crypto_aead/lilliputaei128v1/ref/tweakey.c


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84

#include <stdbool.h>
#include <string.h>
#include <inttypes.h>           /* debug */

#include "tweakey.h"


#define LANE_BITS  64
#define LANE_BYTES (LANE_BITS/8)


static void _dump_buffer(FILE *output, size_t len, const uint8_t buf[len], int indent)
{
    for (size_t line=0; line<len/8; line++)
    {
        fprintf(output, "%*s", indent, "");
        for (size_t b=0; b<8; b++)
        {
            /* start with MSB */
            size_t byte_index = len-(1+line*8+b);
            fprintf(output, "%*s", 5, "");
            fprintf(output, "%02x", buf[byte_index]);
        }
        fprintf(output, "\n");
    }
    fprintf(output, "\n");
}


void tweakey_state_init(
    tweakey_state *TK,
    const uint8_t key[KEY_BYTES],
    const uint8_t tweak[TWEAK_BYTES],
    FILE *debug
)
{
    memcpy(TK->TK,             tweak, TWEAK_BYTES);
    memcpy(TK->TK+TWEAK_BYTES, key,   KEY_BYTES);

    TK->debug = debug;

    fprintf(debug, "     Tweak is :\n");
    _dump_buffer(debug, TWEAK_BYTES, tweak, 5);
    fprintf(debug, "     Key is :\n");
    _dump_buffer(debug, KEY_BYTES, key, 5);
    fprintf(debug, "     Tweakey is :\n");
    _dump_buffer(debug, sizeof(TK->TK), TK->TK, 5);
}


void tweakey_state_extract(
    const tweakey_state *TK,
    uint8_t round_tweakey[ROUND_TWEAKEY_BYTES], /* output */
    uint8_t i                                   /* round constant */
)
{
    memset(round_tweakey, 0, ROUND_TWEAKEY_BYTES);

    for (const uint8_t *lane=TK->TK; lane<TK->TK+TWEAKEY_BYTES; lane+=LANE_BYTES)
    {
        for (size_t j=0; j<LANE_BYTES; j++)
        {
            round_tweakey[j] ^= lane[j];
        }
    }

    round_tweakey[0] ^= i;

    fprintf(TK->debug, "     Extracting Subtweakey round  %"PRIu8"\n", i);
    _dump_buffer(TK->debug, sizeof(TK->TK), TK->TK, 5);
    fprintf(TK->debug, "     Subtweakey :\n");
    _dump_buffer(TK->debug, ROUND_TWEAKEY_BYTES, round_tweakey, 5);
}


void tweakey_state_update(tweakey_state *TK)
{
    fprintf(TK->debug, "          Input Tweakey :\n");
    _dump_buffer(TK->debug, sizeof(TK->TK), TK->TK, 10);
    fprintf(TK->debug, "          Post permutation Tweakey :\n");
    _dump_buffer(TK->debug, sizeof(TK->TK), TK->TK, 10);
    fprintf(TK->debug, "          Post multiplication Tweakey :\n");
    _dump_buffer(TK->debug, sizeof(TK->TK), TK->TK, 10);
}