crypto/idea/i_cbc.c

39230Sgibbs/* crypto/idea/i_cbc.c */
82168Sken/* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
39230Sgibbs * All rights reserved.
39230Sgibbs *
39230Sgibbs * This package is an SSL implementation written
39230Sgibbs * by Eric Young (eay@cryptsoft.com).
39230Sgibbs * The implementation was written so as to conform with Netscapes SSL.
39230Sgibbs *
39230Sgibbs * This library is free for commercial and non-commercial use as long as
39230Sgibbs * the following conditions are aheared to.  The following conditions
39230Sgibbs * apply to all code found in this distribution, be it the RC4, RSA,
39230Sgibbs * lhash, DES, etc., code; not just the SSL code.  The SSL documentation
39230Sgibbs * included with this distribution is covered by the same copyright terms
39230Sgibbs * except that the holder is Tim Hudson (tjh@cryptsoft.com).
39230Sgibbs *
39230Sgibbs * Copyright remains Eric Young's, and as such any Copyright notices in
39230Sgibbs * the code are not to be removed.
39230Sgibbs * If this package is used in a product, Eric Young should be given attribution
39230Sgibbs * as the author of the parts of the library used.
39230Sgibbs * This can be in the form of a textual message at program startup or
39230Sgibbs * in documentation (online or textual) provided with the package.
39230Sgibbs *
39230Sgibbs * Redistribution and use in source and binary forms, with or without
39230Sgibbs * modification, are permitted provided that the following conditions
39230Sgibbs * are met:
39230Sgibbs * 1. Redistributions of source code must retain the copyright
56561Scharnier *    notice, this list of conditions and the following disclaimer.
56561Scharnier * 2. Redistributions in binary form must reproduce the above copyright
39230Sgibbs *    notice, this list of conditions and the following disclaimer in the
39230Sgibbs *    documentation and/or other materials provided with the distribution.
39230Sgibbs * 3. All advertising materials mentioning features or use of this software
39230Sgibbs *    must display the following acknowledgement:
39230Sgibbs *    "This product includes cryptographic software written by
1553Srgrimes *     Eric Young (eay@cryptsoft.com)"
1553Srgrimes *    The word 'cryptographic' can be left out if the rouines from the library
1553Srgrimes *    being used are not cryptographic related :-).
1553Srgrimes * 4. If you include any Windows specific code (or a derivative thereof) from
1553Srgrimes *    the apps directory (application code) you must include an acknowledgement:
1553Srgrimes *    "This product includes software written by Tim Hudson (tjh@cryptsoft.com)"
1553Srgrimes *
1553Srgrimes * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND
1553Srgrimes * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
1553Srgrimes * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
1553Srgrimes * ARE DISCLAIMED.  IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
1553Srgrimes * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
1553Srgrimes * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
1553Srgrimes * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
1553Srgrimes * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
1553Srgrimes * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
1553Srgrimes * OUT OF THE USE OF THIS  SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
1553Srgrimes * SUCH DAMAGE.
1553Srgrimes *
1553Srgrimes * The licence and distribution terms for any publically available version or
1553Srgrimes * derivative of this code cannot be changed.  i.e. this code cannot simply be
1553Srgrimes * copied and put under another distribution licence
1553Srgrimes * [including the GNU Public Licence.]
1553Srgrimes */
1553Srgrimes
1553Srgrimes#include <openssl/idea.h>
1553Srgrimes#include "idea_lcl.h"
1553Srgrimes
39230Sgibbsvoid idea_cbc_encrypt(const unsigned char *in, unsigned char *out,
39230Sgibbs                      long length, IDEA_KEY_SCHEDULE *ks, unsigned char *iv,
39230Sgibbs                      int encrypt)
39230Sgibbs{
39230Sgibbs    register unsigned long tin0, tin1;
39230Sgibbs    register unsigned long tout0, tout1, xor0, xor1;
39230Sgibbs    register long l = length;
39230Sgibbs    unsigned long tin[2];
39230Sgibbs
39230Sgibbs    if (encrypt) {
39230Sgibbs        n2l(iv, tout0);
39230Sgibbs        n2l(iv, tout1);
39230Sgibbs        iv -= 8;
39230Sgibbs        for (l -= 8; l >= 0; l -= 8) {
39230Sgibbs            n2l(in, tin0);
39230Sgibbs            n2l(in, tin1);
39230Sgibbs            tin0 ^= tout0;
39230Sgibbs            tin1 ^= tout1;
39230Sgibbs            tin[0] = tin0;
39230Sgibbs            tin[1] = tin1;
39230Sgibbs            idea_encrypt(tin, ks);
39230Sgibbs            tout0 = tin[0];
39230Sgibbs            l2n(tout0, out);
39230Sgibbs            tout1 = tin[1];
39230Sgibbs            l2n(tout1, out);
39230Sgibbs        }
39230Sgibbs        if (l != -8) {
39230Sgibbs            n2ln(in, tin0, tin1, l + 8);
39230Sgibbs            tin0 ^= tout0;
39230Sgibbs            tin1 ^= tout1;
39230Sgibbs            tin[0] = tin0;
39230Sgibbs            tin[1] = tin1;
39230Sgibbs            idea_encrypt(tin, ks);
39230Sgibbs            tout0 = tin[0];
39230Sgibbs            l2n(tout0, out);
1553Srgrimes            tout1 = tin[1];
1553Srgrimes            l2n(tout1, out);
1553Srgrimes        }
39230Sgibbs        l2n(tout0, iv);
111008Sphk        l2n(tout1, iv);
81134Stmm    } else {
1553Srgrimes        n2l(iv, xor0);
228661Sdim        n2l(iv, xor1);
228661Sdim        iv -= 8;
1553Srgrimes        for (l -= 8; l >= 0; l -= 8) {
1553Srgrimes            n2l(in, tin0);
228661Sdim            tin[0] = tin0;
1553Srgrimes            n2l(in, tin1);
228661Sdim            tin[1] = tin1;
228661Sdim            idea_encrypt(tin, ks);
102067Sbde            tout0 = tin[0] ^ xor0;
1553Srgrimes            tout1 = tin[1] ^ xor1;
1553Srgrimes            l2n(tout0, out);
1553Srgrimes            l2n(tout1, out);
175562Skeramida            xor0 = tin0;
1553Srgrimes            xor1 = tin1;
1553Srgrimes        }
1553Srgrimes        if (l != -8) {
39230Sgibbs            n2l(in, tin0);
1553Srgrimes            tin[0] = tin0;
39230Sgibbs            n2l(in, tin1);
1553Srgrimes            tin[1] = tin1;
181881Sjhb            idea_encrypt(tin, ks);
82168Sken            tout0 = tin[0] ^ xor0;
181881Sjhb            tout1 = tin[1] ^ xor1;
1553Srgrimes            l2nn(tout0, tout1, out, l + 8);
1553Srgrimes            xor0 = tin0;
1553Srgrimes            xor1 = tin1;
175562Skeramida        }
175562Skeramida        l2n(xor0, iv);
39230Sgibbs        l2n(xor1, iv);
39230Sgibbs    }
39230Sgibbs    tin0 = tin1 = tout0 = tout1 = xor0 = xor1 = 0;
39230Sgibbs    tin[0] = tin[1] = 0;
83965Sguido}
175562Skeramida
175562Skeramidavoid idea_encrypt(unsigned long *d, IDEA_KEY_SCHEDULE *key)
39371Sdillon{
157800Smaxim    register IDEA_INT *p;
1553Srgrimes    register unsigned long x1, x2, x3, x4, t0, t1, ul;
39230Sgibbs
39230Sgibbs    x2 = d[0];
83965Sguido    x1 = (x2 >> 16);
175562Skeramida    x4 = d[1];
175562Skeramida    x3 = (x4 >> 16);
83965Sguido
82168Sken    p = &(key->data[0][0]);
39230Sgibbs
82168Sken    E_IDEA(0);
82168Sken    E_IDEA(1);
1553Srgrimes    E_IDEA(2);
39230Sgibbs    E_IDEA(3);
39230Sgibbs    E_IDEA(4);
39230Sgibbs    E_IDEA(5);
39230Sgibbs    E_IDEA(6);
39230Sgibbs    E_IDEA(7);
39230Sgibbs
39230Sgibbs    x1 &= 0xffff;
39230Sgibbs    idea_mul(x1, x1, *p, ul);
39230Sgibbs    p++;
157800Smaxim
56561Scharnier    t0 = x3 + *(p++);
56561Scharnier    t1 = x2 + *(p++);
39230Sgibbs
1553Srgrimes    x4 &= 0xffff;
1553Srgrimes    idea_mul(x4, x4, *p, ul);
39230Sgibbs
1553Srgrimes    d[0] = (t0 & 0xffff) | ((x1 & 0xffff) << 16);
157802Smaxim    d[1] = (x4 & 0xffff) | ((t1 & 0xffff) << 16);
39230Sgibbs}
39230Sgibbs