1 /* Kernel cryptographic api.
2 * cast5.c - Cast5 cipher algorithm (rfc2144).
3 *
4 * Derived from GnuPG implementation of cast5.
5 *
6 * Major Changes.
7 * Complete conformance to rfc2144.
8 * Supports key size from 40 to 128 bits.
9 *
10 * Copyright (C) 1998, 1999, 2000, 2001 Free Software Foundation, Inc.
11 * Copyright (C) 2003 Kartikey Mahendra Bhatt <kartik_me@hotmail.com>.
12 *
13 * This program is free software; you can redistribute it and/or modify it
14 * under the terms of GNU General Public License as published by the Free
15 * Software Foundation; either version 2 of the License, or (at your option)
16 * any later version.
17 *
18 * You should have received a copy of the GNU General Public License
19 * along with this program; if not, write to the Free Software
20 * Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA
21 */
22
23
24 #include <asm/byteorder.h>
25 #include <linux/init.h>
26 #include <linux/crypto.h>
27 #include <linux/module.h>
28 #include <linux/errno.h>
29 #include <linux/string.h>
30 #include <linux/types.h>
31
32 #define CAST5_BLOCK_SIZE 8
33 #define CAST5_MIN_KEY_SIZE 5
34 #define CAST5_MAX_KEY_SIZE 16
35
36 struct cast5_ctx {
37 u32 Km[16];
38 u8 Kr[16];
39 int rr; /* rr?number of rounds = 16:number of rounds = 12; (rfc 2144) */
40 };
41
42
43 static const u32 s1[256] = {
44 0x30fb40d4, 0x9fa0ff0b, 0x6beccd2f, 0x3f258c7a, 0x1e213f2f,
45 0x9c004dd3, 0x6003e540, 0xcf9fc949,
46 0xbfd4af27, 0x88bbbdb5, 0xe2034090, 0x98d09675, 0x6e63a0e0,
47 0x15c361d2, 0xc2e7661d, 0x22d4ff8e,
48 0x28683b6f, 0xc07fd059, 0xff2379c8, 0x775f50e2, 0x43c340d3,
49 0xdf2f8656, 0x887ca41a, 0xa2d2bd2d,
50 0xa1c9e0d6, 0x346c4819, 0x61b76d87, 0x22540f2f, 0x2abe32e1,
51 0xaa54166b, 0x22568e3a, 0xa2d341d0,
52 0x66db40c8, 0xa784392f, 0x004dff2f, 0x2db9d2de, 0x97943fac,
53 0x4a97c1d8, 0x527644b7, 0xb5f437a7,
54 0xb82cbaef, 0xd751d159, 0x6ff7f0ed, 0x5a097a1f, 0x827b68d0,
55 0x90ecf52e, 0x22b0c054, 0xbc8e5935,
56 0x4b6d2f7f, 0x50bb64a2, 0xd2664910, 0xbee5812d, 0xb7332290,
57 0xe93b159f, 0xb48ee411, 0x4bff345d,
58 0xfd45c240, 0xad31973f, 0xc4f6d02e, 0x55fc8165, 0xd5b1caad,
59 0xa1ac2dae, 0xa2d4b76d, 0xc19b0c50,
60 0x882240f2, 0x0c6e4f38, 0xa4e4bfd7, 0x4f5ba272, 0x564c1d2f,
61 0xc59c5319, 0xb949e354, 0xb04669fe,
62 0xb1b6ab8a, 0xc71358dd, 0x6385c545, 0x110f935d, 0x57538ad5,
63 0x6a390493, 0xe63d37e0, 0x2a54f6b3,
64 0x3a787d5f, 0x6276a0b5, 0x19a6fcdf, 0x7a42206a, 0x29f9d4d5,
65 0xf61b1891, 0xbb72275e, 0xaa508167,
66 0x38901091, 0xc6b505eb, 0x84c7cb8c, 0x2ad75a0f, 0x874a1427,
67 0xa2d1936b, 0x2ad286af, 0xaa56d291,
68 0xd7894360, 0x425c750d, 0x93b39e26, 0x187184c9, 0x6c00b32d,
69 0x73e2bb14, 0xa0bebc3c, 0x54623779,
70 0x64459eab, 0x3f328b82, 0x7718cf82, 0x59a2cea6, 0x04ee002e,
71 0x89fe78e6, 0x3fab0950, 0x325ff6c2,
72 0x81383f05, 0x6963c5c8, 0x76cb5ad6, 0xd49974c9, 0xca180dcf,
73 0x380782d5, 0xc7fa5cf6, 0x8ac31511,
74 0x35e79e13, 0x47da91d0, 0xf40f9086, 0xa7e2419e, 0x31366241,
75 0x051ef495, 0xaa573b04, 0x4a805d8d,
76 0x548300d0, 0x00322a3c, 0xbf64cddf, 0xba57a68e, 0x75c6372b,
77 0x50afd341, 0xa7c13275, 0x915a0bf5,
78 0x6b54bfab, 0x2b0b1426, 0xab4cc9d7, 0x449ccd82, 0xf7fbf265,
79 0xab85c5f3, 0x1b55db94, 0xaad4e324,
80 0xcfa4bd3f, 0x2deaa3e2, 0x9e204d02, 0xc8bd25ac, 0xeadf55b3,
81 0xd5bd9e98, 0xe31231b2, 0x2ad5ad6c,
82 0x954329de, 0xadbe4528, 0xd8710f69, 0xaa51c90f, 0xaa786bf6,
83 0x22513f1e, 0xaa51a79b, 0x2ad344cc,
84 0x7b5a41f0, 0xd37cfbad, 0x1b069505, 0x41ece491, 0xb4c332e6,
85 0x032268d4, 0xc9600acc, 0xce387e6d,
86 0xbf6bb16c, 0x6a70fb78, 0x0d03d9c9, 0xd4df39de, 0xe01063da,
87 0x4736f464, 0x5ad328d8, 0xb347cc96,
88 0x75bb0fc3, 0x98511bfb, 0x4ffbcc35, 0xb58bcf6a, 0xe11f0abc,
89 0xbfc5fe4a, 0xa70aec10, 0xac39570a,
90 0x3f04442f, 0x6188b153, 0xe0397a2e, 0x5727cb79, 0x9ceb418f,
91 0x1cacd68d, 0x2ad37c96, 0x0175cb9d,
92 0xc69dff09, 0xc75b65f0, 0xd9db40d8, 0xec0e7779, 0x4744ead4,
93 0xb11c3274, 0xdd24cb9e, 0x7e1c54bd,
94 0xf01144f9, 0xd2240eb1, 0x9675b3fd, 0xa3ac3755, 0xd47c27af,
95 0x51c85f4d, 0x56907596, 0xa5bb15e6,
96 0x580304f0, 0xca042cf1, 0x011a37ea, 0x8dbfaadb, 0x35ba3e4a,
97 0x3526ffa0, 0xc37b4d09, 0xbc306ed9,
98 0x98a52666, 0x5648f725, 0xff5e569d, 0x0ced63d0, 0x7c63b2cf,
99 0x700b45e1, 0xd5ea50f1, 0x85a92872,
100 0xaf1fbda7, 0xd4234870, 0xa7870bf3, 0x2d3b4d79, 0x42e04198,
101 0x0cd0ede7, 0x26470db8, 0xf881814c,
102 0x474d6ad7, 0x7c0c5e5c, 0xd1231959, 0x381b7298, 0xf5d2f4db,
103 0xab838653, 0x6e2f1e23, 0x83719c9e,
104 0xbd91e046, 0x9a56456e, 0xdc39200c, 0x20c8c571, 0x962bda1c,
105 0xe1e696ff, 0xb141ab08, 0x7cca89b9,
106 0x1a69e783, 0x02cc4843, 0xa2f7c579, 0x429ef47d, 0x427b169c,
107 0x5ac9f049, 0xdd8f0f00, 0x5c8165bf
108 };
109 static const u32 s2[256] = {
110 0x1f201094, 0xef0ba75b, 0x69e3cf7e, 0x393f4380, 0xfe61cf7a,
111 0xeec5207a, 0x55889c94, 0x72fc0651,
112 0xada7ef79, 0x4e1d7235, 0xd55a63ce, 0xde0436ba, 0x99c430ef,
113 0x5f0c0794, 0x18dcdb7d, 0xa1d6eff3,
114 0xa0b52f7b, 0x59e83605, 0xee15b094, 0xe9ffd909, 0xdc440086,
115 0xef944459, 0xba83ccb3, 0xe0c3cdfb,
116 0xd1da4181, 0x3b092ab1, 0xf997f1c1, 0xa5e6cf7b, 0x01420ddb,
117 0xe4e7ef5b, 0x25a1ff41, 0xe180f806,
118 0x1fc41080, 0x179bee7a, 0xd37ac6a9, 0xfe5830a4, 0x98de8b7f,
119 0x77e83f4e, 0x79929269, 0x24fa9f7b,
120 0xe113c85b, 0xacc40083, 0xd7503525, 0xf7ea615f, 0x62143154,
121 0x0d554b63, 0x5d681121, 0xc866c359,
122 0x3d63cf73, 0xcee234c0, 0xd4d87e87, 0x5c672b21, 0x071f6181,
123 0x39f7627f, 0x361e3084, 0xe4eb573b,
124 0x602f64a4, 0xd63acd9c, 0x1bbc4635, 0x9e81032d, 0x2701f50c,
125 0x99847ab4, 0xa0e3df79, 0xba6cf38c,
126 0x10843094, 0x2537a95e, 0xf46f6ffe, 0xa1ff3b1f, 0x208cfb6a,
127 0x8f458c74, 0xd9e0a227, 0x4ec73a34,
128 0xfc884f69, 0x3e4de8df, 0xef0e0088, 0x3559648d, 0x8a45388c,
129 0x1d804366, 0x721d9bfd, 0xa58684bb,
130 0xe8256333, 0x844e8212, 0x128d8098, 0xfed33fb4, 0xce280ae1,
131 0x27e19ba5, 0xd5a6c252, 0xe49754bd,
132 0xc5d655dd, 0xeb667064, 0x77840b4d, 0xa1b6a801, 0x84db26a9,
133 0xe0b56714, 0x21f043b7, 0xe5d05860,
134 0x54f03084, 0x066ff472, 0xa31aa153, 0xdadc4755, 0xb5625dbf,
135 0x68561be6, 0x83ca6b94, 0x2d6ed23b,
136 0xeccf01db, 0xa6d3d0ba, 0xb6803d5c, 0xaf77a709, 0x33b4a34c,
137 0x397bc8d6, 0x5ee22b95, 0x5f0e5304,
138 0x81ed6f61, 0x20e74364, 0xb45e1378, 0xde18639b, 0x881ca122,
139 0xb96726d1, 0x8049a7e8, 0x22b7da7b,
140 0x5e552d25, 0x5272d237, 0x79d2951c, 0xc60d894c, 0x488cb402,
141 0x1ba4fe5b, 0xa4b09f6b, 0x1ca815cf,
142 0xa20c3005, 0x8871df63, 0xb9de2fcb, 0x0cc6c9e9, 0x0beeff53,
143 0xe3214517, 0xb4542835, 0x9f63293c,
144 0xee41e729, 0x6e1d2d7c, 0x50045286, 0x1e6685f3, 0xf33401c6,
145 0x30a22c95, 0x31a70850, 0x60930f13,
146 0x73f98417, 0xa1269859, 0xec645c44, 0x52c877a9, 0xcdff33a6,
147 0xa02b1741, 0x7cbad9a2, 0x2180036f,
148 0x50d99c08, 0xcb3f4861, 0xc26bd765, 0x64a3f6ab, 0x80342676,
149 0x25a75e7b, 0xe4e6d1fc, 0x20c710e6,
150 0xcdf0b680, 0x17844d3b, 0x31eef84d, 0x7e0824e4, 0x2ccb49eb,
151 0x846a3bae, 0x8ff77888, 0xee5d60f6,
152 0x7af75673, 0x2fdd5cdb, 0xa11631c1, 0x30f66f43, 0xb3faec54,
153 0x157fd7fa, 0xef8579cc, 0xd152de58,
154 0xdb2ffd5e, 0x8f32ce19, 0x306af97a, 0x02f03ef8, 0x99319ad5,
155 0xc242fa0f, 0xa7e3ebb0, 0xc68e4906,
156 0xb8da230c, 0x80823028, 0xdcdef3c8, 0xd35fb171, 0x088a1bc8,
157 0xbec0c560, 0x61a3c9e8, 0xbca8f54d,
158 0xc72feffa, 0x22822e99, 0x82c570b4, 0xd8d94e89, 0x8b1c34bc,
159 0x301e16e6, 0x273be979, 0xb0ffeaa6,
160 0x61d9b8c6, 0x00b24869, 0xb7ffce3f, 0x08dc283b, 0x43daf65a,
161 0xf7e19798, 0x7619b72f, 0x8f1c9ba4,
162 0xdc8637a0, 0x16a7d3b1, 0x9fc393b7, 0xa7136eeb, 0xc6bcc63e,
163 0x1a513742, 0xef6828bc, 0x520365d6,
164 0x2d6a77ab, 0x3527ed4b, 0x821fd216, 0x095c6e2e, 0xdb92f2fb,
165 0x5eea29cb, 0x145892f5, 0x91584f7f,
166 0x5483697b, 0x2667a8cc, 0x85196048, 0x8c4bacea, 0x833860d4,
167 0x0d23e0f9, 0x6c387e8a, 0x0ae6d249,
168 0xb284600c, 0xd835731d, 0xdcb1c647, 0xac4c56ea, 0x3ebd81b3,
169 0x230eabb0, 0x6438bc87, 0xf0b5b1fa,
170 0x8f5ea2b3, 0xfc184642, 0x0a036b7a, 0x4fb089bd, 0x649da589,
171 0xa345415e, 0x5c038323, 0x3e5d3bb9,
172 0x43d79572, 0x7e6dd07c, 0x06dfdf1e, 0x6c6cc4ef, 0x7160a539,
173 0x73bfbe70, 0x83877605, 0x4523ecf1
174 };
175 static const u32 s3[256] = {
176 0x8defc240, 0x25fa5d9f, 0xeb903dbf, 0xe810c907, 0x47607fff,
177 0x369fe44b, 0x8c1fc644, 0xaececa90,
178 0xbeb1f9bf, 0xeefbcaea, 0xe8cf1950, 0x51df07ae, 0x920e8806,
179 0xf0ad0548, 0xe13c8d83, 0x927010d5,
180 0x11107d9f, 0x07647db9, 0xb2e3e4d4, 0x3d4f285e, 0xb9afa820,
181 0xfade82e0, 0xa067268b, 0x8272792e,
182 0x553fb2c0, 0x489ae22b, 0xd4ef9794, 0x125e3fbc, 0x21fffcee,
183 0x825b1bfd, 0x9255c5ed, 0x1257a240,
184 0x4e1a8302, 0xbae07fff, 0x528246e7, 0x8e57140e, 0x3373f7bf,
185 0x8c9f8188, 0xa6fc4ee8, 0xc982b5a5,
186 0xa8c01db7, 0x579fc264, 0x67094f31, 0xf2bd3f5f, 0x40fff7c1,
187 0x1fb78dfc, 0x8e6bd2c1, 0x437be59b,
188 0x99b03dbf, 0xb5dbc64b, 0x638dc0e6, 0x55819d99, 0xa197c81c,
189 0x4a012d6e, 0xc5884a28, 0xccc36f71,
190 0xb843c213, 0x6c0743f1, 0x8309893c, 0x0feddd5f, 0x2f7fe850,
191 0xd7c07f7e, 0x02507fbf, 0x5afb9a04,
192 0xa747d2d0, 0x1651192e, 0xaf70bf3e, 0x58c31380, 0x5f98302e,
193 0x727cc3c4, 0x0a0fb402, 0x0f7fef82,
194 0x8c96fdad, 0x5d2c2aae, 0x8ee99a49, 0x50da88b8, 0x8427f4a0,
195 0x1eac5790, 0x796fb449, 0x8252dc15,
196 0xefbd7d9b, 0xa672597d, 0xada840d8, 0x45f54504, 0xfa5d7403,
197 0xe83ec305, 0x4f91751a, 0x925669c2,
198 0x23efe941, 0xa903f12e, 0x60270df2, 0x0276e4b6, 0x94fd6574,
199 0x927985b2, 0x8276dbcb, 0x02778176,
200 0xf8af918d, 0x4e48f79e, 0x8f616ddf, 0xe29d840e, 0x842f7d83,
201 0x340ce5c8, 0x96bbb682, 0x93b4b148,
202 0xef303cab, 0x984faf28, 0x779faf9b, 0x92dc560d, 0x224d1e20,
203 0x8437aa88, 0x7d29dc96, 0x2756d3dc,
204 0x8b907cee, 0xb51fd240, 0xe7c07ce3, 0xe566b4a1, 0xc3e9615e,
205 0x3cf8209d, 0x6094d1e3, 0xcd9ca341,
206 0x5c76460e, 0x00ea983b, 0xd4d67881, 0xfd47572c, 0xf76cedd9,
207 0xbda8229c, 0x127dadaa, 0x438a074e,
208 0x1f97c090, 0x081bdb8a, 0x93a07ebe, 0xb938ca15, 0x97b03cff,
209 0x3dc2c0f8, 0x8d1ab2ec, 0x64380e51,
210 0x68cc7bfb, 0xd90f2788, 0x12490181, 0x5de5ffd4, 0xdd7ef86a,
211 0x76a2e214, 0xb9a40368, 0x925d958f,
212 0x4b39fffa, 0xba39aee9, 0xa4ffd30b, 0xfaf7933b, 0x6d498623,
213 0x193cbcfa, 0x27627545, 0x825cf47a,
214 0x61bd8ba0, 0xd11e42d1, 0xcead04f4, 0x127ea392, 0x10428db7,
215 0x8272a972, 0x9270c4a8, 0x127de50b,
216 0x285ba1c8, 0x3c62f44f, 0x35c0eaa5, 0xe805d231, 0x428929fb,
217 0xb4fcdf82, 0x4fb66a53, 0x0e7dc15b,
218 0x1f081fab, 0x108618ae, 0xfcfd086d, 0xf9ff2889, 0x694bcc11,
219 0x236a5cae, 0x12deca4d, 0x2c3f8cc5,
220 0xd2d02dfe, 0xf8ef5896, 0xe4cf52da, 0x95155b67, 0x494a488c,
221 0xb9b6a80c, 0x5c8f82bc, 0x89d36b45,
222 0x3a609437, 0xec00c9a9, 0x44715253, 0x0a874b49, 0xd773bc40,
223 0x7c34671c, 0x02717ef6, 0x4feb5536,
224 0xa2d02fff, 0xd2bf60c4, 0xd43f03c0, 0x50b4ef6d, 0x07478cd1,
225 0x006e1888, 0xa2e53f55, 0xb9e6d4bc,
226 0xa2048016, 0x97573833, 0xd7207d67, 0xde0f8f3d, 0x72f87b33,
227 0xabcc4f33, 0x7688c55d, 0x7b00a6b0,
228 0x947b0001, 0x570075d2, 0xf9bb88f8, 0x8942019e, 0x4264a5ff,
229 0x856302e0, 0x72dbd92b, 0xee971b69,
230 0x6ea22fde, 0x5f08ae2b, 0xaf7a616d, 0xe5c98767, 0xcf1febd2,
231 0x61efc8c2, 0xf1ac2571, 0xcc8239c2,
232 0x67214cb8, 0xb1e583d1, 0xb7dc3e62, 0x7f10bdce, 0xf90a5c38,
233 0x0ff0443d, 0x606e6dc6, 0x60543a49,
234 0x5727c148, 0x2be98a1d, 0x8ab41738, 0x20e1be24, 0xaf96da0f,
235 0x68458425, 0x99833be5, 0x600d457d,
236 0x282f9350, 0x8334b362, 0xd91d1120, 0x2b6d8da0, 0x642b1e31,
237 0x9c305a00, 0x52bce688, 0x1b03588a,
238 0xf7baefd5, 0x4142ed9c, 0xa4315c11, 0x83323ec5, 0xdfef4636,
239 0xa133c501, 0xe9d3531c, 0xee353783
240 };
241 static const u32 s4[256] = {
242 0x9db30420, 0x1fb6e9de, 0xa7be7bef, 0xd273a298, 0x4a4f7bdb,
243 0x64ad8c57, 0x85510443, 0xfa020ed1,
244 0x7e287aff, 0xe60fb663, 0x095f35a1, 0x79ebf120, 0xfd059d43,
245 0x6497b7b1, 0xf3641f63, 0x241e4adf,
246 0x28147f5f, 0x4fa2b8cd, 0xc9430040, 0x0cc32220, 0xfdd30b30,
247 0xc0a5374f, 0x1d2d00d9, 0x24147b15,
248 0xee4d111a, 0x0fca5167, 0x71ff904c, 0x2d195ffe, 0x1a05645f,
249 0x0c13fefe, 0x081b08ca, 0x05170121,
250 0x80530100, 0xe83e5efe, 0xac9af4f8, 0x7fe72701, 0xd2b8ee5f,
251 0x06df4261, 0xbb9e9b8a, 0x7293ea25,
252 0xce84ffdf, 0xf5718801, 0x3dd64b04, 0xa26f263b, 0x7ed48400,
253 0x547eebe6, 0x446d4ca0, 0x6cf3d6f5,
254 0x2649abdf, 0xaea0c7f5, 0x36338cc1, 0x503f7e93, 0xd3772061,
255 0x11b638e1, 0x72500e03, 0xf80eb2bb,
256 0xabe0502e, 0xec8d77de, 0x57971e81, 0xe14f6746, 0xc9335400,
257 0x6920318f, 0x081dbb99, 0xffc304a5,
258 0x4d351805, 0x7f3d5ce3, 0xa6c866c6, 0x5d5bcca9, 0xdaec6fea,
259 0x9f926f91, 0x9f46222f, 0x3991467d,
260 0xa5bf6d8e, 0x1143c44f, 0x43958302, 0xd0214eeb, 0x022083b8,
261 0x3fb6180c, 0x18f8931e, 0x281658e6,
262 0x26486e3e, 0x8bd78a70, 0x7477e4c1, 0xb506e07c, 0xf32d0a25,
263 0x79098b02, 0xe4eabb81, 0x28123b23,
264 0x69dead38, 0x1574ca16, 0xdf871b62, 0x211c40b7, 0xa51a9ef9,
265 0x0014377b, 0x041e8ac8, 0x09114003,
266 0xbd59e4d2, 0xe3d156d5, 0x4fe876d5, 0x2f91a340, 0x557be8de,
267 0x00eae4a7, 0x0ce5c2ec, 0x4db4bba6,
268 0xe756bdff, 0xdd3369ac, 0xec17b035, 0x06572327, 0x99afc8b0,
269 0x56c8c391, 0x6b65811c, 0x5e146119,
270 0x6e85cb75, 0xbe07c002, 0xc2325577, 0x893ff4ec, 0x5bbfc92d,
271 0xd0ec3b25, 0xb7801ab7, 0x8d6d3b24,
272 0x20c763ef, 0xc366a5fc, 0x9c382880, 0x0ace3205, 0xaac9548a,
273 0xeca1d7c7, 0x041afa32, 0x1d16625a,
274 0x6701902c, 0x9b757a54, 0x31d477f7, 0x9126b031, 0x36cc6fdb,
275 0xc70b8b46, 0xd9e66a48, 0x56e55a79,
276 0x026a4ceb, 0x52437eff, 0x2f8f76b4, 0x0df980a5, 0x8674cde3,
277 0xedda04eb, 0x17a9be04, 0x2c18f4df,
278 0xb7747f9d, 0xab2af7b4, 0xefc34d20, 0x2e096b7c, 0x1741a254,
279 0xe5b6a035, 0x213d42f6, 0x2c1c7c26,
280 0x61c2f50f, 0x6552daf9, 0xd2c231f8, 0x25130f69, 0xd8167fa2,
281 0x0418f2c8, 0x001a96a6, 0x0d1526ab,
282 0x63315c21, 0x5e0a72ec, 0x49bafefd, 0x187908d9, 0x8d0dbd86,
283 0x311170a7, 0x3e9b640c, 0xcc3e10d7,
284 0xd5cad3b6, 0x0caec388, 0xf73001e1, 0x6c728aff, 0x71eae2a1,
285 0x1f9af36e, 0xcfcbd12f, 0xc1de8417,
286 0xac07be6b, 0xcb44a1d8, 0x8b9b0f56, 0x013988c3, 0xb1c52fca,
287 0xb4be31cd, 0xd8782806, 0x12a3a4e2,
288 0x6f7de532, 0x58fd7eb6, 0xd01ee900, 0x24adffc2, 0xf4990fc5,
289 0x9711aac5, 0x001d7b95, 0x82e5e7d2,
290 0x109873f6, 0x00613096, 0xc32d9521, 0xada121ff, 0x29908415,
291 0x7fbb977f, 0xaf9eb3db, 0x29c9ed2a,
292 0x5ce2a465, 0xa730f32c, 0xd0aa3fe8, 0x8a5cc091, 0xd49e2ce7,
293 0x0ce454a9, 0xd60acd86, 0x015f1919,
294 0x77079103, 0xdea03af6, 0x78a8565e, 0xdee356df, 0x21f05cbe,
295 0x8b75e387, 0xb3c50651, 0xb8a5c3ef,
296 0xd8eeb6d2, 0xe523be77, 0xc2154529, 0x2f69efdf, 0xafe67afb,
297 0xf470c4b2, 0xf3e0eb5b, 0xd6cc9876,
298 0x39e4460c, 0x1fda8538, 0x1987832f, 0xca007367, 0xa99144f8,
299 0x296b299e, 0x492fc295, 0x9266beab,
300 0xb5676e69, 0x9bd3ddda, 0xdf7e052f, 0xdb25701c, 0x1b5e51ee,
301 0xf65324e6, 0x6afce36c, 0x0316cc04,
302 0x8644213e, 0xb7dc59d0, 0x7965291f, 0xccd6fd43, 0x41823979,
303 0x932bcdf6, 0xb657c34d, 0x4edfd282,
304 0x7ae5290c, 0x3cb9536b, 0x851e20fe, 0x9833557e, 0x13ecf0b0,
305 0xd3ffb372, 0x3f85c5c1, 0x0aef7ed2
306 };
307 static const u32 s5[256] = {
308 0x7ec90c04, 0x2c6e74b9, 0x9b0e66df, 0xa6337911, 0xb86a7fff,
309 0x1dd358f5, 0x44dd9d44, 0x1731167f,
310 0x08fbf1fa, 0xe7f511cc, 0xd2051b00, 0x735aba00, 0x2ab722d8,
311 0x386381cb, 0xacf6243a, 0x69befd7a,
312 0xe6a2e77f, 0xf0c720cd, 0xc4494816, 0xccf5c180, 0x38851640,
313 0x15b0a848, 0xe68b18cb, 0x4caadeff,
314 0x5f480a01, 0x0412b2aa, 0x259814fc, 0x41d0efe2, 0x4e40b48d,
315 0x248eb6fb, 0x8dba1cfe, 0x41a99b02,
316 0x1a550a04, 0xba8f65cb, 0x7251f4e7, 0x95a51725, 0xc106ecd7,
317 0x97a5980a, 0xc539b9aa, 0x4d79fe6a,
318 0xf2f3f763, 0x68af8040, 0xed0c9e56, 0x11b4958b, 0xe1eb5a88,
319 0x8709e6b0, 0xd7e07156, 0x4e29fea7,
320 0x6366e52d, 0x02d1c000, 0xc4ac8e05, 0x9377f571, 0x0c05372a,
321 0x578535f2, 0x2261be02, 0xd642a0c9,
322 0xdf13a280, 0x74b55bd2, 0x682199c0, 0xd421e5ec, 0x53fb3ce8,
323 0xc8adedb3, 0x28a87fc9, 0x3d959981,
324 0x5c1ff900, 0xfe38d399, 0x0c4eff0b, 0x062407ea, 0xaa2f4fb1,
325 0x4fb96976, 0x90c79505, 0xb0a8a774,
326 0xef55a1ff, 0xe59ca2c2, 0xa6b62d27, 0xe66a4263, 0xdf65001f,
327 0x0ec50966, 0xdfdd55bc, 0x29de0655,
328 0x911e739a, 0x17af8975, 0x32c7911c, 0x89f89468, 0x0d01e980,
329 0x524755f4, 0x03b63cc9, 0x0cc844b2,
330 0xbcf3f0aa, 0x87ac36e9, 0xe53a7426, 0x01b3d82b, 0x1a9e7449,
331 0x64ee2d7e, 0xcddbb1da, 0x01c94910,
332 0xb868bf80, 0x0d26f3fd, 0x9342ede7, 0x04a5c284, 0x636737b6,
333 0x50f5b616, 0xf24766e3, 0x8eca36c1,
334 0x136e05db, 0xfef18391, 0xfb887a37, 0xd6e7f7d4, 0xc7fb7dc9,
335 0x3063fcdf, 0xb6f589de, 0xec2941da,
336 0x26e46695, 0xb7566419, 0xf654efc5, 0xd08d58b7, 0x48925401,
337 0xc1bacb7f, 0xe5ff550f, 0xb6083049,
338 0x5bb5d0e8, 0x87d72e5a, 0xab6a6ee1, 0x223a66ce, 0xc62bf3cd,
339 0x9e0885f9, 0x68cb3e47, 0x086c010f,
340 0xa21de820, 0xd18b69de, 0xf3f65777, 0xfa02c3f6, 0x407edac3,
341 0xcbb3d550, 0x1793084d, 0xb0d70eba,
342 0x0ab378d5, 0xd951fb0c, 0xded7da56, 0x4124bbe4, 0x94ca0b56,
343 0x0f5755d1, 0xe0e1e56e, 0x6184b5be,
344 0x580a249f, 0x94f74bc0, 0xe327888e, 0x9f7b5561, 0xc3dc0280,
345 0x05687715, 0x646c6bd7, 0x44904db3,
346 0x66b4f0a3, 0xc0f1648a, 0x697ed5af, 0x49e92ff6, 0x309e374f,
347 0x2cb6356a, 0x85808573, 0x4991f840,
348 0x76f0ae02, 0x083be84d, 0x28421c9a, 0x44489406, 0x736e4cb8,
349 0xc1092910, 0x8bc95fc6, 0x7d869cf4,
350 0x134f616f, 0x2e77118d, 0xb31b2be1, 0xaa90b472, 0x3ca5d717,
351 0x7d161bba, 0x9cad9010, 0xaf462ba2,
352 0x9fe459d2, 0x45d34559, 0xd9f2da13, 0xdbc65487, 0xf3e4f94e,
353 0x176d486f, 0x097c13ea, 0x631da5c7,
354 0x445f7382, 0x175683f4, 0xcdc66a97, 0x70be0288, 0xb3cdcf72,
355 0x6e5dd2f3, 0x20936079, 0x459b80a5,
356 0xbe60e2db, 0xa9c23101, 0xeba5315c, 0x224e42f2, 0x1c5c1572,
357 0xf6721b2c, 0x1ad2fff3, 0x8c25404e,
358 0x324ed72f, 0x4067b7fd, 0x0523138e, 0x5ca3bc78, 0xdc0fd66e,
359 0x75922283, 0x784d6b17, 0x58ebb16e,
360 0x44094f85, 0x3f481d87, 0xfcfeae7b, 0x77b5ff76, 0x8c2302bf,
361 0xaaf47556, 0x5f46b02a, 0x2b092801,
362 0x3d38f5f7, 0x0ca81f36, 0x52af4a8a, 0x66d5e7c0, 0xdf3b0874,
363 0x95055110, 0x1b5ad7a8, 0xf61ed5ad,
364 0x6cf6e479, 0x20758184, 0xd0cefa65, 0x88f7be58, 0x4a046826,
365 0x0ff6f8f3, 0xa09c7f70, 0x5346aba0,
366 0x5ce96c28, 0xe176eda3, 0x6bac307f, 0x376829d2, 0x85360fa9,
367 0x17e3fe2a, 0x24b79767, 0xf5a96b20,
368 0xd6cd2595, 0x68ff1ebf, 0x7555442c, 0xf19f06be, 0xf9e0659a,
369 0xeeb9491d, 0x34010718, 0xbb30cab8,
370 0xe822fe15, 0x88570983, 0x750e6249, 0xda627e55, 0x5e76ffa8,
371 0xb1534546, 0x6d47de08, 0xefe9e7d4
372 };
373 static const u32 s6[256] = {
374 0xf6fa8f9d, 0x2cac6ce1, 0x4ca34867, 0xe2337f7c, 0x95db08e7,
375 0x016843b4, 0xeced5cbc, 0x325553ac,
376 0xbf9f0960, 0xdfa1e2ed, 0x83f0579d, 0x63ed86b9, 0x1ab6a6b8,
377 0xde5ebe39, 0xf38ff732, 0x8989b138,
378 0x33f14961, 0xc01937bd, 0xf506c6da, 0xe4625e7e, 0xa308ea99,
379 0x4e23e33c, 0x79cbd7cc, 0x48a14367,
380 0xa3149619, 0xfec94bd5, 0xa114174a, 0xeaa01866, 0xa084db2d,
381 0x09a8486f, 0xa888614a, 0x2900af98,
382 0x01665991, 0xe1992863, 0xc8f30c60, 0x2e78ef3c, 0xd0d51932,
383 0xcf0fec14, 0xf7ca07d2, 0xd0a82072,
384 0xfd41197e, 0x9305a6b0, 0xe86be3da, 0x74bed3cd, 0x372da53c,
385 0x4c7f4448, 0xdab5d440, 0x6dba0ec3,
386 0x083919a7, 0x9fbaeed9, 0x49dbcfb0, 0x4e670c53, 0x5c3d9c01,
387 0x64bdb941, 0x2c0e636a, 0xba7dd9cd,
388 0xea6f7388, 0xe70bc762, 0x35f29adb, 0x5c4cdd8d, 0xf0d48d8c,
389 0xb88153e2, 0x08a19866, 0x1ae2eac8,
390 0x284caf89, 0xaa928223, 0x9334be53, 0x3b3a21bf, 0x16434be3,
391 0x9aea3906, 0xefe8c36e, 0xf890cdd9,
392 0x80226dae, 0xc340a4a3, 0xdf7e9c09, 0xa694a807, 0x5b7c5ecc,
393 0x221db3a6, 0x9a69a02f, 0x68818a54,
394 0xceb2296f, 0x53c0843a, 0xfe893655, 0x25bfe68a, 0xb4628abc,
395 0xcf222ebf, 0x25ac6f48, 0xa9a99387,
396 0x53bddb65, 0xe76ffbe7, 0xe967fd78, 0x0ba93563, 0x8e342bc1,
397 0xe8a11be9, 0x4980740d, 0xc8087dfc,
398 0x8de4bf99, 0xa11101a0, 0x7fd37975, 0xda5a26c0, 0xe81f994f,
399 0x9528cd89, 0xfd339fed, 0xb87834bf,
400 0x5f04456d, 0x22258698, 0xc9c4c83b, 0x2dc156be, 0x4f628daa,
401 0x57f55ec5, 0xe2220abe, 0xd2916ebf,
402 0x4ec75b95, 0x24f2c3c0, 0x42d15d99, 0xcd0d7fa0, 0x7b6e27ff,
403 0xa8dc8af0, 0x7345c106, 0xf41e232f,
404 0x35162386, 0xe6ea8926, 0x3333b094, 0x157ec6f2, 0x372b74af,
405 0x692573e4, 0xe9a9d848, 0xf3160289,
406 0x3a62ef1d, 0xa787e238, 0xf3a5f676, 0x74364853, 0x20951063,
407 0x4576698d, 0xb6fad407, 0x592af950,
408 0x36f73523, 0x4cfb6e87, 0x7da4cec0, 0x6c152daa, 0xcb0396a8,
409 0xc50dfe5d, 0xfcd707ab, 0x0921c42f,
410 0x89dff0bb, 0x5fe2be78, 0x448f4f33, 0x754613c9, 0x2b05d08d,
411 0x48b9d585, 0xdc049441, 0xc8098f9b,
412 0x7dede786, 0xc39a3373, 0x42410005, 0x6a091751, 0x0ef3c8a6,
413 0x890072d6, 0x28207682, 0xa9a9f7be,
414 0xbf32679d, 0xd45b5b75, 0xb353fd00, 0xcbb0e358, 0x830f220a,
415 0x1f8fb214, 0xd372cf08, 0xcc3c4a13,
416 0x8cf63166, 0x061c87be, 0x88c98f88, 0x6062e397, 0x47cf8e7a,
417 0xb6c85283, 0x3cc2acfb, 0x3fc06976,
418 0x4e8f0252, 0x64d8314d, 0xda3870e3, 0x1e665459, 0xc10908f0,
419 0x513021a5, 0x6c5b68b7, 0x822f8aa0,
420 0x3007cd3e, 0x74719eef, 0xdc872681, 0x073340d4, 0x7e432fd9,
421 0x0c5ec241, 0x8809286c, 0xf592d891,
422 0x08a930f6, 0x957ef305, 0xb7fbffbd, 0xc266e96f, 0x6fe4ac98,
423 0xb173ecc0, 0xbc60b42a, 0x953498da,
424 0xfba1ae12, 0x2d4bd736, 0x0f25faab, 0xa4f3fceb, 0xe2969123,
425 0x257f0c3d, 0x9348af49, 0x361400bc,
426 0xe8816f4a, 0x3814f200, 0xa3f94043, 0x9c7a54c2, 0xbc704f57,
427 0xda41e7f9, 0xc25ad33a, 0x54f4a084,
428 0xb17f5505, 0x59357cbe, 0xedbd15c8, 0x7f97c5ab, 0xba5ac7b5,
429 0xb6f6deaf, 0x3a479c3a, 0x5302da25,
430 0x653d7e6a, 0x54268d49, 0x51a477ea, 0x5017d55b, 0xd7d25d88,
431 0x44136c76, 0x0404a8c8, 0xb8e5a121,
432 0xb81a928a, 0x60ed5869, 0x97c55b96, 0xeaec991b, 0x29935913,
433 0x01fdb7f1, 0x088e8dfa, 0x9ab6f6f5,
434 0x3b4cbf9f, 0x4a5de3ab, 0xe6051d35, 0xa0e1d855, 0xd36b4cf1,
435 0xf544edeb, 0xb0e93524, 0xbebb8fbd,
436 0xa2d762cf, 0x49c92f54, 0x38b5f331, 0x7128a454, 0x48392905,
437 0xa65b1db8, 0x851c97bd, 0xd675cf2f
438 };
439 static const u32 s7[256] = {
440 0x85e04019, 0x332bf567, 0x662dbfff, 0xcfc65693, 0x2a8d7f6f,
441 0xab9bc912, 0xde6008a1, 0x2028da1f,
442 0x0227bce7, 0x4d642916, 0x18fac300, 0x50f18b82, 0x2cb2cb11,
443 0xb232e75c, 0x4b3695f2, 0xb28707de,
444 0xa05fbcf6, 0xcd4181e9, 0xe150210c, 0xe24ef1bd, 0xb168c381,
445 0xfde4e789, 0x5c79b0d8, 0x1e8bfd43,
446 0x4d495001, 0x38be4341, 0x913cee1d, 0x92a79c3f, 0x089766be,
447 0xbaeeadf4, 0x1286becf, 0xb6eacb19,
448 0x2660c200, 0x7565bde4, 0x64241f7a, 0x8248dca9, 0xc3b3ad66,
449 0x28136086, 0x0bd8dfa8, 0x356d1cf2,
450 0x107789be, 0xb3b2e9ce, 0x0502aa8f, 0x0bc0351e, 0x166bf52a,
451 0xeb12ff82, 0xe3486911, 0xd34d7516,
452 0x4e7b3aff, 0x5f43671b, 0x9cf6e037, 0x4981ac83, 0x334266ce,
453 0x8c9341b7, 0xd0d854c0, 0xcb3a6c88,
454 0x47bc2829, 0x4725ba37, 0xa66ad22b, 0x7ad61f1e, 0x0c5cbafa,
455 0x4437f107, 0xb6e79962, 0x42d2d816,
456 0x0a961288, 0xe1a5c06e, 0x13749e67, 0x72fc081a, 0xb1d139f7,
457 0xf9583745, 0xcf19df58, 0xbec3f756,
458 0xc06eba30, 0x07211b24, 0x45c28829, 0xc95e317f, 0xbc8ec511,
459 0x38bc46e9, 0xc6e6fa14, 0xbae8584a,
460 0xad4ebc46, 0x468f508b, 0x7829435f, 0xf124183b, 0x821dba9f,
461 0xaff60ff4, 0xea2c4e6d, 0x16e39264,
462 0x92544a8b, 0x009b4fc3, 0xaba68ced, 0x9ac96f78, 0x06a5b79a,
463 0xb2856e6e, 0x1aec3ca9, 0xbe838688,
464 0x0e0804e9, 0x55f1be56, 0xe7e5363b, 0xb3a1f25d, 0xf7debb85,
465 0x61fe033c, 0x16746233, 0x3c034c28,
466 0xda6d0c74, 0x79aac56c, 0x3ce4e1ad, 0x51f0c802, 0x98f8f35a,
467 0x1626a49f, 0xeed82b29, 0x1d382fe3,
468 0x0c4fb99a, 0xbb325778, 0x3ec6d97b, 0x6e77a6a9, 0xcb658b5c,
469 0xd45230c7, 0x2bd1408b, 0x60c03eb7,
470 0xb9068d78, 0xa33754f4, 0xf430c87d, 0xc8a71302, 0xb96d8c32,
471 0xebd4e7be, 0xbe8b9d2d, 0x7979fb06,
472 0xe7225308, 0x8b75cf77, 0x11ef8da4, 0xe083c858, 0x8d6b786f,
473 0x5a6317a6, 0xfa5cf7a0, 0x5dda0033,
474 0xf28ebfb0, 0xf5b9c310, 0xa0eac280, 0x08b9767a, 0xa3d9d2b0,
475 0x79d34217, 0x021a718d, 0x9ac6336a,
476 0x2711fd60, 0x438050e3, 0x069908a8, 0x3d7fedc4, 0x826d2bef,
477 0x4eeb8476, 0x488dcf25, 0x36c9d566,
478 0x28e74e41, 0xc2610aca, 0x3d49a9cf, 0xbae3b9df, 0xb65f8de6,
479 0x92aeaf64, 0x3ac7d5e6, 0x9ea80509,
480 0xf22b017d, 0xa4173f70, 0xdd1e16c3, 0x15e0d7f9, 0x50b1b887,
481 0x2b9f4fd5, 0x625aba82, 0x6a017962,
482 0x2ec01b9c, 0x15488aa9, 0xd716e740, 0x40055a2c, 0x93d29a22,
483 0xe32dbf9a, 0x058745b9, 0x3453dc1e,
484 0xd699296e, 0x496cff6f, 0x1c9f4986, 0xdfe2ed07, 0xb87242d1,
485 0x19de7eae, 0x053e561a, 0x15ad6f8c,
486 0x66626c1c, 0x7154c24c, 0xea082b2a, 0x93eb2939, 0x17dcb0f0,
487 0x58d4f2ae, 0x9ea294fb, 0x52cf564c,
488 0x9883fe66, 0x2ec40581, 0x763953c3, 0x01d6692e, 0xd3a0c108,
489 0xa1e7160e, 0xe4f2dfa6, 0x693ed285,
490 0x74904698, 0x4c2b0edd, 0x4f757656, 0x5d393378, 0xa132234f,
491 0x3d321c5d, 0xc3f5e194, 0x4b269301,
492 0xc79f022f, 0x3c997e7e, 0x5e4f9504, 0x3ffafbbd, 0x76f7ad0e,
493 0x296693f4, 0x3d1fce6f, 0xc61e45be,
494 0xd3b5ab34, 0xf72bf9b7, 0x1b0434c0, 0x4e72b567, 0x5592a33d,
495 0xb5229301, 0xcfd2a87f, 0x60aeb767,
496 0x1814386b, 0x30bcc33d, 0x38a0c07d, 0xfd1606f2, 0xc363519b,
497 0x589dd390, 0x5479f8e6, 0x1cb8d647,
498 0x97fd61a9, 0xea7759f4, 0x2d57539d, 0x569a58cf, 0xe84e63ad,
499 0x462e1b78, 0x6580f87e, 0xf3817914,
500 0x91da55f4, 0x40a230f3, 0xd1988f35, 0xb6e318d2, 0x3ffa50bc,
501 0x3d40f021, 0xc3c0bdae, 0x4958c24c,
502 0x518f36b2, 0x84b1d370, 0x0fedce83, 0x878ddada, 0xf2a279c7,
503 0x94e01be8, 0x90716f4b, 0x954b8aa3
504 };
505 static const u32 sb8[256] = {
506 0xe216300d, 0xbbddfffc, 0xa7ebdabd, 0x35648095, 0x7789f8b7,
507 0xe6c1121b, 0x0e241600, 0x052ce8b5,
508 0x11a9cfb0, 0xe5952f11, 0xece7990a, 0x9386d174, 0x2a42931c,
509 0x76e38111, 0xb12def3a, 0x37ddddfc,
510 0xde9adeb1, 0x0a0cc32c, 0xbe197029, 0x84a00940, 0xbb243a0f,
511 0xb4d137cf, 0xb44e79f0, 0x049eedfd,
512 0x0b15a15d, 0x480d3168, 0x8bbbde5a, 0x669ded42, 0xc7ece831,
513 0x3f8f95e7, 0x72df191b, 0x7580330d,
514 0x94074251, 0x5c7dcdfa, 0xabbe6d63, 0xaa402164, 0xb301d40a,
515 0x02e7d1ca, 0x53571dae, 0x7a3182a2,
516 0x12a8ddec, 0xfdaa335d, 0x176f43e8, 0x71fb46d4, 0x38129022,
517 0xce949ad4, 0xb84769ad, 0x965bd862,
518 0x82f3d055, 0x66fb9767, 0x15b80b4e, 0x1d5b47a0, 0x4cfde06f,
519 0xc28ec4b8, 0x57e8726e, 0x647a78fc,
520 0x99865d44, 0x608bd593, 0x6c200e03, 0x39dc5ff6, 0x5d0b00a3,
521 0xae63aff2, 0x7e8bd632, 0x70108c0c,
522 0xbbd35049, 0x2998df04, 0x980cf42a, 0x9b6df491, 0x9e7edd53,
523 0x06918548, 0x58cb7e07, 0x3b74ef2e,
524 0x522fffb1, 0xd24708cc, 0x1c7e27cd, 0xa4eb215b, 0x3cf1d2e2,
525 0x19b47a38, 0x424f7618, 0x35856039,
526 0x9d17dee7, 0x27eb35e6, 0xc9aff67b, 0x36baf5b8, 0x09c467cd,
527 0xc18910b1, 0xe11dbf7b, 0x06cd1af8,
528 0x7170c608, 0x2d5e3354, 0xd4de495a, 0x64c6d006, 0xbcc0c62c,
529 0x3dd00db3, 0x708f8f34, 0x77d51b42,
530 0x264f620f, 0x24b8d2bf, 0x15c1b79e, 0x46a52564, 0xf8d7e54e,
531 0x3e378160, 0x7895cda5, 0x859c15a5,
532 0xe6459788, 0xc37bc75f, 0xdb07ba0c, 0x0676a3ab, 0x7f229b1e,
533 0x31842e7b, 0x24259fd7, 0xf8bef472,
534 0x835ffcb8, 0x6df4c1f2, 0x96f5b195, 0xfd0af0fc, 0xb0fe134c,
535 0xe2506d3d, 0x4f9b12ea, 0xf215f225,
536 0xa223736f, 0x9fb4c428, 0x25d04979, 0x34c713f8, 0xc4618187,
537 0xea7a6e98, 0x7cd16efc, 0x1436876c,
538 0xf1544107, 0xbedeee14, 0x56e9af27, 0xa04aa441, 0x3cf7c899,
539 0x92ecbae6, 0xdd67016d, 0x151682eb,
540 0xa842eedf, 0xfdba60b4, 0xf1907b75, 0x20e3030f, 0x24d8c29e,
541 0xe139673b, 0xefa63fb8, 0x71873054,
542 0xb6f2cf3b, 0x9f326442, 0xcb15a4cc, 0xb01a4504, 0xf1e47d8d,
543 0x844a1be5, 0xbae7dfdc, 0x42cbda70,
544 0xcd7dae0a, 0x57e85b7a, 0xd53f5af6, 0x20cf4d8c, 0xcea4d428,
545 0x79d130a4, 0x3486ebfb, 0x33d3cddc,
546 0x77853b53, 0x37effcb5, 0xc5068778, 0xe580b3e6, 0x4e68b8f4,
547 0xc5c8b37e, 0x0d809ea2, 0x398feb7c,
548 0x132a4f94, 0x43b7950e, 0x2fee7d1c, 0x223613bd, 0xdd06caa2,
549 0x37df932b, 0xc4248289, 0xacf3ebc3,
550 0x5715f6b7, 0xef3478dd, 0xf267616f, 0xc148cbe4, 0x9052815e,
551 0x5e410fab, 0xb48a2465, 0x2eda7fa4,
552 0xe87b40e4, 0xe98ea084, 0x5889e9e1, 0xefd390fc, 0xdd07d35b,
553 0xdb485694, 0x38d7e5b2, 0x57720101,
554 0x730edebc, 0x5b643113, 0x94917e4f, 0x503c2fba, 0x646f1282,
555 0x7523d24a, 0xe0779695, 0xf9c17a8f,
556 0x7a5b2121, 0xd187b896, 0x29263a4d, 0xba510cdf, 0x81f47c9f,
557 0xad1163ed, 0xea7b5965, 0x1a00726e,
558 0x11403092, 0x00da6d77, 0x4a0cdd61, 0xad1f4603, 0x605bdfb0,
559 0x9eedc364, 0x22ebe6a8, 0xcee7d28a,
560 0xa0e736a0, 0x5564a6b9, 0x10853209, 0xc7eb8f37, 0x2de705ca,
561 0x8951570f, 0xdf09822b, 0xbd691a6c,
562 0xaa12e4f2, 0x87451c0f, 0xe0f6a27a, 0x3ada4819, 0x4cf1764f,
563 0x0d771c2b, 0x67cdb156, 0x350d8384,
564 0x5938fa0f, 0x42399ef3, 0x36997b07, 0x0e84093d, 0x4aa93e61,
565 0x8360d87b, 0x1fa98b0c, 0x1149382c,
566 0xe97625a5, 0x0614d1b7, 0x0e25244b, 0x0c768347, 0x589e8d82,
567 0x0d2059d1, 0xa466bb1e, 0xf8da0a82,
568 0x04f19130, 0xba6e4ec0, 0x99265164, 0x1ee7230d, 0x50b2ad80,
569 0xeaee6801, 0x8db2a283, 0xea8bf59e
570 };
571
572 #define F1(D,m,r) ( (I = ((m) + (D))), (I=rol32(I,(r))), \
573 (((s1[I >> 24] ^ s2[(I>>16)&0xff]) - s3[(I>>8)&0xff]) + s4[I&0xff]) )
574 #define F2(D,m,r) ( (I = ((m) ^ (D))), (I=rol32(I,(r))), \
575 (((s1[I >> 24] - s2[(I>>16)&0xff]) + s3[(I>>8)&0xff]) ^ s4[I&0xff]) )
576 #define F3(D,m,r) ( (I = ((m) - (D))), (I=rol32(I,(r))), \
577 (((s1[I >> 24] + s2[(I>>16)&0xff]) ^ s3[(I>>8)&0xff]) - s4[I&0xff]) )
578
579
cast5_encrypt(struct crypto_tfm * tfm,u8 * outbuf,const u8 * inbuf)580 static void cast5_encrypt(struct crypto_tfm *tfm, u8 *outbuf, const u8 *inbuf)
581 {
582 struct cast5_ctx *c = crypto_tfm_ctx(tfm);
583 const __be32 *src = (const __be32 *)inbuf;
584 __be32 *dst = (__be32 *)outbuf;
585 u32 l, r, t;
586 u32 I; /* used by the Fx macros */
587 u32 *Km;
588 u8 *Kr;
589
590 Km = c->Km;
591 Kr = c->Kr;
592
593 /* (L0,R0) <-- (m1...m64). (Split the plaintext into left and
594 * right 32-bit halves L0 = m1...m32 and R0 = m33...m64.)
595 */
596 l = be32_to_cpu(src[0]);
597 r = be32_to_cpu(src[1]);
598
599 /* (16 rounds) for i from 1 to 16, compute Li and Ri as follows:
600 * Li = Ri-1;
601 * Ri = Li-1 ^ f(Ri-1,Kmi,Kri), where f is defined in Section 2.2
602 * Rounds 1, 4, 7, 10, 13, and 16 use f function Type 1.
603 * Rounds 2, 5, 8, 11, and 14 use f function Type 2.
604 * Rounds 3, 6, 9, 12, and 15 use f function Type 3.
605 */
606
607 if (!(c->rr)) {
608 t = l; l = r; r = t ^ F1(r, Km[0], Kr[0]);
609 t = l; l = r; r = t ^ F2(r, Km[1], Kr[1]);
610 t = l; l = r; r = t ^ F3(r, Km[2], Kr[2]);
611 t = l; l = r; r = t ^ F1(r, Km[3], Kr[3]);
612 t = l; l = r; r = t ^ F2(r, Km[4], Kr[4]);
613 t = l; l = r; r = t ^ F3(r, Km[5], Kr[5]);
614 t = l; l = r; r = t ^ F1(r, Km[6], Kr[6]);
615 t = l; l = r; r = t ^ F2(r, Km[7], Kr[7]);
616 t = l; l = r; r = t ^ F3(r, Km[8], Kr[8]);
617 t = l; l = r; r = t ^ F1(r, Km[9], Kr[9]);
618 t = l; l = r; r = t ^ F2(r, Km[10], Kr[10]);
619 t = l; l = r; r = t ^ F3(r, Km[11], Kr[11]);
620 t = l; l = r; r = t ^ F1(r, Km[12], Kr[12]);
621 t = l; l = r; r = t ^ F2(r, Km[13], Kr[13]);
622 t = l; l = r; r = t ^ F3(r, Km[14], Kr[14]);
623 t = l; l = r; r = t ^ F1(r, Km[15], Kr[15]);
624 } else {
625 t = l; l = r; r = t ^ F1(r, Km[0], Kr[0]);
626 t = l; l = r; r = t ^ F2(r, Km[1], Kr[1]);
627 t = l; l = r; r = t ^ F3(r, Km[2], Kr[2]);
628 t = l; l = r; r = t ^ F1(r, Km[3], Kr[3]);
629 t = l; l = r; r = t ^ F2(r, Km[4], Kr[4]);
630 t = l; l = r; r = t ^ F3(r, Km[5], Kr[5]);
631 t = l; l = r; r = t ^ F1(r, Km[6], Kr[6]);
632 t = l; l = r; r = t ^ F2(r, Km[7], Kr[7]);
633 t = l; l = r; r = t ^ F3(r, Km[8], Kr[8]);
634 t = l; l = r; r = t ^ F1(r, Km[9], Kr[9]);
635 t = l; l = r; r = t ^ F2(r, Km[10], Kr[10]);
636 t = l; l = r; r = t ^ F3(r, Km[11], Kr[11]);
637 }
638
639 /* c1...c64 <-- (R16,L16). (Exchange final blocks L16, R16 and
640 * concatenate to form the ciphertext.) */
641 dst[0] = cpu_to_be32(r);
642 dst[1] = cpu_to_be32(l);
643 }
644
cast5_decrypt(struct crypto_tfm * tfm,u8 * outbuf,const u8 * inbuf)645 static void cast5_decrypt(struct crypto_tfm *tfm, u8 *outbuf, const u8 *inbuf)
646 {
647 struct cast5_ctx *c = crypto_tfm_ctx(tfm);
648 const __be32 *src = (const __be32 *)inbuf;
649 __be32 *dst = (__be32 *)outbuf;
650 u32 l, r, t;
651 u32 I;
652 u32 *Km;
653 u8 *Kr;
654
655 Km = c->Km;
656 Kr = c->Kr;
657
658 l = be32_to_cpu(src[0]);
659 r = be32_to_cpu(src[1]);
660
661 if (!(c->rr)) {
662 t = l; l = r; r = t ^ F1(r, Km[15], Kr[15]);
663 t = l; l = r; r = t ^ F3(r, Km[14], Kr[14]);
664 t = l; l = r; r = t ^ F2(r, Km[13], Kr[13]);
665 t = l; l = r; r = t ^ F1(r, Km[12], Kr[12]);
666 t = l; l = r; r = t ^ F3(r, Km[11], Kr[11]);
667 t = l; l = r; r = t ^ F2(r, Km[10], Kr[10]);
668 t = l; l = r; r = t ^ F1(r, Km[9], Kr[9]);
669 t = l; l = r; r = t ^ F3(r, Km[8], Kr[8]);
670 t = l; l = r; r = t ^ F2(r, Km[7], Kr[7]);
671 t = l; l = r; r = t ^ F1(r, Km[6], Kr[6]);
672 t = l; l = r; r = t ^ F3(r, Km[5], Kr[5]);
673 t = l; l = r; r = t ^ F2(r, Km[4], Kr[4]);
674 t = l; l = r; r = t ^ F1(r, Km[3], Kr[3]);
675 t = l; l = r; r = t ^ F3(r, Km[2], Kr[2]);
676 t = l; l = r; r = t ^ F2(r, Km[1], Kr[1]);
677 t = l; l = r; r = t ^ F1(r, Km[0], Kr[0]);
678 } else {
679 t = l; l = r; r = t ^ F3(r, Km[11], Kr[11]);
680 t = l; l = r; r = t ^ F2(r, Km[10], Kr[10]);
681 t = l; l = r; r = t ^ F1(r, Km[9], Kr[9]);
682 t = l; l = r; r = t ^ F3(r, Km[8], Kr[8]);
683 t = l; l = r; r = t ^ F2(r, Km[7], Kr[7]);
684 t = l; l = r; r = t ^ F1(r, Km[6], Kr[6]);
685 t = l; l = r; r = t ^ F3(r, Km[5], Kr[5]);
686 t = l; l = r; r = t ^ F2(r, Km[4], Kr[4]);
687 t = l; l = r; r = t ^ F1(r, Km[3], Kr[3]);
688 t = l; l = r; r = t ^ F3(r, Km[2], Kr[2]);
689 t = l; l = r; r = t ^ F2(r, Km[1], Kr[1]);
690 t = l; l = r; r = t ^ F1(r, Km[0], Kr[0]);
691 }
692
693 dst[0] = cpu_to_be32(r);
694 dst[1] = cpu_to_be32(l);
695 }
696
key_schedule(u32 * x,u32 * z,u32 * k)697 static void key_schedule(u32 * x, u32 * z, u32 * k)
698 {
699
700 #define xi(i) ((x[(i)/4] >> (8*(3-((i)%4)))) & 0xff)
701 #define zi(i) ((z[(i)/4] >> (8*(3-((i)%4)))) & 0xff)
702
703 z[0] = x[0] ^ s5[xi(13)] ^ s6[xi(15)] ^ s7[xi(12)] ^ sb8[xi(14)] ^
704 s7[xi(8)];
705 z[1] = x[2] ^ s5[zi(0)] ^ s6[zi(2)] ^ s7[zi(1)] ^ sb8[zi(3)] ^
706 sb8[xi(10)];
707 z[2] = x[3] ^ s5[zi(7)] ^ s6[zi(6)] ^ s7[zi(5)] ^ sb8[zi(4)] ^
708 s5[xi(9)];
709 z[3] = x[1] ^ s5[zi(10)] ^ s6[zi(9)] ^ s7[zi(11)] ^ sb8[zi(8)] ^
710 s6[xi(11)];
711 k[0] = s5[zi(8)] ^ s6[zi(9)] ^ s7[zi(7)] ^ sb8[zi(6)] ^ s5[zi(2)];
712 k[1] = s5[zi(10)] ^ s6[zi(11)] ^ s7[zi(5)] ^ sb8[zi(4)] ^
713 s6[zi(6)];
714 k[2] = s5[zi(12)] ^ s6[zi(13)] ^ s7[zi(3)] ^ sb8[zi(2)] ^
715 s7[zi(9)];
716 k[3] = s5[zi(14)] ^ s6[zi(15)] ^ s7[zi(1)] ^ sb8[zi(0)] ^
717 sb8[zi(12)];
718
719 x[0] = z[2] ^ s5[zi(5)] ^ s6[zi(7)] ^ s7[zi(4)] ^ sb8[zi(6)] ^
720 s7[zi(0)];
721 x[1] = z[0] ^ s5[xi(0)] ^ s6[xi(2)] ^ s7[xi(1)] ^ sb8[xi(3)] ^
722 sb8[zi(2)];
723 x[2] = z[1] ^ s5[xi(7)] ^ s6[xi(6)] ^ s7[xi(5)] ^ sb8[xi(4)] ^
724 s5[zi(1)];
725 x[3] = z[3] ^ s5[xi(10)] ^ s6[xi(9)] ^ s7[xi(11)] ^ sb8[xi(8)] ^
726 s6[zi(3)];
727 k[4] = s5[xi(3)] ^ s6[xi(2)] ^ s7[xi(12)] ^ sb8[xi(13)] ^
728 s5[xi(8)];
729 k[5] = s5[xi(1)] ^ s6[xi(0)] ^ s7[xi(14)] ^ sb8[xi(15)] ^
730 s6[xi(13)];
731 k[6] = s5[xi(7)] ^ s6[xi(6)] ^ s7[xi(8)] ^ sb8[xi(9)] ^ s7[xi(3)];
732 k[7] = s5[xi(5)] ^ s6[xi(4)] ^ s7[xi(10)] ^ sb8[xi(11)] ^
733 sb8[xi(7)];
734
735 z[0] = x[0] ^ s5[xi(13)] ^ s6[xi(15)] ^ s7[xi(12)] ^ sb8[xi(14)] ^
736 s7[xi(8)];
737 z[1] = x[2] ^ s5[zi(0)] ^ s6[zi(2)] ^ s7[zi(1)] ^ sb8[zi(3)] ^
738 sb8[xi(10)];
739 z[2] = x[3] ^ s5[zi(7)] ^ s6[zi(6)] ^ s7[zi(5)] ^ sb8[zi(4)] ^
740 s5[xi(9)];
741 z[3] = x[1] ^ s5[zi(10)] ^ s6[zi(9)] ^ s7[zi(11)] ^ sb8[zi(8)] ^
742 s6[xi(11)];
743 k[8] = s5[zi(3)] ^ s6[zi(2)] ^ s7[zi(12)] ^ sb8[zi(13)] ^
744 s5[zi(9)];
745 k[9] = s5[zi(1)] ^ s6[zi(0)] ^ s7[zi(14)] ^ sb8[zi(15)] ^
746 s6[zi(12)];
747 k[10] = s5[zi(7)] ^ s6[zi(6)] ^ s7[zi(8)] ^ sb8[zi(9)] ^ s7[zi(2)];
748 k[11] = s5[zi(5)] ^ s6[zi(4)] ^ s7[zi(10)] ^ sb8[zi(11)] ^
749 sb8[zi(6)];
750
751 x[0] = z[2] ^ s5[zi(5)] ^ s6[zi(7)] ^ s7[zi(4)] ^ sb8[zi(6)] ^
752 s7[zi(0)];
753 x[1] = z[0] ^ s5[xi(0)] ^ s6[xi(2)] ^ s7[xi(1)] ^ sb8[xi(3)] ^
754 sb8[zi(2)];
755 x[2] = z[1] ^ s5[xi(7)] ^ s6[xi(6)] ^ s7[xi(5)] ^ sb8[xi(4)] ^
756 s5[zi(1)];
757 x[3] = z[3] ^ s5[xi(10)] ^ s6[xi(9)] ^ s7[xi(11)] ^ sb8[xi(8)] ^
758 s6[zi(3)];
759 k[12] = s5[xi(8)] ^ s6[xi(9)] ^ s7[xi(7)] ^ sb8[xi(6)] ^ s5[xi(3)];
760 k[13] = s5[xi(10)] ^ s6[xi(11)] ^ s7[xi(5)] ^ sb8[xi(4)] ^
761 s6[xi(7)];
762 k[14] = s5[xi(12)] ^ s6[xi(13)] ^ s7[xi(3)] ^ sb8[xi(2)] ^
763 s7[xi(8)];
764 k[15] = s5[xi(14)] ^ s6[xi(15)] ^ s7[xi(1)] ^ sb8[xi(0)] ^
765 sb8[xi(13)];
766
767 #undef xi
768 #undef zi
769 }
770
771
cast5_setkey(struct crypto_tfm * tfm,const u8 * key,unsigned key_len)772 static int cast5_setkey(struct crypto_tfm *tfm, const u8 *key, unsigned key_len)
773 {
774 struct cast5_ctx *c = crypto_tfm_ctx(tfm);
775 int i;
776 u32 x[4];
777 u32 z[4];
778 u32 k[16];
779 __be32 p_key[4];
780
781 c->rr = key_len <= 10 ? 1 : 0;
782
783 memset(p_key, 0, 16);
784 memcpy(p_key, key, key_len);
785
786
787 x[0] = be32_to_cpu(p_key[0]);
788 x[1] = be32_to_cpu(p_key[1]);
789 x[2] = be32_to_cpu(p_key[2]);
790 x[3] = be32_to_cpu(p_key[3]);
791
792 key_schedule(x, z, k);
793 for (i = 0; i < 16; i++)
794 c->Km[i] = k[i];
795 key_schedule(x, z, k);
796 for (i = 0; i < 16; i++)
797 c->Kr[i] = k[i] & 0x1f;
798 return 0;
799 }
800
801 static struct crypto_alg alg = {
802 .cra_name = "cast5",
803 .cra_flags = CRYPTO_ALG_TYPE_CIPHER,
804 .cra_blocksize = CAST5_BLOCK_SIZE,
805 .cra_ctxsize = sizeof(struct cast5_ctx),
806 .cra_alignmask = 3,
807 .cra_module = THIS_MODULE,
808 .cra_list = LIST_HEAD_INIT(alg.cra_list),
809 .cra_u = {
810 .cipher = {
811 .cia_min_keysize = CAST5_MIN_KEY_SIZE,
812 .cia_max_keysize = CAST5_MAX_KEY_SIZE,
813 .cia_setkey = cast5_setkey,
814 .cia_encrypt = cast5_encrypt,
815 .cia_decrypt = cast5_decrypt
816 }
817 }
818 };
819
cast5_mod_init(void)820 static int __init cast5_mod_init(void)
821 {
822 return crypto_register_alg(&alg);
823 }
824
cast5_mod_fini(void)825 static void __exit cast5_mod_fini(void)
826 {
827 crypto_unregister_alg(&alg);
828 }
829
830 module_init(cast5_mod_init);
831 module_exit(cast5_mod_fini);
832
833 MODULE_LICENSE("GPL");
834 MODULE_DESCRIPTION("Cast5 Cipher Algorithm");
835
836