Home Explore Help
Sign In
c
/
libtom.libtomcrypt
mirror of https://github.com/libtom/libtomcrypt.git
2
0
Fork 0
Files Issues 0 Wiki
Tree: 0.97b
Branches Tags
libtom.libtomcr...
/
xtea.c

xtea.c 4.5 KB
Permalink History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169 
  1. /* LibTomCrypt, modular cryptographic library -- Tom St Denis
    2. 

  2.  *
    3. 

  3.  * LibTomCrypt is a library that provides various cryptographic
    4. 

  4.  * algorithms in a highly modular and flexible manner.
    5. 

  5.  *
    6. 

  6.  * The library is free for all purposes without any express
    7. 

  7.  * guarantee it works.
    8. 

  8.  *
    9. 

  9.  * Tom St Denis, [email protected], http://libtomcrypt.org
    10. 

  10.  */
    11. 

  11. 

  12. #include "mycrypt.h"
    13. 

  13. 

  14. #ifdef XTEA
    15. 

  15. 

  16. const struct _cipher_descriptor xtea_desc =
    17. 

  17. {
    18. 

  18.     "xtea",
    19. 

  19.     1,
    20. 

  20.     16, 16, 8, 32,
    21. 

  21.     &xtea_setup,
    22. 

  22.     &xtea_ecb_encrypt,
    23. 

  23.     &xtea_ecb_decrypt,
    24. 

  24.     &xtea_test,
    25. 

  25.     &xtea_keysize
    26. 

  26. };
    27. 

  27. 

  28. int xtea_setup(const unsigned char *key, int keylen, int num_rounds, symmetric_key *skey)
    29. 

  29. {
    30. 

  30.    unsigned long x, sum, K[4];
    31. 

  31.    
    32. 

  32.    _ARGCHK(key != NULL);
    33. 

  33.    _ARGCHK(skey != NULL);
    34. 

  34. 

  35.    /* check arguments */
    36. 

  36.    if (keylen != 16) {
    37. 

  37.       return CRYPT_INVALID_KEYSIZE;
    38. 

  38.    }
    39. 

  39. 

  40.    if (num_rounds != 0 && num_rounds != 32) {
    41. 

  41.       return CRYPT_INVALID_ROUNDS;
    42. 

  42.    }
    43. 

  43. 

  44.    /* load key */
    45. 

  45.    LOAD32L(K[0], key+0);
    46. 

  46.    LOAD32L(K[1], key+4);
    47. 

  47.    LOAD32L(K[2], key+8);
    48. 

  48.    LOAD32L(K[3], key+12);
    49. 

  49.    
    50. 

  50.    for (x = sum = 0; x < 32; x++) {
    51. 

  51.        skey->xtea.A[x] = (sum + K[sum&3]) & 0xFFFFFFFFUL;
    52. 

  52.        sum = (sum + 0x9E3779B9UL) & 0xFFFFFFFFUL;
    53. 

  53.        skey->xtea.B[x] = (sum + K[(sum>>11)&3]) & 0xFFFFFFFFUL;
    54. 

  54.    }
    55. 

  55.    
    56. 

  56. #ifdef CLEAN_STACK
    57. 

  57.    zeromem(&K, sizeof(K));
    58. 

  58. #endif   
    59. 

  59.    
    60. 

  60.    return CRYPT_OK;
    61. 

  61. }
    62. 

  62. 

  63. void xtea_ecb_encrypt(const unsigned char *pt, unsigned char *ct, symmetric_key *key)
    64. 

  64. {
    65. 

  65.    unsigned long y, z;
    66. 

  66.    int r;
    67. 

  67. 

  68.    _ARGCHK(pt != NULL);
    69. 

  69.    _ARGCHK(ct != NULL);
    70. 

  70.    _ARGCHK(key != NULL);
    71. 

  71. 

  72.    LOAD32L(y, &pt[0]);
    73. 

  73.    LOAD32L(z, &pt[4]);
    74. 

  74.    for (r = 0; r < 32; r += 4) {
    75. 

  75.        y = (y + ((((z<<4)^(z>>5)) + z) ^ key->xtea.A[r])) & 0xFFFFFFFFUL;
    76. 

  76.        z = (z + ((((y<<4)^(y>>5)) + y) ^ key->xtea.B[r])) & 0xFFFFFFFFUL;
    77. 

  77. 

  78.        y = (y + ((((z<<4)^(z>>5)) + z) ^ key->xtea.A[r+1])) & 0xFFFFFFFFUL;
    79. 

  79.        z = (z + ((((y<<4)^(y>>5)) + y) ^ key->xtea.B[r+1])) & 0xFFFFFFFFUL;
    80. 

  80. 

  81.        y = (y + ((((z<<4)^(z>>5)) + z) ^ key->xtea.A[r+2])) & 0xFFFFFFFFUL;
    82. 

  82.        z = (z + ((((y<<4)^(y>>5)) + y) ^ key->xtea.B[r+2])) & 0xFFFFFFFFUL;
    83. 

  83. 

  84.        y = (y + ((((z<<4)^(z>>5)) + z) ^ key->xtea.A[r+3])) & 0xFFFFFFFFUL;
    85. 

  85.        z = (z + ((((y<<4)^(y>>5)) + y) ^ key->xtea.B[r+3])) & 0xFFFFFFFFUL;
    86. 

  86.    }
    87. 

  87.    STORE32L(y, &ct[0]);
    88. 

  88.    STORE32L(z, &ct[4]);
    89. 

  89. }
    90. 

  90. 

  91. void xtea_ecb_decrypt(const unsigned char *ct, unsigned char *pt, symmetric_key *key)
    92. 

  92. {
    93. 

  93.    unsigned long y, z;
    94. 

  94.    int r;
    95. 

  95. 

  96.    _ARGCHK(pt != NULL);
    97. 

  97.    _ARGCHK(ct != NULL);
    98. 

  98.    _ARGCHK(key != NULL);
    99. 

  99. 

  100.    LOAD32L(y, &ct[0]);
    101. 

  101.    LOAD32L(z, &ct[4]);
    102. 

  102.    for (r = 31; r >= 0; r -= 4) {
    103. 

  103.        z = (z - ((((y<<4)^(y>>5)) + y) ^ key->xtea.B[r])) & 0xFFFFFFFFUL;
    104. 

  104.        y = (y - ((((z<<4)^(z>>5)) + z) ^ key->xtea.A[r])) & 0xFFFFFFFFUL;
    105. 

  105. 

  106.        z = (z - ((((y<<4)^(y>>5)) + y) ^ key->xtea.B[r-1])) & 0xFFFFFFFFUL;
    107. 

  107.        y = (y - ((((z<<4)^(z>>5)) + z) ^ key->xtea.A[r-1])) & 0xFFFFFFFFUL;
    108. 

  108. 

  109.        z = (z - ((((y<<4)^(y>>5)) + y) ^ key->xtea.B[r-2])) & 0xFFFFFFFFUL;
    110. 

  110.        y = (y - ((((z<<4)^(z>>5)) + z) ^ key->xtea.A[r-2])) & 0xFFFFFFFFUL;
    111. 

  111. 

  112.        z = (z - ((((y<<4)^(y>>5)) + y) ^ key->xtea.B[r-3])) & 0xFFFFFFFFUL;
    113. 

  113.        y = (y - ((((z<<4)^(z>>5)) + z) ^ key->xtea.A[r-3])) & 0xFFFFFFFFUL;
    114. 

  114.    }
    115. 

  115.    STORE32L(y, &pt[0]);
    116. 

  116.    STORE32L(z, &pt[4]);
    117. 

  117. }
    118. 

  118. 

  119. int xtea_test(void)
    120. 

  120. {
    121. 

  121.  #ifndef LTC_TEST
    122. 

  122.     return CRYPT_NOP;
    123. 

  123.  #else    
    124. 

  124.    static const unsigned char key[16] = 
    125. 

  125.       { 0x78, 0x56, 0x34, 0x12, 0xf0, 0xcd, 0xcb, 0x9a,
    126. 

  126.         0x48, 0x37, 0x26, 0x15, 0xc0, 0xbf, 0xae, 0x9d };
    127. 

  127.    static const unsigned char pt[8] = 
    128. 

  128.       { 0x01, 0x02, 0x03, 0x04, 0x05, 0x06, 0x07, 0x08 };
    129. 

  129.    static const unsigned char ct[8] = 
    130. 

  130.       { 0x75, 0xd7, 0xc5, 0xbf, 0xcf, 0x58, 0xc9, 0x3f };
    131. 

  131.    unsigned char tmp[2][8];
    132. 

  132.    symmetric_key skey;
    133. 

  133.    int err, y;
    134. 

  134. 

  135.    if ((err = xtea_setup(key, 16, 0, &skey)) != CRYPT_OK)  {
    136. 

  136.       return err;
    137. 

  137.    }
    138. 

  138.    xtea_ecb_encrypt(pt, tmp[0], &skey);
    139. 

  139.    xtea_ecb_decrypt(tmp[0], tmp[1], &skey);
    140. 

  140. 

  141.    if (memcmp(tmp[0], ct, 8) != 0 || memcmp(tmp[1], pt, 8) != 0) { 
    142. 

  142.       return CRYPT_FAIL_TESTVECTOR;
    143. 

  143.    }
    144. 

  144. 

  145.       /* now see if we can encrypt all zero bytes 1000 times, decrypt and come back where we started */
    146. 

  146.       for (y = 0; y < 8; y++) tmp[0][y] = 0;
    147. 

  147.       for (y = 0; y < 1000; y++) xtea_ecb_encrypt(tmp[0], tmp[0], &skey);
    148. 

  148.       for (y = 0; y < 1000; y++) xtea_ecb_decrypt(tmp[0], tmp[0], &skey);
    149. 

  149.       for (y = 0; y < 8; y++) if (tmp[0][y] != 0) return CRYPT_FAIL_TESTVECTOR;
    150. 

  150. 

  151.    return CRYPT_OK;
    152. 

  152.  #endif
    153. 

  153. }
    154. 

  154. 

  155. int xtea_keysize(int *desired_keysize)
    156. 

  156. {
    157. 

  157.    _ARGCHK(desired_keysize != NULL);
    158. 

  158.    if (*desired_keysize < 16) {
    159. 

  159.       return CRYPT_INVALID_KEYSIZE; 
    160. 

  160.    }
    161. 

  161.    *desired_keysize = 16;
    162. 

  162.    return CRYPT_OK;
    163. 

  163. }
    164. 

  164. 

  165. 

  166. #endif
    167. 

  167. 

  168. 

  169.