org.bouncycastle.crypto.internal.modes.gcm.GCMUtil Maven / Gradle / Ivy
Go to download
Show more of this group Show more artifacts with this name
Show all versions of bc-fips-debug Show documentation
Show all versions of bc-fips-debug Show documentation
The FIPS 140-2 Bouncy Castle Crypto package is a Java implementation of cryptographic algorithms certified to FIPS 140-2 level 1. This jar contains the debug version JCE provider and low-level API for the BC-FJA version 1.0.2.3, FIPS Certificate #3514. Please note the debug jar is not certified.
/***************************************************************/
/****** DO NOT EDIT THIS CLASS bc-java SOURCE FILE ******/
/***************************************************************/
package org.bouncycastle.crypto.internal.modes.gcm;
import org.bouncycastle.util.Pack;
public abstract class GCMUtil
{
private static final int E1 = 0xe1000000;
private static final long E1L = (E1 & 0xFFFFFFFFL) << 32;
private static int[] generateLookup()
{
int[] lookup = new int[256];
for (int c = 0; c < 256; ++c)
{
int v = 0;
for (int i = 7; i >= 0; --i)
{
if ((c & (1 << i)) != 0)
{
v ^= (E1 >>> (7 - i));
}
}
lookup[c] = v;
}
return lookup;
}
private static final int[] LOOKUP = generateLookup();
public static int[] oneAsInts()
{
int[] tmp = new int[4];
tmp[0] = 1 << 31;
return tmp;
}
public static void asBytes(int[] x, byte[] z)
{
Pack.intToBigEndian(x, z, 0);
}
public static int[] asInts(byte[] x)
{
int[] z = new int[4];
Pack.bigEndianToInt(x, 0, z);
return z;
}
public static void asInts(byte[] x, int[] z)
{
Pack.bigEndianToInt(x, 0, z);
}
public static void multiply(byte[] x, byte[] y)
{
int[] t1 = GCMUtil.asInts(x);
int[] t2 = GCMUtil.asInts(y);
GCMUtil.multiply(t1, t2);
GCMUtil.asBytes(t1, x);
}
public static void multiply(int[] x, int[] y)
{
int r00 = x[0], r01 = x[1], r02 = x[2], r03 = x[3];
int r10 = 0, r11 = 0, r12 = 0, r13 = 0;
for (int i = 0; i < 4; ++i)
{
int bits = y[i];
for (int j = 0; j < 32; ++j)
{
int m1 = bits >> 31;
bits <<= 1;
r10 ^= (r00 & m1);
r11 ^= (r01 & m1);
r12 ^= (r02 & m1);
r13 ^= (r03 & m1);
int m2 = (r03 << 31) >> 8;
r03 = (r03 >>> 1) | (r02 << 31);
r02 = (r02 >>> 1) | (r01 << 31);
r01 = (r01 >>> 1) | (r00 << 31);
r00 = (r00 >>> 1) ^ (m2 & E1);
}
}
x[0] = r10;
x[1] = r11;
x[2] = r12;
x[3] = r13;
}
public static void multiplyP(int[] x, int[] z)
{
int m = shiftRight(x, z) >> 8;
z[0] ^= (m & E1);
}
public static void multiplyP8(int[] x, int[] y)
{
int c = shiftRightN(x, 8, y);
y[0] ^= LOOKUP[c >>> 24];
}
static int shiftRight(int[] x, int[] z)
{
// int c = 0;
// for (int i = 0; i < 4; ++i)
// {
// int b = x[i];
// z[i] = (b >>> 1) | c;
// c = b << 31;
// }
// return c;
int b = x[0];
z[0] = b >>> 1;
int c = b << 31;
b = x[1];
z[1] = (b >>> 1) | c;
c = b << 31;
b = x[2];
z[2] = (b >>> 1) | c;
c = b << 31;
b = x[3];
z[3] = (b >>> 1) | c;
return b << 31;
}
static int shiftRightN(int[] x, int n, int[] z)
{
// int c = 0, nInv = 32 - n;
// for (int i = 0; i < 4; ++i)
// {
// int b = x[i];
// z[i] = (b >>> n) | c;
// c = b << nInv;
// }
// return c;
int b = x[0], nInv = 32 - n;
z[0] = b >>> n;
int c = b << nInv;
b = x[1];
z[1] = (b >>> n) | c;
c = b << nInv;
b = x[2];
z[2] = (b >>> n) | c;
c = b << nInv;
b = x[3];
z[3] = (b >>> n) | c;
return b << nInv;
}
public static void xor(byte[] x, byte[] y)
{
int i = 0;
do
{
x[i] ^= y[i];
++i;
x[i] ^= y[i];
++i;
x[i] ^= y[i];
++i;
x[i] ^= y[i];
++i;
}
while (i < 16);
}
public static void xor(byte[] x, byte[] y, int yOff, int yLen)
{
while (--yLen >= 0)
{
x[yLen] ^= y[yOff + yLen];
}
}
public static void xor(int[] x, int[] y, int[] z)
{
z[0] = x[0] ^ y[0];
z[1] = x[1] ^ y[1];
z[2] = x[2] ^ y[2];
z[3] = x[3] ^ y[3];
}
}
© 2015 - 2025 Weber Informatics LLC | Privacy Policy