[thirdparty/openssl.git] / crypto / rc2 / rc2_cbc.c

/* crypto/rc2/rc2_cbc.c */
/* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
 * All rights reserved.
 *
 * This package is an SSL implementation written
 * by Eric Young (eay@cryptsoft.com).
 * The implementation was written so as to conform with Netscapes SSL.
 * 
 * This library is free for commercial and non-commercial use as long as
 * the following conditions are aheared to.  The following conditions
 * apply to all code found in this distribution, be it the RC4, RSA,
 * lhash, DES, etc., code; not just the SSL code.  The SSL documentation
 * included with this distribution is covered by the same copyright terms
 * except that the holder is Tim Hudson (tjh@cryptsoft.com).
 * 
 * Copyright remains Eric Young's, and as such any Copyright notices in
 * the code are not to be removed.
 * If this package is used in a product, Eric Young should be given attribution
 * as the author of the parts of the library used.
 * This can be in the form of a textual message at program startup or
 * in documentation (online or textual) provided with the package.
 * 
 * Redistribution and use in source and binary forms, with or without
 * modification, are permitted provided that the following conditions
 * are met:
 * 1. Redistributions of source code must retain the copyright
 *    notice, this list of conditions and the following disclaimer.
 * 2. Redistributions in binary form must reproduce the above copyright
 *    notice, this list of conditions and the following disclaimer in the
 *    documentation and/or other materials provided with the distribution.
 * 3. All advertising materials mentioning features or use of this software
 *    must display the following acknowledgement:
 *    "This product includes cryptographic software written by
 *     Eric Young (eay@cryptsoft.com)"
 *    The word 'cryptographic' can be left out if the rouines from the library
 *    being used are not cryptographic related :-).
 * 4. If you include any Windows specific code (or a derivative thereof) from 
 *    the apps directory (application code) you must include an acknowledgement:
 *    "This product includes software written by Tim Hudson (tjh@cryptsoft.com)"
 * 
 * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND
 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
 * ARE DISCLAIMED.  IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
 * SUCH DAMAGE.
 * 
 * The licence and distribution terms for any publically available version or
 * derivative of this code cannot be changed.  i.e. this code cannot simply be
 * copied and put under another distribution licence
 * [including the GNU Public Licence.]
 */

#include "rc2.h"
#include "rc2_locl.h"

void RC2_cbc_encrypt(in, out, length, ks, iv, encrypt)
unsigned char *in;
unsigned char *out;
long length;
RC2_KEY *ks;
unsigned char *iv;
int encrypt;
	{
	register unsigned long tin0,tin1;
	register unsigned long tout0,tout1,xor0,xor1;
	register long l=length;
	unsigned long tin[2];

	if (encrypt)
		{
		c2l(iv,tout0);
		c2l(iv,tout1);
		iv-=8;
		for (l-=8; l>=0; l-=8)
			{
			c2l(in,tin0);
			c2l(in,tin1);
			tin0^=tout0;
			tin1^=tout1;
			tin[0]=tin0;
			tin[1]=tin1;
			RC2_encrypt(tin,ks);
			tout0=tin[0]; l2c(tout0,out);
			tout1=tin[1]; l2c(tout1,out);
			}
		if (l != -8)
			{
			c2ln(in,tin0,tin1,l+8);
			tin0^=tout0;
			tin1^=tout1;
			tin[0]=tin0;
			tin[1]=tin1;
			RC2_encrypt(tin,ks);
			tout0=tin[0]; l2c(tout0,out);
			tout1=tin[1]; l2c(tout1,out);
			}
		l2c(tout0,iv);
		l2c(tout1,iv);
		}
	else
		{
		c2l(iv,xor0);
		c2l(iv,xor1);
		iv-=8;
		for (l-=8; l>=0; l-=8)
			{
			c2l(in,tin0); tin[0]=tin0;
			c2l(in,tin1); tin[1]=tin1;
			RC2_decrypt(tin,ks);
			tout0=tin[0]^xor0;
			tout1=tin[1]^xor1;
			l2c(tout0,out);
			l2c(tout1,out);
			xor0=tin0;
			xor1=tin1;
			}
		if (l != -8)
			{
			c2l(in,tin0); tin[0]=tin0;
			c2l(in,tin1); tin[1]=tin1;
			RC2_decrypt(tin,ks);
			tout0=tin[0]^xor0;
			tout1=tin[1]^xor1;
			l2cn(tout0,tout1,out,l+8);
			xor0=tin0;
			xor1=tin1;
			}
		l2c(xor0,iv);
		l2c(xor1,iv);
		}
	tin0=tin1=tout0=tout1=xor0=xor1=0;
	tin[0]=tin[1]=0;
	}

void RC2_encrypt(d,key)
unsigned long *d;
RC2_KEY *key;
	{
	int i,n;
	register RC2_INT *p0,*p1;
	register RC2_INT x0,x1,x2,x3,t;
	unsigned long l;

	l=d[0];
	x0=(RC2_INT)l&0xffff;
	x1=(RC2_INT)(l>>16L);
	l=d[1];
	x2=(RC2_INT)l&0xffff;
	x3=(RC2_INT)(l>>16L);

	n=3;
	i=5;

	p0=p1= &(key->data[0]);
	for (;;)
		{
		t=(x0+(x1& ~x3)+(x2&x3)+ *(p0++))&0xffff;
		x0=(t<<1)|(t>>15);
		t=(x1+(x2& ~x0)+(x3&x0)+ *(p0++))&0xffff;
		x1=(t<<2)|(t>>14);
		t=(x2+(x3& ~x1)+(x0&x1)+ *(p0++))&0xffff;
		x2=(t<<3)|(t>>13);
		t=(x3+(x0& ~x2)+(x1&x2)+ *(p0++))&0xffff;
		x3=(t<<5)|(t>>11);

		if (--i == 0)
			{
			if (--n == 0) break;
			i=(n == 2)?6:5;

			x0+=p1[x3&0x3f];
			x1+=p1[x0&0x3f];
			x2+=p1[x1&0x3f];
			x3+=p1[x2&0x3f];
			}
		}

	d[0]=(unsigned long)(x0&0xffff)|((unsigned long)(x1&0xffff)<<16L);
	d[1]=(unsigned long)(x2&0xffff)|((unsigned long)(x3&0xffff)<<16L);
	}

void RC2_decrypt(d,key)
unsigned long *d;
RC2_KEY *key;
	{
	int i,n;
	register RC2_INT *p0,*p1;
	register RC2_INT x0,x1,x2,x3,t;
	unsigned long l;

	l=d[0];
	x0=(RC2_INT)l&0xffff;
	x1=(RC2_INT)(l>>16L);
	l=d[1];
	x2=(RC2_INT)l&0xffff;
	x3=(RC2_INT)(l>>16L);

	n=3;
	i=5;

	p0= &(key->data[63]);
	p1= &(key->data[0]);
	for (;;)
		{
		t=((x3<<11)|(x3>>5))&0xffff;
		x3=(t-(x0& ~x2)-(x1&x2)- *(p0--))&0xffff;
		t=((x2<<13)|(x2>>3))&0xffff;
		x2=(t-(x3& ~x1)-(x0&x1)- *(p0--))&0xffff;
		t=((x1<<14)|(x1>>2))&0xffff;
		x1=(t-(x2& ~x0)-(x3&x0)- *(p0--))&0xffff;
		t=((x0<<15)|(x0>>1))&0xffff;
		x0=(t-(x1& ~x3)-(x2&x3)- *(p0--))&0xffff;

		if (--i == 0)
			{
			if (--n == 0) break;
			i=(n == 2)?6:5;

			x3=(x3-p1[x2&0x3f])&0xffff;
			x2=(x2-p1[x1&0x3f])&0xffff;
			x1=(x1-p1[x0&0x3f])&0xffff;
			x0=(x0-p1[x3&0x3f])&0xffff;
			}
		}

	d[0]=(unsigned long)(x0&0xffff)|((unsigned long)(x1&0xffff)<<16L);
	d[1]=(unsigned long)(x2&0xffff)|((unsigned long)(x3&0xffff)<<16L);
	}
Commit	Line	Data
d02b48c6	1	/* crypto/rc2/rc2_cbc.c */
58964a49	2	/* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
d02b48c6 RE	3	* All rights reserved.
	4	*
	5	* This package is an SSL implementation written
	6	* by Eric Young (eay@cryptsoft.com).
	7	* The implementation was written so as to conform with Netscapes SSL.
	8	*
	9	* This library is free for commercial and non-commercial use as long as
	10	* the following conditions are aheared to. The following conditions
	11	* apply to all code found in this distribution, be it the RC4, RSA,
	12	* lhash, DES, etc., code; not just the SSL code. The SSL documentation
	13	* included with this distribution is covered by the same copyright terms
	14	* except that the holder is Tim Hudson (tjh@cryptsoft.com).
	15	*
	16	* Copyright remains Eric Young's, and as such any Copyright notices in
	17	* the code are not to be removed.
	18	* If this package is used in a product, Eric Young should be given attribution
	19	* as the author of the parts of the library used.
	20	* This can be in the form of a textual message at program startup or
	21	* in documentation (online or textual) provided with the package.
	22	*
	23	* Redistribution and use in source and binary forms, with or without
	24	* modification, are permitted provided that the following conditions
	25	* are met:
	26	* 1. Redistributions of source code must retain the copyright
	27	* notice, this list of conditions and the following disclaimer.
	28	* 2. Redistributions in binary form must reproduce the above copyright
	29	* notice, this list of conditions and the following disclaimer in the
	30	* documentation and/or other materials provided with the distribution.
	31	* 3. All advertising materials mentioning features or use of this software
	32	* must display the following acknowledgement:
	33	* "This product includes cryptographic software written by
	34	* Eric Young (eay@cryptsoft.com)"
	35	* The word 'cryptographic' can be left out if the rouines from the library
	36	* being used are not cryptographic related :-).
	37	* 4. If you include any Windows specific code (or a derivative thereof) from
	38	* the apps directory (application code) you must include an acknowledgement:
	39	* "This product includes software written by Tim Hudson (tjh@cryptsoft.com)"
	40	*
	41	* THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND
	42	* ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
	43	* IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
	44	* ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
	45	* FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
	46	* DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
	47	* OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
	48	* HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
	49	* LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
	50	* OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
	51	* SUCH DAMAGE.
	52	*
	53	* The licence and distribution terms for any publically available version or
	54	* derivative of this code cannot be changed. i.e. this code cannot simply be
	55	* copied and put under another distribution licence
	56	* [including the GNU Public Licence.]
	57	*/
	58
	59	#include "rc2.h"
	60	#include "rc2_locl.h"
	61
	62	void RC2_cbc_encrypt(in, out, length, ks, iv, encrypt)
	63	unsigned char *in;
	64	unsigned char *out;
	65	long length;
	66	RC2_KEY *ks;
67	unsigned char *iv;
68	int encrypt;
69	{
70	register unsigned long tin0,tin1;
71	register unsigned long tout0,tout1,xor0,xor1;
72	register long l=length;
73	unsigned long tin[2];
74
75	if (encrypt)
76	{
77	c2l(iv,tout0);
78	c2l(iv,tout1);
79	iv-=8;
80	for (l-=8; l>=0; l-=8)
81	{
82	c2l(in,tin0);
83	c2l(in,tin1);
84	tin0^=tout0;
85	tin1^=tout1;
86	tin[0]=tin0;
87	tin[1]=tin1;
58964a49	88	RC2_encrypt(tin,ks);
d02b48c6 RE	89	tout0=tin[0]; l2c(tout0,out);
	90	tout1=tin[1]; l2c(tout1,out);
	91	}
	92	if (l != -8)
	93	{
	94	c2ln(in,tin0,tin1,l+8);
	95	tin0^=tout0;
	96	tin1^=tout1;
	97	tin[0]=tin0;
	98	tin[1]=tin1;
58964a49	99	RC2_encrypt(tin,ks);
d02b48c6 RE	100	tout0=tin[0]; l2c(tout0,out);
	101	tout1=tin[1]; l2c(tout1,out);
	102	}
	103	l2c(tout0,iv);
	104	l2c(tout1,iv);
	105	}
	106	else
	107	{
	108	c2l(iv,xor0);
	109	c2l(iv,xor1);
	110	iv-=8;
	111	for (l-=8; l>=0; l-=8)
	112	{
	113	c2l(in,tin0); tin[0]=tin0;
	114	c2l(in,tin1); tin[1]=tin1;
58964a49	115	RC2_decrypt(tin,ks);
d02b48c6 RE	116	tout0=tin[0]^xor0;
	117	tout1=tin[1]^xor1;
	118	l2c(tout0,out);
	119	l2c(tout1,out);
	120	xor0=tin0;
	121	xor1=tin1;
	122	}
	123	if (l != -8)
	124	{
	125	c2l(in,tin0); tin[0]=tin0;
	126	c2l(in,tin1); tin[1]=tin1;
58964a49	127	RC2_decrypt(tin,ks);
d02b48c6 RE	128	tout0=tin[0]^xor0;
	129	tout1=tin[1]^xor1;
	130	l2cn(tout0,tout1,out,l+8);
	131	xor0=tin0;
	132	xor1=tin1;
	133	}
	134	l2c(xor0,iv);
	135	l2c(xor1,iv);
	136	}
	137	tin0=tin1=tout0=tout1=xor0=xor1=0;
	138	tin[0]=tin[1]=0;
	139	}
	140
58964a49 RE	141	void RC2_encrypt(d,key)
	142	unsigned long *d;
	143	RC2_KEY *key;
	144	{
	145	int i,n;
	146	register RC2_INT p0,p1;
	147	register RC2_INT x0,x1,x2,x3,t;
	148	unsigned long l;
	149
	150	l=d[0];
	151	x0=(RC2_INT)l&0xffff;
	152	x1=(RC2_INT)(l>>16L);
	153	l=d[1];
	154	x2=(RC2_INT)l&0xffff;
	155	x3=(RC2_INT)(l>>16L);
	156
	157	n=3;
	158	i=5;
	159
	160	p0=p1= &(key->data[0]);
	161	for (;;)
	162	{
	163	t=(x0+(x1& ~x3)+(x2&x3)+ *(p0++))&0xffff;
	164	x0=(t<<1)\|(t>>15);
	165	t=(x1+(x2& ~x0)+(x3&x0)+ *(p0++))&0xffff;
	166	x1=(t<<2)\|(t>>14);
	167	t=(x2+(x3& ~x1)+(x0&x1)+ *(p0++))&0xffff;
	168	x2=(t<<3)\|(t>>13);
	169	t=(x3+(x0& ~x2)+(x1&x2)+ *(p0++))&0xffff;
	170	x3=(t<<5)\|(t>>11);
	171
	172	if (--i == 0)
	173	{
	174	if (--n == 0) break;
	175	i=(n == 2)?6:5;
	176
	177	x0+=p1[x3&0x3f];
	178	x1+=p1[x0&0x3f];
	179	x2+=p1[x1&0x3f];
	180	x3+=p1[x2&0x3f];
	181	}
	182	}
	183
	184	d[0]=(unsigned long)(x0&0xffff)\|((unsigned long)(x1&0xffff)<<16L);
	185	d[1]=(unsigned long)(x2&0xffff)\|((unsigned long)(x3&0xffff)<<16L);
	186	}
	187
	188	void RC2_decrypt(d,key)
	189	unsigned long *d;
	190	RC2_KEY *key;
	191	{
	192	int i,n;
	193	register RC2_INT p0,p1;
	194	register RC2_INT x0,x1,x2,x3,t;
	195	unsigned long l;
	196
	197	l=d[0];
	198	x0=(RC2_INT)l&0xffff;
	199	x1=(RC2_INT)(l>>16L);
	200	l=d[1];
	201	x2=(RC2_INT)l&0xffff;
	202	x3=(RC2_INT)(l>>16L);
	203
	204	n=3;
205	i=5;
206
207	p0= &(key->data[63]);
208	p1= &(key->data[0]);
209	for (;;)
210	{
211	t=((x3<<11)\|(x3>>5))&0xffff;
212	x3=(t-(x0& ~x2)-(x1&x2)- *(p0--))&0xffff;
213	t=((x2<<13)\|(x2>>3))&0xffff;
214	x2=(t-(x3& ~x1)-(x0&x1)- *(p0--))&0xffff;
215	t=((x1<<14)\|(x1>>2))&0xffff;
216	x1=(t-(x2& ~x0)-(x3&x0)- *(p0--))&0xffff;
217	t=((x0<<15)\|(x0>>1))&0xffff;
218	x0=(t-(x1& ~x3)-(x2&x3)- *(p0--))&0xffff;
219
220	if (--i == 0)
221	{
222	if (--n == 0) break;
223	i=(n == 2)?6:5;
224
225	x3=(x3-p1[x2&0x3f])&0xffff;
226	x2=(x2-p1[x1&0x3f])&0xffff;
227	x1=(x1-p1[x0&0x3f])&0xffff;
228	x0=(x0-p1[x3&0x3f])&0xffff;
229	}
230	}
231
232	d[0]=(unsigned long)(x0&0xffff)\|((unsigned long)(x1&0xffff)<<16L);
233	d[1]=(unsigned long)(x2&0xffff)\|((unsigned long)(x3&0xffff)<<16L);
234	}
235