implemented aes-ige block mode (#211)

razielgn · web-flow · commit a66fd2398301 · 2020-11-30T14:26:57.000Z
diff --git a/Cargo.lock b/Cargo.lock
diff --git a/block-modes/Cargo.toml b/block-modes/Cargo.toml
@@ -12,6 +12,7 @@ keywords = ["crypto", "block-cipher", "ciphers"]
 
 [dependencies]
 block-padding = "0.2"
+byte-tools = "0.3"
 cipher = "=0.3.0-pre"
 
 [dev-dependencies]
diff --git a/block-modes/src/ige.rs b/block-modes/src/ige.rs
@@ -0,0 +1,92 @@
+use crate::{
+    traits::BlockMode,
+    utils::{xor, Block},
+};
+use block_padding::Padding;
+use byte_tools::copy;
+use cipher::{
+    block::{BlockCipher, BlockDecrypt, BlockEncrypt, NewBlockCipher},
+    generic_array::{
+        typenum::{Prod, UInt, UTerm, Unsigned, B0, B1, U2},
+        ArrayLength, GenericArray,
+    },
+};
+use core::{marker::PhantomData, ops::Mul};
+
+type IgeIvBlockSize<C> = Prod<<C as BlockCipher>::BlockSize, U2>;
+
+/// [Infinite Garble Extension][1] (IGE) block cipher mode instance.
+///
+/// [1]: https://www.links.org/files/openssl-ige.pdf
+pub struct Ige<C, P>
+where
+    C: BlockCipher + NewBlockCipher + BlockEncrypt + BlockDecrypt,
+    P: Padding,
+    C::BlockSize: Mul<UInt<UInt<UTerm, B1>, B0>>,
+    <C::BlockSize as Mul<UInt<UInt<UTerm, B1>, B0>>>::Output: ArrayLength<u8>,
+{
+    cipher: C,
+    iv: GenericArray<u8, IgeIvBlockSize<C>>,
+    _p: PhantomData<P>,
+}
+
+// Implementation derived from:
+// https://mgp25.com/AESIGE/
+
+impl<C, P> BlockMode<C, P> for Ige<C, P>
+where
+    C: BlockCipher + NewBlockCipher + BlockEncrypt + BlockDecrypt,
+    P: Padding,
+    C::BlockSize: Mul<UInt<UInt<UTerm, B1>, B0>>,
+    <C::BlockSize as Mul<UInt<UInt<UTerm, B1>, B0>>>::Output: ArrayLength<u8>,
+{
+    type IvSize = IgeIvBlockSize<C>;
+
+    fn new(cipher: C, iv: &GenericArray<u8, Self::IvSize>) -> Self {
+        Ige {
+            cipher,
+            iv: iv.clone(),
+            _p: Default::default(),
+        }
+    }
+
+    fn encrypt_blocks(&mut self, blocks: &mut [Block<C>]) {
+        let block_size = C::BlockSize::to_usize();
+
+        let (mut y_prev, x_prev) = self.iv.split_at_mut(block_size);
+        let mut x_temp = GenericArray::<u8, C::BlockSize>::default();
+
+        for block in blocks {
+            copy(block, &mut x_temp);
+
+            xor(block, y_prev);
+
+            self.cipher.encrypt_block(block);
+
+            xor(block, x_prev);
+
+            copy(&x_temp, x_prev);
+            y_prev = block;
+        }
+    }
+
+    fn decrypt_blocks(&mut self, blocks: &mut [Block<C>]) {
+        let block_size = C::BlockSize::to_usize();
+
+        let (x_prev, mut y_prev) = self.iv.split_at_mut(block_size);
+        let mut x_temp = GenericArray::<u8, C::BlockSize>::default();
+
+        for block in blocks {
+            copy(block, &mut x_temp);
+
+            xor(block, y_prev);
+
+            self.cipher.decrypt_block(block);
+
+            xor(block, x_prev);
+
+            copy(&x_temp, x_prev);
+            y_prev = block;
+        }
+    }
+}
diff --git a/block-modes/src/lib.rs b/block-modes/src/lib.rs
@@ -91,6 +91,7 @@ mod cbc;
 mod cfb;
 mod cfb8;
 mod ecb;
+mod ige;
 mod ofb;
 mod pcbc;
 
@@ -103,6 +104,7 @@ pub use crate::{
     cfb8::Cfb8,
     ecb::Ecb,
     errors::{BlockModeError, InvalidKeyIvLength},
+    ige::Ige,
     ofb::Ofb,
     pcbc::Pcbc,
     traits::BlockMode,
diff --git a/block-modes/tests/data/ige-aes128-1.ciphertext.bin b/block-modes/tests/data/ige-aes128-1.ciphertext.bin
@@ -0,0 +1 @@
+��U{�R�ڎC�N�E<�V��H���ǜ��G��
diff --git a/block-modes/tests/data/ige-aes128-1.iv.bin b/block-modes/tests/data/ige-aes128-1.iv.bin
diff --git a/block-modes/tests/data/ige-aes128-1.key.bin b/block-modes/tests/data/ige-aes128-1.key.bin
diff --git a/block-modes/tests/data/ige-aes128-1.plaintext.bin b/block-modes/tests/data/ige-aes128-1.plaintext.bin
diff --git a/block-modes/tests/data/ige-aes128-2.ciphertext.bin b/block-modes/tests/data/ige-aes128-2.ciphertext.bin
@@ -0,0 +1 @@
+L. Let's hope Ben got it right!
diff --git a/block-modes/tests/data/ige-aes128-2.iv.bin b/block-modes/tests/data/ige-aes128-2.iv.bin
@@ -0,0 +1 @@
+mentation of IGE mode for OpenSS
diff --git a/block-modes/tests/data/ige-aes128-2.key.bin b/block-modes/tests/data/ige-aes128-2.key.bin
@@ -0,0 +1 @@
+This is an imple
diff --git a/block-modes/tests/data/ige-aes128-2.plaintext.bin b/block-modes/tests/data/ige-aes128-2.plaintext.bin
@@ -0,0 +1 @@
+�pd�����m��Kz�Hȹ�@>4g��ؓ@�;
diff --git a/block-modes/tests/lib.rs b/block-modes/tests/lib.rs
@@ -1,9 +1,10 @@
 //! Test vectors generated with OpenSSL
 
 use aes::Aes128;
-use block_modes::block_padding::ZeroPadding;
+use block_modes::block_padding::{NoPadding, ZeroPadding};
 use block_modes::BlockMode;
-use block_modes::{Cbc, Ecb};
+use block_modes::{Cbc, Ecb, Ige};
+use cipher::generic_array::GenericArray;
 
 #[test]
 fn ecb_aes128() {
@@ -69,3 +70,31 @@ fn par_blocks() {
     run::<block_modes::Ofb<_, _>>();
     run::<block_modes::Pcbc<_, _>>();
 }
+
+#[test]
+fn ige_aes256_1() {
+    let key = GenericArray::from_slice(include_bytes!("data/ige-aes128-1.key.bin"));
+    let iv = GenericArray::from_slice(include_bytes!("data/ige-aes128-1.iv.bin"));
+    let plaintext = include_bytes!("data/ige-aes128-1.plaintext.bin");
+    let ciphertext = include_bytes!("data/ige-aes128-1.ciphertext.bin");
+
+    let mode = Ige::<Aes128, NoPadding>::new_fix(key, iv);
+    assert_eq!(mode.encrypt_vec(plaintext), &ciphertext[..]);
+
+    let mode = Ige::<Aes128, NoPadding>::new_fix(key, iv);
+    assert_eq!(mode.decrypt_vec(ciphertext).unwrap(), &plaintext[..]);
+}
+
+#[test]
+fn ige_aes256_2() {
+    let key = GenericArray::from_slice(include_bytes!("data/ige-aes128-2.key.bin"));
+    let iv = GenericArray::from_slice(include_bytes!("data/ige-aes128-2.iv.bin"));
+    let plaintext = include_bytes!("data/ige-aes128-2.plaintext.bin");
+    let ciphertext = include_bytes!("data/ige-aes128-2.ciphertext.bin");
+
+    let mode = Ige::<Aes128, NoPadding>::new_fix(key, iv);
+    assert_eq!(mode.encrypt_vec(plaintext), &ciphertext[..]);
+
+    let mode = Ige::<Aes128, NoPadding>::new_fix(key, iv);
+    assert_eq!(mode.decrypt_vec(ciphertext).unwrap(), &plaintext[..]);
+}

Original file line number	Diff line number	Diff line change
`@@ -0,0 +1 @@`
	`1`	`+��U{�R�ڎC�N�E<�V��H��ǜ��G��`
Original file line number	Diff line number	Diff line change
`@@ -0,0 +1 @@`
	`1`	`+�pd��m��Kz�Hȹ�@>4g��ؓ@�;`