Commit | Line | Data |
---|---|---|
14d4f286 S |
1 | <?php |
2 | ||
3 | /** | |
4 | * An implementation of the Rijndael cipher, using the phpseclib implementation | |
5 | * | |
6 | * This was forked from phpseclib and modified to use CryptLib conventions | |
7 | * | |
8 | * PHP version 5.3 | |
9 | * | |
10 | * @category PHPCryptLib | |
11 | * @package Cipher | |
12 | * @subpackage Block | |
13 | * @author Anthony Ferrara <ircmaxell@ircmaxell.com> | |
14 | * @author Jim Wigginton <terrafrost@php.net> | |
15 | * @copyright 2011 The Authors | |
16 | * @license http://www.opensource.org/licenses/mit-license.html MIT License | |
17 | * @version Build @@version@@ | |
18 | */ | |
19 | ||
20 | namespace CryptLib\Cipher\Block\Cipher; | |
21 | ||
22 | /** | |
23 | * An implementation of the Rijndael cipher, using the phpseclib implementation | |
24 | * | |
25 | * @category PHPCryptLib | |
26 | * @package Cipher | |
27 | * @subpackage Block | |
28 | * @author Anthony Ferrara <ircmaxell@ircmaxell.com> | |
29 | */ | |
30 | class Rijndael extends \CryptLib\Cipher\Block\AbstractCipher { | |
31 | ||
32 | /** | |
33 | * @var int The number of bytes in each block | |
34 | */ | |
35 | protected $blockSize = 16; | |
36 | ||
37 | /** | |
38 | * @var array The decryption key schedule | |
39 | */ | |
40 | protected $decryptionSchedule = array(); | |
41 | ||
42 | /** | |
43 | * @var array The encryption key schedule | |
44 | */ | |
45 | protected $encryptionSchedule = array(); | |
46 | ||
47 | /** | |
48 | * @var int The number of bytes in the key | |
49 | */ | |
50 | protected $keySize = 16; | |
51 | ||
52 | /** | |
53 | * @var array The shift offsets used by the cipher | |
54 | */ | |
55 | protected $shiftOffsets = array(0, 1, 2, 3); | |
56 | ||
57 | /** | |
58 | * @var array The rcon static array | |
59 | */ | |
60 | protected static $rcon = array(0, | |
61 | 0x01000000, 0x02000000, 0x04000000, 0x08000000, 0x10000000, | |
62 | 0x20000000, 0x40000000, 0x80000000, 0x1B000000, 0x36000000, | |
63 | 0x6C000000, 0xD8000000, 0xAB000000, 0x4D000000, 0x9A000000, | |
64 | 0x2F000000, 0x5E000000, 0xBC000000, 0x63000000, 0xC6000000, | |
65 | 0x97000000, 0x35000000, 0x6A000000, 0xD4000000, 0xB3000000, | |
66 | 0x7D000000, 0xFA000000, 0xEF000000, 0xC5000000, 0x91000000 | |
67 | ); | |
68 | ||
69 | /** | |
70 | * @var array The initial t array used by the cipher | |
71 | */ | |
72 | protected static $tValues = array( | |
73 | 0 => array(), | |
74 | 1 => array(), | |
75 | 2 => array(), | |
76 | 3 => array( | |
77 | 0x6363A5C6, 0x7C7C84F8, 0x777799EE, 0x7B7B8DF6, 0xF2F20DFF, 0x6B6BBDD6, | |
78 | 0x6F6FB1DE, 0xC5C55491, 0x30305060, 0x01010302, 0x6767A9CE, 0x2B2B7D56, | |
79 | 0xFEFE19E7, 0xD7D762B5, 0xABABE64D, 0x76769AEC, 0xCACA458F, 0x82829D1F, | |
80 | 0xC9C94089, 0x7D7D87FA, 0xFAFA15EF, 0x5959EBB2, 0x4747C98E, 0xF0F00BFB, | |
81 | 0xADADEC41, 0xD4D467B3, 0xA2A2FD5F, 0xAFAFEA45, 0x9C9CBF23, 0xA4A4F753, | |
82 | 0x727296E4, 0xC0C05B9B, 0xB7B7C275, 0xFDFD1CE1, 0x9393AE3D, 0x26266A4C, | |
83 | 0x36365A6C, 0x3F3F417E, 0xF7F702F5, 0xCCCC4F83, 0x34345C68, 0xA5A5F451, | |
84 | 0xE5E534D1, 0xF1F108F9, 0x717193E2, 0xD8D873AB, 0x31315362, 0x15153F2A, | |
85 | 0x04040C08, 0xC7C75295, 0x23236546, 0xC3C35E9D, 0x18182830, 0x9696A137, | |
86 | 0x05050F0A, 0x9A9AB52F, 0x0707090E, 0x12123624, 0x80809B1B, 0xE2E23DDF, | |
87 | 0xEBEB26CD, 0x2727694E, 0xB2B2CD7F, 0x75759FEA, 0x09091B12, 0x83839E1D, | |
88 | 0x2C2C7458, 0x1A1A2E34, 0x1B1B2D36, 0x6E6EB2DC, 0x5A5AEEB4, 0xA0A0FB5B, | |
89 | 0x5252F6A4, 0x3B3B4D76, 0xD6D661B7, 0xB3B3CE7D, 0x29297B52, 0xE3E33EDD, | |
90 | 0x2F2F715E, 0x84849713, 0x5353F5A6, 0xD1D168B9, 0x00000000, 0xEDED2CC1, | |
91 | 0x20206040, 0xFCFC1FE3, 0xB1B1C879, 0x5B5BEDB6, 0x6A6ABED4, 0xCBCB468D, | |
92 | 0xBEBED967, 0x39394B72, 0x4A4ADE94, 0x4C4CD498, 0x5858E8B0, 0xCFCF4A85, | |
93 | 0xD0D06BBB, 0xEFEF2AC5, 0xAAAAE54F, 0xFBFB16ED, 0x4343C586, 0x4D4DD79A, | |
94 | 0x33335566, 0x85859411, 0x4545CF8A, 0xF9F910E9, 0x02020604, 0x7F7F81FE, | |
95 | 0x5050F0A0, 0x3C3C4478, 0x9F9FBA25, 0xA8A8E34B, 0x5151F3A2, 0xA3A3FE5D, | |
96 | 0x4040C080, 0x8F8F8A05, 0x9292AD3F, 0x9D9DBC21, 0x38384870, 0xF5F504F1, | |
97 | 0xBCBCDF63, 0xB6B6C177, 0xDADA75AF, 0x21216342, 0x10103020, 0xFFFF1AE5, | |
98 | 0xF3F30EFD, 0xD2D26DBF, 0xCDCD4C81, 0x0C0C1418, 0x13133526, 0xECEC2FC3, | |
99 | 0x5F5FE1BE, 0x9797A235, 0x4444CC88, 0x1717392E, 0xC4C45793, 0xA7A7F255, | |
100 | 0x7E7E82FC, 0x3D3D477A, 0x6464ACC8, 0x5D5DE7BA, 0x19192B32, 0x737395E6, | |
101 | 0x6060A0C0, 0x81819819, 0x4F4FD19E, 0xDCDC7FA3, 0x22226644, 0x2A2A7E54, | |
102 | 0x9090AB3B, 0x8888830B, 0x4646CA8C, 0xEEEE29C7, 0xB8B8D36B, 0x14143C28, | |
103 | 0xDEDE79A7, 0x5E5EE2BC, 0x0B0B1D16, 0xDBDB76AD, 0xE0E03BDB, 0x32325664, | |
104 | 0x3A3A4E74, 0x0A0A1E14, 0x4949DB92, 0x06060A0C, 0x24246C48, 0x5C5CE4B8, | |
105 | 0xC2C25D9F, 0xD3D36EBD, 0xACACEF43, 0x6262A6C4, 0x9191A839, 0x9595A431, | |
106 | 0xE4E437D3, 0x79798BF2, 0xE7E732D5, 0xC8C8438B, 0x3737596E, 0x6D6DB7DA, | |
107 | 0x8D8D8C01, 0xD5D564B1, 0x4E4ED29C, 0xA9A9E049, 0x6C6CB4D8, 0x5656FAAC, | |
108 | 0xF4F407F3, 0xEAEA25CF, 0x6565AFCA, 0x7A7A8EF4, 0xAEAEE947, 0x08081810, | |
109 | 0xBABAD56F, 0x787888F0, 0x25256F4A, 0x2E2E725C, 0x1C1C2438, 0xA6A6F157, | |
110 | 0xB4B4C773, 0xC6C65197, 0xE8E823CB, 0xDDDD7CA1, 0x74749CE8, 0x1F1F213E, | |
111 | 0x4B4BDD96, 0xBDBDDC61, 0x8B8B860D, 0x8A8A850F, 0x707090E0, 0x3E3E427C, | |
112 | 0xB5B5C471, 0x6666AACC, 0x4848D890, 0x03030506, 0xF6F601F7, 0x0E0E121C, | |
113 | 0x6161A3C2, 0x35355F6A, 0x5757F9AE, 0xB9B9D069, 0x86869117, 0xC1C15899, | |
114 | 0x1D1D273A, 0x9E9EB927, 0xE1E138D9, 0xF8F813EB, 0x9898B32B, 0x11113322, | |
115 | 0x6969BBD2, 0xD9D970A9, 0x8E8E8907, 0x9494A733, 0x9B9BB62D, 0x1E1E223C, | |
116 | 0x87879215, 0xE9E920C9, 0xCECE4987, 0x5555FFAA, 0x28287850, 0xDFDF7AA5, | |
117 | 0x8C8C8F03, 0xA1A1F859, 0x89898009, 0x0D0D171A, 0xBFBFDA65, 0xE6E631D7, | |
118 | 0x4242C684, 0x6868B8D0, 0x4141C382, 0x9999B029, 0x2D2D775A, 0x0F0F111E, | |
119 | 0xB0B0CB7B, 0x5454FCA8, 0xBBBBD66D, 0x16163A2C | |
120 | ) | |
121 | ); | |
122 | ||
123 | /** | |
124 | * @var array The initial Decryption t value array | |
125 | */ | |
126 | protected static $dtValues = array( | |
127 | 0 => array(), | |
128 | 1 => array(), | |
129 | 2 => array(), | |
130 | 3 => array( | |
131 | 0xF4A75051, 0x4165537E, 0x17A4C31A, 0x275E963A, 0xAB6BCB3B, 0x9D45F11F, | |
132 | 0xFA58ABAC, 0xE303934B, 0x30FA5520, 0x766DF6AD, 0xCC769188, 0x024C25F5, | |
133 | 0xE5D7FC4F, 0x2ACBD7C5, 0x35448026, 0x62A38FB5, 0xB15A49DE, 0xBA1B6725, | |
134 | 0xEA0E9845, 0xFEC0E15D, 0x2F7502C3, 0x4CF01281, 0x4697A38D, 0xD3F9C66B, | |
135 | 0x8F5FE703, 0x929C9515, 0x6D7AEBBF, 0x5259DA95, 0xBE832DD4, 0x7421D358, | |
136 | 0xE0692949, 0xC9C8448E, 0xC2896A75, 0x8E7978F4, 0x583E6B99, 0xB971DD27, | |
137 | 0xE14FB6BE, 0x88AD17F0, 0x20AC66C9, 0xCE3AB47D, 0xDF4A1863, 0x1A3182E5, | |
138 | 0x51336097, 0x537F4562, 0x6477E0B1, 0x6BAE84BB, 0x81A01CFE, 0x082B94F9, | |
139 | 0x48685870, 0x45FD198F, 0xDE6C8794, 0x7BF8B752, 0x73D323AB, 0x4B02E272, | |
140 | 0x1F8F57E3, 0x55AB2A66, 0xEB2807B2, 0xB5C2032F, 0xC57B9A86, 0x3708A5D3, | |
141 | 0x2887F230, 0xBFA5B223, 0x036ABA02, 0x16825CED, 0xCF1C2B8A, 0x79B492A7, | |
142 | 0x07F2F0F3, 0x69E2A14E, 0xDAF4CD65, 0x05BED506, 0x34621FD1, 0xA6FE8AC4, | |
143 | 0x2E539D34, 0xF355A0A2, 0x8AE13205, 0xF6EB75A4, 0x83EC390B, 0x60EFAA40, | |
144 | 0x719F065E, 0x6E1051BD, 0x218AF93E, 0xDD063D96, 0x3E05AEDD, 0xE6BD464D, | |
145 | 0x548DB591, 0xC45D0571, 0x06D46F04, 0x5015FF60, 0x98FB2419, 0xBDE997D6, | |
146 | 0x4043CC89, 0xD99E7767, 0xE842BDB0, 0x898B8807, 0x195B38E7, 0xC8EEDB79, | |
147 | 0x7C0A47A1, 0x420FE97C, 0x841EC9F8, 0x00000000, 0x80868309, 0x2BED4832, | |
148 | 0x1170AC1E, 0x5A724E6C, 0x0EFFFBFD, 0x8538560F, 0xAED51E3D, 0x2D392736, | |
149 | 0x0FD9640A, 0x5CA62168, 0x5B54D19B, 0x362E3A24, 0x0A67B10C, 0x57E70F93, | |
150 | 0xEE96D2B4, 0x9B919E1B, 0xC0C54F80, 0xDC20A261, 0x774B695A, 0x121A161C, | |
151 | 0x93BA0AE2, 0xA02AE5C0, 0x22E0433C, 0x1B171D12, 0x090D0B0E, 0x8BC7ADF2, | |
152 | 0xB6A8B92D, 0x1EA9C814, 0xF1198557, 0x75074CAF, 0x99DDBBEE, 0x7F60FDA3, | |
153 | 0x01269FF7, 0x72F5BC5C, 0x663BC544, 0xFB7E345B, 0x4329768B, 0x23C6DCCB, | |
154 | 0xEDFC68B6, 0xE4F163B8, 0x31DCCAD7, 0x63851042, 0x97224013, 0xC6112084, | |
155 | 0x4A247D85, 0xBB3DF8D2, 0xF93211AE, 0x29A16DC7, 0x9E2F4B1D, 0xB230F3DC, | |
156 | 0x8652EC0D, 0xC1E3D077, 0xB3166C2B, 0x70B999A9, 0x9448FA11, 0xE9642247, | |
157 | 0xFC8CC4A8, 0xF03F1AA0, 0x7D2CD856, 0x3390EF22, 0x494EC787, 0x38D1C1D9, | |
158 | 0xCAA2FE8C, 0xD40B3698, 0xF581CFA6, 0x7ADE28A5, 0xB78E26DA, 0xADBFA43F, | |
159 | 0x3A9DE42C, 0x78920D50, 0x5FCC9B6A, 0x7E466254, 0x8D13C2F6, 0xD8B8E890, | |
160 | 0x39F75E2E, 0xC3AFF582, 0x5D80BE9F, 0xD0937C69, 0xD52DA96F, 0x2512B3CF, | |
161 | 0xAC993BC8, 0x187DA710, 0x9C636EE8, 0x3BBB7BDB, 0x267809CD, 0x5918F46E, | |
162 | 0x9AB701EC, 0x4F9AA883, 0x956E65E6, 0xFFE67EAA, 0xBCCF0821, 0x15E8E6EF, | |
163 | 0xE79BD9BA, 0x6F36CE4A, 0x9F09D4EA, 0xB07CD629, 0xA4B2AF31, 0x3F23312A, | |
164 | 0xA59430C6, 0xA266C035, 0x4EBC3774, 0x82CAA6FC, 0x90D0B0E0, 0xA7D81533, | |
165 | 0x04984AF1, 0xECDAF741, 0xCD500E7F, 0x91F62F17, 0x4DD68D76, 0xEFB04D43, | |
166 | 0xAA4D54CC, 0x9604DFE4, 0xD1B5E39E, 0x6A881B4C, 0x2C1FB8C1, 0x65517F46, | |
167 | 0x5EEA049D, 0x8C355D01, 0x877473FA, 0x0B412EFB, 0x671D5AB3, 0xDBD25292, | |
168 | 0x105633E9, 0xD647136D, 0xD7618C9A, 0xA10C7A37, 0xF8148E59, 0x133C89EB, | |
169 | 0xA927EECE, 0x61C935B7, 0x1CE5EDE1, 0x47B13C7A, 0xD2DF599C, 0xF2733F55, | |
170 | 0x14CE7918, 0xC737BF73, 0xF7CDEA53, 0xFDAA5B5F, 0x3D6F14DF, 0x44DB8678, | |
171 | 0xAFF381CA, 0x68C43EB9, 0x24342C38, 0xA3405FC2, 0x1DC37216, 0xE2250CBC, | |
172 | 0x3C498B28, 0x0D9541FF, 0xA8017139, 0x0CB3DE08, 0xB4E49CD8, 0x56C19064, | |
173 | 0xCB84617B, 0x32B670D5, 0x6C5C7448, 0xB85742D0 | |
174 | ) | |
175 | ); | |
176 | ||
177 | /** | |
178 | * @var array The sboxes used for key expansion | |
179 | */ | |
180 | protected static $sboxes = array( | |
181 | 0 => array( | |
182 | 0x63, 0x7C, 0x77, 0x7B, 0xF2, 0x6B, 0x6F, 0xC5, 0x30, 0x01, 0x67, 0x2B, | |
183 | 0xFE, 0xD7, 0xAB, 0x76, 0xCA, 0x82, 0xC9, 0x7D, 0xFA, 0x59, 0x47, 0xF0, | |
184 | 0xAD, 0xD4, 0xA2, 0xAF, 0x9C, 0xA4, 0x72, 0xC0, 0xB7, 0xFD, 0x93, 0x26, | |
185 | 0x36, 0x3F, 0xF7, 0xCC, 0x34, 0xA5, 0xE5, 0xF1, 0x71, 0xD8, 0x31, 0x15, | |
186 | 0x04, 0xC7, 0x23, 0xC3, 0x18, 0x96, 0x05, 0x9A, 0x07, 0x12, 0x80, 0xE2, | |
187 | 0xEB, 0x27, 0xB2, 0x75, 0x09, 0x83, 0x2C, 0x1A, 0x1B, 0x6E, 0x5A, 0xA0, | |
188 | 0x52, 0x3B, 0xD6, 0xB3, 0x29, 0xE3, 0x2F, 0x84, 0x53, 0xD1, 0x00, 0xED, | |
189 | 0x20, 0xFC, 0xB1, 0x5B, 0x6A, 0xCB, 0xBE, 0x39, 0x4A, 0x4C, 0x58, 0xCF, | |
190 | 0xD0, 0xEF, 0xAA, 0xFB, 0x43, 0x4D, 0x33, 0x85, 0x45, 0xF9, 0x02, 0x7F, | |
191 | 0x50, 0x3C, 0x9F, 0xA8, 0x51, 0xA3, 0x40, 0x8F, 0x92, 0x9D, 0x38, 0xF5, | |
192 | 0xBC, 0xB6, 0xDA, 0x21, 0x10, 0xFF, 0xF3, 0xD2, 0xCD, 0x0C, 0x13, 0xEC, | |
193 | 0x5F, 0x97, 0x44, 0x17, 0xC4, 0xA7, 0x7E, 0x3D, 0x64, 0x5D, 0x19, 0x73, | |
194 | 0x60, 0x81, 0x4F, 0xDC, 0x22, 0x2A, 0x90, 0x88, 0x46, 0xEE, 0xB8, 0x14, | |
195 | 0xDE, 0x5E, 0x0B, 0xDB, 0xE0, 0x32, 0x3A, 0x0A, 0x49, 0x06, 0x24, 0x5C, | |
196 | 0xC2, 0xD3, 0xAC, 0x62, 0x91, 0x95, 0xE4, 0x79, 0xE7, 0xC8, 0x37, 0x6D, | |
197 | 0x8D, 0xD5, 0x4E, 0xA9, 0x6C, 0x56, 0xF4, 0xEA, 0x65, 0x7A, 0xAE, 0x08, | |
198 | 0xBA, 0x78, 0x25, 0x2E, 0x1C, 0xA6, 0xB4, 0xC6, 0xE8, 0xDD, 0x74, 0x1F, | |
199 | 0x4B, 0xBD, 0x8B, 0x8A, 0x70, 0x3E, 0xB5, 0x66, 0x48, 0x03, 0xF6, 0x0E, | |
200 | 0x61, 0x35, 0x57, 0xB9, 0x86, 0xC1, 0x1D, 0x9E, 0xE1, 0xF8, 0x98, 0x11, | |
201 | 0x69, 0xD9, 0x8E, 0x94, 0x9B, 0x1E, 0x87, 0xE9, 0xCE, 0x55, 0x28, 0xDF, | |
202 | 0x8C, 0xA1, 0x89, 0x0D, 0xBF, 0xE6, 0x42, 0x68, 0x41, 0x99, 0x2D, 0x0F, | |
203 | 0xB0, 0x54, 0xBB, 0x16 | |
204 | ), | |
205 | 1 => array(), | |
206 | 2 => array(), | |
207 | 3 => array(), | |
208 | ); | |
209 | ||
210 | /** | |
211 | * @var array The inverse sboxes used for decryption | |
212 | */ | |
213 | protected static $invSBoxes = array( | |
214 | 0 => array( | |
215 | 0x52, 0x09, 0x6A, 0xD5, 0x30, 0x36, 0xA5, 0x38, 0xBF, 0x40, 0xA3, 0x9E, | |
216 | 0x81, 0xF3, 0xD7, 0xFB, 0x7C, 0xE3, 0x39, 0x82, 0x9B, 0x2F, 0xFF, 0x87, | |
217 | 0x34, 0x8E, 0x43, 0x44, 0xC4, 0xDE, 0xE9, 0xCB, 0x54, 0x7B, 0x94, 0x32, | |
218 | 0xA6, 0xC2, 0x23, 0x3D, 0xEE, 0x4C, 0x95, 0x0B, 0x42, 0xFA, 0xC3, 0x4E, | |
219 | 0x08, 0x2E, 0xA1, 0x66, 0x28, 0xD9, 0x24, 0xB2, 0x76, 0x5B, 0xA2, 0x49, | |
220 | 0x6D, 0x8B, 0xD1, 0x25, 0x72, 0xF8, 0xF6, 0x64, 0x86, 0x68, 0x98, 0x16, | |
221 | 0xD4, 0xA4, 0x5C, 0xCC, 0x5D, 0x65, 0xB6, 0x92, 0x6C, 0x70, 0x48, 0x50, | |
222 | 0xFD, 0xED, 0xB9, 0xDA, 0x5E, 0x15, 0x46, 0x57, 0xA7, 0x8D, 0x9D, 0x84, | |
223 | 0x90, 0xD8, 0xAB, 0x00, 0x8C, 0xBC, 0xD3, 0x0A, 0xF7, 0xE4, 0x58, 0x05, | |
224 | 0xB8, 0xB3, 0x45, 0x06, 0xD0, 0x2C, 0x1E, 0x8F, 0xCA, 0x3F, 0x0F, 0x02, | |
225 | 0xC1, 0xAF, 0xBD, 0x03, 0x01, 0x13, 0x8A, 0x6B, 0x3A, 0x91, 0x11, 0x41, | |
226 | 0x4F, 0x67, 0xDC, 0xEA, 0x97, 0xF2, 0xCF, 0xCE, 0xF0, 0xB4, 0xE6, 0x73, | |
227 | 0x96, 0xAC, 0x74, 0x22, 0xE7, 0xAD, 0x35, 0x85, 0xE2, 0xF9, 0x37, 0xE8, | |
228 | 0x1C, 0x75, 0xDF, 0x6E, 0x47, 0xF1, 0x1A, 0x71, 0x1D, 0x29, 0xC5, 0x89, | |
229 | 0x6F, 0xB7, 0x62, 0x0E, 0xAA, 0x18, 0xBE, 0x1B, 0xFC, 0x56, 0x3E, 0x4B, | |
230 | 0xC6, 0xD2, 0x79, 0x20, 0x9A, 0xDB, 0xC0, 0xFE, 0x78, 0xCD, 0x5A, 0xF4, | |
231 | 0x1F, 0xDD, 0xA8, 0x33, 0x88, 0x07, 0xC7, 0x31, 0xB1, 0x12, 0x10, 0x59, | |
232 | 0x27, 0x80, 0xEC, 0x5F, 0x60, 0x51, 0x7F, 0xA9, 0x19, 0xB5, 0x4A, 0x0D, | |
233 | 0x2D, 0xE5, 0x7A, 0x9F, 0x93, 0xC9, 0x9C, 0xEF, 0xA0, 0xE0, 0x3B, 0x4D, | |
234 | 0xAE, 0x2A, 0xF5, 0xB0, 0xC8, 0xEB, 0xBB, 0x3C, 0x83, 0x53, 0x99, 0x61, | |
235 | 0x17, 0x2B, 0x04, 0x7E, 0xBA, 0x77, 0xD6, 0x26, 0xE1, 0x69, 0x14, 0x63, | |
236 | 0x55, 0x21, 0x0C, 0x7D | |
237 | ), | |
238 | 1 => array(), | |
239 | 2 => array(), | |
240 | 3 => array(), | |
241 | ); | |
242 | ||
243 | /** | |
244 | * Get a list of supported ciphers for this class implementation | |
245 | * | |
246 | * @return array A list of supported ciphers | |
247 | */ | |
248 | public static function getSupportedCiphers() { | |
249 | return array( | |
250 | 'rijndael-128', | |
251 | 'rijndael-160', | |
252 | 'rijndael-192', | |
253 | 'rijndael-224', | |
254 | 'rijndael-256', | |
255 | ); | |
256 | } | |
257 | ||
258 | /** | |
259 | * Initialize the tValues,dtValues,sboxes and inverseSBoxes arrays | |
260 | * by calculating. Since this only needs to be done once, it's | |
261 | * a static method | |
262 | * | |
263 | * @return void | |
264 | */ | |
265 | protected static function init() { | |
266 | if (empty(static::$tValues[0])) { | |
267 | $t_3 = static::$tValues[3]; | |
268 | $dt3 = static::$dtValues[3]; | |
269 | for ($i = 0; $i < 256; $i++) { | |
270 | static::$tValues[2][$i << 8] = (($t_3[$i] << 8) & 0xFFFFFF00) | |
271 | | (($t_3[$i] >> 24) & 0x000000FF); | |
272 | static::$tValues[1][$i << 16] = (($t_3[$i] << 16) & 0xFFFF0000) | |
273 | | (($t_3[$i] >> 16) & 0x0000FFFF); | |
274 | static::$tValues[0][$i << 24] = (($t_3[$i] << 24) & 0xFF000000) | |
275 | | (($t_3[$i] >> 8) & 0x00FFFFFF); | |
276 | ||
277 | static::$dtValues[2][$i << 8] = (($dt3[$i] << 8) & 0xFFFFFF00) | |
278 | | (($dt3[$i] >> 24) & 0x000000FF); | |
279 | static::$dtValues[1][$i << 16] = (($dt3[$i] << 16) & 0xFFFF0000) | |
280 | | (($dt3[$i] >> 16) & 0x0000FFFF); | |
281 | static::$dtValues[0][$i << 24] = (($dt3[$i] << 24) & 0xFF000000) | |
282 | | (($dt3[$i] >> 8) & 0x00FFFFFF); | |
283 | ||
284 | static::$sboxes[1][$i << 8] = static::$sboxes[0][$i] << 8; | |
285 | static::$sboxes[2][$i << 16] = static::$sboxes[0][$i] << 16; | |
286 | static::$sboxes[3][$i << 24] = static::$sboxes[0][$i] << 24; | |
287 | static::$invSBoxes[1][$i << 8] = static::$invSBoxes[0][$i] << 8; | |
288 | static::$invSBoxes[2][$i << 16] = static::$invSBoxes[0][$i] << 16; | |
289 | static::$invSBoxes[3][$i << 24] = static::$invSBoxes[0][$i] << 24; | |
290 | } | |
291 | } | |
292 | } | |
293 | ||
294 | /** | |
295 | * Construct the instance for the supplied cipher name | |
296 | * | |
297 | * @param string $cipher The cipher to implement | |
298 | * | |
299 | * @return void | |
300 | * @throws InvalidArgumentException if the cipher is not supported | |
301 | */ | |
302 | public function __construct($cipher) { | |
303 | parent::__construct($cipher); | |
304 | list (, $bits) = explode('-', $cipher, 2); | |
305 | $this->setBlockSize($bits); | |
306 | $this->setKeySize($bits); | |
307 | static::init(); | |
308 | } | |
309 | ||
310 | /** | |
311 | * Set the key to use for the cipher | |
312 | * | |
313 | * @param string $key The key to use | |
314 | * | |
315 | * @throws InvalidArgumentException If the key is not the correct size | |
316 | * @return void | |
317 | */ | |
318 | public function setKey($key) { | |
319 | $length = strlen($key); | |
320 | if ($length != $this->keySize) { | |
321 | $this->setKeySize($length << 3); | |
322 | if ($length != $this->keySize) { | |
323 | throw new \InvalidArgumentException( | |
324 | 'The key is not of a supported length' | |
325 | ); | |
326 | } | |
327 | } | |
328 | $this->key = $key; | |
329 | $this->initialized = $this->initialize(); | |
330 | } | |
331 | ||
332 | /** | |
333 | * Decrypt a block of data using the supplied string key | |
334 | * | |
335 | * Note that the supplied data should be the same size as the block size of | |
336 | * the cipher being used. | |
337 | * | |
338 | * @param string $data The data to decrypt | |
339 | * | |
340 | * @return string The result decrypted data | |
341 | */ | |
342 | protected function decryptBlockData($data) { | |
343 | $schedule = $this->decryptionSchedule; | |
344 | return $this->decryptBlockPart($data, $schedule); | |
345 | } | |
346 | ||
347 | /** | |
348 | * Encrypt a block of data using the supplied string key | |
349 | * | |
350 | * Note that the supplied data should be the same size as the block size of | |
351 | * the cipher being used. | |
352 | * | |
353 | * @param string $data The data to encrypt | |
354 | * | |
355 | * @return string The result encrypted data | |
356 | */ | |
357 | protected function encryptBlockData($data) { | |
358 | $schedule = $this->encryptionSchedule; | |
359 | return $this->encryptBlockPart($data, $schedule); | |
360 | } | |
361 | ||
362 | /** | |
363 | * Initialize the cipher by preparing the key | |
364 | * | |
365 | * @return boolean The status of the initialization | |
366 | */ | |
367 | protected function initialize() { | |
368 | $this->encryptionSchedule = $this->getEncryptionSchedule($this->key); | |
369 | $this->decryptionSchedule = $this->getDecryptionSchedule($this->key); | |
370 | return true; | |
371 | } | |
372 | ||
373 | /** | |
374 | * Encrypt a piece of the block (a single block sized chunk) | |
375 | * | |
376 | * @param string $part The block part to encrypt | |
377 | * @param array $schedule The key schedule to use for encryption | |
378 | * | |
379 | * @return string The encrypted string | |
380 | */ | |
381 | protected function encryptBlockPart($part, array $schedule) { | |
382 | $words = unpack('N*words', $part); | |
383 | $state = array(); | |
384 | $ictr = 0; | |
385 | foreach ($words as $word) { | |
386 | $state[] = $word ^ $schedule[0][$ictr++]; | |
387 | } | |
388 | $nBlocks = $this->blockSize >> 2; | |
389 | $nKeys = $this->keySize >> 2; | |
390 | $nRounds = max($nBlocks, $nKeys) + 6; | |
391 | $temp = array(); | |
392 | for ($round = 1; $round < $nRounds; $round++) { | |
393 | $ictr = $this->shiftOffsets[0]; | |
394 | $jctr = $this->shiftOffsets[1]; | |
395 | $kctr = $this->shiftOffsets[2]; | |
396 | $lctr = $this->shiftOffsets[3]; | |
397 | while ($ictr < $nBlocks) { | |
398 | $temp[$ictr] = static::$tValues[0][$state[$ictr] & 0xFF000000] | |
399 | ^ static::$tValues[1][$state[$jctr] & 0x00FF0000] | |
400 | ^ static::$tValues[2][$state[$kctr] & 0x0000FF00] | |
401 | ^ static::$tValues[3][$state[$lctr] & 0x000000FF] | |
402 | ^ $schedule[$round][$ictr]; | |
403 | $ictr++; | |
404 | $jctr = ($jctr + 1) % $nBlocks; | |
405 | $kctr = ($kctr + 1) % $nBlocks; | |
406 | $lctr = ($lctr + 1) % $nBlocks; | |
407 | } | |
408 | for ($i = 0; $i < $nBlocks; $i++) { | |
409 | $state[$i] = $temp[$i]; | |
410 | } | |
411 | } | |
412 | for ($i = 0; $i < $nBlocks; $i++) { | |
413 | $state[$i] = $this->subWord($state[$i]); | |
414 | } | |
415 | $ictr = $this->shiftOffsets[0]; | |
416 | $jctr = $this->shiftOffsets[1]; | |
417 | $kctr = $this->shiftOffsets[2]; | |
418 | $lctr = $this->shiftOffsets[3]; | |
419 | while ($ictr < $nBlocks) { | |
420 | $temp[$ictr] = ($state[$ictr] & 0xFF000000) | |
421 | ^ ($state[$jctr] & 0x00FF0000) | |
422 | ^ ($state[$kctr] & 0x0000FF00) | |
423 | ^ ($state[$lctr] & 0x000000FF) | |
424 | ^ $schedule[$nRounds][$ictr]; | |
425 | $ictr++; | |
426 | $jctr = ($jctr + 1) % $nBlocks; | |
427 | $kctr = ($kctr + 1) % $nBlocks; | |
428 | $lctr = ($lctr + 1) % $nBlocks; | |
429 | } | |
430 | $state = $temp; | |
431 | array_unshift($state, 'N*'); | |
432 | return call_user_func_array('pack', $state); | |
433 | } | |
434 | ||
435 | /** | |
436 | * Decrypt a piece of the block (a single block sized chunk) | |
437 | * | |
438 | * @param string $part The block part to decrypt | |
439 | * @param array $schedule The key schedule to use for decryption | |
440 | * | |
441 | * @return string The decrypted string | |
442 | */ | |
443 | protected function decryptBlockPart($part, $schedule) { | |
444 | $state = array(); | |
445 | $words = unpack('N*word', $part); | |
446 | $inc = 0; | |
447 | $nBlocks = $this->blockSize >> 2; | |
448 | $nKeys = $this->keySize >> 2; | |
449 | $nRounds = max($nBlocks, $nKeys) + 6; | |
450 | foreach ($words as $word) { | |
451 | $state[] = $word ^ $schedule[$nRounds][$inc++]; | |
452 | } | |
453 | $temp = array(); | |
454 | for ($round = $nRounds - 1; $round > 0; $round--) { | |
455 | $ictr = $this->shiftOffsets[0]; | |
456 | $jctr = $nBlocks - $this->shiftOffsets[1]; | |
457 | $kctr = $nBlocks - $this->shiftOffsets[2]; | |
458 | $lctr = $nBlocks - $this->shiftOffsets[3]; | |
459 | ||
460 | while ($ictr < $nBlocks) { | |
461 | $temp[$ictr] = static::$dtValues[0][$state[$ictr] & 0xFF000000] | |
462 | ^ static::$dtValues[1][$state[$jctr] & 0x00FF0000] | |
463 | ^ static::$dtValues[2][$state[$kctr] & 0x0000FF00] | |
464 | ^ static::$dtValues[3][$state[$lctr] & 0x000000FF] | |
465 | ^ $schedule[$round][$ictr]; | |
466 | $ictr++; | |
467 | $jctr = ($jctr + 1) % $nBlocks; | |
468 | $kctr = ($kctr + 1) % $nBlocks; | |
469 | $lctr = ($lctr + 1) % $nBlocks; | |
470 | } | |
471 | for ($i = 0; $i < $nBlocks; $i++) { | |
472 | $state[$i] = $temp[$i]; | |
473 | } | |
474 | } | |
475 | $ictr = $this->shiftOffsets[0]; | |
476 | $jctr = $nBlocks - $this->shiftOffsets[1]; | |
477 | $kctr = $nBlocks - $this->shiftOffsets[2]; | |
478 | $lctr = $nBlocks - $this->shiftOffsets[3]; | |
479 | $temp = array(); | |
480 | while ($ictr < $nBlocks) { | |
481 | $temp[$ictr] = $schedule[0][$ictr] | |
482 | ^ $this->invSubWord( | |
483 | ($state[$ictr] & 0xFF000000) | |
484 | | ($state[$jctr] & 0x00FF0000) | |
485 | | ($state[$kctr] & 0x0000FF00) | |
486 | | ($state[$lctr] & 0x000000FF) | |
487 | ); | |
488 | $ictr++; | |
489 | $jctr = ($jctr + 1) % $nBlocks; | |
490 | $kctr = ($kctr + 1) % $nBlocks; | |
491 | $lctr = ($lctr + 1) % $nBlocks; | |
492 | } | |
493 | $state = $temp; | |
494 | array_unshift($state, 'N*'); | |
495 | return call_user_func_array('pack', $state); | |
496 | } | |
497 | ||
498 | /** | |
499 | * Set the block size to use for the cipher | |
500 | * | |
501 | * @param int $num The number of bits in the block size | |
502 | * | |
503 | * @return void | |
504 | */ | |
505 | protected function setBlockSize($num) { | |
506 | $num >>= 5; | |
507 | $num = max(min($num, 8), 4); | |
508 | $this->blockSize = $num << 2; | |
509 | } | |
510 | ||
511 | /** | |
512 | * Set the key size to use for the cipher | |
513 | * | |
514 | * @param int $num The number of bits in the key size | |
515 | * | |
516 | * @return void | |
517 | */ | |
518 | protected function setKeySize($num) { | |
519 | $num >>= 5; | |
520 | $num = max(min($num, 8), 4); | |
521 | $this->keySize = $num << 2; | |
522 | } | |
523 | ||
524 | /** | |
525 | * Setup the cipher by determining the shift offsets, the key size and | |
526 | * precomputing part of the key schedule | |
527 | * | |
528 | * @param string $key The key to setup the cipher for | |
529 | * | |
530 | * @return array The precomputed schedule part | |
531 | */ | |
532 | protected function setup($key) { | |
533 | $this->setShiftOffsets(); | |
534 | $nBlocks = $this->blockSize >> 2; | |
535 | $nKeys = $this->keySize >> 2; | |
536 | $nRounds = max($nBlocks, $nKeys) + 6; | |
537 | $words = array_values(unpack('N*words', $key)); | |
538 | $length = $nBlocks * ($nRounds + 1); | |
539 | for ($i = $nKeys; $i < $length; $i++) { | |
540 | $temp = $words[$i - 1]; | |
541 | if ($i % $nKeys == 0) { | |
542 | $temp = (($temp << 8) & 0xFFFFFF00) | (($temp >> 24) & 0x000000FF); | |
543 | $temp = $this->subWord($temp) ^ static::$rcon[$i / $nKeys]; | |
544 | } elseif ($nKeys > 6 && ($i % $nKeys == 4)) { | |
545 | $temp = $this->subWord($temp); | |
546 | } | |
547 | $words[$i] = $words[$i - $nKeys] ^ $temp; | |
548 | } | |
549 | return $words; | |
550 | } | |
551 | ||
552 | /** | |
553 | * Convert the kye into an encryption schedule | |
554 | * | |
555 | * @param string $key The key to use | |
556 | * | |
557 | * @return array The generated key schedule | |
558 | */ | |
559 | protected function getEncryptionSchedule($key) { | |
560 | $words = $this->setup($key); | |
561 | $nBlocks = $this->blockSize >> 2; | |
562 | $length = $nBlocks * (max($nBlocks, $this->keySize >> 2) + 7); | |
563 | $schedule = array(); | |
564 | for ($i = $row = $col = 0; $i < $length; $i++, $col++) { | |
565 | if ($col == $nBlocks) { | |
566 | $col = 0; | |
567 | $row++; | |
568 | } | |
569 | if (!isset($schedule[$row])) { | |
570 | $schedule[$row] = array(); | |
571 | } | |
572 | $schedule[$row][$col] = $words[$i]; | |
573 | } | |
574 | return $schedule; | |
575 | } | |
576 | ||
577 | /** | |
578 | * Convert the kye into an decryption schedule | |
579 | * | |
580 | * @param string $key The key to use | |
581 | * | |
582 | * @return array The generated key schedule | |
583 | */ | |
584 | protected function getDecryptionSchedule($key) { | |
585 | $words = $this->getEncryptionSchedule($key); | |
586 | $schedule = array(); | |
587 | $length = count($words) - 1; | |
588 | $schedule[] = $words[0]; | |
589 | $nBlocks = $this->blockSize >> 2; | |
590 | for ($i = 1; $i < $length; $i++) { | |
591 | $jctr = 0; | |
592 | $temp = array(); | |
593 | while ($jctr < $nBlocks) { | |
594 | $dwblock = $this->subWord($words[$i][$jctr]); | |
595 | $temp[$jctr] = static::$dtValues[0][$dwblock & 0xFF000000] | |
596 | ^ static::$dtValues[1][$dwblock & 0x00FF0000] | |
597 | ^ static::$dtValues[2][$dwblock & 0x0000FF00] | |
598 | ^ static::$dtValues[3][$dwblock & 0x000000FF]; | |
599 | $jctr++; | |
600 | } | |
601 | $schedule[$i] = $temp; | |
602 | } | |
603 | $schedule[] = $words[$length]; | |
604 | return $schedule; | |
605 | } | |
606 | ||
607 | /** | |
608 | * Compute the word by merging it with the sboxes | |
609 | * | |
610 | * @param string $word | |
611 | * | |
612 | * @return string The computed word | |
613 | */ | |
614 | protected function subWord($word) { | |
615 | return static::$sboxes[0][$word & 0x000000FF] | |
616 | | static::$sboxes[1][$word & 0x0000FF00] | |
617 | | static::$sboxes[2][$word & 0x00FF0000] | |
618 | | static::$sboxes[3][$word & 0xFF000000]; | |
619 | } | |
620 | ||
621 | /** | |
622 | * Compute the word by merging it with the inverse sboxes | |
623 | * | |
624 | * @param string $word | |
625 | * | |
626 | * @return string The computed word | |
627 | */ | |
628 | protected function invSubWord($word) { | |
629 | return static::$invSBoxes[0][$word & 0x000000FF] | |
630 | | static::$invSBoxes[1][$word & 0x0000FF00] | |
631 | | static::$invSBoxes[2][$word & 0x00FF0000] | |
632 | | static::$invSBoxes[3][$word & 0xFF000000]; | |
633 | } | |
634 | ||
635 | /** | |
636 | * Setup the shift offsets to use for the cipher | |
637 | * | |
638 | * @return void | |
639 | */ | |
640 | protected function setShiftOffsets() { | |
641 | switch ($this->blockSize >> 2) { | |
642 | case 4: | |
643 | case 5: | |
644 | case 6: | |
645 | $this->shiftOffsets = array(0, 1, 2, 3); | |
646 | break; | |
647 | case 7: | |
648 | $this->shiftOffsets = array(0, 1, 2, 4); | |
649 | break; | |
650 | case 8: | |
651 | $this->shiftOffsets = array(0, 1, 3, 4); | |
652 | } | |
653 | } | |
654 | ||
655 | } |