2013-11-28 18:12:40 +01:00
|
|
|
/*
|
|
|
|
* Copyright (C) 2013 Freie Universität Berlin, Computer Systems & Telematics
|
|
|
|
*
|
2014-07-31 20:15:03 +02:00
|
|
|
* This file is subject to the terms and conditions of the GNU Lesser
|
|
|
|
* General Public License v2.1. See the file LICENSE in the top level
|
|
|
|
* directory for more details.
|
2013-11-28 18:12:40 +01:00
|
|
|
*/
|
|
|
|
|
|
|
|
/**
|
|
|
|
* @ingroup sys_crypto
|
|
|
|
* @{
|
|
|
|
*
|
2015-05-22 07:34:41 +02:00
|
|
|
* @file
|
2013-11-28 18:12:40 +01:00
|
|
|
* @brief implementation of the RC5 cipher-algorithm
|
|
|
|
*
|
|
|
|
* @author Nicolai Schmittberger <nicolai.schmittberger@fu-berlin.de>
|
|
|
|
* @author Zakaria Kasmi <zkasmi@inf.fu-berlin.de>
|
|
|
|
* @author Naveen Sastry
|
|
|
|
*
|
|
|
|
* @}
|
|
|
|
*/
|
|
|
|
|
|
|
|
#include <stdio.h>
|
|
|
|
#include <stdarg.h>
|
|
|
|
#include <string.h>
|
|
|
|
#include <stdlib.h>
|
|
|
|
#include <stdint.h>
|
|
|
|
#include "crypto/rc5.h"
|
|
|
|
#include "crypto/ciphers.h"
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Define a fixed blocksize of 8 bytes
|
|
|
|
*/
|
|
|
|
#define BLOCK_SIZE (8U)
|
|
|
|
|
|
|
|
/**
|
|
|
|
* @brief Interface to the rc5 cipher
|
|
|
|
*/
|
|
|
|
block_cipher_interface_t rc5_interface = {
|
2013-11-29 18:48:02 +01:00
|
|
|
"RC5",
|
2013-11-28 18:12:40 +01:00
|
|
|
rc5_init,
|
|
|
|
rc5_encrypt,
|
|
|
|
rc5_decrypt,
|
|
|
|
rc5_setup_key,
|
|
|
|
rc5_get_preferred_block_size
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
|
|
int rc5_init(cipher_context_t *context, uint8_t blockSize, uint8_t keySize, uint8_t *key)
|
|
|
|
{
|
|
|
|
(void)keySize;
|
|
|
|
// 8 byte blocks only
|
|
|
|
if (blockSize != BLOCK_SIZE) {
|
|
|
|
return 0;
|
|
|
|
}
|
|
|
|
|
|
|
|
return rc5_setup_key(context, key, 0);
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
int rc5_encrypt(cipher_context_t *context, uint8_t *block,
|
|
|
|
uint8_t *cipherBlock)
|
|
|
|
{
|
|
|
|
register uint32_t l;
|
|
|
|
register uint32_t r;
|
2014-07-19 18:22:13 +02:00
|
|
|
rc5_context_t *rc5_context = (rc5_context_t *) context->context;
|
|
|
|
register uint32_t *s = rc5_context->skey;
|
2014-09-12 15:46:17 +02:00
|
|
|
uint8_t i;
|
2013-11-28 18:12:40 +01:00
|
|
|
c2l(block, l);
|
|
|
|
block += 4;
|
|
|
|
c2l(block, r);
|
|
|
|
l += *s++;
|
|
|
|
r += *s++;
|
|
|
|
|
|
|
|
for (i = RC5_ROUNDS; i > 0; i--) {
|
|
|
|
l ^= r;
|
2014-09-12 15:46:17 +02:00
|
|
|
uint8_t tmp = r;
|
2013-11-28 18:12:40 +01:00
|
|
|
tmp &= 0x1f;
|
|
|
|
rotl32(l, tmp);
|
|
|
|
l += *s++;
|
|
|
|
r ^= l;
|
|
|
|
tmp = l;
|
|
|
|
tmp &= 0x1f;
|
|
|
|
rotl32(r, tmp);
|
|
|
|
r += *s++;
|
|
|
|
}
|
|
|
|
|
|
|
|
l2c(l, cipherBlock);
|
|
|
|
cipherBlock += 4;
|
|
|
|
l2c(r, cipherBlock);
|
|
|
|
return 1;
|
|
|
|
}
|
|
|
|
|
|
|
|
int rc5_decrypt(cipher_context_t *context, uint8_t *cipherBlock,
|
|
|
|
uint8_t *plainBlock)
|
|
|
|
{
|
|
|
|
register uint32_t l;
|
|
|
|
register uint32_t r;
|
2014-07-19 18:22:13 +02:00
|
|
|
rc5_context_t *rc5_context = (rc5_context_t *) context->context;
|
|
|
|
register uint32_t *s = rc5_context->skey + (2 * RC5_ROUNDS) + 1;
|
2014-09-12 15:46:17 +02:00
|
|
|
uint8_t i;
|
2013-11-28 18:12:40 +01:00
|
|
|
|
|
|
|
c2l(cipherBlock, l);
|
|
|
|
cipherBlock += 4;
|
|
|
|
c2l(cipherBlock, r);
|
|
|
|
|
|
|
|
for (i = RC5_ROUNDS; i > 0; i--) {
|
|
|
|
r -= *s--;
|
2014-09-12 15:46:17 +02:00
|
|
|
uint8_t tmp = l;
|
2013-11-28 18:12:40 +01:00
|
|
|
tmp &= 0x1f;
|
|
|
|
rotr32(r, tmp);
|
|
|
|
r ^= l;
|
|
|
|
l -= *s--;
|
|
|
|
tmp = r;
|
|
|
|
tmp &= 0x1f;
|
|
|
|
rotr32(l, tmp);
|
|
|
|
l ^= r;
|
|
|
|
}
|
|
|
|
|
|
|
|
r -= *s--;
|
|
|
|
l -= *s;
|
|
|
|
l2c(l, plainBlock);
|
|
|
|
plainBlock += 4;
|
|
|
|
l2c(r, plainBlock);
|
|
|
|
return 1;
|
|
|
|
}
|
|
|
|
|
|
|
|
int rc5_setup_key(cipher_context_t *context, uint8_t *key, uint8_t keysize)
|
|
|
|
{
|
|
|
|
(void)keysize;
|
2014-09-12 15:46:17 +02:00
|
|
|
uint32_t *L, l, A, B, *S;
|
|
|
|
uint8_t ii, jj;
|
2013-11-28 18:12:40 +01:00
|
|
|
int8_t i;
|
|
|
|
uint8_t tmp[8];
|
2014-07-19 18:22:13 +02:00
|
|
|
rc5_context_t *rc5_context = (rc5_context_t *) context->context;
|
|
|
|
S = rc5_context->skey;
|
2013-11-28 18:12:40 +01:00
|
|
|
|
|
|
|
//dumpBuffer ("RC5M:setupKey K", (uint8_t *)key, 8);
|
|
|
|
c2l(key, l);
|
|
|
|
L = (uint32_t *) tmp;
|
|
|
|
L[0] = l;
|
|
|
|
key += 4;
|
|
|
|
c2l(key, l);
|
|
|
|
L[1] = l;
|
|
|
|
S[0] = RC5_32_P;
|
|
|
|
|
|
|
|
//dumpBuffer ("RC5M:setupKey L", (uint8_t *)L, 8);
|
|
|
|
for (i = 1; i < 2 * RC5_ROUNDS + 2; i++) {
|
|
|
|
S[i] = (S[i - 1] + RC5_32_Q);
|
|
|
|
/* sum =(*S+RC5_32_Q)&RC5_32_MASK;
|
|
|
|
* S++;
|
|
|
|
* S = sum;
|
|
|
|
*/
|
|
|
|
}
|
|
|
|
|
|
|
|
//dumpBuffer ("RC5M: setupKey S", (uint8_t *)S, 2 * (RC5_ROUNDS +1) * 4);
|
|
|
|
ii = jj = 0;
|
|
|
|
A = B = 0;
|
2014-07-19 18:22:13 +02:00
|
|
|
S = rc5_context->skey;
|
2013-11-28 18:12:40 +01:00
|
|
|
|
|
|
|
for (i = 3 * (2 * RC5_ROUNDS + 2) - 1; i >= 0; i--) {
|
2014-09-12 15:46:17 +02:00
|
|
|
uint32_t k = (*S + A + B)&RC5_32_MASK;
|
2013-11-28 18:12:40 +01:00
|
|
|
rotl32((k), (3));
|
|
|
|
A = *S = k;
|
|
|
|
S++;
|
2014-09-12 15:46:17 +02:00
|
|
|
uint8_t m = ((char)(A + B)) & 0x1f;
|
2013-11-28 18:12:40 +01:00
|
|
|
k = (*L + A + B)&RC5_32_MASK;
|
|
|
|
rotl32((k), (m));
|
|
|
|
B = *L = k;
|
|
|
|
|
|
|
|
if (++ii >= 2 * RC5_ROUNDS + 2) {
|
|
|
|
ii = 0;
|
2014-07-19 18:22:13 +02:00
|
|
|
S = rc5_context->skey;
|
2013-11-28 18:12:40 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
jj ^= 4;
|
|
|
|
L = (uint32_t *)(&tmp[jj]);
|
|
|
|
}
|
|
|
|
|
|
|
|
return 1;
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Returns the preferred block size that this cipher operates with. It is
|
|
|
|
* always safe to call this function before the init() call has been made.
|
|
|
|
*
|
|
|
|
* @return the preferred block size for this cipher. In the case where the
|
|
|
|
* cipher operates with multiple block sizes, this will pick one
|
|
|
|
* particular size (deterministically).
|
|
|
|
*/
|
2014-05-14 14:35:35 +02:00
|
|
|
uint8_t rc5_get_preferred_block_size(void)
|
2013-11-28 18:12:40 +01:00
|
|
|
{
|
|
|
|
return BLOCK_SIZE;
|
|
|
|
}
|