mirror of
https://github.com/emmansun/gmsm.git
synced 2025-04-22 02:06:18 +08:00
60 lines
1.6 KiB
Go
60 lines
1.6 KiB
Go
package zuc
|
|
|
|
import (
|
|
"crypto/cipher"
|
|
"encoding/binary"
|
|
|
|
"github.com/emmansun/gmsm/internal/subtle"
|
|
"github.com/emmansun/gmsm/internal/xor"
|
|
)
|
|
|
|
const RoundWords = 32
|
|
|
|
// NewCipher create a stream cipher based on key and iv aguments.
|
|
func NewCipher(key, iv []byte) (cipher.Stream, error) {
|
|
return newZUCState(key, iv)
|
|
}
|
|
|
|
// NewEEACipher create a stream cipher based on key, count, bearer and direction arguments according specification.
|
|
func NewEEACipher(key []byte, count, bearer, direction uint32) (cipher.Stream, error) {
|
|
iv := make([]byte, 16)
|
|
binary.BigEndian.PutUint32(iv, count)
|
|
copy(iv[8:12], iv[:4])
|
|
iv[4] = byte(((bearer << 1) | (direction & 1)) << 2)
|
|
iv[12] = iv[4]
|
|
return newZUCState(key, iv)
|
|
}
|
|
|
|
func xorKeyStreamGeneric(c *zucState32, dst, src []byte) {
|
|
words := (len(src) + 3) / 4
|
|
rounds := words / RoundWords
|
|
var keyWords [RoundWords]uint32
|
|
var keyBytes [RoundWords * 4]byte
|
|
for i := 0; i < rounds; i++ {
|
|
c.genKeywords(keyWords[:])
|
|
for j := 0; j < RoundWords; j++ {
|
|
binary.BigEndian.PutUint32(keyBytes[j*4:], keyWords[j])
|
|
}
|
|
xor.XorBytes(dst, src, keyBytes[:])
|
|
dst = dst[RoundWords*4:]
|
|
src = src[RoundWords*4:]
|
|
}
|
|
if rounds*RoundWords < words {
|
|
c.genKeywords(keyWords[:words-rounds*RoundWords])
|
|
for j := 0; j < words-rounds*RoundWords; j++ {
|
|
binary.BigEndian.PutUint32(keyBytes[j*4:], keyWords[j])
|
|
}
|
|
xor.XorBytes(dst, src, keyBytes[:])
|
|
}
|
|
}
|
|
|
|
func (c *zucState32) XORKeyStream(dst, src []byte) {
|
|
if len(dst) < len(src) {
|
|
panic("zuc: output smaller than input")
|
|
}
|
|
if subtle.InexactOverlap(dst[:len(src)], src) {
|
|
panic("zuc: invalid buffer overlap")
|
|
}
|
|
xorKeyStream(c, dst, src)
|
|
}
|