github.com/mad-day/Yawning-crypto@v0.0.0-20190711051033-5a5f8cca32ec/bsaes/ct64/aes_ct64_enc.go

github.com/mad-day/Yawning-crypto@v0.0.0-20190711051033-5a5f8cca32ec/bsaes/ct64/aes_ct64_enc.go (about)

     1  // Copyright (c) 2016 Thomas Pornin <pornin@bolet.org>
     2  // Copyright (c) 2017 Yawning Angel <yawning at schwanenlied dot me>
     3  //
     4  // Permission is hereby granted, free of charge, to any person obtaining
     5  // a copy of this software and associated documentation files (the
     6  // "Software"), to deal in the Software without restriction, including
     7  // without limitation the rights to use, copy, modify, merge, publish,
     8  // distribute, sublicense, and/or sell copies of the Software, and to
     9  // permit persons to whom the Software is furnished to do so, subject to
    10  // the following conditions:
    11  //
    12  // The above copyright notice and this permission notice shall be
    13  // included in all copies or substantial portions of the Software.
    14  //
    15  // THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
    16  // EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
    17  // MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
    18  // NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS
    19  // BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN
    20  // ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN
    21  // CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
    22  // SOFTWARE.
    23  
    24  package ct64
    25  
    26  func ShiftRows(q *[8]uint64) {
    27  	for i, x := range q {
    28  		q[i] = (x & 0x000000000000FFFF) |
    29  			((x & 0x00000000FFF00000) >> 4) |
    30  			((x & 0x00000000000F0000) << 12) |
    31  			((x & 0x0000FF0000000000) >> 8) |
    32  			((x & 0x000000FF00000000) << 8) |
    33  			((x & 0xF000000000000000) >> 12) |
    34  			((x & 0x0FFF000000000000) << 4)
    35  	}
    36  }
    37  
    38  func MixColumns(q *[8]uint64) {
    39  	q0 := q[0]
    40  	q1 := q[1]
    41  	q2 := q[2]
    42  	q3 := q[3]
    43  	q4 := q[4]
    44  	q5 := q[5]
    45  	q6 := q[6]
    46  	q7 := q[7]
    47  	r0 := (q0 >> 16) | (q0 << 48)
    48  	r1 := (q1 >> 16) | (q1 << 48)
    49  	r2 := (q2 >> 16) | (q2 << 48)
    50  	r3 := (q3 >> 16) | (q3 << 48)
    51  	r4 := (q4 >> 16) | (q4 << 48)
    52  	r5 := (q5 >> 16) | (q5 << 48)
    53  	r6 := (q6 >> 16) | (q6 << 48)
    54  	r7 := (q7 >> 16) | (q7 << 48)
    55  
    56  	q[0] = q7 ^ r7 ^ r0 ^ rotr32(q0^r0)
    57  	q[1] = q0 ^ r0 ^ q7 ^ r7 ^ r1 ^ rotr32(q1^r1)
    58  	q[2] = q1 ^ r1 ^ r2 ^ rotr32(q2^r2)
    59  	q[3] = q2 ^ r2 ^ q7 ^ r7 ^ r3 ^ rotr32(q3^r3)
    60  	q[4] = q3 ^ r3 ^ q7 ^ r7 ^ r4 ^ rotr32(q4^r4)
    61  	q[5] = q4 ^ r4 ^ r5 ^ rotr32(q5^r5)
    62  	q[6] = q5 ^ r5 ^ r6 ^ rotr32(q6^r6)
    63  	q[7] = q6 ^ r6 ^ r7 ^ rotr32(q7^r7)
    64  }
    65  
    66  func encrypt(numRounds int, skey []uint64, q *[8]uint64) {
    67  	AddRoundKey(q, skey)
    68  	for u := 1; u < numRounds; u++ {
    69  		Sbox(q)
    70  		ShiftRows(q)
    71  		MixColumns(q)
    72  		AddRoundKey(q, skey[u<<3:])
    73  	}
    74  	Sbox(q)
    75  	ShiftRows(q)
    76  	AddRoundKey(q, skey[numRounds<<3:])
    77  }