13 static inline
unsigned int Mod(
unsigned int c)
15 static const unsigned int modulus = 0x14d;
16 unsigned int c2 = (c<<1) ^ ((c & 0x80) ? modulus : 0);
17 unsigned int c1 = c2 ^ (c>>1) ^ ((c & 1) ? (modulus>>1) : 0);
18 return c | (c1 << 8) | (c2 << 16) | (c1 << 24);
23 static word32 ReedSolomon(word32 high, word32 low)
25 for (
unsigned int i=0; i<8; i++)
27 high = Mod(high>>24) ^ (high<<8) ^ (low>>24);
33 inline word32 Twofish::Base::h0(word32 x,
const word32 *key,
unsigned int kLen)
35 x = x | (x<<8) | (x<<16) | (x<<24);
38 #define Q(a, b, c, d, t) q[a][GETBYTE(t,0)] ^ (q[b][GETBYTE(t,1)] << 8) ^ (q[c][GETBYTE(t,2)] << 16) ^ (q[d][GETBYTE(t,3)] << 24) 39 case 4: x = Q(1, 0, 0, 1, x) ^ key[6];
40 case 3: x = Q(1, 1, 0, 0, x) ^ key[4];
41 case 2: x = Q(0, 1, 0, 1, x) ^ key[2];
42 x = Q(0, 0, 1, 1, x) ^ key[0];
47 inline word32 Twofish::Base::h(word32 x,
const word32 *key,
unsigned int kLen)
50 return mds[0][GETBYTE(x,0)] ^ mds[1][GETBYTE(x,1)] ^ mds[2][GETBYTE(x,2)] ^ mds[3][GETBYTE(x,3)];
53 void Twofish::Base::UncheckedSetKey(
const byte *userKey,
unsigned int keylength,
const NameValuePairs &)
55 AssertValidKeyLength(keylength);
57 unsigned int len = (keylength <= 16 ? 2 : (keylength <= 24 ? 3 : 4));
59 GetUserKey(LITTLE_ENDIAN_ORDER, key.begin(), len*2, userKey, keylength);
64 word32 a = h(i, key, len);
65 word32 b =
rotlFixed(h(i+1, key+1, len), 8);
72 svec[2*(len-i-1)] = ReedSolomon(key[2*i+1], key[2*i]);
75 word32 t = h0(i, svec, len);
76 m_s[0*256+i] = mds[0][GETBYTE(t, 0)];
77 m_s[1*256+i] = mds[1][GETBYTE(t, 1)];
78 m_s[2*256+i] = mds[2][GETBYTE(t, 2)];
79 m_s[3*256+i] = mds[3][GETBYTE(t, 3)];
83 #define G1(x) (m_s[0*256+GETBYTE(x,0)] ^ m_s[1*256+GETBYTE(x,1)] ^ m_s[2*256+GETBYTE(x,2)] ^ m_s[3*256+GETBYTE(x,3)]) 84 #define G2(x) (m_s[0*256+GETBYTE(x,3)] ^ m_s[1*256+GETBYTE(x,0)] ^ m_s[2*256+GETBYTE(x,1)] ^ m_s[3*256+GETBYTE(x,2)]) 86 #define ENCROUND(n, a, b, c, d) \ 87 x = G1 (a); y = G2 (b); \ 88 x += y; y += x + k[2 * (n) + 1]; \ 89 (c) ^= x + k[2 * (n)]; \ 90 (c) = rotrFixed(c, 1); \ 91 (d) = rotlFixed(d, 1) ^ y 94 ENCROUND (2 * (n), a, b, c, d); \ 95 ENCROUND (2 * (n) + 1, c, d, a, b) 97 #define DECROUND(n, a, b, c, d) \ 98 x = G1 (a); y = G2 (b); \ 100 (d) ^= y + k[2 * (n) + 1]; \ 101 (d) = rotrFixed(d, 1); \ 102 (c) = rotlFixed(c, 1); \ 103 (c) ^= (x + k[2 * (n)]) 105 #define DECCYCLE(n) \ 106 DECROUND (2 * (n) + 1, c, d, a, b); \ 107 DECROUND (2 * (n), a, b, c, d) 111 void Twofish::Enc::ProcessAndXorBlock(
const byte *inBlock,
const byte *xorBlock, byte *outBlock)
const 113 word32 x, y, a, b, c, d;
115 Block::Get(inBlock)(a)(b)(c)(d);
122 const word32 *k = m_k+8;
140 void Twofish::Dec::ProcessAndXorBlock(
const byte *inBlock,
const byte *xorBlock, byte *outBlock)
const 142 word32 x, y, a, b, c, d;
144 Block::Get(inBlock)(c)(d)(a)(b);
151 const word32 *k = m_k+8;
Utility functions for the Crypto++ library.
T rotlFixed(T x, unsigned int y)
Performs a left rotate.
Classes for the Twofish block cipher.
Classes and functions for secure memory allocations.
Crypto++ library namespace.
Interface for retrieving values given their names.