[thirdparty/openssl.git] / crypto / des / cfb_enc.c

/* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
 * All rights reserved.
 *
 * This package is an SSL implementation written
 * by Eric Young (eay@cryptsoft.com).
 * The implementation was written so as to conform with Netscapes SSL.
 *
 * This library is free for commercial and non-commercial use as long as
 * the following conditions are aheared to.  The following conditions
 * apply to all code found in this distribution, be it the RC4, RSA,
 * lhash, DES, etc., code; not just the SSL code.  The SSL documentation
 * included with this distribution is covered by the same copyright terms
 * except that the holder is Tim Hudson (tjh@cryptsoft.com).
 *
 * Copyright remains Eric Young's, and as such any Copyright notices in
 * the code are not to be removed.
 * If this package is used in a product, Eric Young should be given attribution
 * as the author of the parts of the library used.
 * This can be in the form of a textual message at program startup or
 * in documentation (online or textual) provided with the package.
 *
 * Redistribution and use in source and binary forms, with or without
 * modification, are permitted provided that the following conditions
 * are met:
 * 1. Redistributions of source code must retain the copyright
 *    notice, this list of conditions and the following disclaimer.
 * 2. Redistributions in binary form must reproduce the above copyright
 *    notice, this list of conditions and the following disclaimer in the
 *    documentation and/or other materials provided with the distribution.
 * 3. All advertising materials mentioning features or use of this software
 *    must display the following acknowledgement:
 *    "This product includes cryptographic software written by
 *     Eric Young (eay@cryptsoft.com)"
 *    The word 'cryptographic' can be left out if the rouines from the library
 *    being used are not cryptographic related :-).
 * 4. If you include any Windows specific code (or a derivative thereof) from
 *    the apps directory (application code) you must include an acknowledgement:
 *    "This product includes software written by Tim Hudson (tjh@cryptsoft.com)"
 *
 * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND
 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
 * ARE DISCLAIMED.  IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
 * SUCH DAMAGE.
 *
 * The licence and distribution terms for any publically available version or
 * derivative of this code cannot be changed.  i.e. this code cannot simply be
 * copied and put under another distribution licence
 * [including the GNU Public Licence.]
 */

#include "e_os.h"
#include "des_locl.h"
#include <assert.h>

/*
 * The input and output are loaded in multiples of 8 bits. What this means is
 * that if you hame numbits=12 and length=2 the first 12 bits will be
 * retrieved from the first byte and half the second.  The second 12 bits
 * will come from the 3rd and half the 4th byte.
 */
/*
 * Until Aug 1 2003 this function did not correctly implement CFB-r, so it
 * will not be compatible with any encryption prior to that date. Ben.
 */
void DES_cfb_encrypt(const unsigned char *in, unsigned char *out, int numbits,
                     long length, DES_key_schedule *schedule,
                     DES_cblock *ivec, int enc)
{
    register DES_LONG d0, d1, v0, v1;
    register unsigned long l = length;
    register int num = numbits / 8, n = (numbits + 7) / 8, i, rem =
        numbits % 8;
    DES_LONG ti[2];
    unsigned char *iv;
#ifndef L_ENDIAN
    unsigned char ovec[16];
#else
    unsigned int sh[4];
    unsigned char *ovec = (unsigned char *)sh;

    /* I kind of count that compiler optimizes away this assertioni, */
    assert(sizeof(sh[0]) == 4); /* as this holds true for all, */
    /* but 16-bit platforms...      */

#endif

    if (numbits <= 0 || numbits > 64)
        return;
    iv = &(*ivec)[0];
    c2l(iv, v0);
    c2l(iv, v1);
    if (enc) {
        while (l >= (unsigned long)n) {
            l -= n;
            ti[0] = v0;
            ti[1] = v1;
            DES_encrypt1((DES_LONG *)ti, schedule, DES_ENCRYPT);
            c2ln(in, d0, d1, n);
            in += n;
            d0 ^= ti[0];
            d1 ^= ti[1];
            l2cn(d0, d1, out, n);
            out += n;
            /*
             * 30-08-94 - eay - changed because l>>32 and l<<32 are bad under
             * gcc :-(
             */
            if (numbits == 32) {
                v0 = v1;
                v1 = d0;
            } else if (numbits == 64) {
                v0 = d0;
                v1 = d1;
            } else {
#ifndef L_ENDIAN
                iv = &ovec[0];
                l2c(v0, iv);
                l2c(v1, iv);
                l2c(d0, iv);
                l2c(d1, iv);
#else
                sh[0] = v0, sh[1] = v1, sh[2] = d0, sh[3] = d1;
#endif
                if (rem == 0)
                    memmove(ovec, ovec + num, 8);
                else
                    for (i = 0; i < 8; ++i)
                        ovec[i] = ovec[i + num] << rem |
                            ovec[i + num + 1] >> (8 - rem);
#ifdef L_ENDIAN
                v0 = sh[0], v1 = sh[1];
#else
                iv = &ovec[0];
                c2l(iv, v0);
                c2l(iv, v1);
#endif
            }
        }
    } else {
        while (l >= (unsigned long)n) {
            l -= n;
            ti[0] = v0;
            ti[1] = v1;
            DES_encrypt1((DES_LONG *)ti, schedule, DES_ENCRYPT);
            c2ln(in, d0, d1, n);
            in += n;
            /*
             * 30-08-94 - eay - changed because l>>32 and l<<32 are bad under
             * gcc :-(
             */
            if (numbits == 32) {
                v0 = v1;
                v1 = d0;
            } else if (numbits == 64) {
                v0 = d0;
                v1 = d1;
            } else {
#ifndef L_ENDIAN
                iv = &ovec[0];
                l2c(v0, iv);
                l2c(v1, iv);
                l2c(d0, iv);
                l2c(d1, iv);
#else
                sh[0] = v0, sh[1] = v1, sh[2] = d0, sh[3] = d1;
#endif
                if (rem == 0)
                    memmove(ovec, ovec + num, 8);
                else
                    for (i = 0; i < 8; ++i)
                        ovec[i] = ovec[i + num] << rem |
                            ovec[i + num + 1] >> (8 - rem);
#ifdef L_ENDIAN
                v0 = sh[0], v1 = sh[1];
#else
                iv = &ovec[0];
                c2l(iv, v0);
                c2l(iv, v1);
#endif
            }
            d0 ^= ti[0];
            d1 ^= ti[1];
            l2cn(d0, d1, out, n);
            out += n;
        }
    }
    iv = &(*ivec)[0];
    l2c(v0, iv);
    l2c(v1, iv);
    v0 = v1 = d0 = d1 = ti[0] = ti[1] = 0;
}
Commit	Line	Data
58964a49	1	/* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
d02b48c6 RE	2	* All rights reserved.
	3	*
	4	* This package is an SSL implementation written
	5	* by Eric Young (eay@cryptsoft.com).
	6	* The implementation was written so as to conform with Netscapes SSL.
0f113f3e	7	*
d02b48c6 RE	8	* This library is free for commercial and non-commercial use as long as
	9	* the following conditions are aheared to. The following conditions
	10	* apply to all code found in this distribution, be it the RC4, RSA,
	11	* lhash, DES, etc., code; not just the SSL code. The SSL documentation
	12	* included with this distribution is covered by the same copyright terms
	13	* except that the holder is Tim Hudson (tjh@cryptsoft.com).
0f113f3e	14	*
d02b48c6 RE	15	* Copyright remains Eric Young's, and as such any Copyright notices in
	16	* the code are not to be removed.
	17	* If this package is used in a product, Eric Young should be given attribution
	18	* as the author of the parts of the library used.
	19	* This can be in the form of a textual message at program startup or
	20	* in documentation (online or textual) provided with the package.
0f113f3e	21	*
d02b48c6 RE	22	* Redistribution and use in source and binary forms, with or without
	23	* modification, are permitted provided that the following conditions
	24	* are met:
	25	* 1. Redistributions of source code must retain the copyright
	26	* notice, this list of conditions and the following disclaimer.
	27	* 2. Redistributions in binary form must reproduce the above copyright
	28	* notice, this list of conditions and the following disclaimer in the
	29	* documentation and/or other materials provided with the distribution.
	30	* 3. All advertising materials mentioning features or use of this software
	31	* must display the following acknowledgement:
	32	* "This product includes cryptographic software written by
	33	* Eric Young (eay@cryptsoft.com)"
	34	* The word 'cryptographic' can be left out if the rouines from the library
	35	* being used are not cryptographic related :-).
0f113f3e	36	* 4. If you include any Windows specific code (or a derivative thereof) from
d02b48c6 RE	37	* the apps directory (application code) you must include an acknowledgement:
d02b48c6 RE	38	* "This product includes software written by Tim Hudson (tjh@cryptsoft.com)"
0f113f3e	39	*
d02b48c6 RE	40	* THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND
	41	* ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
	42	* IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
	43	* ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
	44	* FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
	45	* DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
	46	* OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
	47	* HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
	48	* LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
	49	* OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
	50	* SUCH DAMAGE.
0f113f3e	51	*
d02b48c6 RE	52	* The licence and distribution terms for any publically available version or
	53	* derivative of this code cannot be changed. i.e. this code cannot simply be
	54	* copied and put under another distribution licence
	55	* [including the GNU Public Licence.]
	56	*/
	57
cf89b405	58	#include "e_os.h"
d02b48c6	59	#include "des_locl.h"
1a979201	60	#include <assert.h>
d02b48c6	61
0f113f3e MC	62	/*
	63	* The input and output are loaded in multiples of 8 bits. What this means is
	64	* that if you hame numbits=12 and length=2 the first 12 bits will be
	65	* retrieved from the first byte and half the second. The second 12 bits
	66	* will come from the 3rd and half the 4th byte.
	67	*/
	68	/*
	69	* Until Aug 1 2003 this function did not correctly implement CFB-r, so it
	70	* will not be compatible with any encryption prior to that date. Ben.
d02b48c6	71	*/
c2e4f17c	72	void DES_cfb_encrypt(const unsigned char in, unsigned char out, int numbits,
0f113f3e MC	73	long length, DES_key_schedule *schedule,
	74	DES_cblock *ivec, int enc)
	75	{
	76	register DES_LONG d0, d1, v0, v1;
	77	register unsigned long l = length;
	78	register int num = numbits / 8, n = (numbits + 7) / 8, i, rem =
	79	numbits % 8;
	80	DES_LONG ti[2];
	81	unsigned char *iv;
1a979201	82	#ifndef L_ENDIAN
0f113f3e	83	unsigned char ovec[16];
1a979201	84	#else
0f113f3e MC	85	unsigned int sh[4];
	86	unsigned char ovec = (unsigned char )sh;
	87
	88	/* I kind of count that compiler optimizes away this assertioni, */
	89	assert(sizeof(sh[0]) == 4); /* as this holds true for all, */
	90	/* but 16-bit platforms... */
d02b48c6	91
1a979201 AP	92	#endif
1a979201 AP	93
0f113f3e MC	94	if (numbits <= 0 \|\| numbits > 64)
	95	return;
	96	iv = &(*ivec)[0];
	97	c2l(iv, v0);
	98	c2l(iv, v1);
	99	if (enc) {
	100	while (l >= (unsigned long)n) {
	101	l -= n;
	102	ti[0] = v0;
	103	ti[1] = v1;
	104	DES_encrypt1((DES_LONG *)ti, schedule, DES_ENCRYPT);
	105	c2ln(in, d0, d1, n);
	106	in += n;
	107	d0 ^= ti[0];
	108	d1 ^= ti[1];
	109	l2cn(d0, d1, out, n);
	110	out += n;
	111	/*
	112	* 30-08-94 - eay - changed because l>>32 and l<<32 are bad under
	113	* gcc :-(
	114	*/
	115	if (numbits == 32) {
	116	v0 = v1;
	117	v1 = d0;
	118	} else if (numbits == 64) {
	119	v0 = d0;
	120	v1 = d1;
	121	} else {
1a979201	122	#ifndef L_ENDIAN
0f113f3e MC	123	iv = &ovec[0];
	124	l2c(v0, iv);
	125	l2c(v1, iv);
	126	l2c(d0, iv);
	127	l2c(d1, iv);
1a979201	128	#else
0f113f3e	129	sh[0] = v0, sh[1] = v1, sh[2] = d0, sh[3] = d1;
1a979201	130	#endif
0f113f3e MC	131	if (rem == 0)
	132	memmove(ovec, ovec + num, 8);
	133	else
	134	for (i = 0; i < 8; ++i)
	135	ovec[i] = ovec[i + num] << rem \|
	136	ovec[i + num + 1] >> (8 - rem);
1a979201	137	#ifdef L_ENDIAN
0f113f3e	138	v0 = sh[0], v1 = sh[1];
1a979201	139	#else
0f113f3e MC	140	iv = &ovec[0];
	141	c2l(iv, v0);
	142	c2l(iv, v1);
1a979201	143	#endif
0f113f3e MC	144	}
	145	}
	146	} else {
	147	while (l >= (unsigned long)n) {
	148	l -= n;
	149	ti[0] = v0;
	150	ti[1] = v1;
	151	DES_encrypt1((DES_LONG *)ti, schedule, DES_ENCRYPT);
	152	c2ln(in, d0, d1, n);
	153	in += n;
	154	/*
	155	* 30-08-94 - eay - changed because l>>32 and l<<32 are bad under
	156	* gcc :-(
	157	*/
	158	if (numbits == 32) {
	159	v0 = v1;
	160	v1 = d0;
	161	} else if (numbits == 64) {
	162	v0 = d0;
	163	v1 = d1;
	164	} else {
1a979201	165	#ifndef L_ENDIAN
0f113f3e MC	166	iv = &ovec[0];
	167	l2c(v0, iv);
	168	l2c(v1, iv);
	169	l2c(d0, iv);
	170	l2c(d1, iv);
1a979201	171	#else
0f113f3e	172	sh[0] = v0, sh[1] = v1, sh[2] = d0, sh[3] = d1;
1a979201	173	#endif
0f113f3e MC	174	if (rem == 0)
	175	memmove(ovec, ovec + num, 8);
	176	else
	177	for (i = 0; i < 8; ++i)
	178	ovec[i] = ovec[i + num] << rem \|
	179	ovec[i + num + 1] >> (8 - rem);
1a979201	180	#ifdef L_ENDIAN
0f113f3e	181	v0 = sh[0], v1 = sh[1];
1a979201	182	#else
0f113f3e MC	183	iv = &ovec[0];
	184	c2l(iv, v0);
	185	c2l(iv, v1);
1a979201	186	#endif
0f113f3e MC	187	}
	188	d0 ^= ti[0];
	189	d1 ^= ti[1];
	190	l2cn(d0, d1, out, n);
	191	out += n;
	192	}
	193	}
	194	iv = &(*ivec)[0];
	195	l2c(v0, iv);
	196	l2c(v1, iv);
	197	v0 = v1 = d0 = d1 = ti[0] = ti[1] = 0;
	198	}