 0x2c, 0xe6, 0x66, 0xc7, },
-  { 0x72, 0xfe, 0x52, 0x97, 0x5a, 0x43, 0x64, 0xee, },
-  { 0x5a, 0x16, 0x45, 0xb2, 0x76, 0xd5, 0x92, 0xa1, },
-  { 0xb2, 0x74, 0xcb, 0x8e, 0xbf, 0x87, 0x87, 0x0a, },
-  { 0x6f, 0x9b, 0xb4, 0x20, 0x3d, 0xe7, 0xb3, 0x81, },
-  { 0xea, 0xec, 0xb2, 0xa3, 0x0b, 0x22, 0xa8, 0x7f, },
-  { 0x99, 0x24, 0xa4, 0x3c, 0xc1, 0x31, 0x57, 0x24, },
-  { 0xbd, 0x83, 0x8d, 0x3a, 0xaf, 0xbf, 0x8d, 0xb7, },
-  { 0x0b, 0x1a, 0x2a, 0x32, 0x65, 0xd5, 0x1a, 0xea, },
-  { 0x13, 0x50, 0x79, 0xa3, 0x23, 0x1c, 0xe6, 0x60, },
-  { 0x93, 0x2b, 0x28, 0x46, 0xe4, 0xd7, 0x06, 0x66, },
-  { 0xe1, 0x91, 0x5f, 0x5c, 0xb1, 0xec, 0xa4, 0x6c, },
-  { 0xf3, 0x25, 0x96, 0x5c, 0xa1, 0x6d, 0x62, 0x9f, },
-  { 0x57, 0x5f, 0xf2, 0x8e, 0x60, 0x38, 0x1b, 0xe5, },
-  { 0x72, 0x45, 0x06, 0xeb, 0x4c, 0x32, 0x8a, 0x95, }
-#else
-  { 0xa3, 0x81, 0x7f, 0x04, 0xba, 0x25, 0xa8, 0xe6, 0x6d, 0xf6, 0x72, 0x14, 0xc7, 0x55, 0x02, 0x93  },
-  { 0xda, 0x87, 0xc1, 0xd8, 0x6b, 0x99, 0xaf, 0x44, 0x34, 0x76, 0x59, 0x11, 0x9b, 0x22, 0xfc, 0x45  },
-  { 0x81, 0x77, 0x22, 0x8d, 0xa4, 0xa4, 0x5d, 0xc7, 0xfc, 0xa3, 0x8b, 0xde, 0xf6, 0x0a, 0xff, 0xe4  },
-  { 0x9c, 0x70, 0xb6, 0x0c, 0x52, 0x67, 0xa9, 0x4e, 0x5f, 0x33, 0xb6, 0xb0, 0x29, 0x85, 0xed, 0x51  },
-  { 0xf8, 0x81, 0x64, 0xc1, 0x2d, 0x9c, 0x8f, 0xaf, 0x7d, 0x0f, 0x6e, 0x7c, 0x7b, 0xcd, 0x55, 0x79  },
-  { 0x13, 0x68, 0x87, 0x59, 0x80, 0x77, 0x6f, 0x88, 0x54, 0x52, 0x7a, 0x07, 0x69, 0x0e, 0x96, 0x27  },
-  { 0x14, 0xee, 0xca, 0x33, 0x8b, 0x20, 0x86, 0x13, 0x48, 0x5e, 0xa0, 0x30, 0x8f, 0xd7, 0xa1, 0x5e  },
-  { 0xa1, 0xf1, 0xeb, 0xbe, 0xd8, 0xdb, 0xc1, 0x53, 0xc0, 0xb8, 0x4a, 0xa6, 0x1f, 0xf0, 0x82, 0x39  },
-  { 0x3b, 0x62, 0xa9, 0xba, 0x62, 0x58, 0xf5, 0x61, 0x0f, 0x83, 0xe2, 0x64, 0xf3, 0x14, 0x97, 0xb4  },
-  { 0x26, 0x44, 0x99, 0x06, 0x0a, 0xd9, 0xba, 0xab, 0xc4, 0x7f, 0x8b, 0x02, 0xbb, 0x6d, 0x71, 0xed  },
-  { 0x00, 0x11, 0x0d, 0xc3, 0x78, 0x14, 0x69, 0x56, 0xc9, 0x54, 0x47, 0xd3, 0xf3, 0xd0, 0xfb, 0xba  },
-  { 0x01, 0x51, 0xc5, 0x68, 0x38, 0x6b, 0x66, 0x77, 0xa2, 0xb4, 0xdc, 0x6f, 0x81, 0xe5, 0xdc, 0x18  },
-  { 0xd6, 0x26, 0xb2, 0x66, 0x90, 0x5e, 0xf3, 0x58, 0x82, 0x63, 0x4d, 0xf6, 0x85, 0x32, 0xc1, 0x25  },
-  { 0x98, 0x69, 0xe2, 0x47, 0xe9, 0xc0, 0x8b, 0x10, 0xd0, 0x29, 0x93, 0x4f, 0xc4, 0xb9, 0x52, 0xf7  },
-  { 0x31, 0xfc, 0xef, 0xac, 0x66, 0xd7, 0xde, 0x9c, 0x7e, 0xc7, 0x48, 0x5f, 0xe4, 0x49, 0x49, 0x02  },
-  { 0x54, 0x93, 0xe9, 0x99, 0x33, 0xb0, 0xa8, 0x11, 0x7e, 0x08, 0xec, 0x0f, 0x97, 0xcf, 0xc3, 0xd9  },
-  { 0x6e, 0xe2, 0xa4, 0xca, 0x67, 0xb0, 0x54, 0xbb, 0xfd, 0x33, 0x15, 0xbf, 0x85, 0x23, 0x05, 0x77  },
-  { 0x47, 0x3d, 0x06, 0xe8, 0x73, 0x8d, 0xb8, 0x98, 0x54, 0xc0, 0x66, 0xc4, 0x7a, 0xe4, 0x77, 0x40  },
-  { 0xa4, 0x26, 0xe5, 0xe4, 0x23, 0xbf, 0x48, 0x85, 0x29, 0x4d, 0xa4, 0x81, 0xfe, 0xae, 0xf7, 0x23  },
-  { 0x78, 0x01, 0x77, 0x31, 0xcf, 0x65, 0xfa, 0xb0, 0x74, 0xd5, 0x20, 0x89, 0x52, 0x51, 0x2e, 0xb1  },
-  { 0x9e, 0x25, 0xfc, 0x83, 0x3f, 0x22, 0x90, 0x73, 0x3e, 0x93, 0x44, 0xa5, 0xe8, 0x38, 0x39, 0xeb  },
-  { 0x56, 0x8e, 0x49, 0x5a, 0xbe, 0x52, 0x5a, 0x21, 0x8a, 0x22, 0x14, 0xcd, 0x3e, 0x07, 0x1d, 0x12  },
-  { 0x4a, 0x29, 0xb5, 0x45, 0x52, 0xd1, 0x6b, 0x9a, 0x46, 0x9c, 0x10, 0x52, 0x8e, 0xff, 0x0a, 0xae  },
-  { 0xc9, 0xd1, 0x84, 0xdd, 0xd5, 0xa9, 0xf5, 0xe0, 0xcf, 0x8c, 0xe2, 0x9a, 0x9a, 0xbf, 0x69, 0x1c  },
-  { 0x2d, 0xb4, 0x79, 0xae, 0x78, 0xbd, 0x50, 0xd8, 0x88, 0x2a, 0x8a, 0x17, 0x8a, 0x61, 0x32, 0xad  },
-  { 0x8e, 0xce, 0x5f, 0x04, 0x2d, 0x5e, 0x44, 0x7b, 0x50, 0x51, 0xb9, 0xea, 0xcb, 0x8d, 0x8f, 0x6f  },
-  { 0x9c, 0x0b, 0x53, 0xb4, 0xb3, 0xc3, 0x07, 0xe8, 0x7e, 0xae, 0xe0, 0x86, 0x78, 0x14, 0x1f, 0x66  },
-  { 0xab, 0xf2, 0x48, 0xaf, 0x69, 0xa6, 0xea, 0xe4, 0xbf, 0xd3, 0xeb, 0x2f, 0x12, 0x9e, 0xeb, 0x94  },
-  { 0x06, 0x64, 0xda, 0x16, 0x68, 0x57, 0x4b, 0x88, 0xb9, 0x35, 0xf3, 0x02, 0x73, 0x58, 0xae, 0xf4  },
-  { 0xaa, 0x4b, 0x9d, 0xc4, 0xbf, 0x33, 0x7d, 0xe9, 0x0c, 0xd4, 0xfd, 0x3c, 0x46, 0x7c, 0x6a, 0xb7  },
-  { 0xea, 0x5c, 0x7f, 0x47, 0x1f, 0xaf, 0x6b, 0xde, 0x2b, 0x1a, 0xd7, 0xd4, 0x68, 0x6d, 0x22, 0x87  },
-  { 0x29, 0x39, 0xb0, 0x18, 0x32, 0x23, 0xfa, 0xfc, 0x17, 0x23, 0xde, 0x4f, 0x52, 0xc4, 0x3d, 0x35  },
-  { 0x7c, 0x39, 0x56, 0xca, 0x5e, 0xea, 0xfc, 0x3e, 0x36, 0x3e, 0x9d, 0x55, 0x65, 0x46, 0xeb, 0x68  },
-  { 0x77, 0xc6, 0x07, 0x71, 0x46, 0xf0, 0x1c, 0x32, 0xb6, 0xb6, 0x9d, 0x5f, 0x4e, 0xa9, 0xff, 0xcf  },
-  { 0x37, 0xa6, 0x98, 0x6c, 0xb8, 0x84, 0x7e, 0xdf, 0x09, 0x25, 0xf0, 0xf1, 0x30, 0x9b, 0x54, 0xde  },
-  { 0xa7, 0x05, 0xf0, 0xe6, 0x9d, 0xa9, 0xa8, 0xf9, 0x07, 0x24, 0x1a, 0x2e, 0x92, 0x3c, 0x8c, 0xc8  },
-  { 0x3d, 0xc4, 0x7d, 0x1f, 0x29, 0xc4, 0x48, 0x46, 0x1e, 0x9e, 0x76, 0xed, 0x90, 0x4f, 0x67, 0x11  },
-  { 0x0d, 0x62, 0xbf, 0x01, 0xe6, 0xfc, 0x0e, 0x1a, 0x0d, 0x3c, 0x47, 0x51, 0xc5, 0xd3, 0x69, 0x2b  },
-  { 0x8c, 0x03, 0x46, 0x8b, 0xca, 0x7c, 0x66, 0x9e, 0xe4, 0xfd, 0x5e, 0x08, 0x4b, 0xbe, 0xe7, 0xb5  },
-  { 0x52, 0x8a, 0x5b, 0xb9, 0x3b, 0xaf, 0x2c, 0x9c, 0x44, 0x73, 0xcc, 0xe5, 0xd0, 0xd2, 0x2b, 0xd9  },
-  { 0xdf, 0x6a, 0x30, 0x1e, 0x95, 0xc9, 0x5d, 0xad, 0x97, 0xae, 0x0c, 0xc8, 0xc6, 0x91, 0x3b, 0xd8  },
-  { 0x80, 0x11, 0x89, 0x90, 0x2c, 0x85, 0x7f, 0x39, 0xe7, 0x35, 0x91, 0x28, 0x5e, 0x70, 0xb6, 0xdb  },
-  { 0xe6, 0x17, 0x34, 0x6a, 0xc9, 0xc2, 0x31, 0xbb, 0x36, 0x50, 0xae, 0x34, 0xcc, 0xca, 0x0c, 0x5b  },
-  { 0x27, 0xd9, 0x34, 0x37, 0xef, 0xb7, 0x21, 0xaa, 0x40, 0x18, 0x21, 0xdc, 0xec, 0x5a, 0xdf, 0x89  },
-  { 0x89, 0x23, 0x7d, 0x9d, 0xed, 0x9c, 0x5e, 0x78, 0xd8, 0xb1, 0xc9, 0xb1, 0x66, 0xcc, 0x73, 0x42  },
-  { 0x4a, 0x6d, 0x80, 0x91, 0xbf, 0x5e, 0x7d, 0x65, 0x11, 0x89, 0xfa, 0x94, 0xa2, 0x50, 0xb1, 0x4c  },
-  { 0x0e, 0x33, 0xf9, 0x60, 0x55, 0xe7, 0xae, 0x89, 0x3f, 0xfc, 0x0e, 0x3d, 0xcf, 0x49, 0x29, 0x02  },
-  { 0xe6, 0x1c, 0x43, 0x2b, 0x72, 0x0b, 0x19, 0xd1, 0x8e, 0xc8, 0xd8, 0x4b, 0xdc, 0x63, 0x15, 0x1b  },
-  { 0xf7, 0xe5, 0xae, 0xf5, 0x49, 0xf7, 0x82, 0xcf, 0x37, 0x90, 0x55, 0xa6, 0x08, 0x26, 0x9b, 0x16  },
-  { 0x43, 0x8d, 0x03, 0x0f, 0xd0, 0xb7, 0xa5, 0x4f, 0xa8, 0x37, 0xf2, 0xad, 0x20, 0x1a, 0x64, 0x03  },
-  { 0xa5, 0x90, 0xd3, 0xee, 0x4f, 0xbf, 0x04, 0xe3, 0x24, 0x7e, 0x0d, 0x27, 0xf2, 0x86, 0x42, 0x3f  },
-  { 0x5f, 0xe2, 0xc1, 0xa1, 0x72, 0xfe, 0x93, 0xc4, 0xb1, 0x5c, 0xd3, 0x7c, 0xae, 0xf9, 0xf5, 0x38  },
-  { 0x2c, 0x97, 0x32, 0x5c, 0xbd, 0x06, 0xb3, 0x6e, 0xb2, 0x13, 0x3d, 0xd0, 0x8b, 0x3a, 0x01, 0x7c  },
-  { 0x92, 0xc8, 0x14, 0x22, 0x7a, 0x6b, 0xca, 0x94, 0x9f, 0xf0, 0x65, 0x9f, 0x00, 0x2a, 0xd3, 0x9e  },
-  { 0xdc, 0xe8, 0x50, 0x11, 0x0b, 0xd8, 0x32, 0x8c, 0xfb, 0xd5, 0x08, 0x41, 0xd6, 0x91, 0x1d, 0x87  },
-  { 0x67, 0xf1, 0x49, 0x84, 0xc7, 0xda, 0x79, 0x12, 0x48, 0xe3, 0x2b, 0xb5, 0x92, 0x25, 0x83, 0xda  },
-  { 0x19, 0x38, 0xf2, 0xcf, 0x72, 0xd5, 0x4e, 0xe9, 0x7e, 0x94, 0x16, 0x6f, 0xa9, 0x1d, 0x2a, 0x36  },
-  { 0x74, 0x48, 0x1e, 0x96, 0x46, 0xed, 0x49, 0xfe, 0x0f, 0x62, 0x24, 0x30, 0x16, 0x04, 0x69, 0x8e  },
-  { 0x57, 0xfc, 0xa5, 0xde, 0x98, 0xa9, 0xd6, 0xd8, 0x00, 0x64, 0x38, 0xd0, 0x58, 0x3d, 0x8a, 0x1d  },
-  { 0x9f, 0xec, 0xde, 0x1c, 0xef, 0xdc, 0x1c, 0xbe, 0xd4, 0x76, 0x36, 0x74, 0xd9, 0x57, 0x53, 0x59  },
-  { 0xe3, 0x04, 0x0c, 0x00, 0xeb, 0x28, 0xf1, 0x53, 0x66, 0xca, 0x73, 0xcb, 0xd8, 0x72, 0xe7, 0x40  },
-  { 0x76, 0x97, 0x00, 0x9a, 0x6a, 0x83, 0x1d, 0xfe, 0xcc, 0xa9, 0x1c, 0x59, 0x93, 0x67, 0x0f, 0x7a  },
-  { 0x58, 0x53, 0x54, 0x23, 0x21, 0xf5, 0x67, 0xa0, 0x05, 0xd5, 0x47, 0xa4, 0xf0, 0x47, 0x59, 0xbd  },
-  { 0x51, 0x50, 0xd1, 0x77, 0x2f, 0x50, 0x83, 0x4a, 0x50, 0x3e, 0x06, 0x9a, 0x97, 0x3f, 0xbd, 0x7c  }
-#endif
-};
-
-
-int test_vectors()
-{
-  uint8_t in[MAXLEN], out[HASHLEN], k[KEYLEN];
-  int i;
-  int fails = 0;
-
-  for( i = 0; i < KEYLEN; ++i ) k[i] = i;
-
-  for( i = 0; i < MAXLEN; ++i )
-  {
-    in[i] = i;
-    siphash( out, in, i, k );
-
-    if ( memcmp( out, vectors[i], HASHLEN ) )
-    {
-      printf( "test vector failed for %d bytes\n", i );
-      fails++;
-    }
-  }
-
-  return fails;
-}
-
-
-int main()
-{
-  if ( !test_vectors() )
-    printf( "test vector ok\n" );
-
-  return 0;
-}

makefile

@@ -1,27 +1,18 @@
 CC=gcc
-CFLAGS=-Wall 
+CFLAGS=-Wall
-SRC=siphash24.c main.c
+SRC=siphash.c halfsiphash.c test.c
-BIN=siphash24_test siphash24_debug
+BIN=test debug
-BIN_DOUBLE=siphash24_test_double siphash24_debug_double
 
 all:                    $(BIN)
 
-siphash24_test:         $(SRC)
+test:                   $(SRC)
 			$(CC) $(CFLAGS) $^ -o $@
 
-siphash24_debug:        $(SRC) 
+debug:                  $(SRC) 
 			$(CC) $(CFLAGS) $^ -o $@ -DDEBUG
 
-double:                 $(BIN_DOUBLE)
-
-siphash24_test_double:  $(SRC) 
-			$(CC) $(CFLAGS) $^ -o $@ -DDOUBLE
-
-siphash24_debug_double: $(SRC) 
-	                $(CC) $(CFLAGS) $^ -o $@ -DDOUBLE -DDEBUG
-
 clean:
-			rm -f *.o $(BIN) $(BIN_DOUBLE)
+			rm -f *.o $(BIN)
 
 dist:                   clean
 			cd ..; \

siphash.c

@@ -0,0 +1,161 @@
+/*
+   SipHash reference C implementation
+
+   Copyright (c) 2012-2014 Jean-Philippe Aumasson
+   <jeanphilippe.aumasson@gmail.com>
+   Copyright (c) 2012-2014 Daniel J. Bernstein <djb@cr.yp.to>
+
+   To the extent possible under law, the author(s) have dedicated all copyright
+   and related and neighboring rights to this software to the public domain
+   worldwide. This software is distributed without any warranty.
+
+   You should have received a copy of the CC0 Public Domain Dedication along
+   with
+   this software. If not, see
+   <http://creativecommons.org/publicdomain/zero/1.0/>.
+ */
+#include <assert.h>
+#include <stdint.h>
+#include <stdio.h>
+#include <string.h>
+
+/* default: SipHash-2-4 */
+#define cROUNDS 2
+#define dROUNDS 4
+
+#define ROTL(x, b) (uint64_t)(((x) << (b)) | ((x) >> (64 - (b))))
+
+#define U32TO8_LE(p, v)                                                     \
+    (p)[0] = (uint8_t)((v));                                                \
+    (p)[1] = (uint8_t)((v) >> 8);                                           \
+    (p)[2] = (uint8_t)((v) >> 16);                                          \
+    (p)[3] = (uint8_t)((v) >> 24);
+
+#define U64TO8_LE(p, v)                                                     \
+  U32TO8_LE((p), (uint32_t)((v)));                                          \
+  U32TO8_LE((p) + 4, (uint32_t)((v) >> 32));
+
+#define U8TO64_LE(p)                                                        \
+    (((uint64_t)((p)[0])) | ((uint64_t)((p)[1]) << 8) |                     \
+     ((uint64_t)((p)[2]) << 16) | ((uint64_t)((p)[3]) << 24) |              \
+     ((uint64_t)((p)[4]) << 32) | ((uint64_t)((p)[5]) << 40) |              \
+     ((uint64_t)((p)[6]) << 48) | ((uint64_t)((p)[7]) << 56))
+
+#define SIPROUND                                                            \
+    do {                                                                    \
+        v0 += v1;                                                           \
+        v1 = ROTL(v1, 13);                                                  \
+        v1 ^= v0;                                                           \
+        v0 = ROTL(v0, 32);                                                  \
+        v2 += v3;                                                           \
+        v3 = ROTL(v3, 16);                                                  \
+        v3 ^= v2;                                                           \
+        v0 += v3;                                                           \
+        v3 = ROTL(v3, 21);                                                  \
+        v3 ^= v0;                                                           \
+        v2 += v1;                                                           \
+        v1 = ROTL(v1, 17);                                                  \
+        v1 ^= v2;                                                           \
+        v2 = ROTL(v2, 32);                                                  \
+    } while (0)
+
+#ifdef DEBUG
+#define TRACE                                                                  \
+  do {                                                                         \
+    printf("(%3d) v0 %08x %08x\n", (int)inlen, (uint32_t)(v0 >> 32),           \
+           (uint32_t)v0);                                                      \
+    printf("(%3d) v1 %08x %08x\n", (int)inlen, (uint32_t)(v1 >> 32),           \
+           (uint32_t)v1);                                                      \
+    printf("(%3d) v2 %08x %08x\n", (int)inlen, (uint32_t)(v2 >> 32),           \
+           (uint32_t)v2);                                                      \
+    printf("(%3d) v3 %08x %08x\n", (int)inlen, (uint32_t)(v3 >> 32),           \
+           (uint32_t)v3);                                                      \
+  } while (0)
+#else
+#define TRACE
+#endif
+
+int siphash(const uint8_t *in, const size_t inlen, const uint8_t *k, uint8_t *out, const size_t outlen) {
+    
+    assert( (outlen == 8) || (outlen == 16));
+    uint64_t v0 = 0x736f6d6570736575ULL;
+    uint64_t v1 = 0x646f72616e646f6dULL;
+    uint64_t v2 = 0x6c7967656e657261ULL;
+    uint64_t v3 = 0x7465646279746573ULL;
+    uint64_t k0 = U8TO64_LE(k);
+    uint64_t k1 = U8TO64_LE(k + 8);
+    uint64_t m;
+    int i;
+    const uint8_t *end = in + inlen - (inlen % sizeof(uint64_t));
+    const int left = inlen & 7;
+    uint64_t b = ((uint64_t)inlen) << 56;
+    v3 ^= k1;
+    v2 ^= k0;
+    v1 ^= k1;
+    v0 ^= k0;
+
+    if (outlen == 16) v1 ^= 0xee;
+
+    for (; in != end; in += 8) {
+        m = U8TO64_LE(in);
+        v3 ^= m;
+
+        TRACE;
+        for (i = 0; i < cROUNDS; ++i)
+            SIPROUND;
+
+        v0 ^= m;
+    }
+
+    switch (left) {
+        case 7:
+            b |= ((uint64_t)in[6]) << 48;
+        case 6:
+            b |= ((uint64_t)in[5]) << 40;
+        case 5:
+            b |= ((uint64_t)in[4]) << 32;
+        case 4:
+            b |= ((uint64_t)in[3]) << 24;
+        case 3:
+            b |= ((uint64_t)in[2]) << 16;
+        case 2:
+            b |= ((uint64_t)in[1]) << 8;
+        case 1:
+            b |= ((uint64_t)in[0]);
+            break;
+        case 0:
+            break;
+    }
+
+    v3 ^= b;
+
+    TRACE;
+    for (i = 0; i < cROUNDS; ++i)
+        SIPROUND;
+
+    v0 ^= b;
+
+    if (outlen == 16) v2 ^= 0xee;
+    else v2 ^= 0xff;
+
+    TRACE;
+    for (i = 0; i < dROUNDS; ++i)
+        SIPROUND;
+
+    b = v0 ^ v1 ^ v2 ^ v3;
+    U64TO8_LE(out, b);
+
+    if (outlen == 8) return 0;
+
+    v1 ^= 0xdd;
+
+    TRACE;
+    for (i = 0; i < dROUNDS; ++i)
+        SIPROUND;
+
+    b = v0 ^ v1 ^ v2 ^ v3;
+    U64TO8_LE(out + 8, b);
+
+    return 0;
+}
+

siphash24.c

@@ -1,165 +0,0 @@
-/*
-   SipHash reference C implementation
-
-   Copyright (c) 2012-2014 Jean-Philippe Aumasson
-   <jeanphilippe.aumasson@gmail.com>
-   Copyright (c) 2012-2014 Daniel J. Bernstein <djb@cr.yp.to>
-
-   To the extent possible under law, the author(s) have dedicated all copyright
-   and related and neighboring rights to this software to the public domain
-   worldwide. This software is distributed without any warranty.
-
-   You should have received a copy of the CC0 Public Domain Dedication along
-   with
-   this software. If not, see
-   <http://creativecommons.org/publicdomain/zero/1.0/>.
- */
-#include <stdint.h>
-#include <stdio.h>
-#include <string.h>
-
-/* default: SipHash-2-4 */
-#define cROUNDS 2
-#define dROUNDS 4
-
-#define ROTL(x, b) (uint64_t)(((x) << (b)) | ((x) >> (64 - (b))))
-
-#define U32TO8_LE(p, v)                                                        \
-  (p)[0] = (uint8_t)((v));                                                     \
-  (p)[1] = (uint8_t)((v) >> 8);                                                \
-  (p)[2] = (uint8_t)((v) >> 16);                                               \
-  (p)[3] = (uint8_t)((v) >> 24);
-
-#define U64TO8_LE(p, v)                                                        \
-  U32TO8_LE((p), (uint32_t)((v)));                                             \
-  U32TO8_LE((p) + 4, (uint32_t)((v) >> 32));
-
-#define U8TO64_LE(p)                                                           \
-  (((uint64_t)((p)[0])) | ((uint64_t)((p)[1]) << 8) |                          \
-   ((uint64_t)((p)[2]) << 16) | ((uint64_t)((p)[3]) << 24) |                   \
-   ((uint64_t)((p)[4]) << 32) | ((uint64_t)((p)[5]) << 40) |                   \
-   ((uint64_t)((p)[6]) << 48) | ((uint64_t)((p)[7]) << 56))
-
-#define SIPROUND                                                               \
-  do {                                                                         \
-    v0 += v1;                                                                  \
-    v1 = ROTL(v1, 13);                                                         \
-    v1 ^= v0;                                                                  \
-    v0 = ROTL(v0, 32);                                                         \
-    v2 += v3;                                                                  \
-    v3 = ROTL(v3, 16);                                                         \
-    v3 ^= v2;                                                                  \
-    v0 += v3;                                                                  \
-    v3 = ROTL(v3, 21);                                                         \
-    v3 ^= v0;                                                                  \
-    v2 += v1;                                                                  \
-    v1 = ROTL(v1, 17);                                                         \
-    v1 ^= v2;                                                                  \
-    v2 = ROTL(v2, 32);                                                         \
-  } while (0)
-
-#ifdef DEBUG
-#define TRACE                                                                  \
-  do {                                                                         \
-    printf("(%3d) v0 %08x %08x\n", (int)inlen, (uint32_t)(v0 >> 32),           \
-           (uint32_t)v0);                                                      \
-    printf("(%3d) v1 %08x %08x\n", (int)inlen, (uint32_t)(v1 >> 32),           \
-           (uint32_t)v1);                                                      \
-    printf("(%3d) v2 %08x %08x\n", (int)inlen, (uint32_t)(v2 >> 32),           \
-           (uint32_t)v2);                                                      \
-    printf("(%3d) v3 %08x %08x\n", (int)inlen, (uint32_t)(v3 >> 32),           \
-           (uint32_t)v3);                                                      \
-  } while (0)
-#else
-#define TRACE
-#endif
-
-int siphash(uint8_t *out, const uint8_t *in, uint64_t inlen, const uint8_t *k) {
-  /* "somepseudorandomlygeneratedbytes" */
-  uint64_t v0 = 0x736f6d6570736575ULL;
-  uint64_t v1 = 0x646f72616e646f6dULL;
-  uint64_t v2 = 0x6c7967656e657261ULL;
-  uint64_t v3 = 0x7465646279746573ULL;
-  uint64_t b;
-  uint64_t k0 = U8TO64_LE(k);
-  uint64_t k1 = U8TO64_LE(k + 8);
-  uint64_t m;
-  int i;
-  const uint8_t *end = in + inlen - (inlen % sizeof(uint64_t));
-  const int left = inlen & 7;
-  b = ((uint64_t)inlen) << 56;
-  v3 ^= k1;
-  v2 ^= k0;
-  v1 ^= k1;
-  v0 ^= k0;
-
-#ifdef DOUBLE
-  v1 ^= 0xee;
-#endif
-
-  for (; in != end; in += 8) {
-    m = U8TO64_LE(in);
-    v3 ^= m;
-
-    TRACE;
-    for (i = 0; i < cROUNDS; ++i)
-      SIPROUND;
-
-    v0 ^= m;
-  }
-
-  switch (left) {
-  case 7:
-    b |= ((uint64_t)in[6]) << 48;
-  case 6:
-    b |= ((uint64_t)in[5]) << 40;
-  case 5:
-    b |= ((uint64_t)in[4]) << 32;
-  case 4:
-    b |= ((uint64_t)in[3]) << 24;
-  case 3:
-    b |= ((uint64_t)in[2]) << 16;
-  case 2:
-    b |= ((uint64_t)in[1]) << 8;
-  case 1:
-    b |= ((uint64_t)in[0]);
-    break;
-  case 0:
-    break;
-  }
-
-  v3 ^= b;
-
-  TRACE;
-  for (i = 0; i < cROUNDS; ++i)
-    SIPROUND;
-
-  v0 ^= b;
-
-#ifndef DOUBLE
-  v2 ^= 0xff;
-#else
-  v2 ^= 0xee;
-#endif
-
-  TRACE;
-  for (i = 0; i < dROUNDS; ++i)
-    SIPROUND;
-
-  b = v0 ^ v1 ^ v2 ^ v3;
-  U64TO8_LE(out, b);
-
-#ifdef DOUBLE
-  v1 ^= 0xdd;
-
-  TRACE;
-  for (i = 0; i < dROUNDS; ++i)
-    SIPROUND;
-
-  b = v0 ^ v1 ^ v2 ^ v3;
-  U64TO8_LE(out + 8, b);
-#endif
-
-  return 0;
-}
-

test.c

@@ -0,0 +1,379 @@
+/*
+   SipHash reference C implementation
+   Copyright (c) 2012 Jean-Philippe Aumasson <jeanphilippe.aumasson@gmail.com>
+   Copyright (c) 2012 Daniel J. Bernstein <djb@cr.yp.to>
+   To the extent possible under law, the author(s) have dedicated all copyright
+   and related and neighboring rights to this software to the public domain
+   worldwide. This software is distributed without any warranty.
+   You should have received a copy of the CC0 Public Domain Dedication along with
+   this software. If not, see <http://creativecommons.org/publicdomain/zero/1.0/>.
+ */
+
+#include <stdint.h>
+#include <stdio.h>
+#include <string.h>
+
+#define MAXLEN 64
+
+int siphash(const uint8_t *in, const size_t inlen, const uint8_t *k,    \
+        uint8_t *out, const size_t outlen);
+int halfsiphash(const uint8_t *in, const size_t inlen, const uint8_t *k,\
+        uint8_t *out, const size_t outlen);
+
+/*
+   SipHash-2-4 output with
+   k = 00 01 02 ...
+   and
+   in = (empty string)
+   in = 00 (1 byte)
+   in = 00 01 (2 bytes)
+   in = 00 01 02 (3 bytes)
+   ...
+   in = 00 01 02 ... 3e (63 bytes)
+ */
+const uint8_t vectors_sip64[MAXLEN][8] =
+{
+    { 0x31, 0x0e, 0x0e, 0xdd, 0x47, 0xdb, 0x6f, 0x72 },
+    { 0xfd, 0x67, 0xdc, 0x93, 0xc5, 0x39, 0xf8, 0x74 },
+    { 0x5a, 0x4f, 0xa9, 0xd9, 0x09, 0x80, 0x6c, 0x0d },
+    { 0x2d, 0x7e, 0xfb, 0xd7, 0x96, 0x66, 0x67, 0x85 },
+    { 0xb7, 0x87, 0x71, 0x27, 0xe0, 0x94, 0x27, 0xcf },
+    { 0x8d, 0xa6, 0x99, 0xcd, 0x64, 0x55, 0x76, 0x18 },
+    { 0xce, 0xe3, 0xfe, 0x58, 0x6e, 0x46, 0xc9, 0xcb },
+    { 0x37, 0xd1, 0x01, 0x8b, 0xf5, 0x00, 0x02, 0xab },
+    { 0x62, 0x24, 0x93, 0x9a, 0x79, 0xf5, 0xf5, 0x93 },
+    { 0xb0, 0xe4, 0xa9, 0x0b, 0xdf, 0x82, 0x00, 0x9e },
+    { 0xf3, 0xb9, 0xdd, 0x94, 0xc5, 0xbb, 0x5d, 0x7a },
+    { 0xa7, 0xad, 0x6b, 0x22, 0x46, 0x2f, 0xb3, 0xf4 },
+    { 0xfb, 0xe5, 0x0e, 0x86, 0xbc, 0x8f, 0x1e, 0x75 },
+    { 0x90, 0x3d, 0x84, 0xc0, 0x27, 0x56, 0xea, 0x14 },
+    { 0xee, 0xf2, 0x7a, 0x8e, 0x90, 0xca, 0x23, 0xf7 },
+    { 0xe5, 0x45, 0xbe, 0x49, 0x61, 0xca, 0x29, 0xa1 },
+    { 0xdb, 0x9b, 0xc2, 0x57, 0x7f, 0xcc, 0x2a, 0x3f },
+    { 0x94, 0x47, 0xbe, 0x2c, 0xf5, 0xe9, 0x9a, 0x69 },
+    { 0x9c, 0xd3, 0x8d, 0x96, 0xf0, 0xb3, 0xc1, 0x4b },
+    { 0xbd, 0x61, 0x79, 0xa7, 0x1d, 0xc9, 0x6d, 0xbb },
+    { 0x98, 0xee, 0xa2, 0x1a, 0xf2, 0x5c, 0xd6, 0xbe },
+    { 0xc7, 0x67, 0x3b, 0x2e, 0xb0, 0xcb, 0xf2, 0xd0 },
+    { 0x88, 0x3e, 0xa3, 0xe3, 0x95, 0x67, 0x53, 0x93 },
+    { 0xc8, 0xce, 0x5c, 0xcd, 0x8c, 0x03, 0x0c, 0xa8 },
+    { 0x94, 0xaf, 0x49, 0xf6, 0xc6, 0x50, 0xad, 0xb8 },
+    { 0xea, 0xb8, 0x85, 0x8a, 0xde, 0x92, 0xe1, 0xbc },
+    { 0xf3, 0x15, 0xbb, 0x5b, 0xb8, 0x35, 0xd8, 0x17 },
+    { 0xad, 0xcf, 0x6b, 0x07, 0x63, 0x61, 0x2e, 0x2f },
+    { 0xa5, 0xc9, 0x1d, 0xa7, 0xac, 0xaa, 0x4d, 0xde },
+    { 0x71, 0x65, 0x95, 0x87, 0x66, 0x50, 0xa2, 0xa6 },
+    { 0x28, 0xef, 0x49, 0x5c, 0x53, 0xa3, 0x87, 0xad },
+    { 0x42, 0xc3, 0x41, 0xd8, 0xfa, 0x92, 0xd8, 0x32 },
+    { 0xce, 0x7c, 0xf2, 0x72, 0x2f, 0x51, 0x27, 0x71 },
+    { 0xe3, 0x78, 0x59, 0xf9, 0x46, 0x23, 0xf3, 0xa7 },
+    { 0x38, 0x12, 0x05, 0xbb, 0x1a, 0xb0, 0xe0, 0x12 },
+    { 0xae, 0x97, 0xa1, 0x0f, 0xd4, 0x34, 0xe0, 0x15 },
+    { 0xb4, 0xa3, 0x15, 0x08, 0xbe, 0xff, 0x4d, 0x31 },
+    { 0x81, 0x39, 0x62, 0x29, 0xf0, 0x90, 0x79, 0x02 },
+    { 0x4d, 0x0c, 0xf4, 0x9e, 0xe5, 0xd4, 0xdc, 0xca },
+    { 0x5c, 0x73, 0x33, 0x6a, 0x76, 0xd8, 0xbf, 0x9a },
+    { 0xd0, 0xa7, 0x04, 0x53, 0x6b, 0xa9, 0x3e, 0x0e },
+    { 0x92, 0x59, 0x58, 0xfc, 0xd6, 0x42, 0x0c, 0xad },
+    { 0xa9, 0x15, 0xc2, 0x9b, 0xc8, 0x06, 0x73, 0x18 },
+    { 0x95, 0x2b, 0x79, 0xf3, 0xbc, 0x0a, 0xa6, 0xd4 },
+    { 0xf2, 0x1d, 0xf2, 0xe4, 0x1d, 0x45, 0x35, 0xf9 },
+    { 0x87, 0x57, 0x75, 0x19, 0x04, 0x8f, 0x53, 0xa9 },
+    { 0x10, 0xa5, 0x6c, 0xf5, 0xdf, 0xcd, 0x9a, 0xdb },
+    { 0xeb, 0x75, 0x09, 0x5c, 0xcd, 0x98, 0x6c, 0xd0 },
+    { 0x51, 0xa9, 0xcb, 0x9e, 0xcb, 0xa3, 0x12, 0xe6 },
+    { 0x96, 0xaf, 0xad, 0xfc, 0x2c, 0xe6, 0x66, 0xc7 },
+    { 0x72, 0xfe, 0x52, 0x97, 0x5a, 0x43, 0x64, 0xee },
+    { 0x5a, 0x16, 0x45, 0xb2, 0x76, 0xd5, 0x92, 0xa1 },
+    { 0xb2, 0x74, 0xcb, 0x8e, 0xbf, 0x87, 0x87, 0x0a },
+    { 0x6f, 0x9b, 0xb4, 0x20, 0x3d, 0xe7, 0xb3, 0x81 },
+    { 0xea, 0xec, 0xb2, 0xa3, 0x0b, 0x22, 0xa8, 0x7f },
+    { 0x99, 0x24, 0xa4, 0x3c, 0xc1, 0x31, 0x57, 0x24 },
+    { 0xbd, 0x83, 0x8d, 0x3a, 0xaf, 0xbf, 0x8d, 0xb7 },
+    { 0x0b, 0x1a, 0x2a, 0x32, 0x65, 0xd5, 0x1a, 0xea },
+    { 0x13, 0x50, 0x79, 0xa3, 0x23, 0x1c, 0xe6, 0x60 },
+    { 0x93, 0x2b, 0x28, 0x46, 0xe4, 0xd7, 0x06, 0x66 },
+    { 0xe1, 0x91, 0x5f, 0x5c, 0xb1, 0xec, 0xa4, 0x6c },
+    { 0xf3, 0x25, 0x96, 0x5c, 0xa1, 0x6d, 0x62, 0x9f },
+    { 0x57, 0x5f, 0xf2, 0x8e, 0x60, 0x38, 0x1b, 0xe5 },
+    { 0x72, 0x45, 0x06, 0xeb, 0x4c, 0x32, 0x8a, 0x95 }
+};
+
+const uint8_t vectors_sip128[MAXLEN][16] =
+{
+    { 0xa3, 0x81, 0x7f, 0x04, 0xba, 0x25, 0xa8, 0xe6, 0x6d, 0xf6, 0x72, 0x14, 0xc7, 0x55, 0x02, 0x93  },
+    { 0xda, 0x87, 0xc1, 0xd8, 0x6b, 0x99, 0xaf, 0x44, 0x34, 0x76, 0x59, 0x11, 0x9b, 0x22, 0xfc, 0x45  },
+    { 0x81, 0x77, 0x22, 0x8d, 0xa4, 0xa4, 0x5d, 0xc7, 0xfc, 0xa3, 0x8b, 0xde, 0xf6, 0x0a, 0xff, 0xe4  },
+    { 0x9c, 0x70, 0xb6, 0x0c, 0x52, 0x67, 0xa9, 0x4e, 0x5f, 0x33, 0xb6, 0xb0, 0x29, 0x85, 0xed, 0x51  },
+    { 0xf8, 0x81, 0x64, 0xc1, 0x2d, 0x9c, 0x8f, 0xaf, 0x7d, 0x0f, 0x6e, 0x7c, 0x7b, 0xcd, 0x55, 0x79  },
+    { 0x13, 0x68, 0x87, 0x59, 0x80, 0x77, 0x6f, 0x88, 0x54, 0x52, 0x7a, 0x07, 0x69, 0x0e, 0x96, 0x27  },
+    { 0x14, 0xee, 0xca, 0x33, 0x8b, 0x20, 0x86, 0x13, 0x48, 0x5e, 0xa0, 0x30, 0x8f, 0xd7, 0xa1, 0x5e  },
+    { 0xa1, 0xf1, 0xeb, 0xbe, 0xd8, 0xdb, 0xc1, 0x53, 0xc0, 0xb8, 0x4a, 0xa6, 0x1f, 0xf0, 0x82, 0x39  },
+    { 0x3b, 0x62, 0xa9, 0xba, 0x62, 0x58, 0xf5, 0x61, 0x0f, 0x83, 0xe2, 0x64, 0xf3, 0x14, 0x97, 0xb4  },
+    { 0x26, 0x44, 0x99, 0x06, 0x0a, 0xd9, 0xba, 0xab, 0xc4, 0x7f, 0x8b, 0x02, 0xbb, 0x6d, 0x71, 0xed  },
+    { 0x00, 0x11, 0x0d, 0xc3, 0x78, 0x14, 0x69, 0x56, 0xc9, 0x54, 0x47, 0xd3, 0xf3, 0xd0, 0xfb, 0xba  },
+    { 0x01, 0x51, 0xc5, 0x68, 0x38, 0x6b, 0x66, 0x77, 0xa2, 0xb4, 0xdc, 0x6f, 0x81, 0xe5, 0xdc, 0x18  },
+    { 0xd6, 0x26, 0xb2, 0x66, 0x90, 0x5e, 0xf3, 0x58, 0x82, 0x63, 0x4d, 0xf6, 0x85, 0x32, 0xc1, 0x25  },
+    { 0x98, 0x69, 0xe2, 0x47, 0xe9, 0xc0, 0x8b, 0x10, 0xd0, 0x29, 0x93, 0x4f, 0xc4, 0xb9, 0x52, 0xf7  },
+    { 0x31, 0xfc, 0xef, 0xac, 0x66, 0xd7, 0xde, 0x9c, 0x7e, 0xc7, 0x48, 0x5f, 0xe4, 0x49, 0x49, 0x02  },
+    { 0x54, 0x93, 0xe9, 0x99, 0x33, 0xb0, 0xa8, 0x11, 0x7e, 0x08, 0xec, 0x0f, 0x97, 0xcf, 0xc3, 0xd9  },
+    { 0x6e, 0xe2, 0xa4, 0xca, 0x67, 0xb0, 0x54, 0xbb, 0xfd, 0x33, 0x15, 0xbf, 0x85, 0x23, 0x05, 0x77  },
+    { 0x47, 0x3d, 0x06, 0xe8, 0x73, 0x8d, 0xb8, 0x98, 0x54, 0xc0, 0x66, 0xc4, 0x7a, 0xe4, 0x77, 0x40  },
+    { 0xa4, 0x26, 0xe5, 0xe4, 0x23, 0xbf, 0x48, 0x85, 0x29, 0x4d, 0xa4, 0x81, 0xfe, 0xae, 0xf7, 0x23  },
+    { 0x78, 0x01, 0x77, 0x31, 0xcf, 0x65, 0xfa, 0xb0, 0x74, 0xd5, 0x20, 0x89, 0x52, 0x51, 0x2e, 0xb1  },
+    { 0x9e, 0x25, 0xfc, 0x83, 0x3f, 0x22, 0x90, 0x73, 0x3e, 0x93, 0x44, 0xa5, 0xe8, 0x38, 0x39, 0xeb  },
+    { 0x56, 0x8e, 0x49, 0x5a, 0xbe, 0x52, 0x5a, 0x21, 0x8a, 0x22, 0x14, 0xcd, 0x3e, 0x07, 0x1d, 0x12  },
+    { 0x4a, 0x29, 0xb5, 0x45, 0x52, 0xd1, 0x6b, 0x9a, 0x46, 0x9c, 0x10, 0x52, 0x8e, 0xff, 0x0a, 0xae  },
+    { 0xc9, 0xd1, 0x84, 0xdd, 0xd5, 0xa9, 0xf5, 0xe0, 0xcf, 0x8c, 0xe2, 0x9a, 0x9a, 0xbf, 0x69, 0x1c  },
+    { 0x2d, 0xb4, 0x79, 0xae, 0x78, 0xbd, 0x50, 0xd8, 0x88, 0x2a, 0x8a, 0x17, 0x8a, 0x61, 0x32, 0xad  },
+    { 0x8e, 0xce, 0x5f, 0x04, 0x2d, 0x5e, 0x44, 0x7b, 0x50, 0x51, 0xb9, 0xea, 0xcb, 0x8d, 0x8f, 0x6f  },
+    { 0x9c, 0x0b, 0x53, 0xb4, 0xb3, 0xc3, 0x07, 0xe8, 0x7e, 0xae, 0xe0, 0x86, 0x78, 0x14, 0x1f, 0x66  },
+    { 0xab, 0xf2, 0x48, 0xaf, 0x69, 0xa6, 0xea, 0xe4, 0xbf, 0xd3, 0xeb, 0x2f, 0x12, 0x9e, 0xeb, 0x94  },
+    { 0x06, 0x64, 0xda, 0x16, 0x68, 0x57, 0x4b, 0x88, 0xb9, 0x35, 0xf3, 0x02, 0x73, 0x58, 0xae, 0xf4  },
+    { 0xaa, 0x4b, 0x9d, 0xc4, 0xbf, 0x33, 0x7d, 0xe9, 0x0c, 0xd4, 0xfd, 0x3c, 0x46, 0x7c, 0x6a, 0xb7  },
+    { 0xea, 0x5c, 0x7f, 0x47, 0x1f, 0xaf, 0x6b, 0xde, 0x2b, 0x1a, 0xd7, 0xd4, 0x68, 0x6d, 0x22, 0x87  },
+    { 0x29, 0x39, 0xb0, 0x18, 0x32, 0x23, 0xfa, 0xfc, 0x17, 0x23, 0xde, 0x4f, 0x52, 0xc4, 0x3d, 0x35  },
+    { 0x7c, 0x39, 0x56, 0xca, 0x5e, 0xea, 0xfc, 0x3e, 0x36, 0x3e, 0x9d, 0x55, 0x65, 0x46, 0xeb, 0x68  },
+    { 0x77, 0xc6, 0x07, 0x71, 0x46, 0xf0, 0x1c, 0x32, 0xb6, 0xb6, 0x9d, 0x5f, 0x4e, 0xa9, 0xff, 0xcf  },
+    { 0x37, 0xa6, 0x98, 0x6c, 0xb8, 0x84, 0x7e, 0xdf, 0x09, 0x25, 0xf0, 0xf1, 0x30, 0x9b, 0x54, 0xde  },
+    { 0xa7, 0x05, 0xf0, 0xe6, 0x9d, 0xa9, 0xa8, 0xf9, 0x07, 0x24, 0x1a, 0x2e, 0x92, 0x3c, 0x8c, 0xc8  },
+    { 0x3d, 0xc4, 0x7d, 0x1f, 0x29, 0xc4, 0x48, 0x46, 0x1e, 0x9e, 0x76, 0xed, 0x90, 0x4f, 0x67, 0x11  },
+    { 0x0d, 0x62, 0xbf, 0x01, 0xe6, 0xfc, 0x0e, 0x1a, 0x0d, 0x3c, 0x47, 0x51, 0xc5, 0xd3, 0x69, 0x2b  },
+    { 0x8c, 0x03, 0x46, 0x8b, 0xca, 0x7c, 0x66, 0x9e, 0xe4, 0xfd, 0x5e, 0x08, 0x4b, 0xbe, 0xe7, 0xb5  },
+    { 0x52, 0x8a, 0x5b, 0xb9, 0x3b, 0xaf, 0x2c, 0x9c, 0x44, 0x73, 0xcc, 0xe5, 0xd0, 0xd2, 0x2b, 0xd9  },
+    { 0xdf, 0x6a, 0x30, 0x1e, 0x95, 0xc9, 0x5d, 0xad, 0x97, 0xae, 0x0c, 0xc8, 0xc6, 0x91, 0x3b, 0xd8  },
+    { 0x80, 0x11, 0x89, 0x90, 0x2c, 0x85, 0x7f, 0x39, 0xe7, 0x35, 0x91, 0x28, 0x5e, 0x70, 0xb6, 0xdb  },
+    { 0xe6, 0x17, 0x34, 0x6a, 0xc9, 0xc2, 0x31, 0xbb, 0x36, 0x50, 0xae, 0x34, 0xcc, 0xca, 0x0c, 0x5b  },
+    { 0x27, 0xd9, 0x34, 0x37, 0xef, 0xb7, 0x21, 0xaa, 0x40, 0x18, 0x21, 0xdc, 0xec, 0x5a, 0xdf, 0x89  },
+    { 0x89, 0x23, 0x7d, 0x9d, 0xed, 0x9c, 0x5e, 0x78, 0xd8, 0xb1, 0xc9, 0xb1, 0x66, 0xcc, 0x73, 0x42  },
+    { 0x4a, 0x6d, 0x80, 0x91, 0xbf, 0x5e, 0x7d, 0x65, 0x11, 0x89, 0xfa, 0x94, 0xa2, 0x50, 0xb1, 0x4c  },
+    { 0x0e, 0x33, 0xf9, 0x60, 0x55, 0xe7, 0xae, 0x89, 0x3f, 0xfc, 0x0e, 0x3d, 0xcf, 0x49, 0x29, 0x02  },
+    { 0xe6, 0x1c, 0x43, 0x2b, 0x72, 0x0b, 0x19, 0xd1, 0x8e, 0xc8, 0xd8, 0x4b, 0xdc, 0x63, 0x15, 0x1b  },
+    { 0xf7, 0xe5, 0xae, 0xf5, 0x49, 0xf7, 0x82, 0xcf, 0x37, 0x90, 0x55, 0xa6, 0x08, 0x26, 0x9b, 0x16  },
+    { 0x43, 0x8d, 0x03, 0x0f, 0xd0, 0xb7, 0xa5, 0x4f, 0xa8, 0x37, 0xf2, 0xad, 0x20, 0x1a, 0x64, 0x03  },
+    { 0xa5, 0x90, 0xd3, 0xee, 0x4f, 0xbf, 0x04, 0xe3, 0x24, 0x7e, 0x0d, 0x27, 0xf2, 0x86, 0x42, 0x3f  },
+    { 0x5f, 0xe2, 0xc1, 0xa1, 0x72, 0xfe, 0x93, 0xc4, 0xb1, 0x5c, 0xd3, 0x7c, 0xae, 0xf9, 0xf5, 0x38  },
+    { 0x2c, 0x97, 0x32, 0x5c, 0xbd, 0x06, 0xb3, 0x6e, 0xb2, 0x13, 0x3d, 0xd0, 0x8b, 0x3a, 0x01, 0x7c  },
+    { 0x92, 0xc8, 0x14, 0x22, 0x7a, 0x6b, 0xca, 0x94, 0x9f, 0xf0, 0x65, 0x9f, 0x00, 0x2a, 0xd3, 0x9e  },
+    { 0xdc, 0xe8, 0x50, 0x11, 0x0b, 0xd8, 0x32, 0x8c, 0xfb, 0xd5, 0x08, 0x41, 0xd6, 0x91, 0x1d, 0x87  },
+    { 0x67, 0xf1, 0x49, 0x84, 0xc7, 0xda, 0x79, 0x12, 0x48, 0xe3, 0x2b, 0xb5, 0x92, 0x25, 0x83, 0xda  },
+    { 0x19, 0x38, 0xf2, 0xcf, 0x72, 0xd5, 0x4e, 0xe9, 0x7e, 0x94, 0x16, 0x6f, 0xa9, 0x1d, 0x2a, 0x36  },
+    { 0x74, 0x48, 0x1e, 0x96, 0x46, 0xed, 0x49, 0xfe, 0x0f, 0x62, 0x24, 0x30, 0x16, 0x04, 0x69, 0x8e  },
+    { 0x57, 0xfc, 0xa5, 0xde, 0x98, 0xa9, 0xd6, 0xd8, 0x00, 0x64, 0x38, 0xd0, 0x58, 0x3d, 0x8a, 0x1d  },
+    { 0x9f, 0xec, 0xde, 0x1c, 0xef, 0xdc, 0x1c, 0xbe, 0xd4, 0x76, 0x36, 0x74, 0xd9, 0x57, 0x53, 0x59  },
+    { 0xe3, 0x04, 0x0c, 0x00, 0xeb, 0x28, 0xf1, 0x53, 0x66, 0xca, 0x73, 0xcb, 0xd8, 0x72, 0xe7, 0x40  },
+    { 0x76, 0x97, 0x00, 0x9a, 0x6a, 0x83, 0x1d, 0xfe, 0xcc, 0xa9, 0x1c, 0x59, 0x93, 0x67, 0x0f, 0x7a  },
+    { 0x58, 0x53, 0x54, 0x23, 0x21, 0xf5, 0x67, 0xa0, 0x05, 0xd5, 0x47, 0xa4, 0xf0, 0x47, 0x59, 0xbd  },
+    { 0x51, 0x50, 0xd1, 0x77, 0x2f, 0x50, 0x83, 0x4a, 0x50, 0x3e, 0x06, 0x9a, 0x97, 0x3f, 0xbd, 0x7c  }
+};
+
+const uint8_t vectors_halfsip32[MAXLEN][4] =
+{
+    { 0xc0, 0xac, 0xd5, 0x9d },
+    { 0xa4, 0x8e, 0x47, 0x8e },
+    { 0xc1, 0x7d, 0xc7, 0xdf },
+    { 0x18, 0x01, 0x1e, 0xa4 },
+    { 0xd2, 0x67, 0x8a, 0x91 },
+    { 0xa8, 0x3d, 0xbc, 0xf2 },
+    { 0x55, 0xe5, 0x0f, 0xca },
+    { 0xe1, 0xae, 0x0f, 0xf7 },
+    { 0x30, 0x85, 0xd7, 0xcc },
+    { 0x99, 0x73, 0x18, 0x49 },
+    { 0x5e, 0x84, 0x3d, 0xca },
+    { 0x5d, 0x5b, 0x50, 0x6a },
+    { 0x84, 0x33, 0x46, 0xe7 },
+    { 0xec, 0x60, 0x1b, 0x04 },
+    { 0xb9, 0x84, 0x31, 0x05 },
+    { 0x7b, 0x56, 0x51, 0x4f },
+    { 0xc0, 0xdd, 0xba, 0x66 },
+    { 0xf4, 0x50, 0x8d, 0x51 },
+    { 0xe8, 0x0c, 0x26, 0x7e },
+    { 0x5f, 0x9b, 0x41, 0x4f },
+    { 0x7b, 0x60, 0x36, 0x82 },
+    { 0x47, 0x9a, 0xaf, 0xec },
+    { 0xda, 0x9d, 0xff, 0x82 },
+    { 0x31, 0xfa, 0xa9, 0x9b },
+    { 0xf4, 0xda, 0x9e, 0xf0 },
+    { 0x0a, 0x96, 0x2b, 0x24 },
+    { 0x84, 0xb1, 0xca, 0x95 },
+    { 0x8a, 0xeb, 0xe7, 0xd0 },
+    { 0xc1, 0x02, 0xea, 0xea },
+    { 0xe8, 0x46, 0xe9, 0xae },
+    { 0x5c, 0xf6, 0x91, 0xcb },
+    { 0x74, 0x79, 0xa0, 0x1a },
+    { 0xcb, 0x2a, 0x7c, 0x53 },
+    { 0x23, 0x80, 0x69, 0x73 },
+    { 0xd2, 0x39, 0x39, 0x0a },
+    { 0x51, 0x0f, 0x5d, 0xe5 },
+    { 0x4b, 0xd9, 0xbe, 0x04 },
+    { 0x65, 0xc7, 0x3a, 0xcb },
+    { 0xd4, 0xb4, 0xf4, 0xa6 },
+    { 0xff, 0x50, 0xb3, 0xa8 },
+    { 0xfa, 0x17, 0xf5, 0xfd },
+    { 0xe5, 0xf0, 0xe6, 0x75 },
+    { 0x90, 0x02, 0x9f, 0x7f },
+    { 0x4c, 0x8d, 0xc5, 0x0c },
+    { 0xd4, 0xab, 0x38, 0x01 },
+    { 0x14, 0x5a, 0x47, 0x65 },
+    { 0x69, 0x00, 0xf8, 0x29 },
+    { 0x67, 0xdd, 0x53, 0x9a },
+    { 0x9f, 0x9d, 0x47, 0xab },
+    { 0x34, 0x20, 0x67, 0x9e },
+    { 0xf0, 0x7a, 0x7e, 0x26 },
+    { 0x02, 0xc5, 0xa1, 0xa8 },
+    { 0xc0, 0xe3, 0x28, 0x72 },
+    { 0xf7, 0x1a, 0x0c, 0xe5 },
+    { 0x3b, 0x0b, 0x94, 0x67 },
+    { 0x30, 0xbe, 0xf0, 0xcf },
+    { 0xd7, 0x1c, 0xa7, 0xe7 },
+    { 0x74, 0xfb, 0xc0, 0xd8 },
+    { 0x76, 0x24, 0xcc, 0xe2 },
+    { 0x33, 0x2d, 0x18, 0x2a },
+    { 0x71, 0x3b, 0x59, 0x2d },
+    { 0xaa, 0xfd, 0x42, 0x6a },
+    { 0xd1, 0xcf, 0x9d, 0x0a },
+    { 0x86, 0x0b, 0x6e, 0xc8 },
+};
+
+const uint8_t vectors_halfsip64[MAXLEN][8] =
+{
+    { 0xb8, 0x62, 0x84, 0x3a, 0x86, 0x64, 0x73, 0xae },
+    { 0xe0, 0xe2, 0xb6, 0xd2, 0x21, 0x57, 0xd5, 0x75 },
+    { 0x67, 0xde, 0x38, 0xbf, 0xc4, 0xb2, 0x44, 0xd4 },
+    { 0x3c, 0xe0, 0x26, 0x24, 0x27, 0xf9, 0xcc, 0x24 },
+    { 0x33, 0xb2, 0xf3, 0x0a, 0xce, 0x59, 0xa2, 0xf5 },
+    { 0xca, 0x79, 0x45, 0x60, 0x6d, 0x15, 0xa6, 0xd0 },
+    { 0xa7, 0xdf, 0x19, 0x39, 0x12, 0xdc, 0xc5, 0xf9 },
+    { 0xa7, 0xfd, 0x3d, 0xe1, 0x27, 0x7b, 0xf6, 0xe3 },
+    { 0x70, 0xc9, 0x51, 0x15, 0xc6, 0x00, 0x15, 0x03 },
+    { 0x65, 0x4b, 0x0c, 0x2d, 0x10, 0xa0, 0x3d, 0x45 },
+    { 0x31, 0x76, 0x92, 0x4f, 0x01, 0xdd, 0x29, 0x99 },
+    { 0x27, 0x96, 0x5d, 0x92, 0xd1, 0x33, 0x59, 0x30 },
+    { 0xd2, 0x8b, 0xcf, 0xc9, 0x31, 0x42, 0x51, 0xe8 },
+    { 0xd8, 0x82, 0x3e, 0x37, 0xb4, 0x15, 0xfa, 0x43 },
+    { 0x46, 0xe5, 0x13, 0xd6, 0x86, 0xa8, 0xde, 0x4e },
+    { 0x04, 0x26, 0x89, 0x09, 0xcb, 0x1f, 0x7f, 0xf4 },
+    { 0xc7, 0x8e, 0xab, 0x4f, 0x6c, 0x9a, 0x2b, 0xad },
+    { 0xf0, 0x42, 0xd8, 0xf5, 0xf9, 0x8e, 0x43, 0xa4 },
+    { 0x13, 0x7b, 0x2c, 0x31, 0xc9, 0x77, 0x7f, 0x31 },
+    { 0x4c, 0x5b, 0x8d, 0xb5, 0xcc, 0x8b, 0x3f, 0x1e },
+    { 0x56, 0xaa, 0xcf, 0xb6, 0x97, 0x85, 0xd3, 0xa6 },
+    { 0xb7, 0x22, 0x8d, 0x6f, 0x7a, 0x40, 0x6e, 0x5b },
+    { 0xcc, 0x84, 0x85, 0x75, 0x2d, 0x5a, 0x22, 0xcf },
+    { 0xed, 0xec, 0x84, 0x7d, 0xc5, 0xad, 0x2a, 0x92 },
+    { 0xd8, 0xfa, 0xba, 0x0b, 0xdc, 0x46, 0x36, 0xc1 },
+    { 0x52, 0x88, 0x3f, 0x23, 0x2b, 0x74, 0xd7, 0x7f },
+    { 0x8f, 0xb5, 0xe1, 0xd6, 0xc6, 0x5d, 0xf4, 0x06 },
+    { 0xbe, 0x18, 0xd7, 0xb0, 0xa1, 0xec, 0xcd, 0xba },
+    { 0x4f, 0xd7, 0x0f, 0xdf, 0x14, 0x85, 0x20, 0x44 },
+    { 0xf1, 0xce, 0x14, 0x1b, 0x30, 0x1d, 0xd1, 0x2a },
+    { 0x98, 0x32, 0x38, 0xda, 0x09, 0xb0, 0x0b, 0xef },
+    { 0x25, 0xa4, 0x5e, 0xf9, 0xc5, 0xc7, 0x13, 0x24 },
+    { 0x76, 0xb1, 0xdf, 0xec, 0xcd, 0x56, 0x37, 0xd4 },
+    { 0xe0, 0xca, 0xfc, 0x7b, 0x89, 0xba, 0x55, 0x21 },
+    { 0xc3, 0x61, 0xbe, 0xa1, 0x78, 0x53, 0x14, 0x04 },
+    { 0x1f, 0xb3, 0x6e, 0x12, 0x77, 0x06, 0x12, 0x1f },
+    { 0xb2, 0xc5, 0x0e, 0x7a, 0x24, 0x35, 0xfc, 0x05 },
+    { 0x87, 0xa2, 0x2b, 0xc6, 0xec, 0x73, 0x69, 0x29 },
+    { 0xee, 0x92, 0x71, 0x74, 0xfe, 0x9d, 0x67, 0x61 },
+    { 0xa3, 0x8e, 0xc9, 0xdd, 0xf4, 0x4b, 0xec, 0xc0 },
+    { 0x37, 0x17, 0x99, 0x3c, 0xbc, 0xa1, 0x29, 0x09 },
+    { 0x63, 0x94, 0xed, 0xf0, 0x15, 0x7e, 0xa7, 0xae },
+    { 0x25, 0xe8, 0x93, 0x60, 0xef, 0x3d, 0xae, 0x45 },
+    { 0x62, 0x1f, 0xf6, 0xd8, 0x56, 0x46, 0x9b, 0x21 },
+    { 0x6b, 0xf2, 0xf9, 0x8b, 0x8f, 0x85, 0xee, 0x7a },
+    { 0xb4, 0x62, 0x03, 0xe7, 0xdf, 0x69, 0x2b, 0xea },
+    { 0x77, 0xf1, 0x25, 0xfb, 0x38, 0x89, 0xa2, 0xe2 },
+    { 0x72, 0xb7, 0x0d, 0xa6, 0xc9, 0x1a, 0x0c, 0x1c },
+    { 0x47, 0x2c, 0xe2, 0xa9, 0xa1, 0x7d, 0x3f, 0x8a },
+    { 0x47, 0x1d, 0x2f, 0x9a, 0x3b, 0xaa, 0x0e, 0x3e },
+    { 0xfc, 0x95, 0x2a, 0xa5, 0x4a, 0xd8, 0xb3, 0x99 },
+    { 0x28, 0xf5, 0x7f, 0xcd, 0x2f, 0xc1, 0x83, 0x56 },
+    { 0x24, 0xd2, 0xe6, 0x15, 0x9f, 0xae, 0xf6, 0x94 },
+    { 0xd9, 0xb5, 0x0d, 0x34, 0x88, 0xdd, 0xd8, 0x58 },
+    { 0xa7, 0xc6, 0xbf, 0x4e, 0x05, 0xb5, 0x5c, 0x54 },
+    { 0x60, 0x33, 0xe4, 0xcf, 0xe1, 0xcf, 0xdf, 0x71 },
+    { 0xc1, 0x7e, 0x6d, 0x72, 0xda, 0xd1, 0xd0, 0x3a },
+    { 0x14, 0xd7, 0xd5, 0xe2, 0x06, 0xc8, 0x93, 0x0e },
+    { 0x65, 0xb8, 0x91, 0xe4, 0x0a, 0x52, 0xb8, 0x94 },
+    { 0x4b, 0x72, 0x77, 0xc0, 0x5d, 0x84, 0x92, 0x50 },
+    { 0x03, 0xb9, 0x51, 0x4a, 0x9f, 0xd6, 0xba, 0xd2 },
+    { 0x2e, 0xc7, 0x23, 0x2f, 0xbe, 0xe1, 0xcd, 0x29 },
+    { 0xb3, 0xa7, 0xb7, 0x4a, 0x40, 0x0d, 0xf9, 0xdc },
+    { 0xec, 0x37, 0x76, 0xe7, 0x27, 0xc2, 0x0b, 0x93 },
+};
+
+int main()
+{
+    uint8_t in[MAXLEN], out[16], k[16];
+    int i;
+    int fails = 0;
+
+    for( i = 0; i < 16; ++i ) k[i] = i;
+
+
+    printf( "SipHash 64-bit tag:\n");
+    for( i = 0; i < MAXLEN; ++i )
+    {
+        in[i] = i;
+        siphash( in, i, k, out, 8 );
+
+        if ( memcmp( out, vectors_sip64[i], 8 ) )
+        {
+            printf( "fail for %d bytes\n", i );
+            fails++;
+        }
+    }
+    if (!fails) printf("OK\n");
+
+    fails = 0;
+
+    printf( "SipHash 128-bit tag:\n");
+    for( i = 0; i < MAXLEN; ++i )
+    {
+        in[i] = i;
+        siphash( in, i, k, out, 16 );
+
+        if ( memcmp( out, vectors_sip128[i], 16 ) )
+        {
+            printf( "fail for %d bytes\n", i );
+            fails++;
+        }
+    }
+    if (!fails) printf("OK\n");
+
+    fails = 0;
+
+    printf( "HalfSipHash 32-bit tag:\n");
+    for( i = 0; i < MAXLEN; ++i )
+    {
+        in[i] = i;
+        halfsiphash( in, i, k, out, 4 );
+
+        if ( memcmp( out, vectors_halfsip32[i], 4 ) )
+        {
+            printf( "fail for %d bytes\n", i );
+            fails++;
+        }
+    }
+    if (!fails) printf("OK\n");
+
+    fails = 0;
+
+    printf( "HalfSipHash 64-bit tag:\n");
+    for( i = 0; i < MAXLEN; ++i )
+    {
+        in[i] = i;
+        halfsiphash( in, i, k, out, 8 );
+
+        if ( memcmp( out, vectors_halfsip64[i], 8 ) )
+        {
+            printf( "fail for %d bytes\n", i );
+            fails++;
+        }
+    }
+
+    if (!fails) printf("OK\n");
+
+    return 0;
+}