Coverage Report

Created: 2025-06-13 06:58

/src/openssl31/crypto/bf/bf_enc.c
Line
Count
Source (jump to first uncovered line)
1
/*
2
 * Copyright 1995-2020 The OpenSSL Project Authors. All Rights Reserved.
3
 *
4
 * Licensed under the Apache License 2.0 (the "License").  You may not use
5
 * this file except in compliance with the License.  You can obtain a copy
6
 * in the file LICENSE in the source distribution or at
7
 * https://www.openssl.org/source/license.html
8
 */
9
10
/*
11
 * BF low level APIs are deprecated for public use, but still ok for internal
12
 * use.
13
 */
14
#include "internal/deprecated.h"
15
16
#include <openssl/blowfish.h>
17
#include "bf_local.h"
18
19
/*
20
 * Blowfish as implemented from 'Blowfish: Springer-Verlag paper' (From
21
 * LECTURE NOTES IN COMPUTER SCIENCE 809, FAST SOFTWARE ENCRYPTION, CAMBRIDGE
22
 * SECURITY WORKSHOP, CAMBRIDGE, U.K., DECEMBER 9-11, 1993)
23
 */
24
25
#if (BF_ROUNDS != 16) && (BF_ROUNDS != 20)
26
# error If you set BF_ROUNDS to some value other than 16 or 20, you will have \
27
to modify the code.
28
#endif
29
30
void BF_encrypt(BF_LONG *data, const BF_KEY *key)
31
0
{
32
0
    register BF_LONG l, r;
33
0
    register const BF_LONG *p, *s;
34
35
0
    p = key->P;
36
0
    s = &(key->S[0]);
37
0
    l = data[0];
38
0
    r = data[1];
39
40
0
    l ^= p[0];
41
0
    BF_ENC(r, l, s, p[1]);
42
0
    BF_ENC(l, r, s, p[2]);
43
0
    BF_ENC(r, l, s, p[3]);
44
0
    BF_ENC(l, r, s, p[4]);
45
0
    BF_ENC(r, l, s, p[5]);
46
0
    BF_ENC(l, r, s, p[6]);
47
0
    BF_ENC(r, l, s, p[7]);
48
0
    BF_ENC(l, r, s, p[8]);
49
0
    BF_ENC(r, l, s, p[9]);
50
0
    BF_ENC(l, r, s, p[10]);
51
0
    BF_ENC(r, l, s, p[11]);
52
0
    BF_ENC(l, r, s, p[12]);
53
0
    BF_ENC(r, l, s, p[13]);
54
0
    BF_ENC(l, r, s, p[14]);
55
0
    BF_ENC(r, l, s, p[15]);
56
0
    BF_ENC(l, r, s, p[16]);
57
# if BF_ROUNDS == 20
58
    BF_ENC(r, l, s, p[17]);
59
    BF_ENC(l, r, s, p[18]);
60
    BF_ENC(r, l, s, p[19]);
61
    BF_ENC(l, r, s, p[20]);
62
# endif
63
0
    r ^= p[BF_ROUNDS + 1];
64
65
0
    data[1] = l & 0xffffffffU;
66
0
    data[0] = r & 0xffffffffU;
67
0
}
68
69
void BF_decrypt(BF_LONG *data, const BF_KEY *key)
70
0
{
71
0
    register BF_LONG l, r;
72
0
    register const BF_LONG *p, *s;
73
74
0
    p = key->P;
75
0
    s = &(key->S[0]);
76
0
    l = data[0];
77
0
    r = data[1];
78
79
0
    l ^= p[BF_ROUNDS + 1];
80
#  if BF_ROUNDS == 20
81
    BF_ENC(r, l, s, p[20]);
82
    BF_ENC(l, r, s, p[19]);
83
    BF_ENC(r, l, s, p[18]);
84
    BF_ENC(l, r, s, p[17]);
85
#  endif
86
0
    BF_ENC(r, l, s, p[16]);
87
0
    BF_ENC(l, r, s, p[15]);
88
0
    BF_ENC(r, l, s, p[14]);
89
0
    BF_ENC(l, r, s, p[13]);
90
0
    BF_ENC(r, l, s, p[12]);
91
0
    BF_ENC(l, r, s, p[11]);
92
0
    BF_ENC(r, l, s, p[10]);
93
0
    BF_ENC(l, r, s, p[9]);
94
0
    BF_ENC(r, l, s, p[8]);
95
0
    BF_ENC(l, r, s, p[7]);
96
0
    BF_ENC(r, l, s, p[6]);
97
0
    BF_ENC(l, r, s, p[5]);
98
0
    BF_ENC(r, l, s, p[4]);
99
0
    BF_ENC(l, r, s, p[3]);
100
0
    BF_ENC(r, l, s, p[2]);
101
0
    BF_ENC(l, r, s, p[1]);
102
0
    r ^= p[0];
103
104
0
    data[1] = l & 0xffffffffU;
105
0
    data[0] = r & 0xffffffffU;
106
0
}
107
108
void BF_cbc_encrypt(const unsigned char *in, unsigned char *out, long length,
109
                    const BF_KEY *schedule, unsigned char *ivec, int encrypt)
110
0
{
111
0
    register BF_LONG tin0, tin1;
112
0
    register BF_LONG tout0, tout1, xor0, xor1;
113
0
    register long l = length;
114
0
    BF_LONG tin[2];
115
116
0
    if (encrypt) {
117
0
        n2l(ivec, tout0);
118
0
        n2l(ivec, tout1);
119
0
        ivec -= 8;
120
0
        for (l -= 8; l >= 0; l -= 8) {
121
0
            n2l(in, tin0);
122
0
            n2l(in, tin1);
123
0
            tin0 ^= tout0;
124
0
            tin1 ^= tout1;
125
0
            tin[0] = tin0;
126
0
            tin[1] = tin1;
127
0
            BF_encrypt(tin, schedule);
128
0
            tout0 = tin[0];
129
0
            tout1 = tin[1];
130
0
            l2n(tout0, out);
131
0
            l2n(tout1, out);
132
0
        }
133
0
        if (l != -8) {
134
0
            n2ln(in, tin0, tin1, l + 8);
135
0
            tin0 ^= tout0;
136
0
            tin1 ^= tout1;
137
0
            tin[0] = tin0;
138
0
            tin[1] = tin1;
139
0
            BF_encrypt(tin, schedule);
140
0
            tout0 = tin[0];
141
0
            tout1 = tin[1];
142
0
            l2n(tout0, out);
143
0
            l2n(tout1, out);
144
0
        }
145
0
        l2n(tout0, ivec);
146
0
        l2n(tout1, ivec);
147
0
    } else {
148
0
        n2l(ivec, xor0);
149
0
        n2l(ivec, xor1);
150
0
        ivec -= 8;
151
0
        for (l -= 8; l >= 0; l -= 8) {
152
0
            n2l(in, tin0);
153
0
            n2l(in, tin1);
154
0
            tin[0] = tin0;
155
0
            tin[1] = tin1;
156
0
            BF_decrypt(tin, schedule);
157
0
            tout0 = tin[0] ^ xor0;
158
0
            tout1 = tin[1] ^ xor1;
159
0
            l2n(tout0, out);
160
0
            l2n(tout1, out);
161
0
            xor0 = tin0;
162
0
            xor1 = tin1;
163
0
        }
164
0
        if (l != -8) {
165
0
            n2l(in, tin0);
166
0
            n2l(in, tin1);
167
0
            tin[0] = tin0;
168
0
            tin[1] = tin1;
169
0
            BF_decrypt(tin, schedule);
170
0
            tout0 = tin[0] ^ xor0;
171
0
            tout1 = tin[1] ^ xor1;
172
0
            l2nn(tout0, tout1, out, l + 8);
173
0
            xor0 = tin0;
174
0
            xor1 = tin1;
175
0
        }
176
0
        l2n(xor0, ivec);
177
0
        l2n(xor1, ivec);
178
0
    }
179
0
    tin0 = tin1 = tout0 = tout1 = xor0 = xor1 = 0;
180
0
    tin[0] = tin[1] = 0;
181
0
}