Expand Up
@@ -7,11 +7,11 @@
*
* PHP version 5
*
* If {@link \phpseclib\Crypt\Rijndael ::setBlockLength() setBlockLength()} isn't called, it'll be assumed to be 128 bits. If
* {@link \phpseclib\Crypt\Rijndael ::setKeyLength() setKeyLength()} isn't called, it'll be calculated from
* {@link \phpseclib\Crypt\Rijndael ::setKey() setKey()}. ie. if the key is 128-bits, the key length will be 128-bits. If it's
* If {@link self ::setBlockLength() setBlockLength()} isn't called, it'll be assumed to be 128 bits. If
* {@link self ::setKeyLength() setKeyLength()} isn't called, it'll be calculated from
* {@link self ::setKey() setKey()}. ie. if the key is 128-bits, the key length will be 128-bits. If it's
* 136-bits it'll be null-padded to 192-bits and 192 bits will be the key length until
* {@link \phpseclib\Crypt\Rijndael ::setKey() setKey()} is called, again, at which point, it'll be recalculated.
* {@link self ::setKey() setKey()} is called, again, at which point, it'll be recalculated.
*
* Not all Rijndael implementations may support 160-bits or 224-bits as the block length / key length. mcrypt, for example,
* does not. AES, itself, only supports block lengths of 128 and key lengths of 128, 192, and 256.
Expand Down
Expand Up
@@ -65,28 +65,18 @@
*/
class Rijndael extends Base
{
/**
* The default password key_size used by setPassword()
*
* @see \phpseclib\Crypt\Base::password_key_size
* @see \phpseclib\Crypt\Base::setPassword()
* @var Integer
* @access private
*/
var $ password_key_size16 ;
/**
* The mcrypt specific name of the cipher
*
* Mcrypt is useable for 128/192/256-bit $block_size/$key_size . For 160/224 not.
* Mcrypt is useable for 128/192/256-bit $block_size/$key_length . For 160/224 not.
* \phpseclib\Crypt\Rijndael determines automatically whether mcrypt is useable
* or not for the current $block_size/$key_size .
* or not for the current $block_size/$key_length .
* In case of, $cipher_name_mcrypt will be set dynamically at run time accordingly.
*
* @see \phpseclib\Crypt\Base::cipher_name_mcrypt
* @see \phpseclib\Crypt\Base::engine
* @see isValidEngine()
* @var String
* @see self:: isValidEngine()
* @var string
* @access private
*/
var $ cipher_name_mcrypt'rijndael-128 ' ;
Expand All
@@ -96,43 +86,34 @@ class Rijndael extends Base
*
* @see \phpseclib\Crypt\Base::password_default_salt
* @see \phpseclib\Crypt\Base::setPassword()
* @var String
* @var string
* @access private
*/
var $ password_default_salt'phpseclib ' ;
/**
* Has the key length explicitly been set or should it be derived from the key, itself?
*
* @see setKeyLength()
* @var Boolean
* @access private
*/
var $ explicit_key_lengthfalse ;
/**
* The Key Schedule
*
* @see _setup()
* @var Array
* @see self:: _setup()
* @var array
* @access private
*/
var $ w
/**
* The Inverse Key Schedule
*
* @see _setup()
* @var Array
* @see self:: _setup()
* @var array
* @access private
*/
var $ dw
/**
* The Block Length divided by 32
*
* @see setBlockLength()
* @var Integer
* @see self:: setBlockLength()
* @var int
* @access private
* @internal The max value is 256 / 32 = 8, the min value is 128 / 32 = 4. Exists in conjunction with $block_size
* because the encryption / decryption / key schedule creation requires this number and not $block_size. We could
Expand All
@@ -142,23 +123,23 @@ class Rijndael extends Base
var $ Nb4 ;
/**
* The Key Length
* The Key Length (in bytes)
*
* @see setKeyLength()
* @var Integer
* @see self:: setKeyLength()
* @var int
* @access private
* @internal The max value is 256 / 8 = 32, the min value is 128 / 8 = 16. Exists in conjunction with $Nk
* because the encryption / decryption / key schedule creation requires this number and not $key_size . We could
* derive this from $key_size or vice versa, but that'd mean we'd have to do multiple shift operations, so in lieu
* because the encryption / decryption / key schedule creation requires this number and not $key_length . We could
* derive this from $key_length or vice versa, but that'd mean we'd have to do multiple shift operations, so in lieu
* of that, we'll just precompute it once.
*/
var $ key_size 16 ;
var $ key_length 16 ;
/**
* The Key Length divided by 32
*
* @see setKeyLength()
* @var Integer
* @see self:: setKeyLength()
* @var int
* @access private
* @internal The max value is 256 / 32 = 8, the min value is 128 / 32 = 4
*/
Expand All
@@ -167,7 +148,7 @@ class Rijndael extends Base
/**
* The Number of Rounds
*
* @var Integer
* @var int
* @access private
* @internal The max value is 14, the min value is 10.
*/
Expand All
@@ -176,85 +157,21 @@ class Rijndael extends Base
/**
* Shift offsets
*
* @var Array
* @var array
* @access private
*/
var $ c
/**
* Holds the last used key- and block_size information
*
* @var Array
* @var array
* @access private
*/
var $ kl
/**
* Default Constructor.
*
* Determines whether or not the mcrypt extension should be used.
*
* $mode could be:
*
* - \phpseclib\Crypt\Base::MODE_ECB
*
* - \phpseclib\Crypt\Base::MODE_CBC
*
* - \phpseclib\Crypt\Base::MODE_CTR
*
* - \phpseclib\Crypt\Base::MODE_CFB
*
* - \phpseclib\Crypt\Base::MODE_OFB
*
* If not explictly set, \phpseclib\Crypt\Base::MODE_CBC will be used.
*
* @see \phpseclib\Crypt\Base::Crypt_Base()
* @param optional Integer $mode
* @access public
/**
* Sets the key.
*
* Keys can be of any length. Rijndael, itself, requires the use of a key that's between 128-bits and 256-bits long and
* whose length is a multiple of 32. If the key is less than 256-bits and the key length isn't set, we round the length
* up to the closest valid key length, padding $key with null bytes. If the key is more than 256-bits, we trim the
* excess bits.
*
* If the key is not explicitly set, it'll be assumed to be all null bytes.
*
* Note: 160/224-bit keys must explicitly set by setKeyLength(), otherwise they will be round/pad up to 192/256 bits.
*
* @see \phpseclib\Crypt\Base:setKey()
* @see setKeyLength()
* @access public
* @param String $key
*/
function setKey ($ key
{
if (!$ this explicit_key_length ) {
$ lengthstrlen ($ key
switch (true ) {
case $ length16 :
$ this key_size = 16 ;
break ;
case $ length20 :
$ this key_size = 20 ;
break ;
case $ length24 :
$ this key_size = 24 ;
break ;
case $ length28 :
$ this key_size = 28 ;
break ;
default :
$ this key_size = 32 ;
}
}
parent ::setKey ($ key
}
/**
* Sets the key length
* Sets the key length.
*
* Valid key lengths are 128, 160, 192, 224, and 256. If the length is less than 128, it will be rounded up to
* 128. If the length is greater than 128 and invalid, it will be rounded down to the closest valid amount.
Expand All
@@ -271,30 +188,28 @@ function setKey($key)
* This results then in slower encryption.
*
* @access public
* @param Integer $length
* @param int $length
*/
function setKeyLength ($ length
{
switch (true ) {
case $ length160 :
$ this key_size = 20 ;
break ;
case $ length224 :
$ this key_size = 28 ;
break ;
case $ length128 :
$ this key_size = 16 ;
$ this key_length = 16 ;
break ;
case $ length160 :
$ this key_length = 20 ;
break ;
case $ length192 :
$ this key_size = 24 ;
$ this key_length = 24 ;
break ;
case $ length224 :
$ this key_length = 28 ;
break ;
default :
$ this key_size = 32 ;
$ this key_length = 32 ;
}
$ this explicit_key_length = true ;
$ this changed = true ;
$ this _setEngine ();
parent ::setKeyLength ($ length
}
/**
Expand All
@@ -304,7 +219,7 @@ function setKeyLength($length)
* 128. If the length is greater than 128 and invalid, it will be rounded down to the closest valid amount.
*
* @access public
* @param Integer $length
* @param int $length
*/
function setBlockLength ($ length
{
Expand All
@@ -325,10 +240,10 @@ function setBlockLength($length)
*
* This is mainly just a wrapper to set things up for \phpseclib\Crypt\Base::isValidEngine()
*
* @see \phpseclib\Crypt\Base::Crypt_Base ()
* @param Integer $engine
* @see \phpseclib\Crypt\Base::__construct ()
* @param int $engine
* @access public
* @return Boolean
* @return bool
*/
function isValidEngine ($ engine
{
Expand All
@@ -337,12 +252,12 @@ function isValidEngine($engine)
if ($ this block_size != 16 ) {
return false ;
}
$ this cipher_name_openssl_ecb = 'aes- ' . ($ this key_size << 3 ) . '-ecb ' ;
$ this cipher_name_openssl = 'aes- ' . ($ this key_size << 3 ) . '- ' . $ this _openssl_translate_mode ();
$ this cipher_name_openssl_ecb = 'aes- ' . ($ this key_length << 3 ) . '-ecb ' ;
$ this cipher_name_openssl = 'aes- ' . ($ this key_length << 3 ) . '- ' . $ this _openssl_translate_mode ();
break ;
case self ::ENGINE_MCRYPT :
$ this cipher_name_mcrypt = 'rijndael- ' . ($ this block_size << 3 );
if ($ this key_size % 8 ) { // is it a 160/224-bit key?
if ($ this key_length % 8 ) { // is it a 160/224-bit key?
// mcrypt is not usable for them, only for 128/192/256-bit keys
return false ;
}
Expand All
@@ -351,24 +266,12 @@ function isValidEngine($engine)
return parent ::isValidEngine ($ engine
}
/**
* Setup the \phpseclib\Crypt\Base::ENGINE_MCRYPT $engine
*
* @see \phpseclib\Crypt\Base::_setupMcrypt()
* @access private
*/
function _setupMcrypt ()
{
$ this key = str_pad (substr ($ this key , 0 , $ this key_size ), $ this key_size , "\0" );
parent ::_setupMcrypt ();
}
/**
* Encrypts a block
*
* @access private
* @param String $in
* @return String
* @param string $in
* @return string
*/
function _encryptBlock ($ in
{
Expand Down
Expand Up
@@ -468,8 +371,8 @@ function _encryptBlock($in)
* Decrypts a block
*
* @access private
* @param String $in
* @return String
* @param string $in
* @return string
*/
function _decryptBlock ($ in
{
Expand Down
Expand Up
@@ -573,15 +476,13 @@ function _setupKey()
0x7D000000 , 0xFA000000 , 0xEF000000 , 0xC5000000 , 0x91000000
);
$ this key = str_pad (substr ($ this key , 0 , $ this key_size ), $ this key_size , "\0" );
if (isset ($ this kl ['key ' ]) && $ this key === $ this kl ['key ' ] && $ this key_size === $ this kl ['key_size ' ] && $ this block_size === $ this kl ['block_size ' ]) {
if (isset ($ this kl ['key ' ]) && $ this key === $ this kl ['key ' ] && $ this key_length === $ this kl ['key_length ' ] && $ this block_size === $ this kl ['block_size ' ]) {
// already expanded
return ;
}
$ this kl = array ('key ' => $ this key , 'key_size ' => $ this key_size , 'block_size ' => $ this block_size );
$ this kl = array ('key ' => $ this key , 'key_length ' => $ this key_length , 'block_size ' => $ this block_size );
$ this Nk = $ this key_size >> 2 ;
$ this Nk = $ this key_length >> 2 ;
// see Rijndael-ammended.pdf#page=44
$ this Nr = max ($ this Nk , $ this Nb ) + 6 ;
Expand Down
Expand Up
@@ -673,13 +574,13 @@ function _setupKey()
* Performs S-Box substitutions
*
* @access private
* @param Integer $word
* @param int $word
*/
function _subWord ($ word
{
static $ sbox
if (empty ($ sbox
list (,,, , $ sbox$ this _getTables ();
list (, , , , $ sbox$ this _getTables ();
}
return $ sbox$ word0x000000FF ] |
Expand All
@@ -691,11 +592,11 @@ function _subWord($word)
/**
* Provides the mixColumns and sboxes tables
*
* @see Crypt_Rijndael :_encryptBlock()
* @see Crypt_Rijndael :_setupInlineCrypt()
* @see Crypt_Rijndael :_subWord()
* @see self: :_encryptBlock()
* @see self: :_setupInlineCrypt()
* @see self: :_subWord()
* @access private
* @return Array &$tables
* @return array &$tables
*/
function &_getTables ()
{
Expand Down
Expand Up
@@ -780,11 +681,11 @@ function &_getTables()
/**
* Provides the inverse mixColumns and inverse sboxes tables
*
* @see Crypt_Rijndael :_decryptBlock()
* @see Crypt_Rijndael :_setupInlineCrypt()
* @see Crypt_Rijndael :_setupKey()
* @see self: :_decryptBlock()
* @see self: :_setupInlineCrypt()
* @see self: :_setupKey()
* @access private
* @return Array &$tables
* @return array &$tables
*/
function &_getInvTables ()
{
Expand Down
Expand Up
@@ -878,7 +779,7 @@ function _setupInlineCrypt()
// We create max. 10 hi-optimized code for memory reason. Means: For each $key one ultra fast inline-crypt function.
// (Currently, for Crypt_Rijndael/AES, one generated $lambda_function cost on php5.5@32bit ~80kb unfreeable mem and ~130kb on php5.5@64bit)
// After that, we'll still create very fast optimized code but not the hi-ultimative code, for each $mode one.
$ gen_hi_opt_codebool )( count ($ lambda_functions10 );
$ gen_hi_opt_codebool )(count ($ lambda_functions10 );
// Generation of a uniqe hash for our generated code
$ code_hash"Crypt_Rijndael, {$ this mode }, {$ this Nr }, {$ this Nb }" ;
Expand Down