11#include <botan/mode_pad.h>
12#include <botan/internal/rounding.h>
19 m_block_size(cipher->block_size())
21 if(m_padding && !m_padding->valid_blocksize(m_block_size))
23 " cannot be used with " +
66void CBC_Mode::key_schedule(
const uint8_t key[],
size_t length)
68 m_cipher->set_key(key, length);
72void CBC_Mode::start_msg(
const uint8_t nonce[],
size_t nonce_len)
75 throw Invalid_IV_Length(
name(), nonce_len);
83 m_state.assign(nonce, nonce + nonce_len);
84 else if(m_state.empty())
85 m_state.resize(m_cipher->block_size());
108 const size_t blocks = sz / BS;
115 for(
size_t i = 1; i != blocks; ++i)
117 xor_buf(&buf[BS*i], &buf[BS*(i-1)], BS);
121 state().assign(&buf[BS*(blocks-1)], &buf[BS*blocks]);
130 BOTAN_ASSERT(buffer.size() >= offset,
"Offset is sane");
134 const size_t bytes_in_final_block = (buffer.size()-offset) % BS;
161 BOTAN_ASSERT(buffer.size() >= offset,
"Offset is sane");
162 uint8_t* buf = buffer.data() + offset;
163 const size_t sz = buffer.size() - offset;
175 for(
size_t i = 0; i != BS; ++i)
176 std::swap(buffer[buffer.size()-BS+i], buffer[buffer.size()-2*BS+i]);
180 const size_t full_blocks = ((sz / BS) - 1) * BS;
181 const size_t final_bytes = sz - full_blocks;
182 BOTAN_ASSERT(final_bytes > BS && final_bytes < 2*BS,
"Left over size in expected range");
185 buffer.resize(full_blocks + offset);
191 for(
size_t i = 0; i != final_bytes - BS; ++i)
193 last[i] ^= last[i + BS];
194 last[i + BS] ^= last[i];
220 size_t blocks = sz / BS;
224 const size_t to_proc = std::min(BS * blocks, m_tempbuf.size());
229 xor_buf(&m_tempbuf[BS], buf, to_proc - BS);
232 copy_mem(buf, m_tempbuf.data(), to_proc);
235 blocks -= to_proc / BS;
244 BOTAN_ASSERT(buffer.size() >= offset,
"Offset is sane");
245 const size_t sz = buffer.size() - offset;
249 if(sz == 0 || sz % BS)
254 const size_t pad_bytes = BS -
padding().
unpad(&buffer[buffer.size()-BS], BS);
255 buffer.resize(buffer.size() - pad_bytes);
256 if(pad_bytes == 0 &&
padding().
name() !=
"NoPadding")
281 BOTAN_ASSERT(buffer.size() >= offset,
"Offset is sane");
282 const size_t sz = buffer.size() - offset;
283 uint8_t* buf = buffer.data() + offset;
294 for(
size_t i = 0; i != BS; ++i)
295 std::swap(buffer[buffer.size()-BS+i], buffer[buffer.size()-2*BS+i]);
301 const size_t full_blocks = ((sz / BS) - 1) * BS;
302 const size_t final_bytes = sz - full_blocks;
303 BOTAN_ASSERT(final_bytes > BS && final_bytes < 2*BS,
"Left over size in expected range");
306 buffer.resize(full_blocks + offset);
311 xor_buf(last.data(), &last[BS], final_bytes - BS);
313 for(
size_t i = 0; i != final_bytes - BS; ++i)
314 std::swap(last[i], last[i + BS]);
#define BOTAN_STATE_CHECK(expr)
#define BOTAN_ASSERT_EQUAL(expr1, expr2, assertion_made)
#define BOTAN_ASSERT(expr, assertion_made)
virtual std::string name() const =0
virtual size_t unpad(const uint8_t block[], size_t len) const =0
virtual void add_padding(secure_vector< uint8_t > &buffer, size_t final_block_bytes, size_t block_size) const =0
void encrypt(const uint8_t in[], uint8_t out[]) const
void decrypt(const uint8_t in[], uint8_t out[]) const
virtual void decrypt_n(const uint8_t in[], uint8_t out[], size_t blocks) const =0
size_t parallel_bytes() const
size_t minimum_final_size() const override
size_t process(uint8_t buf[], size_t size) override
void finish(secure_vector< uint8_t > &final_block, size_t offset=0) override
size_t output_length(size_t input_length) const override
size_t minimum_final_size() const override
size_t output_length(size_t input_length) const override
size_t process(uint8_t buf[], size_t size) override
void finish(secure_vector< uint8_t > &final_block, size_t offset=0) override
size_t default_nonce_length() const override
const BlockCipherModePaddingMethod & padding() const
size_t block_size() const
bool valid_nonce_length(size_t n) const override
CBC_Mode(BlockCipher *cipher, BlockCipherModePaddingMethod *padding)
const BlockCipher & cipher() const
size_t update_granularity() const override
secure_vector< uint8_t > & state()
std::string name() const override
Key_Length_Specification key_spec() const override
void finish(secure_vector< uint8_t > &final_block, size_t offset=0) override
bool valid_nonce_length(size_t n) const override
size_t minimum_final_size() const override
size_t output_length(size_t input_length) const override
void finish(secure_vector< uint8_t > &final_block, size_t offset=0) override
size_t minimum_final_size() const override
bool valid_nonce_length(size_t n) const override
virtual std::string name() const =0
virtual Key_Length_Specification key_spec() const =0
int(* update)(CTX *, const void *, CC_LONG len)
void zeroise(std::vector< T, Alloc > &vec)
void copy_mem(T *out, const T *in, size_t n)
void xor_buf(uint8_t out[], const uint8_t in[], size_t length)
std::vector< T, secure_allocator< T > > secure_vector
size_t round_up(size_t n, size_t align_to)