acw/simple_crypto
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

AES-128 support, using the AES-NI extensions.

Browse Source
This commit is contained in:
Adam Wick
2019-06-30 15:24:29 -07:00
parent 82bb499be3
commit ecc29f06fa
4 changed files with 183 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
.cargo/config Normal file
View File

@@ -0,0 +1,2 @@
[target.'cfg(any(target_arch="x86",target_arch="x86_64"))']
rustflags = ["-C","target-feature=+aes,+ssse3"]

176
src/aes/aesni.rs Normal file
View File

@@ -0,0 +1,176 @@
#[cfg(target_arch="x86")]
use std::arch::x86::*;
#[cfg(target_arch="x86_64")]
use std::arch::x86_64::*;
use std::mem::uninitialized;
struct AES128 {
expanded_enc: [__m128i; 11],
expanded_dec: [__m128i; 11],
}
macro_rules! expand128 {
($v: expr, $r: expr) => {{
let gen0 = _mm_aeskeygenassist_si128($v, $r);
let gen1 = _mm_shuffle_epi32(gen0, 0xff);
let key0 = $v;
let key1 = _mm_xor_si128(key0, _mm_slli_si128(key0, 4));
let key2 = _mm_xor_si128(key1, _mm_slli_si128(key1, 4));
let key3 = _mm_xor_si128(key2, _mm_slli_si128(key2, 4));
_mm_xor_si128(gen1, key3)
}};
}
impl AES128 {
pub fn new(base_key: &[u8; 16]) -> AES128 {
unsafe {
let mut expanded_enc: [__m128i; 11] = uninitialized();
let mut expanded_dec: [__m128i; 11] = uninitialized();
let initial_m128 = _mm_loadu_si128(base_key.as_ptr() as *const __m128i);
_mm_store_si128(expanded_enc.as_mut_ptr(), initial_m128);
expanded_enc[1] = expand128!(expanded_enc[0], 0x01);
expanded_enc[2] = expand128!(expanded_enc[1], 0x02);
expanded_enc[3] = expand128!(expanded_enc[2], 0x04);
expanded_enc[4] = expand128!(expanded_enc[3], 0x08);
expanded_enc[5] = expand128!(expanded_enc[4], 0x10);
expanded_enc[6] = expand128!(expanded_enc[5], 0x20);
expanded_enc[7] = expand128!(expanded_enc[6], 0x40);
expanded_enc[8] = expand128!(expanded_enc[7], 0x80);
expanded_enc[9] = expand128!(expanded_enc[8], 0x1B);
expanded_enc[10] = expand128!(expanded_enc[9], 0x36);
expanded_dec[0] = expanded_enc[10];
expanded_dec[1] = _mm_aesimc_si128(expanded_enc[9]);
expanded_dec[2] = _mm_aesimc_si128(expanded_enc[8]);
expanded_dec[3] = _mm_aesimc_si128(expanded_enc[7]);
expanded_dec[4] = _mm_aesimc_si128(expanded_enc[6]);
expanded_dec[5] = _mm_aesimc_si128(expanded_enc[5]);
expanded_dec[6] = _mm_aesimc_si128(expanded_enc[4]);
expanded_dec[7] = _mm_aesimc_si128(expanded_enc[3]);
expanded_dec[8] = _mm_aesimc_si128(expanded_enc[2]);
expanded_dec[9] = _mm_aesimc_si128(expanded_enc[1]);
expanded_dec[10] = expanded_enc[0];
AES128 { expanded_enc, expanded_dec }
}
}
pub fn encrypt(&self, block: &[u8]) -> Vec<u8> {
assert_eq!(block.len(), 16);
let mut result = Vec::with_capacity(16);
result.resize(16, 0);
unsafe {
let mut val = _mm_loadu_si128(block.as_ptr() as *const __m128i);
val = _mm_xor_si128(val, self.expanded_enc[0]);
val = _mm_aesenc_si128(val, self.expanded_enc[1]);
val = _mm_aesenc_si128(val, self.expanded_enc[2]);
val = _mm_aesenc_si128(val, self.expanded_enc[3]);
val = _mm_aesenc_si128(val, self.expanded_enc[4]);
val = _mm_aesenc_si128(val, self.expanded_enc[5]);
val = _mm_aesenc_si128(val, self.expanded_enc[6]);
val = _mm_aesenc_si128(val, self.expanded_enc[7]);
val = _mm_aesenc_si128(val, self.expanded_enc[8]);
val = _mm_aesenc_si128(val, self.expanded_enc[9]);
val = _mm_aesenclast_si128(val, self.expanded_enc[10]);
_mm_storeu_si128(result.as_mut_ptr() as *mut __m128i, val);
}
result
}
pub fn decrypt(&self, block: &[u8]) -> Vec<u8> {
assert_eq!(block.len(), 16);
let mut result = Vec::with_capacity(16);
result.resize(16, 0);
unsafe {
let mut val = _mm_loadu_si128(block.as_ptr() as *const __m128i);
val = _mm_xor_si128(val, self.expanded_dec[0]);
val = _mm_aesdec_si128(val, self.expanded_dec[1]);
val = _mm_aesdec_si128(val, self.expanded_dec[2]);
val = _mm_aesdec_si128(val, self.expanded_dec[3]);
val = _mm_aesdec_si128(val, self.expanded_dec[4]);
val = _mm_aesdec_si128(val, self.expanded_dec[5]);
val = _mm_aesdec_si128(val, self.expanded_dec[6]);
val = _mm_aesdec_si128(val, self.expanded_dec[7]);
val = _mm_aesdec_si128(val, self.expanded_dec[8]);
val = _mm_aesdec_si128(val, self.expanded_dec[9]);
val = _mm_aesdeclast_si128(val, self.expanded_dec[10]);
_mm_storeu_si128(result.as_mut_ptr() as *mut __m128i, val);
}
result
}
}
#[cfg(test)]
mod aes128 {
use std::mem::transmute;
use super::*;
fn unpack_m128(b: __m128i) -> (u64, u64)
{
unsafe {
let data: [u64; 2] = transmute(b);
(data[0].to_be(), data[1].to_be())
}
}
#[test]
fn expansion() {
let zero_key = AES128::new(&[0x00; 16]);
assert_eq!(unpack_m128(zero_key.expanded_enc[0]), (0x0000000000000000, 0x0000000000000000));
assert_eq!(unpack_m128(zero_key.expanded_enc[1]), (0x6263636362636363, 0x6263636362636363));
assert_eq!(unpack_m128(zero_key.expanded_enc[2]), (0x9b9898c9f9fbfbaa, 0x9b9898c9f9fbfbaa));
assert_eq!(unpack_m128(zero_key.expanded_enc[3]), (0x90973450696ccffa, 0xf2f457330b0fac99));
assert_eq!(unpack_m128(zero_key.expanded_enc[4]), (0xee06da7b876a1581, 0x759e42b27e91ee2b));
assert_eq!(unpack_m128(zero_key.expanded_enc[5]), (0x7f2e2b88f8443e09, 0x8dda7cbbf34b9290));
assert_eq!(unpack_m128(zero_key.expanded_enc[6]), (0xec614b851425758c, 0x99ff09376ab49ba7));
assert_eq!(unpack_m128(zero_key.expanded_enc[7]), (0x217517873550620b, 0xacaf6b3cc61bf09b));
assert_eq!(unpack_m128(zero_key.expanded_enc[8]), (0x0ef903333ba96138, 0x97060a04511dfa9f));
assert_eq!(unpack_m128(zero_key.expanded_enc[9]), (0xb1d4d8e28a7db9da, 0x1d7bb3de4c664941));
assert_eq!(unpack_m128(zero_key.expanded_enc[10]), (0xb4ef5bcb3e92e211, 0x23e951cf6f8f188e));
let ff_key = AES128::new(&[0xff; 16]);
assert_eq!(unpack_m128(ff_key.expanded_enc[0]), (0xffffffffffffffff, 0xffffffffffffffff));
assert_eq!(unpack_m128(ff_key.expanded_enc[1]), (0xe8e9e9e917161616, 0xe8e9e9e917161616));
assert_eq!(unpack_m128(ff_key.expanded_enc[2]), (0xadaeae19bab8b80f, 0x525151e6454747f0));
assert_eq!(unpack_m128(ff_key.expanded_enc[3]), (0x090e2277b3b69a78, 0xe1e7cb9ea4a08c6e));
assert_eq!(unpack_m128(ff_key.expanded_enc[4]), (0xe16abd3e52dc2746, 0xb33becd8179b60b6));
assert_eq!(unpack_m128(ff_key.expanded_enc[5]), (0xe5baf3ceb766d488, 0x045d385013c658e6));
assert_eq!(unpack_m128(ff_key.expanded_enc[6]), (0x71d07db3c6b6a93b, 0xc2eb916bd12dc98d));
assert_eq!(unpack_m128(ff_key.expanded_enc[7]), (0xe90d208d2fbb89b6, 0xed5018dd3c7dd150));
assert_eq!(unpack_m128(ff_key.expanded_enc[8]), (0x96337366b988fad0, 0x54d8e20d68a5335d));
assert_eq!(unpack_m128(ff_key.expanded_enc[9]), (0x8bf03f233278c5f3, 0x66a027fe0e0514a3));
assert_eq!(unpack_m128(ff_key.expanded_enc[10]), (0xd60a3588e472f07b, 0x82d2d7858cd7c326));
let nist_key = AES128::new(&[0x2b,0x7e,0x15,0x16,0x28,0xae,0xd2,0xa6,0xab,0xf7,0x15,0x88,0x09,0xcf,0x4f,0x3c]);
assert_eq!(unpack_m128(nist_key.expanded_enc[0]), (0x2b7e151628aed2a6, 0xabf7158809cf4f3c));
assert_eq!(unpack_m128(nist_key.expanded_enc[1]), (0xa0fafe1788542cb1, 0x23a339392a6c7605));
assert_eq!(unpack_m128(nist_key.expanded_enc[2]), (0xf2c295f27a96b943, 0x5935807a7359f67f));
assert_eq!(unpack_m128(nist_key.expanded_enc[3]), (0x3d80477d4716fe3e, 0x1e237e446d7a883b));
assert_eq!(unpack_m128(nist_key.expanded_enc[4]), (0xef44a541a8525b7f, 0xb671253bdb0bad00));
assert_eq!(unpack_m128(nist_key.expanded_enc[5]), (0xd4d1c6f87c839d87, 0xcaf2b8bc11f915bc));
assert_eq!(unpack_m128(nist_key.expanded_enc[6]), (0x6d88a37a110b3efd, 0xdbf98641ca0093fd));
assert_eq!(unpack_m128(nist_key.expanded_enc[7]), (0x4e54f70e5f5fc9f3, 0x84a64fb24ea6dc4f));
assert_eq!(unpack_m128(nist_key.expanded_enc[8]), (0xead27321b58dbad2, 0x312bf5607f8d292f));
assert_eq!(unpack_m128(nist_key.expanded_enc[9]), (0xac7766f319fadc21, 0x28d12941575c006e));
assert_eq!(unpack_m128(nist_key.expanded_enc[10]), (0xd014f9a8c9ee2589, 0xe13f0cc8b6630ca6));
}
#[test]
fn fips197_examples() {
let input1 = [0x32,0x43,0xf6,0xa8,0x88,0x5a,0x30,0x8d,0x31,0x31,0x98,0xa2,0xe0,0x37,0x07,0x34];
let key1 = [0x2b,0x7e,0x15,0x16,0x28,0xae,0xd2,0xa6,0xab,0xf7,0x15,0x88,0x09,0xcf,0x4f,0x3c];
let aeskey1 = AES128::new(&key1);
let cipher1 = aeskey1.encrypt(&input1);
assert_eq!(cipher1, vec![0x39,0x25,0x84,0x1d,0x02,0xdc,0x09,0xfb,
0xdc,0x11,0x85,0x97,0x19,0x6a,0x0b,0x32]);
assert_eq!(input1.to_vec(), aeskey1.decrypt(&cipher1));
let input2 = [0x00,0x11,0x22,0x33,0x44,0x55,0x66,0x77,0x88,0x99,0xaa,0xbb,0xcc,0xdd,0xee,0xff];
let key2 = [0x00,0x01,0x02,0x03,0x04,0x05,0x06,0x07,0x08,0x09,0x0a,0x0b,0x0c,0x0d,0x0e,0x0f];
let aeskey2 = AES128::new(&key2);
let cipher2 = aeskey2.encrypt(&input2);
assert_eq!(cipher2, vec![0x69,0xc4,0xe0,0xd8,0x6a,0x7b,0x04,0x30,
0xd8,0xcd,0xb7,0x80,0x70,0xb4,0xc5,0x5a]);
assert_eq!(input2.to_vec(), aeskey2.decrypt(&cipher2));
}
}

3
src/aes/mod.rs Normal file
View File

@@ -0,0 +1,3 @@
#[cfg(all(any(target_arch="x86", target_arch="x86_64"),
target_feature = "aes"))]
pub mod aesni;

2
src/lib.rs
View File

@@ -21,6 +21,8 @@ extern crate rand;
#[macro_use] #[macro_use]
extern crate simple_asn1; extern crate simple_asn1;
/// The `aes` module provides bare-bones AES support.
pub mod aes;
/// The `rsa` module provides bare-bones support for RSA signing, verification, /// The `rsa` module provides bare-bones support for RSA signing, verification,
/// encryption, decryption, and key generation. /// encryption, decryption, and key generation.
pub mod rsa; pub mod rsa;