mirrors
/
rspamd
mirror of https://github.com/vstakhov/rspamd.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 159 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
21063 Commits
28 Branches
Tree: c8897ff041
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'c8897ff041'
${ noResults }
rspamd/src/libcryptobox/chacha20/chacha.c

chacha.c 8.1KB
Raw Blame History

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262 
  1. /* Copyright (c) 2015, Vsevolod Stakhov

  2.  * Copyright (c) 2015, Andrew Moon

  3.  * All rights reserved.

  4.  *

  5.  * Redistribution and use in source and binary forms, with or without

  6.  * modification, are permitted provided that the following conditions are met:

  7.  *       * Redistributions of source code must retain the above copyright

  8.  *         notice, this list of conditions and the following disclaimer.

  9.  *       * Redistributions in binary form must reproduce the above copyright

  10.  *         notice, this list of conditions and the following disclaimer in the

  11.  *         documentation and/or other materials provided with the distribution.

  12.  *

  13.  * THIS SOFTWARE IS PROVIDED ''AS IS'' AND ANY

  14.  * EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED

  15.  * WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE

  16.  * DISCLAIMED. IN NO EVENT SHALL AUTHOR BE LIABLE FOR ANY

  17.  * DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES

  18.  * (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;

  19.  * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND

  20.  * ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT

  21.  * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS

  22.  * SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.

  23.  */

  24. 

  25. #include "config.h"

  26. #include "cryptobox.h"

  27. #include "chacha.h"

  28. #include "platform_config.h"

  29. 

  30. extern unsigned cpu_config;

  31. 

  32. typedef struct chacha_impl_t {

  33. 	unsigned long cpu_flags;

  34. 	const char *desc;

  35. 	void (*chacha)(const chacha_key *key, const chacha_iv *iv,

  36. 				   const unsigned char *in, unsigned char *out, size_t inlen,

  37. 				   size_t rounds);

  38. 	void (*xchacha)(const chacha_key *key, const chacha_iv24 *iv,

  39. 					const unsigned char *in, unsigned char *out, size_t inlen,

  40. 					size_t rounds);

  41. 	void (*chacha_blocks)(chacha_state_internal *state,

  42. 						  const unsigned char *in, unsigned char *out, size_t bytes);

  43. 	void (*hchacha)(const unsigned char key[32], const unsigned char iv[16],

  44. 					unsigned char out[32], size_t rounds);

  45. } chacha_impl_t;

  46. 

  47. #define CHACHA_DECLARE(ext)                                                                                                                     \

  48. 	void chacha_##ext(const chacha_key *key, const chacha_iv *iv, const unsigned char *in, unsigned char *out, size_t inlen, size_t rounds);    \

  49. 	void xchacha_##ext(const chacha_key *key, const chacha_iv24 *iv, const unsigned char *in, unsigned char *out, size_t inlen, size_t rounds); \

  50. 	void chacha_blocks_##ext(chacha_state_internal *state, const unsigned char *in, unsigned char *out, size_t bytes);                          \

  51. 	void hchacha_##ext(const unsigned char key[32], const unsigned char iv[16], unsigned char out[32], size_t rounds);

  52. #define CHACHA_IMPL(cpuflags, desc, ext)                                                  \

  53. 	{                                                                                     \

  54. 		(cpuflags), desc, chacha_##ext, xchacha_##ext, chacha_blocks_##ext, hchacha_##ext \

  55. 	}

  56. 

  57. #if defined(HAVE_AVX2) && defined(__x86_64__)

  58. CHACHA_DECLARE(avx2)

  59. #define CHACHA_AVX2 CHACHA_IMPL(CPUID_AVX2, "avx2", avx2)

  60. #endif

  61. #if defined(HAVE_AVX) && defined(__x86_64__)

  62. CHACHA_DECLARE(avx)

  63. #define CHACHA_AVX CHACHA_IMPL(CPUID_AVX, "avx", avx)

  64. #endif

  65. #if defined(HAVE_SSE2) && defined(__x86_64__)

  66. CHACHA_DECLARE(sse2)

  67. #define CHACHA_SSE2 CHACHA_IMPL(CPUID_SSE2, "sse2", sse2)

  68. #endif

  69. 

  70. CHACHA_DECLARE(ref)

  71. #define CHACHA_GENERIC CHACHA_IMPL(0, "generic", ref)

  72. 

  73. static const chacha_impl_t chacha_list[] = {

  74. 	CHACHA_GENERIC,

  75. #if defined(CHACHA_AVX2) && defined(__x86_64__)

  76. 	CHACHA_AVX2,

  77. #endif

  78. #if defined(CHACHA_AVX) && defined(__x86_64__)

  79. 	CHACHA_AVX,

  80. #endif

  81. #if defined(CHACHA_SSE2) && defined(__x86_64__)

  82. 	CHACHA_SSE2

  83. #endif

  84. };

  85. 

  86. static const chacha_impl_t *chacha_impl = &chacha_list[0];

  87. 

  88. static int

  89. chacha_is_aligned(const void *p)

  90. {

  91. 	return ((size_t) p & (sizeof(size_t) - 1)) == 0;

  92. }

  93. 

  94. const char *

  95. chacha_load(void)

  96. {

  97. 	unsigned int i;

  98. 

  99. 	if (cpu_config != 0) {

  100. 		for (i = 0; i < G_N_ELEMENTS(chacha_list); i++) {

  101. 			if (chacha_list[i].cpu_flags & cpu_config) {

  102. 				chacha_impl = &chacha_list[i];

  103. 				break;

  104. 			}

  105. 		}

  106. 	}

  107. 

  108. 	return chacha_impl->desc;

  109. }

  110. 

  111. void chacha_init(chacha_state *S, const chacha_key *key,

  112. 				 const chacha_iv *iv, size_t rounds)

  113. {

  114. 	chacha_state_internal *state = (chacha_state_internal *) S;

  115. 	memcpy(state->s + 0, key, 32);

  116. 	memset(state->s + 32, 0, 8);

  117. 	memcpy(state->s + 40, iv, 8);

  118. 	state->rounds = rounds;

  119. 	state->leftover = 0;

  120. }

  121. 

  122. /* processes inlen bytes (can do partial blocks), handling input/output alignment */

  123. static void

  124. chacha_consume(chacha_state_internal *state,

  125. 			   const unsigned char *in, unsigned char *out, size_t inlen)

  126. {

  127. 	unsigned char buffer[16 * CHACHA_BLOCKBYTES];

  128. 	int in_aligned, out_aligned;

  129. 

  130. 	/* it's ok to call with 0 bytes */

  131. 	if (!inlen)

  132. 		return;

  133. 

  134. 	/* if everything is aligned, handle directly */

  135. 	in_aligned = chacha_is_aligned(in);

  136. 	out_aligned = chacha_is_aligned(out);

  137. 	if (in_aligned && out_aligned) {

  138. 		chacha_impl->chacha_blocks(state, in, out, inlen);

  139. 		return;

  140. 	}

  141. 

  142. 	/* copy the unaligned data to an aligned buffer and process in chunks */

  143. 	while (inlen) {

  144. 		const size_t bytes = (inlen > sizeof(buffer)) ? sizeof(buffer) : inlen;

  145. 		const unsigned char *src = in;

  146. 		unsigned char *dst = (out_aligned) ? out : buffer;

  147. 		if (!in_aligned) {

  148. 			memcpy(buffer, in, bytes);

  149. 			src = buffer;

  150. 		}

  151. 		chacha_impl->chacha_blocks(state, src, dst, bytes);

  152. 		if (!out_aligned)

  153. 			memcpy(out, buffer, bytes);

  154. 		if (in)

  155. 			in += bytes;

  156. 		out += bytes;

  157. 		inlen -= bytes;

  158. 	}

  159. }

  160. 

  161. /* hchacha */

  162. void hchacha(const unsigned char key[32],

  163. 			 const unsigned char iv[16], unsigned char out[32], size_t rounds)

  164. {

  165. 	chacha_impl->hchacha(key, iv, out, rounds);

  166. }

  167. 

  168. /* update, returns number of bytes written to out */

  169. size_t

  170. chacha_update(chacha_state *S, const unsigned char *in, unsigned char *out,

  171. 			  size_t inlen)

  172. {

  173. 	chacha_state_internal *state = (chacha_state_internal *) S;

  174. 	unsigned char *out_start = out;

  175. 	size_t bytes;

  176. 

  177. 	/* enough for at least one block? */

  178. 	while ((state->leftover + inlen) >= CHACHA_BLOCKBYTES) {

  179. 		/* handle the previous data */

  180. 		if (state->leftover) {

  181. 			bytes = (CHACHA_BLOCKBYTES - state->leftover);

  182. 			if (in) {

  183. 				memcpy(state->buffer + state->leftover, in, bytes);

  184. 				in += bytes;

  185. 			}

  186. 			chacha_consume(state, (in) ? state->buffer : NULL, out,

  187. 						   CHACHA_BLOCKBYTES);

  188. 			inlen -= bytes;

  189. 			out += CHACHA_BLOCKBYTES;

  190. 			state->leftover = 0;

  191. 		}

  192. 

  193. 		/* handle the direct data */

  194. 		bytes = (inlen & ~(CHACHA_BLOCKBYTES - 1));

  195. 		if (bytes) {

  196. 			chacha_consume(state, in, out, bytes);

  197. 			inlen -= bytes;

  198. 			if (in)

  199. 				in += bytes;

  200. 			out += bytes;

  201. 		}

  202. 	}

  203. 

  204. 	/* handle leftover data */

  205. 	if (inlen) {

  206. 		if (in)

  207. 			memcpy(state->buffer + state->leftover, in, inlen);

  208. 		else

  209. 			memset(state->buffer + state->leftover, 0, inlen);

  210. 		state->leftover += inlen;

  211. 	}

  212. 

  213. 	return out - out_start;

  214. }

  215. 

  216. /* finalize, write out any leftover data */

  217. size_t

  218. chacha_final(chacha_state *S, unsigned char *out)

  219. {

  220. 	chacha_state_internal *state = (chacha_state_internal *) S;

  221. 	size_t leftover = state->leftover;

  222. 	if (leftover) {

  223. 		if (chacha_is_aligned(out)) {

  224. 			chacha_impl->chacha_blocks(state, state->buffer, out, leftover);

  225. 		}

  226. 		else {

  227. 			chacha_impl->chacha_blocks(state, state->buffer, state->buffer,

  228. 									   leftover);

  229. 			memcpy(out, state->buffer, leftover);

  230. 		}

  231. 	}

  232. 	rspamd_explicit_memzero(S, sizeof(chacha_state));

  233. 	return leftover;

  234. }

  235. 

  236. /* one-shot, input/output assumed to be word aligned */

  237. void chacha(const chacha_key *key, const chacha_iv *iv,

  238. 			const unsigned char *in, unsigned char *out, size_t inlen,

  239. 			size_t rounds)

  240. {

  241. 	chacha_impl->chacha(key, iv, in, out, inlen, rounds);

  242. }

  243. 

  244. /*

  245.  xchacha, chacha with a 192 bit nonce

  246.  */

  247. 

  248. void xchacha_init(chacha_state *S, const chacha_key *key,

  249. 				  const chacha_iv24 *iv, size_t rounds)

  250. {

  251. 	chacha_key subkey;

  252. 	hchacha(key->b, iv->b, subkey.b, rounds);

  253. 	chacha_init(S, &subkey, (chacha_iv *) (iv->b + 16), rounds);

  254. }

  255. 

  256. /* one-shot, input/output assumed to be word aligned */

  257. void xchacha(const chacha_key *key, const chacha_iv24 *iv,

  258. 			 const unsigned char *in, unsigned char *out, size_t inlen,

  259. 			 size_t rounds)

  260. {

  261. 	chacha_impl->xchacha(key, iv, in, out, inlen, rounds);

  262. }