2013-11-28 18:12:40 +01:00
|
|
|
/*
|
|
|
|
* Copyright (C) 2013 Freie Universität Berlin, Computer Systems & Telematics
|
|
|
|
*
|
2014-08-23 15:43:13 +02:00
|
|
|
* This file is subject to the terms and conditions of the GNU Lesser
|
|
|
|
* General Public License v2.1. See the file LICENSE in the top level
|
|
|
|
* directory for more details.
|
2013-11-28 18:12:40 +01:00
|
|
|
*/
|
|
|
|
|
|
|
|
/**
|
|
|
|
* @ingroup sys_crypto
|
|
|
|
* @{
|
2014-02-11 18:15:43 +01:00
|
|
|
*
|
2015-05-22 07:34:41 +02:00
|
|
|
* @file
|
2013-11-28 18:12:40 +01:00
|
|
|
* @brief Headers for the implementation of the SkipJack cipher-algorithm
|
|
|
|
*
|
|
|
|
* @author Freie Universitaet Berlin, Computer Systems & Telematics
|
|
|
|
* @author Nicolai Schmittberger <nicolai.schmittberger@fu-berlin.de>
|
|
|
|
* @author Zakaria Kasmi <zkasmi@inf.fu-berlin.de>
|
|
|
|
*/
|
|
|
|
|
|
|
|
#ifndef SKIPJACK_H_
|
|
|
|
#define SKIPJACK_H_
|
|
|
|
|
|
|
|
#include "crypto/ciphers.h"
|
|
|
|
|
2014-10-10 11:51:11 +02:00
|
|
|
#ifdef __cplusplus
|
|
|
|
extern "C" {
|
|
|
|
#endif
|
|
|
|
|
2013-11-28 18:12:40 +01:00
|
|
|
#define F(addr) /*CRYPTO_TABLE_ACCESS( &SJ_F[addr])*/ (SJ_F[addr])
|
|
|
|
|
|
|
|
// G-Permutation: 4 round feistel structure
|
|
|
|
#define G(key, b, bLeft, bRight) \
|
|
|
|
( \
|
|
|
|
bLeft = b, \
|
|
|
|
bRight = (b >> 8), \
|
|
|
|
bLeft ^= F(bRight ^ key[0]), \
|
|
|
|
bRight ^= F(bLeft ^ key[1]), \
|
|
|
|
bLeft ^= F(bRight ^ key[2]), \
|
|
|
|
bRight ^= F(bLeft ^ key[3]), \
|
|
|
|
((bRight << 8) | bLeft))
|
|
|
|
|
|
|
|
#define G_INV(key, b, bLeft, bRight) \
|
|
|
|
( bLeft = b, \
|
|
|
|
bRight = (b >> 8), \
|
|
|
|
bRight ^= F(bLeft ^ key[3]), \
|
|
|
|
bLeft ^= F(bRight ^ key[2]), \
|
|
|
|
bRight ^= F(bLeft ^ key[1]), \
|
|
|
|
bLeft ^= F(bRight ^ key[0]), \
|
|
|
|
((bRight << 8) | bLeft))
|
|
|
|
|
|
|
|
// A-RULE:
|
|
|
|
#define RULE_A(skey, w1, w2, w3, w4, counter, tmp, bLeft, bRight ) { \
|
|
|
|
tmp = w4; \
|
|
|
|
w4 = w3; \
|
|
|
|
w3 = w2; \
|
|
|
|
w2 = G(skey, w1, bLeft, bRight); \
|
|
|
|
w1 = ((tmp ^ w2) ^ counter); \
|
|
|
|
counter++; \
|
|
|
|
skey += 4; }
|
|
|
|
|
|
|
|
#define RULE_A_INV(skey, w1, w2, w3, w4, counter, tmp, bLeft, bRight) { \
|
|
|
|
tmp = w4; \
|
|
|
|
w4 = (w1 ^ w2 ^ counter); \
|
|
|
|
w1 = G_INV(skey, w2, bLeft, bRight); \
|
|
|
|
w2 = w3; \
|
|
|
|
w3 = tmp; \
|
|
|
|
counter--; \
|
|
|
|
skey -= 4; } \
|
2014-02-11 18:15:43 +01:00
|
|
|
|
2013-11-28 18:12:40 +01:00
|
|
|
// B-RULE:
|
|
|
|
#define RULE_B(skey, w1, w2, w3, w4, counter, tmp, bLeft, bRight ) { \
|
|
|
|
tmp = w1; \
|
|
|
|
w1 = w4; \
|
|
|
|
w4 = w3; \
|
|
|
|
w3 = (tmp ^ w2 ^ counter); \
|
|
|
|
w2 = G(skey, tmp, bLeft, bRight); \
|
|
|
|
counter++; \
|
|
|
|
skey += 4; }
|
|
|
|
|
|
|
|
#define RULE_B_INV(skey, w1, w2, w3, w4, counter, tmp, bLeft, bRight ) { \
|
|
|
|
tmp = w1; \
|
|
|
|
w1 = G_INV(skey, w2, bLeft, bRight); \
|
|
|
|
w2 = (w1 ^ w3 ^ counter); \
|
|
|
|
w3 = w4; \
|
|
|
|
w4 = tmp; \
|
|
|
|
counter--; \
|
|
|
|
skey -= 4; }
|
|
|
|
|
2015-04-02 08:56:18 +02:00
|
|
|
/** 2 times keysize. makes unrolling keystream easier / efficient */
|
|
|
|
#define SKIPJACK_CONTEXT_SIZE 20
|
2013-11-28 18:12:40 +01:00
|
|
|
|
|
|
|
/**
|
|
|
|
* @brief Initialize the SkipJack-BlockCipher context.
|
|
|
|
*
|
|
|
|
* @param context structure to hold the opaque data from this
|
|
|
|
* initialization call. It should be passed to future
|
|
|
|
* invocations of this module which use this particular
|
|
|
|
* key.
|
|
|
|
* @param keySize key size in bytes
|
|
|
|
* @param key pointer to the key
|
|
|
|
*
|
|
|
|
* @return Whether initialization was successful. The command may be
|
2015-04-02 08:56:18 +02:00
|
|
|
* unsuccessful if the key size is not valid.
|
2013-11-28 18:12:40 +01:00
|
|
|
*/
|
2015-04-02 08:56:18 +02:00
|
|
|
int skipjack_init(cipher_context_t *context, const uint8_t *key, uint8_t keySize);
|
2013-11-28 18:12:40 +01:00
|
|
|
|
|
|
|
/**
|
|
|
|
* @brief Encrypts a single block (of blockSize) using the passed context.
|
|
|
|
*
|
|
|
|
* @param context holds the module specific opaque data related to the
|
|
|
|
* key (perhaps key expansions).
|
|
|
|
* @param plainBlock a plaintext block of blockSize
|
|
|
|
* @param cipherBlock the resulting ciphertext block of blockSize
|
|
|
|
*
|
|
|
|
* @return Whether the encryption was successful. Possible failure reasons
|
|
|
|
* include not calling init().
|
|
|
|
*/
|
2015-04-02 08:56:18 +02:00
|
|
|
int skipjack_encrypt(const cipher_context_t *context, const uint8_t *plainBlock,
|
2013-11-28 18:12:40 +01:00
|
|
|
uint8_t *cipherBlock);
|
|
|
|
|
|
|
|
/**
|
|
|
|
* @brief Decrypts a single block (of blockSize) using the passed context.
|
|
|
|
*
|
|
|
|
* @param context holds the module specific opaque data related to the
|
|
|
|
* key (perhaps key expansions).
|
|
|
|
* @param cipherBlock a ciphertext block of blockSize
|
|
|
|
* @param plainBlock the resulting plaintext block of blockSize
|
|
|
|
*
|
|
|
|
* @return Whether the decryption was successful. Possible failure reasons
|
|
|
|
* include not calling init()
|
|
|
|
*/
|
2015-04-02 08:56:18 +02:00
|
|
|
int skipjack_decrypt(const cipher_context_t *context, const uint8_t *cipherBlock,
|
2013-11-28 18:12:40 +01:00
|
|
|
uint8_t *plainBlock);
|
|
|
|
|
2014-10-10 11:51:11 +02:00
|
|
|
#ifdef __cplusplus
|
|
|
|
}
|
|
|
|
#endif
|
|
|
|
|
2013-11-28 18:12:40 +01:00
|
|
|
/** @} */
|
|
|
|
#endif /* SKIPJACK_H_ */
|