thajohns
/
cs456-a3
關注 1
收藏 0
複製 0
程式碼 問題 0 合併請求 0 版本發佈 0 Wiki 活動
Simple AES chat program
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
8 提交
1 分支
分支: master
分支列表 標籤
${ item.name }
建立分支 ${ searchTerm }
從 'master'
${ noResults }
cs456-a3/aes.c

aes.c 6.8KB
永久連結 歷史記錄 原始文件

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295 
  1. // I'm aware that this file is written horribly and dooesn't have inverse functions

  2. 

  3. #include <stdlib.h>

  4. #include <stdio.h>

  5. #include <stdint.h>

  6. #include <string.h>

  7. 

  8. #define LROT8(v, b) ((v) << (b) | (v) >> (8 - (b)))

  9. #define LROT32(v, b) ((v) << (b) | (v) >> (32 - (b)))

  10. 

  11. char sbox[256], inv_sbox[256];

  12. 

  13. struct polydiv_result

  14. {

  15.   uint16_t q;

  16.   uint16_t r;

  17. };

  18. 

  19. struct polyeeuclid_result

  20. {

  21.   uint16_t u;

  22.   uint16_t v;

  23.   uint16_t g;

  24. };

  25. 

  26. static uint16_t msb(uint16_t x)

  27. {

  28.   x |= x >> 1;

  29.   x |= x >> 2;

  30.   x |= x >> 4;

  31.   x |= x >> 8;

  32.   x ^= (x >> 1);

  33.   return x;

  34. }

  35. 

  36. static uint16_t poly_mult(uint16_t multiplicand, uint16_t multiplier)

  37. {

  38.   uint16_t accum = 0;

  39.   int ii;

  40.   for (ii = 0; ii < 16; ii++)

  41.   {

  42.     if (multiplier & 1)

  43.       accum ^= multiplicand;

  44.     multiplier >>= 1;

  45.     multiplicand <<= 1;

  46.   }

  47.   return accum;

  48. }

  49. 

  50. static void poly_div(uint16_t dividend, uint16_t divisor, struct polydiv_result *out)

  51. {

  52.   uint16_t quotient = 0;

  53.   if (divisor == 0)

  54.     return;

  55.   while (msb(dividend) >= msb(divisor))

  56.   {

  57.     uint16_t intermittent = msb(dividend) / msb(divisor);

  58.     quotient ^= intermittent;

  59.     dividend ^= divisor * intermittent;

  60.   }

  61.   out->q = quotient;

  62.   out->r = dividend;

  63. }

  64. 

  65. static uint16_t poly_mult_mod(uint16_t a, uint16_t b, uint16_t m)

  66. {

  67.   struct polydiv_result qr;

  68.   poly_div(poly_mult(a, b), m, &qr);

  69.   return qr.r;

  70. }

  71. 

  72. static void poly_eeuclid(uint16_t a, uint16_t b, struct polyeeuclid_result *out)

  73. {

  74.   struct polydiv_result qr;

  75.   uint16_t x0 = 1, y0 = 0, x1 = 0, y1 = 1;

  76.   poly_div(a, b, &qr);

  77.   while (qr.r)

  78.   {

  79.     uint16_t xn = x0 ^ poly_mult(qr.q, x1), yn = y0 ^ poly_mult(qr.q, y1);

  80.     a = b;

  81.     b = qr.r;

  82.     poly_div(a, b, &qr);

  83.     x0 = x1;

  84.     y0 = y1;

  85.     x1 = xn;

  86.     y1 = yn;

  87.   }

  88. 

  89.   out->g = b;

  90.   out->u = x1;

  91.   out->v = y1;

  92. }

  93. 

  94. //void print_poly(uint16_t p)

  95. //{

  96. //  int ii;

  97. //  for (ii = 0; ii < 16; ii++)

  98. //  {

  99. //    printf((p & 32768) ? "1" : "0");

  100. //    p <<= 1;

  101. //  }

  102. //  printf("\n");

  103. //}

  104. 

  105. static uint8_t inv_Rijndael(uint8_t p)

  106. {

  107.   if (!p)

  108.     return 0;

  109.   struct polyeeuclid_result guv;

  110.   poly_eeuclid(p, 0x11b, &guv);

  111.   return (uint8_t) guv.u;

  112. }

  113. 

  114. static uint8_t Nyberg(uint8_t i)

  115. {

  116.   return i ^ LROT8(i, 1) ^ LROT8(i, 2) ^ LROT8(i, 3) ^ LROT8(i, 4) ^ 0x63;

  117. }

  118. 

  119. static uint8_t sbox_transform(uint8_t i)

  120. {

  121.   return Nyberg(inv_Rijndael(i));

  122. }

  123. 

  124. void initializeSBox()

  125. {

  126.   int ii;

  127.   for (ii = 0; ii < 256; ii++)

  128.   {

  129.     uint8_t in = (uint8_t) ii;

  130.     uint8_t out = sbox_transform(ii);

  131.     sbox[in] = out;

  132.     inv_sbox[out] = in;

  133.   }

  134. }

  135. 

  136. static uint32_t wordSBox(uint32_t word)

  137. {

  138.   return

  139.     (sbox[(uint8_t) word]) |

  140.     (sbox[(uint8_t) (word >> 8)] << 8) |

  141.     (sbox[(uint8_t) (word >> 16)] << 16) |

  142.     (sbox[(uint8_t) (word >> 24)] << 24);

  143. }

  144. 

  145. void expandKey(uint32_t short_key[8], uint32_t expanded_key[60])

  146. {

  147.   // TODO: Make the round constants constant

  148.   uint8_t rcs[8] = {1};

  149.   int ii;

  150.   for (ii = 1; ii < 8; ii++)

  151.   {

  152.     if (rcs[ii - 1] < 0x80)

  153.     {

  154.       rcs[ii] = rcs[ii - 1] << 1;

  155.     } else

  156.     {

  157.       rcs[ii] = 0x1b ^ (rcs[ii - 1] << 1);

  158.     }

  159.   }

  160. 

  161.   memcpy(expanded_key, short_key, 8 * sizeof(uint32_t));

  162. 

  163.   int rci = 0;

  164. 

  165.   for (ii = 8; ii < 60; ii++)

  166.   {

  167.     if (ii % 8 == 0)

  168.     {

  169.       expanded_key[ii] = expanded_key[ii - 8] ^ wordSBox(LROT32(expanded_key[ii - 1], 8)) ^ (rcs[rci] << 24);

  170.       rci++;

  171.     } else if (ii % 8 == 4)

  172.     {

  173.       expanded_key[ii] = expanded_key[ii - 8] ^ wordSBox(expanded_key[ii - 1]);

  174.     } else

  175.     {

  176.       expanded_key[ii] = expanded_key[ii - 8] ^ expanded_key[ii - 1];

  177.     }

  178.   }

  179. }

  180. 

  181. void AESRound(uint32_t state[4], uint32_t key[60])

  182. {

  183.   int ii, ij;

  184.   for (ii = 0; ii < 4; ii++)

  185.   {

  186.     state[ii] ^= *key;

  187.     key++;

  188.   }

  189.   for (ij = 0; ij < 13; ij++)

  190.   {

  191.     for (ii = 0; ii < 4; ii++)

  192.       state[ii] = wordSBox(state[ii]);

  193.     for (ii = 0; ii < 4; ii++)

  194.       state[ii] = LROT32(state[ii], 8 * ii);

  195.     uint32_t newstate[4] = {0};

  196.     for (ii = 0; ii < 4; ii++)

  197.     {

  198.       int shc = 8 * ii;

  199.       newstate[0] |= (poly_mult_mod((uint8_t) (state[0] >> shc), 2, 0x11b) ^

  200.           poly_mult_mod((uint8_t) (state[1] >> shc), 3, 0x11b) ^ 

  201.           ((uint8_t) (state[2] >> shc)) ^ ((uint8_t) (state[3] >> shc))) << shc;

  202.       newstate[1] |= (poly_mult_mod((uint8_t) (state[1] >> shc), 2, 0x11b) ^

  203.           poly_mult_mod((uint8_t) (state[2] >> shc), 3, 0x11b) ^ 

  204.           ((uint8_t) (state[3] >> shc)) ^ ((uint8_t) (state[0] >> shc))) << shc;

  205.       newstate[2] |= (poly_mult_mod((uint8_t) (state[2] >> shc), 2, 0x11b) ^

  206.           poly_mult_mod((uint8_t) (state[3] >> shc), 3, 0x11b) ^ 

  207.           ((uint8_t) (state[0] >> shc)) ^ ((uint8_t) (state[1] >> shc))) << shc;

  208.       newstate[3] |= (poly_mult_mod((uint8_t) (state[3] >> shc), 2, 0x11b) ^

  209.           poly_mult_mod((uint8_t) (state[0] >> shc), 3, 0x11b) ^ 

  210.           ((uint8_t) (state[1] >> shc)) ^ ((uint8_t) (state[2] >> shc))) << shc;

  211.     }

  212.     memcpy(state, newstate, 4 * sizeof(uint32_t));

  213.     for (ii = 0; ii < 4; ii++)

  214.     {

  215.       state[ii] ^= *key;

  216.       key++;

  217.     }

  218.   }

  219.   for (ii = 0; ii < 4; ii++)

  220.     state[ii] = wordSBox(state[ii]);

  221.   for (ii = 0; ii < 4; ii++)

  222.     state[ii] = LROT32(state[ii], 8 * ii);

  223.   for (ii = 0; ii < 4; ii++)

  224.   {

  225.     state[ii] ^= *key;

  226.     key++;

  227.   }

  228. }

  229. 

  230. void dataToState(char data[16], uint32_t state[4])

  231. {

  232.   int ii;

  233.   for (ii = 0; ii < 4; ii++)

  234.   {

  235.     state[ii] = data[0] | (data[1] << 8) | (data[2] << 16) | (data[3] << 24);

  236.     data += 4;

  237.   }

  238. }

  239. 

  240. void stateToData(uint32_t state[4], char data[16])

  241. {

  242.   int ii, ij;;

  243.   for (ii = 0; ii < 4; ii++)

  244.   {

  245.     uint32_t d = state[ii];

  246.     for (ij = 0; ij < 4; ij++)

  247.     {

  248.       *data = d;

  249.       data++;

  250.       d >>= 8;

  251.     }

  252.   }

  253. }

  254. 

  255. void AESRound_data(char data[16], uint32_t key[60])

  256. {

  257.   uint32_t state[4];

  258.   dataToState(data, state);

  259.   AESRound(state, key);

  260.   stateToData(state, data);

  261. }

  262. 

  263. 

  264. //int main()

  265. //{

  266. //  int ii;

  267. //  //for (ii = 0; ii < 256; ii++)

  268. //  //{

  269. //  //  printf("%02x %02x %02x\n", ii & 0xf0, ii & 0x0f, sbox_transform(ii));

  270. //  //}

  271. //

  272. //  uint8_t state[4] = {0xf2, 0x0a, 0x22, 0x5c};

  273. //  uint8_t newstate[4] = {0};

  274. //  int shc = 0;

  275. //  newstate[0] |= (poly_mult_mod((uint8_t) (state[0] >> shc), 2, 0x11b) ^

  276. //      poly_mult_mod((uint8_t) (state[1] >> shc), 3, 0x11b) ^ 

  277. //      ((uint8_t) (state[2] >> shc)) ^ ((uint8_t) (state[3] >> shc))) << shc;

  278. //  newstate[1] |= (poly_mult_mod((uint8_t) (state[1] >> shc), 2, 0x11b) ^

  279. //      poly_mult_mod((uint8_t) (state[2] >> shc), 3, 0x11b) ^ 

  280. //      ((uint8_t) (state[3] >> shc)) ^ ((uint8_t) (state[0] >> shc))) << shc;

  281. //  newstate[2] |= (poly_mult_mod((uint8_t) (state[2] >> shc), 2, 0x11b) ^

  282. //      poly_mult_mod((uint8_t) (state[3] >> shc), 3, 0x11b) ^ 

  283. //      ((uint8_t) (state[0] >> shc)) ^ ((uint8_t) (state[1] >> shc))) << shc;

  284. //  newstate[3] |= (poly_mult_mod((uint8_t) (state[3] >> shc), 2, 0x11b) ^

  285. //      poly_mult_mod((uint8_t) (state[0] >> shc), 3, 0x11b) ^ 

  286. //      ((uint8_t) (state[1] >> shc)) ^ ((uint8_t) (state[2] >> shc))) << shc;

  287. //

  288. //  for (ii = 0; ii < 4; ii++)

  289. //  {

  290. //    printf("%02x ", newstate[ii]);

  291. //  }

  292. //  printf("\n");

  293. //  return 0;

  294. //}

  295. //