correct chacha20 for multiple messages

libi2pd/ChaCha20.h

@@ -18,12 +18,28 @@ namespace i2p
 {
 namespace crypto
 {
-  const std::size_t CHACHA20_KEY_BYTES = 32;
-  const std::size_t CHACHA20_NOUNCE_BYTES = 12;
+ 	const std::size_t CHACHA20_KEY_BYTES = 32;
+  	const std::size_t CHACHA20_NOUNCE_BYTES = 12;
+	
+namespace chacha
+{
+	constexpr std::size_t blocksize = 64;	
+	constexpr int rounds = 20;
+
+	struct Chacha20State;
+	struct Chacha20Block
+	{
+	  Chacha20Block () {};
+	  Chacha20Block (Chacha20Block &&) = delete;
+
+	  uint8_t data[blocksize];
+
+	  void operator << (const Chacha20State & st);
+	};
 
 	struct Chacha20State
 	{
-		Chacha20State () {};
+		Chacha20State (): offset (0) {};
 		Chacha20State (Chacha20State &&) = delete;
 
 		Chacha20State & operator += (const Chacha20State & other)
@@ -38,10 +54,13 @@ namespace crypto
 		   memcpy(data, other.data, sizeof(uint32_t) * 16);
 		}
 		uint32_t data[16];
-	};	
+		Chacha20Block block;
+		size_t offset; 
+	};
 
 	void Chacha20Init (Chacha20State& state, const uint8_t * nonce, const uint8_t * key, uint32_t counter);
-	void Chacha20Encrypt (Chacha20State& state, uint8_t * buf, size_t sz);
+	void Chacha20Encrypt (Chacha20State& state, uint8_t * buf, size_t sz);		
+}
 
   /** encrypt buf in place with chacha20 */
   void chacha20(uint8_t * buf, size_t sz, const uint8_t * nonce, const uint8_t * key, uint32_t counter=1);