Domovská stránka Prehľadávať Pomoc
Registrovať Prihlásiť sa
Avans-TI
/
2.3-InternetRadio
2
0
Fork 0
Súbory Issues 0 Pull requesty 0 Wiki
Strom: b12fac4b8e
Branche Tagy
2.3-InternetRad...
/
nutos
/
nut
/
contrib
/
arm-crypto-lib
/
rabbit
/
rabbit_c.c

rabbit_c.c 4.8 KB
História Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241 
  1. /* rabbit_c.c */
    2. 

  2. /*
    3. 

  3.     This file is part of the ARM-Crypto-Lib.
    4. 

  4.     Copyright (C) 2006-2011 Daniel Otte (daniel.otte@rub.de)
    5. 

  5. 

  6.     This program is free software: you can redistribute it and/or modify
    7. 

  7.     it under the terms of the GNU General Public License as published by
    8. 

  8.     the Free Software Foundation, either version 3 of the License, or
    9. 

  9.     (at your option) any later version.
    10. 

  10. 

  11.     This program is distributed in the hope that it will be useful,
    12. 

  12.     but WITHOUT ANY WARRANTY; without even the implied warranty of
    13. 

  13.     MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
    14. 

  14.     GNU General Public License for more details.
    15. 

  15. 

  16.     You should have received a copy of the GNU General Public License
    17. 

  17.     along with this program.  If not, see <http://www.gnu.org/licenses/>.
    18. 

  18. */
    19. 

  19. 

  20. #include <string.h>
    21. 

  21. #include <stdint.h>
    22. 

  22. #include <crypto/rabbit.h>
    23. 

  23. 

  24. #ifndef ESTREAM
    25. 

  25. #define ESTREAM 0
    26. 

  26. #endif
    27. 

  27. 

  28. /*
    29. 

  29. void dump_ctx(rabbit_ctx_t* ctx){
    30. 

  30. 	uint8_t i=0;
    31. 

  31. 	cli_putstr_P(PSTR("\r\n --- ctx dump ---\r\n  b = "));
    32. 

  32. 	cli_hexdump_byte(ctx->carry);
    33. 

  33. 	do{
    34. 

  34. 		if((i&3)==0){
    35. 

  35. 			cli_putstr_P(PSTR("\r\n"));
    36. 

  36. 		}
    37. 

  37. 		cli_putstr_P(PSTR("  X"));
    38. 

  38. 		cli_hexdump_byte(i);
    39. 

  39. 		cli_putstr_P(PSTR(" = 0x"));
    40. 

  40. 		cli_hexdump_rev(&(ctx->x[i]), 4);
    41. 

  41. 	}while(++i<8);
    42. 

  42. 	i=0;
    43. 

  43. 	do{
    44. 

  44. 		if((i&3)==0){
    45. 

  45. 			cli_putstr_P(PSTR("\r\n"));
    46. 

  46. 		}
    47. 

  47. 		cli_putstr_P(PSTR("  C"));
    48. 

  48. 		cli_hexdump_byte(i);
    49. 

  49. 		cli_putstr_P(PSTR(" = 0x"));
    50. 

  50. 		cli_hexdump_rev(&(ctx->c[i]), 4);
    51. 

  51. 	}while(++i<8);
    52. 

  52. }
    53. 

  53. */
    54. 

  54. 

  55. static
    56. 

  56. const uint32_t c_const[8] = {
    57. 

  57. 		0x4D34D34D, 0xD34D34D3,
    58. 

  58. 		0x34D34D34, 0x4D34D34D,
    59. 

  59. 		0xD34D34D3, 0x34D34D34,
    60. 

  60. 		0x4D34D34D, 0xD34D34D3
    61. 

  61. };
    62. 

  62. 

  63. static
    64. 

  64. void gen_g(uint32_t* dest, rabbit_ctx_t* ctx){
    65. 

  65. 	uint8_t i=0;
    66. 

  66. 	uint64_t a;
    67. 

  67. 	uint32_t t, *x, *c;
    68. 

  68. 	x = ctx->x;
    69. 

  69. 	c = ctx->c;
    70. 

  70. 	do{
    71. 

  71. 		t = *x++ + *c++;
    72. 

  72. 		a = ((uint64_t)t)*((uint64_t)t);
    73. 

  73. 		dest[i] = (uint32_t)(a^(a>>32));
    74. 

  74. 	}while(++i<8);
    75. 

  75. }
    76. 

  76. 

  77. static
    78. 

  78. void update_c(rabbit_ctx_t* ctx){
    79. 

  79. 	uint8_t i=0;
    80. 

  80. 	uint64_t a;
    81. 

  81. 	uint32_t *c;
    82. 

  82. 	const uint32_t *con;
    83. 

  83. 	c = ctx->c;
    84. 

  84. 	con = c_const;
    85. 

  85. 	a = ctx->carry;
    86. 

  86. 	do{
    87. 

  87. 		a += *c;
    88. 

  88. 		a += *con++;
    89. 

  89. 		*c++ = (uint32_t)a;
    90. 

  90. 		a >>= 32;
    91. 

  91. 	}while(++i<8);
    92. 

  92. 	ctx->carry = a?1:0;
    93. 

  93. }
    94. 

  94. 

  95. #define ROT16(a) (((a)<<16) | ((a)>>16))
    96. 

  96. #define ROT8(a)  (((a)<< 8) | ((a)>>24))
    97. 

  97. 

  98. static
    99. 

  99. void step(rabbit_ctx_t* ctx){
    100. 

  100. 	uint32_t g[8];
    101. 

  101. 	uint8_t i=0;
    102. 

  102. 	update_c(ctx);
    103. 

  103. 	gen_g(g, ctx);
    104. 

  104. 	memcpy(ctx->x, g, 8*4);
    105. 

  105. 	do{
    106. 

  106. 		ctx->x[i] += ROT16(g[(i+8-1)%8]) + ROT16(g[(i+8-2)%8]);
    107. 

  107. 		++i;
    108. 

  108. 		ctx->x[i] += ROT8(g[(i+8-1)%8]) + g[(i+8-2)%8];
    109. 

  109. 	}while(++i<8);
    110. 

  110. }
    111. 

  111. 

  112. static
    113. 

  113. void keysetup(rabbit_ctx_t* ctx, const void* key){
    114. 

  114. 	uint16_t *x, *c;
    115. 

  115. 	uint8_t i=0;
    116. 

  116. 	x = (uint16_t*)(ctx->x);
    117. 

  117. 	c = (uint16_t*)(ctx->c);
    118. 

  118. 	ctx->carry = 0;
    119. 

  119. 	do{
    120. 

  120. 		*x++ = ((uint16_t*)key)[i];
    121. 

  121. 		*x++ = ((uint16_t*)key)[(i+1)%8];
    122. 

  122. 		*c++ = ((uint16_t*)key)[(i+5)%8];
    123. 

  123. 		*c++ = ((uint16_t*)key)[(i+4)%8];
    124. 

  124. 		++i;
    125. 

  125. 		*x++ = ((uint16_t*)key)[(i+4)%8];
    126. 

  126. 		*x++ = ((uint16_t*)key)[(i+5)%8];
    127. 

  127. 		*c++ = ((uint16_t*)key)[(i+1)%8];
    128. 

  128. 		*c++ = ((uint16_t*)key)[i];
    129. 

  129. 	}while(++i<8);
    130. 

  130. 	i=0;
    131. 

  131. 	do{
    132. 

  132. 		step(ctx);
    133. 

  133. 	}while(++i<4);
    134. 

  134. 	i=0;
    135. 

  135. 	do{
    136. 

  136. 		ctx->c[i] ^= ctx->x[(i+4)%8];
    137. 

  137. 	}while(++i<8);
    138. 

  138. }
    139. 

  139. 

  140. static
    141. 

  141. void ivsetup(rabbit_ctx_t* ctx, const void* iv){
    142. 

  142. 	uint8_t i;
    143. 

  143. 	uint32_t t;
    144. 

  144. 	union __attribute__((packed)){
    145. 

  145. 		uint8_t v8[8];
    146. 

  146. 		uint16_t v16[4];
    147. 

  147. 		uint32_t v32[2];
    148. 

  148. 	}t_iv;
    149. 

  149. 	i=0;
    150. 

  150. #if ESTREAM
    151. 

  151. 	memcpy(t_iv.v8, iv, 8);
    152. 

  152. #else
    153. 

  153. 	do{
    154. 

  154. 		t_iv.v8[i] = ((uint8_t*)iv)[7-i];
    155. 

  155. 		t_iv.v8[7-i] = ((uint8_t*)iv)[i];
    156. 

  156. 	}while(++i<4);
    157. 

  157. #endif
    158. 

  158. 	ctx->c[0] ^= t_iv.v32[0];
    159. 

  159. 	ctx->c[4] ^= t_iv.v32[0];
    160. 

  160. 	ctx->c[2] ^= t_iv.v32[1];
    161. 

  161. 	ctx->c[6] ^= t_iv.v32[1];
    162. 

  162. 	t = ( ((uint32_t)(t_iv.v16[3]))<<16) | (t_iv.v16[1]);
    163. 

  163. 	ctx->c[1] ^= t;
    164. 

  164. 	ctx->c[5] ^= t;
    165. 

  165. 	t = ( ((uint32_t)(t_iv.v16[2]))<<16) | (t_iv.v16[0]);
    166. 

  166. 	ctx->c[3] ^= t;
    167. 

  167. 	ctx->c[7] ^= t;
    168. 

  168. 	i=4;
    169. 

  169. 	do{
    170. 

  170. 		step(ctx);
    171. 

  171. 	}while(--i);
    172. 

  172. }
    173. 

  173. 

  174. static
    175. 

  175. void extract(rabbit_ctx_t* ctx){
    176. 

  176. 	int8_t i=0;
    177. 

  177. 	uint8_t *t;
    178. 

  178. 	uint16_t v;
    179. 

  179. 	t = ctx->buffer;
    180. 

  180. 	i=6;
    181. 

  181. 	do{
    182. 

  182. 		v =   ((uint16_t*)(ctx->x))[(2*(i+ 8)+1)%16]
    183. 

  183. 		    ^ ((uint16_t*)(ctx->x))[(2*(i+11)+0)%16];
    184. 

  184. 		*t++ = v>>8;
    185. 

  185. 		*t++ = (uint8_t)v;
    186. 

  186. 		v =   ((uint16_t*)(ctx->x))[(2*(i+ 8)+0)%16]
    187. 

  187. 		    ^ ((uint16_t*)(ctx->x))[(2*(i+13)+1)%16];
    188. 

  188. 		*t++ = v>>8;
    189. 

  189. 		*t++ = (uint8_t)v;
    190. 

  190. 

  191. 		i-=2;
    192. 

  192. 	}while(i>=0);
    193. 

  193. #if ESTREAM
    194. 

  194. 	uint8_t x;
    195. 

  195. 	i=0;
    196. 

  196. 	do{
    197. 

  197. 		x = ctx->buffer[i];
    198. 

  198. 		ctx->buffer[i] = ctx->buffer[15-i];
    199. 

  199. 		ctx->buffer[15-i] = x;
    200. 

  200. 	}while(++i<8);
    201. 

  201. #endif
    202. 

  202. }
    203. 

  203. 

  204. static const uint8_t key80_pad[] = { 0xDE, 0x05, 0x6E, 0xAC, 0x8A, 0x11 };
    205. 

  205. 

  206. void rabbit_init(const void* key, uint16_t keysize_b,
    207. 

  207.                   const void* iv,
    208. 

  208.                   rabbit_ctx_t* ctx){
    209. 

  209. 	uint8_t t_key[16];
    210. 

  210. 	if(keysize_b==80){
    211. 

  211. 		memcpy(t_key, key, 10);
    212. 

  212. 		memcpy(t_key+10, key80_pad, 6);
    213. 

  213. 	}else{
    214. 

  214. 		memcpy(t_key, key, 16);
    215. 

  215. 	}
    216. 

  216. #if !ESTREAM
    217. 

  217. 	uint8_t i=0, t;
    218. 

  218. 	do{
    219. 

  219. 		t = t_key[i];
    220. 

  220. 		t_key[i] = t_key[15-i];
    221. 

  221. 		t_key[15-i] = t;
    222. 

  222. 	}while(++i<8);
    223. 

  223. #endif
    224. 

  224. 	keysetup(ctx, t_key);
    225. 

  225. 

  226. 

  227. 	if(iv){
    228. 

  228. 		ivsetup(ctx, iv);
    229. 

  229. 	}
    230. 

  230. 	extract(ctx);
    231. 

  231. 	ctx->buffer_idx = 16;
    232. 

  232. }
    233. 

  233. 

  234. uint8_t rabbit_gen(rabbit_ctx_t* ctx){
    235. 

  235. 	if(ctx->buffer_idx==16){
    236. 

  236. 		step(ctx);
    237. 

  237. 		extract(ctx);
    238. 

  238. 		ctx->buffer_idx = 0;
    239. 

  239. 	}
    240. 

  240. 	return ctx->buffer[ctx->buffer_idx++];
    241. 

  241. }
    242.