docs/ref820/strciphr_8cpp_source.html

 // strciphr.cpp - originally written and placed in the public domain by Wei Dai

 #include "pch.h"

 #ifndef CRYPTOPP_IMPORTS

 #include "strciphr.h"

 // Squash MS LNK4221 and libtool warnings
 #ifndef CRYPTOPP_MANUALLY_INSTANTIATE_TEMPLATES
 extern const char STRCIPHER_FNAME[] = __FILE__;
 #endif

 NAMESPACE_BEGIN(CryptoPP)

 template <class S>
 void AdditiveCipherTemplate<S>::UncheckedSetKey(const byte *key, unsigned int length, const NameValuePairs &params)
 {
     PolicyInterface &policy = this->AccessPolicy();
     policy.CipherSetKey(params, key, length);
     m_leftOver = 0;
     unsigned int bufferByteSize = policy.CanOperateKeystream() ? GetBufferByteSize(policy) : RoundUpToMultipleOf(1024U, GetBufferByteSize(policy));
     m_buffer.New(bufferByteSize);

     if (this->IsResynchronizable())
     {
         size_t ivLength;
         const byte *iv = this->GetIVAndThrowIfInvalid(params, ivLength);
         policy.CipherResynchronize(m_buffer, iv, ivLength);
     }
 }

 template <class S>
 void AdditiveCipherTemplate<S>::GenerateBlock(byte *outString, size_t length)
 {
     if (m_leftOver > 0)
     {
         const size_t len = STDMIN(m_leftOver, length);
         std::memcpy(outString, PtrSub(KeystreamBufferEnd(), m_leftOver), len);

         length -= len; m_leftOver -= len;
         outString = PtrAdd(outString, len);
         if (!length) {return;}
     }

     PolicyInterface &policy = this->AccessPolicy();
     unsigned int bytesPerIteration = policy.GetBytesPerIteration();

     if (length >= bytesPerIteration)
     {
         const size_t iterations = length / bytesPerIteration;
         policy.WriteKeystream(outString, iterations);
         length -= iterations * bytesPerIteration;
         outString = PtrAdd(outString, iterations * bytesPerIteration);
     }

     if (length > 0)
     {
         size_t bufferByteSize = RoundUpToMultipleOf(length, bytesPerIteration);
         size_t bufferIterations = bufferByteSize / bytesPerIteration;

         policy.WriteKeystream(PtrSub(KeystreamBufferEnd(), bufferByteSize), bufferIterations);
         std::memcpy(outString, PtrSub(KeystreamBufferEnd(), bufferByteSize), length);
         m_leftOver = bufferByteSize - length;
     }
 }

 template <class S>
 void AdditiveCipherTemplate<S>::ProcessData(byte *outString, const byte *inString, size_t length)
 {
     if (m_leftOver > 0)
     {
         const size_t len = STDMIN(m_leftOver, length);
         xorbuf(outString, inString, PtrSub(KeystreamBufferEnd(), m_leftOver), len);

         length -= len; m_leftOver -= len;
         inString = PtrAdd(inString, len);
         outString = PtrAdd(outString, len);

         if (!length) {return;}
     }

     PolicyInterface &policy = this->AccessPolicy();
     unsigned int bytesPerIteration = policy.GetBytesPerIteration();

     if (policy.CanOperateKeystream() && length >= bytesPerIteration)
     {
         const size_t iterations = length / bytesPerIteration;
         unsigned int alignment = policy.GetAlignment();
         volatile int inAligned = IsAlignedOn(inString, alignment) << 1;
         volatile int outAligned = IsAlignedOn(outString, alignment) << 0;

         KeystreamOperation operation = KeystreamOperation(inAligned | outAligned);
         policy.OperateKeystream(operation, outString, inString, iterations);

         inString = PtrAdd(inString, iterations * bytesPerIteration);
         outString = PtrAdd(outString, iterations * bytesPerIteration);
         length -= iterations * bytesPerIteration;

         if (!length) {return;}
     }

     size_t bufferByteSize = m_buffer.size();
     size_t bufferIterations = bufferByteSize / bytesPerIteration;

     while (length >= bufferByteSize)
     {
         policy.WriteKeystream(m_buffer, bufferIterations);
         xorbuf(outString, inString, KeystreamBufferBegin(), bufferByteSize);

         length -= bufferByteSize;
         inString = PtrAdd(inString, bufferByteSize);
         outString = PtrAdd(outString, bufferByteSize);
     }

     if (length > 0)
     {
         bufferByteSize = RoundUpToMultipleOf(length, bytesPerIteration);
         bufferIterations = bufferByteSize / bytesPerIteration;

         policy.WriteKeystream(PtrSub(KeystreamBufferEnd(), bufferByteSize), bufferIterations);
         xorbuf(outString, inString, PtrSub(KeystreamBufferEnd(), bufferByteSize), length);
         m_leftOver = bufferByteSize - length;
     }
 }

 template <class S>
 void AdditiveCipherTemplate<S>::Resynchronize(const byte *iv, int length)
 {
     PolicyInterface &policy = this->AccessPolicy();
     m_leftOver = 0;
     m_buffer.New(GetBufferByteSize(policy));
     policy.CipherResynchronize(m_buffer, iv, this->ThrowIfInvalidIVLength(length));
 }

 template <class BASE>
 void AdditiveCipherTemplate<BASE>::Seek(lword position)
 {
     PolicyInterface &policy = this->AccessPolicy();
     word32 bytesPerIteration = policy.GetBytesPerIteration();

     policy.SeekToIteration(position / bytesPerIteration);
     position %= bytesPerIteration;

     if (position > 0)
     {
         policy.WriteKeystream(PtrSub(KeystreamBufferEnd(), bytesPerIteration), 1);
         m_leftOver = bytesPerIteration - static_cast<word32>(position);
     }
     else
         m_leftOver = 0;
 }

 template <class BASE>
 void CFB_CipherTemplate<BASE>::UncheckedSetKey(const byte *key, unsigned int length, const NameValuePairs &params)
 {
     PolicyInterface &policy = this->AccessPolicy();
     policy.CipherSetKey(params, key, length);

     if (this->IsResynchronizable())
     {
         size_t ivLength;
         const byte *iv = this->GetIVAndThrowIfInvalid(params, ivLength);
         policy.CipherResynchronize(iv, ivLength);
     }

     m_leftOver = policy.GetBytesPerIteration();
 }

 template <class BASE>
 void CFB_CipherTemplate<BASE>::Resynchronize(const byte *iv, int length)
 {
     PolicyInterface &policy = this->AccessPolicy();
     policy.CipherResynchronize(iv, this->ThrowIfInvalidIVLength(length));
     m_leftOver = policy.GetBytesPerIteration();
 }

 template <class BASE>
 void CFB_CipherTemplate<BASE>::ProcessData(byte *outString, const byte *inString, size_t length)
 {
     CRYPTOPP_ASSERT(outString); CRYPTOPP_ASSERT(inString);
     CRYPTOPP_ASSERT(length % this->MandatoryBlockSize() == 0);

     PolicyInterface &policy = this->AccessPolicy();
     word32 bytesPerIteration = policy.GetBytesPerIteration();
     byte *reg = policy.GetRegisterBegin();

     if (m_leftOver)
     {
         const size_t len = STDMIN(m_leftOver, length);
         CombineMessageAndShiftRegister(outString, PtrAdd(reg, bytesPerIteration - m_leftOver), inString, len);

         m_leftOver -= len; length -= len;
         inString = PtrAdd(inString, len);
         outString = PtrAdd(outString, len);
     }

     if (!length) {return;}

     // TODO: Figure out what is happening on ARM A-32. x86, Aarch64 and PowerPC are OK.
     //       The issue surfaced for CFB mode when we cut-in Cryptogams AES ARMv7 asm.
     //       Using 'outString' for both input and output leads to incorrect results.
     //
     //       Benchmarking on Cortex-A7 and Cortex-A9 indicates removing the block
     //       below costs about 9 cpb for CFB mode on ARM.
     //
     //       Also see https://github.com/weidai11/cryptopp/issues/683.

     const unsigned int alignment = policy.GetAlignment();
     volatile bool inAligned = IsAlignedOn(inString, alignment);
     volatile bool outAligned = IsAlignedOn(outString, alignment);

     if (policy.CanIterate() && length >= bytesPerIteration && outAligned)
     {
         CipherDir cipherDir = GetCipherDir(*this);
         if (inAligned)
             policy.Iterate(outString, inString, cipherDir, length / bytesPerIteration);
         else
         {
             // GCC and Clang do not like this on ARM. The incorrect result is a string
             // of 0's instead of ciphertext (or plaintext if decrypting). The 0's trace
             // back to the allocation for the std::string in datatest.cpp. Elements in the
             // string are initialized to their default value, which is 0.
             //
             // It almost feels as if the compiler does not see the string is transformed
             // in-place so it short-circuits the transform. However, if we use a stand-alone
             // reproducer with the same data then the issue is _not_ present.
             //
             // When working on this issue we introduced PtrAdd and PtrSub to ensure we were
             // not running afoul of pointer arithmetic rules of the language. Namely we need
             // to use ptrdiff_t when subtracting pointers. We believe the relevant code paths
             // are clean.
             //
             // One workaround is a distinct and aligned temporary buffer. It [mostly] works
             // as expected but requires an extra allocation (casts not shown):
             //
             //   std::string temp(inString, length);
             //   policy.Iterate(outString, &temp[0], cipherDir, length / bytesPerIteration);

             std::memcpy(outString, inString, length);
             policy.Iterate(outString, outString, cipherDir, length / bytesPerIteration);
         }
         const size_t remainder = length % bytesPerIteration;
         inString = PtrAdd(inString, length - remainder);
         outString = PtrAdd(outString, length - remainder);
         length = remainder;
     }

     while (length >= bytesPerIteration)
     {
         policy.TransformRegister();
         CombineMessageAndShiftRegister(outString, reg, inString, bytesPerIteration);
         length -= bytesPerIteration;
         inString = PtrAdd(inString, bytesPerIteration);
         outString = PtrAdd(outString, bytesPerIteration);
     }

     if (length > 0)
     {
         policy.TransformRegister();
         CombineMessageAndShiftRegister(outString, reg, inString, length);
         m_leftOver = bytesPerIteration - length;
     }
 }

 template <class BASE>
 void CFB_EncryptionTemplate<BASE>::CombineMessageAndShiftRegister(byte *output, byte *reg, const byte *message, size_t length)
 {
     xorbuf(reg, message, length);
     std::memcpy(output, reg, length);
 }

 template <class BASE>
 void CFB_DecryptionTemplate<BASE>::CombineMessageAndShiftRegister(byte *output, byte *reg, const byte *message, size_t length)
 {
     for (size_t i=0; i<length; i++)
     {
         byte b = message[i];
         output[i] = reg[i] ^ b;
         reg[i] = b;
     }
 }

 NAMESPACE_END

 #endif
AdditiveCipherTemplate::Resynchronize
void Resynchronize(const byte *iv, int length=-1)
Resynchronize the cipher.
Definition: strciphr.cpp:128

AdditiveCipherAbstractPolicy::CipherSetKey
virtual void CipherSetKey(const NameValuePairs &params, const byte *key, size_t length)=0
Key the cipher.

AdditiveCipherAbstractPolicy::OperateKeystream
virtual void OperateKeystream(KeystreamOperation operation, byte *output, const byte *input, size_t iterationCount)
Operates the keystream.
Definition: strciphr.h:149

CipherDir
CipherDir
Specifies a direction for a cipher to operate.
Definition: cryptlib.h:123

CFB_CipherTemplate
Base class for feedback based stream ciphers with SymmetricCipher interface.
Definition: strciphr.h:563

AdditiveCipherAbstractPolicy::CanOperateKeystream
virtual bool CanOperateKeystream() const
Flag indicating.
Definition: strciphr.h:139

AdditiveCipherAbstractPolicy::WriteKeystream
virtual void WriteKeystream(byte *keystream, size_t iterationCount)
Generate the keystream.
Definition: strciphr.h:133

AdditiveCipherTemplate::Seek
void Seek(lword position)
Seeks to a random position in the stream.
Definition: strciphr.cpp:137

AdditiveCipherAbstractPolicy
Policy object for additive stream ciphers.
Definition: strciphr.h:104

IsAlignedOn
bool IsAlignedOn(const void *ptr, unsigned int alignment)
Determines whether ptr is aligned to a minimum value.
Definition: misc.h:1207

AdditiveCipherTemplate::ProcessData
void ProcessData(byte *outString, const byte *inString, size_t length)
Apply keystream to data.
Definition: strciphr.cpp:69

CFB_DecryptionTemplate
Base class for feedback based stream ciphers in the reverse direction with SymmetricCipher interface...
Definition: strciphr.h:653

CFB_CipherTemplate::ProcessData
void ProcessData(byte *outString, const byte *inString, size_t length)
Apply keystream to data.
Definition: strciphr.cpp:179

AdditiveCipherAbstractPolicy::GetAlignment
virtual unsigned int GetAlignment() const
Provides data alignment requirements.
Definition: strciphr.h:112

AdditiveCipherAbstractPolicy::GetBytesPerIteration
virtual unsigned int GetBytesPerIteration() const =0
Provides number of bytes operated upon during an iteration.

AdditiveCipherAbstractPolicy::SeekToIteration
virtual void SeekToIteration(lword iterationCount)
Seeks to a random position in the stream.
Definition: strciphr.h:174

pch.h
Precompiled header file.

GetCipherDir
CipherDir GetCipherDir(const T &obj)
Returns the direction the cipher is being operated.
Definition: misc.h:1268

CFB_EncryptionTemplate
Base class for feedback based stream ciphers in the forward direction with SymmetricCipher interface...
Definition: strciphr.h:644

AdditiveCipherTemplate::GenerateBlock
void GenerateBlock(byte *output, size_t size)
Generate random array of bytes.
Definition: strciphr.cpp:34

STDMIN
const T & STDMIN(const T &a, const T &b)
Replacement function for std::min.
Definition: misc.h:635

CRYPTOPP_ASSERT
#define CRYPTOPP_ASSERT(exp)
Debugging and diagnostic assertion.
Definition: trap.h:68

strciphr.h
Classes for implementing stream ciphers.

PtrSub
PTR PtrSub(PTR pointer, OFF offset)
Create a pointer with an offset.
Definition: misc.h:397

PtrAdd
PTR PtrAdd(PTR pointer, OFF offset)
Create a pointer with an offset.
Definition: misc.h:384

AdditiveCipherAbstractPolicy::CipherResynchronize
virtual void CipherResynchronize(byte *keystreamBuffer, const byte *iv, size_t length)
Resynchronize the cipher.
Definition: strciphr.h:163

xorbuf
CRYPTOPP_DLL void CRYPTOPP_API xorbuf(byte *buf, const byte *mask, size_t count)
Performs an XOR of a buffer with a mask.
Definition: misc.cpp:46

RoundUpToMultipleOf
T1 RoundUpToMultipleOf(const T1 &n, const T2 &m)
Rounds a value up to a multiple of a second value.
Definition: misc.h:1154

KeystreamOperation
KeystreamOperation
Keystream operation flags.
Definition: strciphr.h:88

CryptoPP
Crypto++ library namespace.

CFB_CipherTemplate::Resynchronize
void Resynchronize(const byte *iv, int length=-1)
Resynchronize the cipher.
Definition: strciphr.cpp:171

AdditiveCipherTemplate
Base class for additive stream ciphers with SymmetricCipher interface.
Definition: strciphr.h:299

NameValuePairs
Interface for retrieving values given their names.
Definition: cryptlib.h:321