aboutsummaryrefslogtreecommitdiffstats
path: root/src/lib
diff options
context:
space:
mode:
authorJack Lloyd <[email protected]>2018-02-23 12:05:58 -0500
committerJack Lloyd <[email protected]>2018-02-23 12:05:58 -0500
commitedf30c4474a161dba6abd16f86fa01917294839f (patch)
tree4e12f4c90ed5aca1ca370aad75b0276697ab2f89 /src/lib
parent4dfc4420ae6c2215151fcdde4d82d7fe0cd613a0 (diff)
Simplify IDEA key schedule
Diffstat (limited to 'src/lib')
-rw-r--r--src/lib/block/idea/idea.cpp51
1 files changed, 28 insertions, 23 deletions
diff --git a/src/lib/block/idea/idea.cpp b/src/lib/block/idea/idea.cpp
index 26bd24690..ffd1bf56a 100644
--- a/src/lib/block/idea/idea.cpp
+++ b/src/lib/block/idea/idea.cpp
@@ -190,37 +190,42 @@ void IDEA::key_schedule(const uint8_t key[], size_t)
CT::poison(m_EK.data(), 52);
CT::poison(m_DK.data(), 52);
- for(size_t i = 0; i != 8; ++i)
- m_EK[i] = load_be<uint16_t>(key, i);
+ secure_vector<uint64_t> K(2);
- for(size_t i = 1, j = 8, offset = 0; j != 52; i %= 8, ++i, ++j)
+ K[0] = load_be<uint64_t>(key, 0);
+ K[1] = load_be<uint64_t>(key, 1);
+
+ for(size_t off = 0; off != 48; off += 8)
{
- m_EK[i+7+offset] = static_cast<uint16_t>((m_EK[(i % 8) + offset] << 9) |
- (m_EK[((i+1) % 8) + offset] >> 7));
- offset += (i == 8) ? 8 : 0;
+ for(size_t i = 0; i != 8; ++i)
+ m_EK[off+i] = K[i/4] >> (48-16*(i % 4));
+
+ const uint64_t Kx = (K[0] >> 39);
+ const uint64_t Ky = (K[1] >> 39);
+
+ K[0] = (K[0] << 25) | Ky;
+ K[1] = (K[1] << 25) | Kx;
}
- m_DK[51] = mul_inv(m_EK[3]);
- m_DK[50] = -m_EK[2];
- m_DK[49] = -m_EK[1];
- m_DK[48] = mul_inv(m_EK[0]);
+ for(size_t i = 0; i != 4; ++i)
+ m_EK[48+i] = K[i/4] >> (48-16*(i % 4));
+
+ m_DK[0] = mul_inv(m_EK[48]);
+ m_DK[1] = -m_EK[49];
+ m_DK[2] = -m_EK[50];
+ m_DK[3] = mul_inv(m_EK[51]);
- for(size_t i = 1, j = 4, counter = 47; i != 8; ++i, j += 6)
+ for(size_t i = 0; i != 8*6; i += 6)
{
- m_DK[counter--] = m_EK[j+1];
- m_DK[counter--] = m_EK[j];
- m_DK[counter--] = mul_inv(m_EK[j+5]);
- m_DK[counter--] = -m_EK[j+3];
- m_DK[counter--] = -m_EK[j+4];
- m_DK[counter--] = mul_inv(m_EK[j+2]);
+ m_DK[i+4] = m_EK[46-i];
+ m_DK[i+5] = m_EK[47-i];
+ m_DK[i+6] = mul_inv(m_EK[42-i]);
+ m_DK[i+7] = -m_EK[44-i];
+ m_DK[i+8] = -m_EK[43-i];
+ m_DK[i+9] = mul_inv(m_EK[45-i]);
}
- m_DK[5] = m_EK[47];
- m_DK[4] = m_EK[46];
- m_DK[3] = mul_inv(m_EK[51]);
- m_DK[2] = -m_EK[50];
- m_DK[1] = -m_EK[49];
- m_DK[0] = mul_inv(m_EK[48]);
+ std::swap(m_DK[49], m_DK[50]);
CT::unpoison(key, 16);
CT::unpoison(m_EK.data(), 52);