Lines Matching +full:- +full:iv
1 /* $KAME: rijndael-api-fst.c,v 1.10 2001/05/27 09:34:18 itojun Exp $ */
4 * rijndael-api-fst.c v2.3 April '2000
30 #include <crypto/rijndael/rijndael-api-fst.h>
46 key->direction = direction; in rijndael_makeKey()
52 key->keyLen = keyLen; in rijndael_makeKey()
58 memcpy(key->keyMaterial, keyMaterial, keyLen/8); in rijndael_makeKey()
63 key->Nr = rijndaelKeySetupEnc(key->rk, (const u8 *)(key->keyMaterial), keyLen); in rijndael_makeKey()
65 key->Nr = rijndaelKeySetupDec(key->rk, (const u8 *)(key->keyMaterial), keyLen); in rijndael_makeKey()
67 rijndaelKeySetupEnc(key->ek, (const u8 *)(key->keyMaterial), keyLen); in rijndael_makeKey()
71 int rijndael_cipherInit(cipherInstance *cipher, BYTE mode, char *IV) { in rijndael_cipherInit() argument
73 cipher->mode = mode; in rijndael_cipherInit()
77 if (IV != NULL) { in rijndael_cipherInit()
78 memcpy(cipher->IV, IV, RIJNDAEL_MAX_IV_SIZE); in rijndael_cipherInit()
80 memset(cipher->IV, 0, RIJNDAEL_MAX_IV_SIZE); in rijndael_cipherInit()
88 uint8_t block[16], iv[4][4]; in rijndael_blockEncrypt() local
92 key->direction == DIR_DECRYPT) { in rijndael_blockEncrypt()
101 switch (cipher->mode) { in rijndael_blockEncrypt()
103 for (i = numBlocks; i > 0; i--) { in rijndael_blockEncrypt()
104 rijndaelEncrypt(key->rk, key->Nr, input, outBuffer); in rijndael_blockEncrypt()
112 memcpy(block, cipher->IV, 16); in rijndael_blockEncrypt()
113 memcpy(iv, input, 16); in rijndael_blockEncrypt()
114 ((uint32_t*)block)[0] ^= ((uint32_t*)iv)[0]; in rijndael_blockEncrypt()
115 ((uint32_t*)block)[1] ^= ((uint32_t*)iv)[1]; in rijndael_blockEncrypt()
116 ((uint32_t*)block)[2] ^= ((uint32_t*)iv)[2]; in rijndael_blockEncrypt()
117 ((uint32_t*)block)[3] ^= ((uint32_t*)iv)[3]; in rijndael_blockEncrypt()
119 ((uint32_t*)block)[0] = ((uint32_t*)cipher->IV)[0] ^ ((uint32_t*)input)[0]; in rijndael_blockEncrypt()
120 ((uint32_t*)block)[1] = ((uint32_t*)cipher->IV)[1] ^ ((uint32_t*)input)[1]; in rijndael_blockEncrypt()
121 ((uint32_t*)block)[2] = ((uint32_t*)cipher->IV)[2] ^ ((uint32_t*)input)[2]; in rijndael_blockEncrypt()
122 ((uint32_t*)block)[3] = ((uint32_t*)cipher->IV)[3] ^ ((uint32_t*)input)[3]; in rijndael_blockEncrypt()
124 rijndaelEncrypt(key->rk, key->Nr, block, outBuffer); in rijndael_blockEncrypt()
126 for (i = numBlocks - 1; i > 0; i--) { in rijndael_blockEncrypt()
129 memcpy(iv, input, 16); in rijndael_blockEncrypt()
130 ((uint32_t*)block)[0] ^= ((uint32_t*)iv)[0]; in rijndael_blockEncrypt()
131 ((uint32_t*)block)[1] ^= ((uint32_t*)iv)[1]; in rijndael_blockEncrypt()
132 ((uint32_t*)block)[2] ^= ((uint32_t*)iv)[2]; in rijndael_blockEncrypt()
133 ((uint32_t*)block)[3] ^= ((uint32_t*)iv)[3]; in rijndael_blockEncrypt()
141 rijndaelEncrypt(key->rk, key->Nr, block, outBuffer); in rijndael_blockEncrypt()
148 memcpy(iv, cipher->IV, 16); in rijndael_blockEncrypt()
150 *((uint32_t*)iv[0]) = *((uint32_t*)(cipher->IV )); in rijndael_blockEncrypt()
151 *((uint32_t*)iv[1]) = *((uint32_t*)(cipher->IV+ 4)); in rijndael_blockEncrypt()
152 *((uint32_t*)iv[2]) = *((uint32_t*)(cipher->IV+ 8)); in rijndael_blockEncrypt()
153 *((uint32_t*)iv[3]) = *((uint32_t*)(cipher->IV+12)); in rijndael_blockEncrypt()
155 for (i = numBlocks; i > 0; i--) { in rijndael_blockEncrypt()
157 *((uint32_t*) block ) = *((uint32_t*)iv[0]); in rijndael_blockEncrypt()
158 *((uint32_t*)(block+ 4)) = *((uint32_t*)iv[1]); in rijndael_blockEncrypt()
159 *((uint32_t*)(block+ 8)) = *((uint32_t*)iv[2]); in rijndael_blockEncrypt()
160 *((uint32_t*)(block+12)) = *((uint32_t*)iv[3]); in rijndael_blockEncrypt()
161 rijndaelEncrypt(key->ek, key->Nr, block, in rijndael_blockEncrypt()
164 iv[0][0] = (iv[0][0] << 1) | (iv[0][1] >> 7); in rijndael_blockEncrypt()
165 iv[0][1] = (iv[0][1] << 1) | (iv[0][2] >> 7); in rijndael_blockEncrypt()
166 iv[0][2] = (iv[0][2] << 1) | (iv[0][3] >> 7); in rijndael_blockEncrypt()
167 iv[0][3] = (iv[0][3] << 1) | (iv[1][0] >> 7); in rijndael_blockEncrypt()
168 iv[1][0] = (iv[1][0] << 1) | (iv[1][1] >> 7); in rijndael_blockEncrypt()
169 iv[1][1] = (iv[1][1] << 1) | (iv[1][2] >> 7); in rijndael_blockEncrypt()
170 iv[1][2] = (iv[1][2] << 1) | (iv[1][3] >> 7); in rijndael_blockEncrypt()
171 iv[1][3] = (iv[1][3] << 1) | (iv[2][0] >> 7); in rijndael_blockEncrypt()
172 iv[2][0] = (iv[2][0] << 1) | (iv[2][1] >> 7); in rijndael_blockEncrypt()
173 iv[2][1] = (iv[2][1] << 1) | (iv[2][2] >> 7); in rijndael_blockEncrypt()
174 iv[2][2] = (iv[2][2] << 1) | (iv[2][3] >> 7); in rijndael_blockEncrypt()
175 iv[2][3] = (iv[2][3] << 1) | (iv[3][0] >> 7); in rijndael_blockEncrypt()
176 iv[3][0] = (iv[3][0] << 1) | (iv[3][1] >> 7); in rijndael_blockEncrypt()
177 iv[3][1] = (iv[3][1] << 1) | (iv[3][2] >> 7); in rijndael_blockEncrypt()
178 iv[3][2] = (iv[3][2] << 1) | (iv[3][3] >> 7); in rijndael_blockEncrypt()
179 iv[3][3] = (iv[3][3] << 1) | ((outBuffer[k/8] >> (7-(k&7))) & 1); in rijndael_blockEncrypt()
193 * Encrypt data partitioned in octets, using RFC 2040-like padding.
204 uint8_t block[16], *iv, *cp; in rijndael_padEncrypt() local
208 key->direction == DIR_DECRYPT) { in rijndael_padEncrypt()
217 switch (cipher->mode) { in rijndael_padEncrypt()
219 for (i = numBlocks; i > 0; i--) { in rijndael_padEncrypt()
220 rijndaelEncrypt(key->rk, key->Nr, input, outBuffer); in rijndael_padEncrypt()
224 padLen = 16 - (inputOctets - 16*numBlocks); in rijndael_padEncrypt()
227 memcpy(block, input, 16 - padLen); in rijndael_padEncrypt()
228 for (cp = block + 16 - padLen; cp < block + 16; cp++) in rijndael_padEncrypt()
230 rijndaelEncrypt(key->rk, key->Nr, block, outBuffer); in rijndael_padEncrypt()
234 iv = cipher->IV; in rijndael_padEncrypt()
235 for (i = numBlocks; i > 0; i--) { in rijndael_padEncrypt()
236 ((uint32_t*)block)[0] = ((const uint32_t*)input)[0] ^ ((uint32_t*)iv)[0]; in rijndael_padEncrypt()
237 ((uint32_t*)block)[1] = ((const uint32_t*)input)[1] ^ ((uint32_t*)iv)[1]; in rijndael_padEncrypt()
238 ((uint32_t*)block)[2] = ((const uint32_t*)input)[2] ^ ((uint32_t*)iv)[2]; in rijndael_padEncrypt()
239 ((uint32_t*)block)[3] = ((const uint32_t*)input)[3] ^ ((uint32_t*)iv)[3]; in rijndael_padEncrypt()
240 rijndaelEncrypt(key->rk, key->Nr, block, outBuffer); in rijndael_padEncrypt()
241 iv = outBuffer; in rijndael_padEncrypt()
245 padLen = 16 - (inputOctets - 16*numBlocks); in rijndael_padEncrypt()
248 for (i = 0; i < 16 - padLen; i++) { in rijndael_padEncrypt()
249 block[i] = input[i] ^ iv[i]; in rijndael_padEncrypt()
251 for (i = 16 - padLen; i < 16; i++) { in rijndael_padEncrypt()
252 block[i] = (BYTE)padLen ^ iv[i]; in rijndael_padEncrypt()
254 rijndaelEncrypt(key->rk, key->Nr, block, outBuffer); in rijndael_padEncrypt()
268 uint8_t block[16], iv[4][4]; in rijndael_blockDecrypt() local
272 (cipher->mode != MODE_CFB1 && key->direction == DIR_ENCRYPT)) { in rijndael_blockDecrypt()
281 switch (cipher->mode) { in rijndael_blockDecrypt()
283 for (i = numBlocks; i > 0; i--) { in rijndael_blockDecrypt()
284 rijndaelDecrypt(key->rk, key->Nr, input, outBuffer); in rijndael_blockDecrypt()
292 memcpy(iv, cipher->IV, 16); in rijndael_blockDecrypt()
294 *((uint32_t*)iv[0]) = *((uint32_t*)(cipher->IV )); in rijndael_blockDecrypt()
295 *((uint32_t*)iv[1]) = *((uint32_t*)(cipher->IV+ 4)); in rijndael_blockDecrypt()
296 *((uint32_t*)iv[2]) = *((uint32_t*)(cipher->IV+ 8)); in rijndael_blockDecrypt()
297 *((uint32_t*)iv[3]) = *((uint32_t*)(cipher->IV+12)); in rijndael_blockDecrypt()
299 for (i = numBlocks; i > 0; i--) { in rijndael_blockDecrypt()
300 rijndaelDecrypt(key->rk, key->Nr, input, block); in rijndael_blockDecrypt()
301 ((uint32_t*)block)[0] ^= *((uint32_t*)iv[0]); in rijndael_blockDecrypt()
302 ((uint32_t*)block)[1] ^= *((uint32_t*)iv[1]); in rijndael_blockDecrypt()
303 ((uint32_t*)block)[2] ^= *((uint32_t*)iv[2]); in rijndael_blockDecrypt()
304 ((uint32_t*)block)[3] ^= *((uint32_t*)iv[3]); in rijndael_blockDecrypt()
306 memcpy(iv, input, 16); in rijndael_blockDecrypt()
309 *((uint32_t*)iv[0]) = ((uint32_t*)input)[0]; ((uint32_t*)outBuffer)[0] = ((uint32_t*)block)[0]; in rijndael_blockDecrypt()
310 *((uint32_t*)iv[1]) = ((uint32_t*)input)[1]; ((uint32_t*)outBuffer)[1] = ((uint32_t*)block)[1]; in rijndael_blockDecrypt()
311 *((uint32_t*)iv[2]) = ((uint32_t*)input)[2]; ((uint32_t*)outBuffer)[2] = ((uint32_t*)block)[2]; in rijndael_blockDecrypt()
312 *((uint32_t*)iv[3]) = ((uint32_t*)input)[3]; ((uint32_t*)outBuffer)[3] = ((uint32_t*)block)[3]; in rijndael_blockDecrypt()
321 memcpy(iv, cipher->IV, 16); in rijndael_blockDecrypt()
323 *((uint32_t*)iv[0]) = *((uint32_t*)(cipher->IV)); in rijndael_blockDecrypt()
324 *((uint32_t*)iv[1]) = *((uint32_t*)(cipher->IV+ 4)); in rijndael_blockDecrypt()
325 *((uint32_t*)iv[2]) = *((uint32_t*)(cipher->IV+ 8)); in rijndael_blockDecrypt()
326 *((uint32_t*)iv[3]) = *((uint32_t*)(cipher->IV+12)); in rijndael_blockDecrypt()
328 for (i = numBlocks; i > 0; i--) { in rijndael_blockDecrypt()
330 *((uint32_t*) block ) = *((uint32_t*)iv[0]); in rijndael_blockDecrypt()
331 *((uint32_t*)(block+ 4)) = *((uint32_t*)iv[1]); in rijndael_blockDecrypt()
332 *((uint32_t*)(block+ 8)) = *((uint32_t*)iv[2]); in rijndael_blockDecrypt()
333 *((uint32_t*)(block+12)) = *((uint32_t*)iv[3]); in rijndael_blockDecrypt()
334 rijndaelEncrypt(key->ek, key->Nr, block, in rijndael_blockDecrypt()
336 iv[0][0] = (iv[0][0] << 1) | (iv[0][1] >> 7); in rijndael_blockDecrypt()
337 iv[0][1] = (iv[0][1] << 1) | (iv[0][2] >> 7); in rijndael_blockDecrypt()
338 iv[0][2] = (iv[0][2] << 1) | (iv[0][3] >> 7); in rijndael_blockDecrypt()
339 iv[0][3] = (iv[0][3] << 1) | (iv[1][0] >> 7); in rijndael_blockDecrypt()
340 iv[1][0] = (iv[1][0] << 1) | (iv[1][1] >> 7); in rijndael_blockDecrypt()
341 iv[1][1] = (iv[1][1] << 1) | (iv[1][2] >> 7); in rijndael_blockDecrypt()
342 iv[1][2] = (iv[1][2] << 1) | (iv[1][3] >> 7); in rijndael_blockDecrypt()
343 iv[1][3] = (iv[1][3] << 1) | (iv[2][0] >> 7); in rijndael_blockDecrypt()
344 iv[2][0] = (iv[2][0] << 1) | (iv[2][1] >> 7); in rijndael_blockDecrypt()
345 iv[2][1] = (iv[2][1] << 1) | (iv[2][2] >> 7); in rijndael_blockDecrypt()
346 iv[2][2] = (iv[2][2] << 1) | (iv[2][3] >> 7); in rijndael_blockDecrypt()
347 iv[2][3] = (iv[2][3] << 1) | (iv[3][0] >> 7); in rijndael_blockDecrypt()
348 iv[3][0] = (iv[3][0] << 1) | (iv[3][1] >> 7); in rijndael_blockDecrypt()
349 iv[3][1] = (iv[3][1] << 1) | (iv[3][2] >> 7); in rijndael_blockDecrypt()
350 iv[3][2] = (iv[3][2] << 1) | (iv[3][3] >> 7); in rijndael_blockDecrypt()
351 iv[3][3] = (iv[3][3] << 1) | ((input[k/8] >> (7-(k&7))) & 1); in rijndael_blockDecrypt()
369 uint32_t iv[4]; in rijndael_padDecrypt() local
373 key->direction == DIR_ENCRYPT) { in rijndael_padDecrypt()
385 switch (cipher->mode) { in rijndael_padDecrypt()
388 for (i = numBlocks - 1; i > 0; i--) { in rijndael_padDecrypt()
389 rijndaelDecrypt(key->rk, key->Nr, input, outBuffer); in rijndael_padDecrypt()
394 rijndaelDecrypt(key->rk, key->Nr, input, block); in rijndael_padDecrypt()
400 for (i = 16 - padLen; i < 16; i++) { in rijndael_padDecrypt()
406 memcpy(outBuffer, block, 16 - padLen); in rijndael_padDecrypt()
410 memcpy(iv, cipher->IV, 16); in rijndael_padDecrypt()
412 for (i = numBlocks - 1; i > 0; i--) { in rijndael_padDecrypt()
413 rijndaelDecrypt(key->rk, key->Nr, input, block); in rijndael_padDecrypt()
414 ((uint32_t*)block)[0] ^= iv[0]; in rijndael_padDecrypt()
415 ((uint32_t*)block)[1] ^= iv[1]; in rijndael_padDecrypt()
416 ((uint32_t*)block)[2] ^= iv[2]; in rijndael_padDecrypt()
417 ((uint32_t*)block)[3] ^= iv[3]; in rijndael_padDecrypt()
418 memcpy(iv, input, 16); in rijndael_padDecrypt()
424 rijndaelDecrypt(key->rk, key->Nr, input, block); in rijndael_padDecrypt()
425 ((uint32_t*)block)[0] ^= iv[0]; in rijndael_padDecrypt()
426 ((uint32_t*)block)[1] ^= iv[1]; in rijndael_padDecrypt()
427 ((uint32_t*)block)[2] ^= iv[2]; in rijndael_padDecrypt()
428 ((uint32_t*)block)[3] ^= iv[3]; in rijndael_padDecrypt()
434 for (i = 16 - padLen; i < 16; i++) { in rijndael_padDecrypt()
440 memcpy(outBuffer, block, 16 - padLen); in rijndael_padDecrypt()
447 rval = 16*numBlocks - padLen; in rijndael_padDecrypt()