#include <sm4.h>

Inheritance diagram for Botan::SM4:

Public Types
enum

Public Member Functions
size_t	block_size () const final
void	clear () override
BlockCipher *	clone () const
BlockCipher *	clone () const
void	decrypt (const uint8_t in[], uint8_t out[]) const
void	decrypt (std::span< const uint8_t > in, std::span< uint8_t > out) const
void	decrypt (std::span< uint8_t > block) const
void	decrypt (uint8_t block[]) const
void	decrypt (const uint8_t in[], uint8_t out[]) const
void	decrypt (std::span< const uint8_t > in, std::span< uint8_t > out) const
void	decrypt (std::span< uint8_t > block) const
void	decrypt (uint8_t block[]) const
void	decrypt_n (const uint8_t in[], uint8_t out[], size_t blocks) const override
void	decrypt_n_xex (uint8_t data[], const uint8_t mask[], size_t blocks) const
void	decrypt_n_xex (uint8_t data[], const uint8_t mask[], size_t blocks) const
void	encrypt (const uint8_t in[], uint8_t out[]) const
void	encrypt (std::span< const uint8_t > in, std::span< uint8_t > out) const
void	encrypt (std::span< uint8_t > block) const
void	encrypt (uint8_t block[]) const
void	encrypt (const uint8_t in[], uint8_t out[]) const
void	encrypt (std::span< const uint8_t > in, std::span< uint8_t > out) const
void	encrypt (std::span< uint8_t > block) const
void	encrypt (uint8_t block[]) const
void	encrypt_n (const uint8_t in[], uint8_t out[], size_t blocks) const override
void	encrypt_n_xex (uint8_t data[], const uint8_t mask[], size_t blocks) const
void	encrypt_n_xex (uint8_t data[], const uint8_t mask[], size_t blocks) const
bool	has_keying_material () const override
Key_Length_Specification	key_spec () const final
size_t	maximum_keylength () const
size_t	maximum_keylength () const
size_t	minimum_keylength () const
size_t	minimum_keylength () const
std::string	name () const override
std::unique_ptr< BlockCipher >	new_object () const override
size_t	parallel_bytes () const
size_t	parallel_bytes () const
size_t	parallelism () const override
std::string	provider () const override
void	set_key (const OctetString &key)
void	set_key (const uint8_t key[], size_t length)
void	set_key (std::span< const uint8_t > key)
void	set_key (const OctetString &key)
void	set_key (const uint8_t key[], size_t length)
void	set_key (std::span< const uint8_t > key)
bool	valid_keylength (size_t length) const
bool	valid_keylength (size_t length) const

Static Public Member Functions
static std::unique_ptr< BlockCipher >	create (std::string_view algo_spec, std::string_view provider="")
static std::unique_ptr< BlockCipher >	create (std::string_view algo_spec, std::string_view provider="")
static std::unique_ptr< BlockCipher >	create_or_throw (std::string_view algo_spec, std::string_view provider="")
static std::unique_ptr< BlockCipher >	create_or_throw (std::string_view algo_spec, std::string_view provider="")
static std::vector< std::string >	providers (std::string_view algo_spec)
static std::vector< std::string >	providers (std::string_view algo_spec)

Static Public Attributes
static constexpr size_t	ParallelismMult
static constexpr size_t	ParallelismMult = 4

Protected Member Functions
void	assert_key_material_set () const
void	assert_key_material_set (bool predicate) const
void	assert_key_material_set () const
void	assert_key_material_set (bool predicate) const

Detailed Description

SM4

Definition at line 19 of file sm4.h.

Member Enumeration Documentation

◆ anonymous enum

anonymous enum

inherited

Definition at line 212 of file block_cipher.h.

212{ BLOCK_SIZE = BS }; /* NOLINT(*-enum-size) */

Botan::Block_Cipher_Fixed_Params

Definition block_cipher.h:210

Member Function Documentation

◆ assert_key_material_set() [1/4]

void Botan::SymmetricAlgorithm::assert_key_material_set ( ) const

inlineprotectedinherited

Definition at line 146 of file sym_algo.h.

146{ assert_key_material_set(has_keying_material()); }

Botan::Block_Cipher_Fixed_Params< 16, 16 >::has_keying_material

virtual bool has_keying_material() const=0

Botan::Block_Cipher_Fixed_Params< 16, 16 >::assert_key_material_set

void assert_key_material_set() const

Definition sym_algo.h:146

Referenced by Botan::AES_128::decrypt_n(), Botan::ARIA_128::decrypt_n(), Botan::Camellia_128::decrypt_n(), Botan::Noekeon::decrypt_n(), Botan::SEED::decrypt_n(), Botan::SM4::decrypt_n(), Botan::AES_128::encrypt_n(), Botan::ARIA_128::encrypt_n(), Botan::Camellia_128::encrypt_n(), Botan::Noekeon::encrypt_n(), Botan::SEED::encrypt_n(), and Botan::SM4::encrypt_n().

◆ assert_key_material_set() [2/4]

void Botan::SymmetricAlgorithm::assert_key_material_set ( bool predicate ) const

inlineprotectedinherited

Definition at line 148 of file sym_algo.h.

                                                         {
         if(!predicate) {
            throw_key_not_set_error();
         }
      }

◆ assert_key_material_set() [3/4]

void Botan::SymmetricAlgorithm::assert_key_material_set ( ) const

inlineprotectedinherited

◆ assert_key_material_set() [4/4]

void Botan::SymmetricAlgorithm::assert_key_material_set ( bool predicate ) const

inlineprotectedinherited

Definition at line 148 of file sym_algo.h.

                                                         {
         if(!predicate) {
            throw_key_not_set_error();
         }
      }

◆ block_size()

size_t Botan::Block_Cipher_Fixed_Params< BS, KMIN, 0, 1, BlockCipher >::block_size ( ) const

inlinefinalvirtualinherited

Returns: block size of this algorithm

Implements Botan::BlockCipher.

Definition at line 214 of file block_cipher.h.

214{ return BS; }

◆ clear()

void Botan::SM4::clear ( )

overridevirtual

Reset the internal state. This includes not just the key, but any partial message that may have been in process.

Implements Botan::SymmetricAlgorithm.

Definition at line 337 of file sm4.cpp.

                {
   zap(m_RK);
}

References Botan::zap().

◆ clone() [1/2]

BlockCipher * Botan::BlockCipher::clone ( ) const

inlineinherited

Definition at line 188 of file block_cipher.h.

188{ return this->new_object().release(); }

Botan::Block_Cipher_Fixed_Params< 16, 16 >::new_object

virtual std::unique_ptr< BlockCipher > new_object() const=0

◆ clone() [2/2]

BlockCipher * Botan::BlockCipher::clone ( ) const

inlineinherited

Definition at line 188 of file block_cipher.h.

188{ return this->new_object().release(); }

References new_object().

◆ create() [1/2]

std::unique_ptr< BlockCipher > Botan::BlockCipher::create	(	std::string_view	algo_spec,
		std::string_view	provider = "" )

staticinherited

Create an instance based on a name If provider is empty then best available is chosen.

Parameters

algo_spec	algorithm name
provider	provider implementation to choose

Returns: a null pointer if the algo/provider combination cannot be found

Definition at line 31 of file block_cipher.cpp.

                                                                                           {
#if defined(BOTAN_HAS_COMMONCRYPTO)
   if(provider.empty() || provider == "commoncrypto") {
      if(auto bc = make_commoncrypto_block_cipher(algo))
         return bc;
 
      if(!provider.empty())
         return nullptr;
   }
#endif
 
   // TODO: CryptoAPI
   // TODO: /dev/crypto
 
   // Only base providers from here on out
   if(provider.empty() == false && provider != "base") {
      return nullptr;
   }
 
#if defined(BOTAN_HAS_AES)
   if(algo == "AES-128") {
      return std::make_unique<AES_128>();
   }
 
   if(algo == "AES-192") {
      return std::make_unique<AES_192>();
   }
 
   if(algo == "AES-256") {
      return std::make_unique<AES_256>();
   }
#endif
 
#if defined(BOTAN_HAS_ARIA)
   if(algo == "ARIA-128") {
      return std::make_unique<ARIA_128>();
   }
 
   if(algo == "ARIA-192") {
      return std::make_unique<ARIA_192>();
   }
 
   if(algo == "ARIA-256") {
      return std::make_unique<ARIA_256>();
   }
#endif
 
#if defined(BOTAN_HAS_SERPENT)
   if(algo == "Serpent") {
      return std::make_unique<Serpent>();
   }
#endif
 
#if defined(BOTAN_HAS_SHACAL2)
   if(algo == "SHACAL2") {
      return std::make_unique<SHACAL2>();
   }
#endif
 
#if defined(BOTAN_HAS_TWOFISH)
   if(algo == "Twofish") {
      return std::make_unique<Twofish>();
   }
#endif
 
#if defined(BOTAN_HAS_THREEFISH_512)
   if(algo == "Threefish-512") {
      return std::make_unique<Threefish_512>();
   }
#endif
 
#if defined(BOTAN_HAS_BLOWFISH)
   if(algo == "Blowfish") {
      return std::make_unique<Blowfish>();
   }
#endif
 
#if defined(BOTAN_HAS_CAMELLIA)
   if(algo == "Camellia-128") {
      return std::make_unique<Camellia_128>();
   }
 
   if(algo == "Camellia-192") {
      return std::make_unique<Camellia_192>();
   }
 
   if(algo == "Camellia-256") {
      return std::make_unique<Camellia_256>();
   }
#endif
 
#if defined(BOTAN_HAS_DES)
   if(algo == "DES") {
      return std::make_unique<DES>();
   }
 
   if(algo == "TripleDES" || algo == "3DES" || algo == "DES-EDE") {
      return std::make_unique<TripleDES>();
   }
#endif
 
#if defined(BOTAN_HAS_NOEKEON)
   if(algo == "Noekeon") {
      return std::make_unique<Noekeon>();
   }
#endif
 
#if defined(BOTAN_HAS_CAST_128)
   if(algo == "CAST-128" || algo == "CAST5") {
      return std::make_unique<CAST_128>();
   }
#endif
 
#if defined(BOTAN_HAS_IDEA)
   if(algo == "IDEA") {
      return std::make_unique<IDEA>();
   }
#endif
 
#if defined(BOTAN_HAS_KUZNYECHIK)
   if(algo == "Kuznyechik") {
      return std::make_unique<Kuznyechik>();
   }
#endif
 
#if defined(BOTAN_HAS_SEED)
   if(algo == "SEED") {
      return std::make_unique<SEED>();
   }
#endif
 
#if defined(BOTAN_HAS_SM4)
   if(algo == "SM4") {
      return std::make_unique<SM4>();
   }
#endif
 
   const SCAN_Name req(algo);
 
#if defined(BOTAN_HAS_GOST_28147_89)
   if(req.algo_name() == "GOST-28147-89") {
      return std::make_unique<GOST_28147_89>(req.arg(0, "R3411_94_TestParam"));
   }
#endif
 
#if defined(BOTAN_HAS_CASCADE)
   if(req.algo_name() == "Cascade" && req.arg_count() == 2) {
      auto c1 = BlockCipher::create(req.arg(0));
      auto c2 = BlockCipher::create(req.arg(1));
 
      if(c1 && c2) {
         return std::make_unique<Cascade_Cipher>(std::move(c1), std::move(c2));
      }
   }
#endif
 
#if defined(BOTAN_HAS_LION)
   if(req.algo_name() == "Lion" && req.arg_count_between(2, 3)) {
      auto hash = HashFunction::create(req.arg(0));
      auto stream = StreamCipher::create(req.arg(1));
 
      if(hash && stream) {
         const size_t block_size = req.arg_as_integer(2, 1024);
         return std::make_unique<Lion>(std::move(hash), std::move(stream), block_size);
      }
   }
#endif
 
   BOTAN_UNUSED(req);
   BOTAN_UNUSED(provider);
 
   return nullptr;
}

◆ create() [2/2]

std::unique_ptr< BlockCipher > Botan::BlockCipher::create	(	std::string_view	algo_spec,
		std::string_view	provider = "" )

staticinherited

Create an instance based on a name If provider is empty then best available is chosen.

Parameters

algo_spec	algorithm name
provider	provider implementation to choose

Returns: a null pointer if the algo/provider combination cannot be found

Definition at line 92 of file block_cipher.cpp.

                                                                                           {
#if defined(BOTAN_HAS_COMMONCRYPTO)
   if(provider.empty() || provider == "commoncrypto") {
      if(auto bc = make_commoncrypto_block_cipher(algo))
         return bc;
 
      if(!provider.empty())
         return nullptr;
   }
#endif
 
   // TODO: CryptoAPI
   // TODO: /dev/crypto
 
   // Only base providers from here on out
   if(provider.empty() == false && provider != "base") {
      return nullptr;
   }
 
#if defined(BOTAN_HAS_AES)
   if(algo == "AES-128") {
      return std::make_unique<AES_128>();
   }
 
   if(algo == "AES-192") {
      return std::make_unique<AES_192>();
   }
 
   if(algo == "AES-256") {
      return std::make_unique<AES_256>();
   }
#endif
 
#if defined(BOTAN_HAS_ARIA)
   if(algo == "ARIA-128") {
      return std::make_unique<ARIA_128>();
   }
 
   if(algo == "ARIA-192") {
      return std::make_unique<ARIA_192>();
   }
 
   if(algo == "ARIA-256") {
      return std::make_unique<ARIA_256>();
   }
#endif
 
#if defined(BOTAN_HAS_SERPENT)
   if(algo == "Serpent") {
      return std::make_unique<Serpent>();
   }
#endif
 
#if defined(BOTAN_HAS_SHACAL2)
   if(algo == "SHACAL2") {
      return std::make_unique<SHACAL2>();
   }
#endif
 
#if defined(BOTAN_HAS_TWOFISH)
   if(algo == "Twofish") {
      return std::make_unique<Twofish>();
   }
#endif
 
#if defined(BOTAN_HAS_THREEFISH_512)
   if(algo == "Threefish-512") {
      return std::make_unique<Threefish_512>();
   }
#endif
 
#if defined(BOTAN_HAS_BLOWFISH)
   if(algo == "Blowfish") {
      return std::make_unique<Blowfish>();
   }
#endif
 
#if defined(BOTAN_HAS_CAMELLIA)
   if(algo == "Camellia-128") {
      return std::make_unique<Camellia_128>();
   }
 
   if(algo == "Camellia-192") {
      return std::make_unique<Camellia_192>();
   }
 
   if(algo == "Camellia-256") {
      return std::make_unique<Camellia_256>();
   }
#endif
 
#if defined(BOTAN_HAS_DES)
   if(algo == "DES") {
      return std::make_unique<DES>();
   }
 
   if(algo == "TripleDES" || algo == "3DES" || algo == "DES-EDE") {
      return std::make_unique<TripleDES>();
   }
#endif
 
#if defined(BOTAN_HAS_NOEKEON)
   if(algo == "Noekeon") {
      return std::make_unique<Noekeon>();
   }
#endif
 
#if defined(BOTAN_HAS_CAST_128)
   if(algo == "CAST-128" || algo == "CAST5") {
      return std::make_unique<CAST_128>();
   }
#endif
 
#if defined(BOTAN_HAS_IDEA)
   if(algo == "IDEA") {
      return std::make_unique<IDEA>();
   }
#endif
 
#if defined(BOTAN_HAS_KUZNYECHIK)
   if(algo == "Kuznyechik") {
      return std::make_unique<Kuznyechik>();
   }
#endif
 
#if defined(BOTAN_HAS_SEED)
   if(algo == "SEED") {
      return std::make_unique<SEED>();
   }
#endif
 
#if defined(BOTAN_HAS_SM4)
   if(algo == "SM4") {
      return std::make_unique<SM4>();
   }
#endif
 
   const SCAN_Name req(algo);
 
#if defined(BOTAN_HAS_GOST_28147_89)
   if(req.algo_name() == "GOST-28147-89") {
      return std::make_unique<GOST_28147_89>(req.arg(0, "R3411_94_TestParam"));
   }
#endif
 
#if defined(BOTAN_HAS_CASCADE)
   if(req.algo_name() == "Cascade" && req.arg_count() == 2) {
      auto c1 = BlockCipher::create(req.arg(0));
      auto c2 = BlockCipher::create(req.arg(1));
 
      if(c1 && c2) {
         return std::make_unique<Cascade_Cipher>(std::move(c1), std::move(c2));
      }
   }
#endif
 
#if defined(BOTAN_HAS_LION)
   if(req.algo_name() == "Lion" && req.arg_count_between(2, 3)) {
      auto hash = HashFunction::create(req.arg(0));
      auto stream = StreamCipher::create(req.arg(1));
 
      if(hash && stream) {
         const size_t block_size = req.arg_as_integer(2, 1024);
         return std::make_unique<Lion>(std::move(hash), std::move(stream), block_size);
      }
   }
#endif
 
   BOTAN_UNUSED(req);
   BOTAN_UNUSED(provider);
 
   return nullptr;
}

References Botan::SCAN_Name::algo_name(), Botan::SCAN_Name::arg(), Botan::SCAN_Name::arg_as_integer(), Botan::SCAN_Name::arg_count(), Botan::SCAN_Name::arg_count_between(), block_size(), BOTAN_UNUSED, create(), Botan::HashFunction::create(), Botan::StreamCipher::create(), Botan::make_commoncrypto_block_cipher(), and provider().

Referenced by botan_block_cipher_init(), Botan::AEAD_Mode::create(), create(), Botan::Cipher_Mode::create(), Botan::MessageAuthenticationCode::create(), Botan::StreamCipher::create(), and create_or_throw().

◆ create_or_throw() [1/2]

std::unique_ptr< BlockCipher > Botan::BlockCipher::create_or_throw	(	std::string_view	algo_spec,
		std::string_view	provider = "" )

staticinherited

Create an instance based on a name, or throw if the algo/provider combination cannot be found. If provider is empty then best available is chosen.

Definition at line 38 of file block_cipher.cpp.

                                                                                                    {
   if(auto bc = BlockCipher::create(algo, provider)) {
      return bc;
   }
   throw Lookup_Error("Block cipher", algo, provider);
}

◆ create_or_throw() [2/2]

std::unique_ptr< BlockCipher > Botan::BlockCipher::create_or_throw	(	std::string_view	algo_spec,
		std::string_view	provider = "" )

staticinherited

Create an instance based on a name, or throw if the algo/provider combination cannot be found. If provider is empty then best available is chosen.

Definition at line 267 of file block_cipher.cpp.

                                                                                                    {
   if(auto bc = BlockCipher::create(algo, provider)) {
      return bc;
   }
   throw Lookup_Error("Block cipher", algo, provider);
}

References create(), and provider().

Referenced by botan_nist_kw_dec(), botan_nist_kw_enc(), Botan::TLS::Connection_Cipher_State::Connection_Cipher_State(), Botan::Encrypted_PSK_Database::Encrypted_PSK_Database(), Botan::rfc3394_keyunwrap(), and Botan::rfc3394_keywrap().

◆ decrypt() [1/8]

void Botan::BlockCipher::decrypt	(	const uint8_t	in[],
		uint8_t	out[] ) const

inlineinherited

Decrypt a block.

Parameters

in	The ciphertext block to be decypted as a byte array. Must be of length block_size().
out	The byte array designated to hold the decrypted block. Must be of length block_size().

Definition at line 91 of file block_cipher.h.

91{ decrypt_n(in, out, 1); }

Botan::Block_Cipher_Fixed_Params< 16, 16 >::decrypt_n

virtual void decrypt_n(const uint8_t in[], uint8_t out[], size_t blocks) const=0

◆ decrypt() [2/8]

void Botan::BlockCipher::decrypt	(	std::span< const uint8_t >	in,
		std::span< uint8_t >	out ) const

inlineinherited

Decrypt one or more blocks

Parameters

in	the input buffer (multiple of block_size())
out	the output buffer (same size as in)

Definition at line 139 of file block_cipher.h.

                                                                          {
         return decrypt_n(in.data(), out.data(), in.size() / block_size());
      }

◆ decrypt() [3/8]

void Botan::BlockCipher::decrypt ( std::span< uint8_t > block ) const

inlineinherited

Decrypt one or more blocks

Parameters

block the input/output buffer (multiple of block_size())

Definition at line 121 of file block_cipher.h.

                                                 {
         return decrypt_n(block.data(), block.data(), block.size() / block_size());
      }

◆ decrypt() [4/8]

void Botan::BlockCipher::decrypt ( uint8_t block[] ) const

inlineinherited

Decrypt a block.

Parameters

block the ciphertext block to be decrypted Must be of length block_size(). Will hold the result when the function has finished.

Definition at line 107 of file block_cipher.h.

107{ decrypt_n(block, block, 1); }

◆ decrypt() [5/8]

void Botan::BlockCipher::decrypt	(	const uint8_t	in[],
		uint8_t	out[] ) const

inlineinherited

Decrypt a block.

Parameters

in	The ciphertext block to be decypted as a byte array. Must be of length block_size().
out	The byte array designated to hold the decrypted block. Must be of length block_size().

Definition at line 91 of file block_cipher.h.

91{ decrypt_n(in, out, 1); }

References decrypt_n().

Referenced by Botan::nist_key_unwrap(), and Botan::nist_key_unwrap_padded().

◆ decrypt() [6/8]

void Botan::BlockCipher::decrypt	(	std::span< const uint8_t >	in,
		std::span< uint8_t >	out ) const

inlineinherited

Decrypt one or more blocks

Parameters

in	the input buffer (multiple of block_size())
out	the output buffer (same size as in)

Definition at line 139 of file block_cipher.h.

                                                                          {
         return decrypt_n(in.data(), out.data(), in.size() / block_size());
      }

References block_size(), and decrypt_n().

◆ decrypt() [7/8]

void Botan::BlockCipher::decrypt ( std::span< uint8_t > block ) const

inlineinherited

Decrypt one or more blocks

Parameters

block the input/output buffer (multiple of block_size())

Definition at line 121 of file block_cipher.h.

                                                 {
         return decrypt_n(block.data(), block.data(), block.size() / block_size());
      }

References block_size(), and decrypt_n().

◆ decrypt() [8/8]

void Botan::BlockCipher::decrypt ( uint8_t block[] ) const

inlineinherited

Decrypt a block.

Parameters

block the ciphertext block to be decrypted Must be of length block_size(). Will hold the result when the function has finished.

Definition at line 107 of file block_cipher.h.

107{ decrypt_n(block, block, 1); }

References decrypt_n().

◆ decrypt_n()

void Botan::SM4::decrypt_n	(	const uint8_t	in[],
		uint8_t	out[],
		size_t	blocks ) const

overridevirtual

Decrypt one or more blocks

Parameters

in	the input buffer (multiple of block_size())
out	the output buffer (same size as in)
blocks	the number of blocks to process

Implements Botan::BlockCipher.

Definition at line 237 of file sm4.cpp.

                                                                          {
   assert_key_material_set();
 
#if defined(BOTAN_HAS_SM4_ARMV8)
   if(CPUID::has(CPUID::Feature::SM4)) {
      return sm4_armv8_decrypt(in, out, blocks);
   }
#endif
 
#if defined(BOTAN_HAS_SM4_X86)
   if(CPUID::has(CPUID::Feature::SM4)) {
      return sm4_x86_decrypt(in, out, blocks);
   }
#endif
 
#if defined(BOTAN_HAS_SM4_GFNI)
   if(CPUID::has(CPUID::Feature::GFNI)) {
      return sm4_gfni_decrypt(in, out, blocks);
   }
#endif
 
   while(blocks >= 2) {
      uint32_t B0 = load_be<uint32_t>(in, 0);
      uint32_t B1 = load_be<uint32_t>(in, 1);
      uint32_t B2 = load_be<uint32_t>(in, 2);
      uint32_t B3 = load_be<uint32_t>(in, 3);
 
      uint32_t C0 = load_be<uint32_t>(in, 4);
      uint32_t C1 = load_be<uint32_t>(in, 5);
      uint32_t C2 = load_be<uint32_t>(in, 6);
      uint32_t C3 = load_be<uint32_t>(in, 7);
 
      SM4_D<7>(B0, B1, B2, B3, C0, C1, C2, C3, m_RK, SM4_T_slow);
      SM4_D<6>(B0, B1, B2, B3, C0, C1, C2, C3, m_RK, SM4_T);
      SM4_D<5>(B0, B1, B2, B3, C0, C1, C2, C3, m_RK, SM4_T);
      SM4_D<4>(B0, B1, B2, B3, C0, C1, C2, C3, m_RK, SM4_T);
      SM4_D<3>(B0, B1, B2, B3, C0, C1, C2, C3, m_RK, SM4_T);
      SM4_D<2>(B0, B1, B2, B3, C0, C1, C2, C3, m_RK, SM4_T);
      SM4_D<1>(B0, B1, B2, B3, C0, C1, C2, C3, m_RK, SM4_T);
      SM4_D<0>(B0, B1, B2, B3, C0, C1, C2, C3, m_RK, SM4_T_slow);
 
      store_be(out, B3, B2, B1, B0, C3, C2, C1, C0);
 
      in += 2 * BLOCK_SIZE;
      out += 2 * BLOCK_SIZE;
      blocks -= 2;
   }
 
   for(size_t i = 0; i != blocks; ++i) {
      uint32_t B0 = load_be<uint32_t>(in, 0);
      uint32_t B1 = load_be<uint32_t>(in, 1);
      uint32_t B2 = load_be<uint32_t>(in, 2);
      uint32_t B3 = load_be<uint32_t>(in, 3);
 
      SM4_D<7>(B0, B1, B2, B3, m_RK, SM4_T_slow);
      SM4_D<6>(B0, B1, B2, B3, m_RK, SM4_T);
      SM4_D<5>(B0, B1, B2, B3, m_RK, SM4_T);
      SM4_D<4>(B0, B1, B2, B3, m_RK, SM4_T);
      SM4_D<3>(B0, B1, B2, B3, m_RK, SM4_T);
      SM4_D<2>(B0, B1, B2, B3, m_RK, SM4_T);
      SM4_D<1>(B0, B1, B2, B3, m_RK, SM4_T);
      SM4_D<0>(B0, B1, B2, B3, m_RK, SM4_T_slow);
 
      store_be(out, B3, B2, B1, B0);
 
      in += BLOCK_SIZE;
      out += BLOCK_SIZE;
   }
}

References Botan::Block_Cipher_Fixed_Params< 16, 16 >::assert_key_material_set(), Botan::Block_Cipher_Fixed_Params< 16, 16 >::BLOCK_SIZE, Botan::CPUFeature::GFNI, Botan::CPUID::has(), Botan::load_be(), Botan::CPUFeature::SM4, and Botan::store_be().

◆ decrypt_n_xex() [1/2]

void Botan::BlockCipher::decrypt_n_xex	(	uint8_t	data[],
		const uint8_t	mask[],
		size_t	blocks ) const

inlineinherited

Definition at line 172 of file block_cipher.h.

                                                                                    {
         const size_t BS = block_size();
         for(size_t i = 0; i != blocks * BS; ++i) {
            data[i] ^= mask[i];
         }
         decrypt_n(data, data, blocks);
         for(size_t i = 0; i != blocks * BS; ++i) {
            data[i] ^= mask[i];
         }
      }

◆ decrypt_n_xex() [2/2]

void Botan::BlockCipher::decrypt_n_xex	(	uint8_t	data[],
		const uint8_t	mask[],
		size_t	blocks ) const

inlineinherited

Definition at line 172 of file block_cipher.h.

                                                                                    {
         const size_t BS = block_size();
         for(size_t i = 0; i != blocks * BS; ++i) {
            data[i] ^= mask[i];
         }
         decrypt_n(data, data, blocks);
         for(size_t i = 0; i != blocks * BS; ++i) {
            data[i] ^= mask[i];
         }
      }

References block_size(), decrypt_n(), and decrypt_n_xex().

Referenced by decrypt_n_xex().

◆ encrypt() [1/8]

void Botan::BlockCipher::encrypt	(	const uint8_t	in[],
		uint8_t	out[] ) const

inlineinherited

Encrypt a block.

Parameters

in	The plaintext block to be encrypted as a byte array. Must be of length block_size().
out	The byte array designated to hold the encrypted block. Must be of length block_size().

Definition at line 82 of file block_cipher.h.

82{ encrypt_n(in, out, 1); }

Botan::Block_Cipher_Fixed_Params< 16, 16 >::encrypt_n

virtual void encrypt_n(const uint8_t in[], uint8_t out[], size_t blocks) const=0

◆ encrypt() [2/8]

void Botan::BlockCipher::encrypt	(	std::span< const uint8_t >	in,
		std::span< uint8_t >	out ) const

inlineinherited

Encrypt one or more blocks

Parameters

in	the input buffer (multiple of block_size())
out	the output buffer (same size as in)

Definition at line 130 of file block_cipher.h.

                                                                          {
         return encrypt_n(in.data(), out.data(), in.size() / block_size());
      }

◆ encrypt() [3/8]

void Botan::BlockCipher::encrypt ( std::span< uint8_t > block ) const

inlineinherited

Encrypt one or more blocks

Parameters

block the input/output buffer (multiple of block_size())

Definition at line 113 of file block_cipher.h.

                                                 {
         return encrypt_n(block.data(), block.data(), block.size() / block_size());
      }

◆ encrypt() [4/8]

void Botan::BlockCipher::encrypt ( uint8_t block[] ) const

inlineinherited

Encrypt a block.

Parameters

block the plaintext block to be encrypted Must be of length block_size(). Will hold the result when the function has finished.

Definition at line 99 of file block_cipher.h.

99{ encrypt_n(block, block, 1); }

◆ encrypt() [5/8]

void Botan::BlockCipher::encrypt	(	const uint8_t	in[],
		uint8_t	out[] ) const

inlineinherited

Encrypt a block.

Parameters

in	The plaintext block to be encrypted as a byte array. Must be of length block_size().
out	The byte array designated to hold the encrypted block. Must be of length block_size().

Definition at line 82 of file block_cipher.h.

82{ encrypt_n(in, out, 1); }

References encrypt_n().

Referenced by Botan::nist_key_wrap(), Botan::nist_key_wrap_padded(), and Botan::CFB_Mode::shift_register().

◆ encrypt() [6/8]

void Botan::BlockCipher::encrypt	(	std::span< const uint8_t >	in,
		std::span< uint8_t >	out ) const

inlineinherited

Encrypt one or more blocks

Parameters

in	the input buffer (multiple of block_size())
out	the output buffer (same size as in)

Definition at line 130 of file block_cipher.h.

                                                                          {
         return encrypt_n(in.data(), out.data(), in.size() / block_size());
      }

References block_size(), and encrypt_n().

◆ encrypt() [7/8]

void Botan::BlockCipher::encrypt ( std::span< uint8_t > block ) const

inlineinherited

Encrypt one or more blocks

Parameters

block the input/output buffer (multiple of block_size())

Definition at line 113 of file block_cipher.h.

                                                 {
         return encrypt_n(block.data(), block.data(), block.size() / block_size());
      }

References block_size(), and encrypt_n().

◆ encrypt() [8/8]

void Botan::BlockCipher::encrypt ( uint8_t block[] ) const

inlineinherited

Encrypt a block.

Parameters

block the plaintext block to be encrypted Must be of length block_size(). Will hold the result when the function has finished.

Definition at line 99 of file block_cipher.h.

99{ encrypt_n(block, block, 1); }

References encrypt_n().

◆ encrypt_n()

void Botan::SM4::encrypt_n	(	const uint8_t	in[],
		uint8_t	out[],
		size_t	blocks ) const

overridevirtual

Encrypt one or more blocks

Parameters

in	the input buffer (multiple of block_size())
out	the output buffer (same size as in)
blocks	the number of blocks to process

Implements Botan::BlockCipher.

Definition at line 164 of file sm4.cpp.

                                                                          {
   assert_key_material_set();
 
#if defined(BOTAN_HAS_SM4_ARMV8)
   if(CPUID::has(CPUID::Feature::SM4)) {
      return sm4_armv8_encrypt(in, out, blocks);
   }
#endif
 
#if defined(BOTAN_HAS_SM4_X86)
   if(CPUID::has(CPUID::Feature::SM4)) {
      return sm4_x86_encrypt(in, out, blocks);
   }
#endif
 
#if defined(BOTAN_HAS_SM4_GFNI)
   if(CPUID::has(CPUID::Feature::GFNI)) {
      return sm4_gfni_encrypt(in, out, blocks);
   }
#endif
 
   while(blocks >= 2) {
      uint32_t B0 = load_be<uint32_t>(in, 0);
      uint32_t B1 = load_be<uint32_t>(in, 1);
      uint32_t B2 = load_be<uint32_t>(in, 2);
      uint32_t B3 = load_be<uint32_t>(in, 3);
 
      uint32_t C0 = load_be<uint32_t>(in, 4);
      uint32_t C1 = load_be<uint32_t>(in, 5);
      uint32_t C2 = load_be<uint32_t>(in, 6);
      uint32_t C3 = load_be<uint32_t>(in, 7);
 
      SM4_E<0>(B0, B1, B2, B3, C0, C1, C2, C3, m_RK, SM4_T_slow);
      SM4_E<1>(B0, B1, B2, B3, C0, C1, C2, C3, m_RK, SM4_T);
      SM4_E<2>(B0, B1, B2, B3, C0, C1, C2, C3, m_RK, SM4_T);
      SM4_E<3>(B0, B1, B2, B3, C0, C1, C2, C3, m_RK, SM4_T);
      SM4_E<4>(B0, B1, B2, B3, C0, C1, C2, C3, m_RK, SM4_T);
      SM4_E<5>(B0, B1, B2, B3, C0, C1, C2, C3, m_RK, SM4_T);
      SM4_E<6>(B0, B1, B2, B3, C0, C1, C2, C3, m_RK, SM4_T);
      SM4_E<7>(B0, B1, B2, B3, C0, C1, C2, C3, m_RK, SM4_T_slow);
 
      store_be(out, B3, B2, B1, B0, C3, C2, C1, C0);
 
      in += 2 * BLOCK_SIZE;
      out += 2 * BLOCK_SIZE;
      blocks -= 2;
   }
 
   for(size_t i = 0; i != blocks; ++i) {
      uint32_t B0 = load_be<uint32_t>(in, 0);
      uint32_t B1 = load_be<uint32_t>(in, 1);
      uint32_t B2 = load_be<uint32_t>(in, 2);
      uint32_t B3 = load_be<uint32_t>(in, 3);
 
      SM4_E<0>(B0, B1, B2, B3, m_RK, SM4_T_slow);
      SM4_E<1>(B0, B1, B2, B3, m_RK, SM4_T);
      SM4_E<2>(B0, B1, B2, B3, m_RK, SM4_T);
      SM4_E<3>(B0, B1, B2, B3, m_RK, SM4_T);
      SM4_E<4>(B0, B1, B2, B3, m_RK, SM4_T);
      SM4_E<5>(B0, B1, B2, B3, m_RK, SM4_T);
      SM4_E<6>(B0, B1, B2, B3, m_RK, SM4_T);
      SM4_E<7>(B0, B1, B2, B3, m_RK, SM4_T_slow);
 
      store_be(out, B3, B2, B1, B0);
 
      in += BLOCK_SIZE;
      out += BLOCK_SIZE;
   }
}

References Botan::Block_Cipher_Fixed_Params< 16, 16 >::assert_key_material_set(), Botan::Block_Cipher_Fixed_Params< 16, 16 >::BLOCK_SIZE, Botan::CPUFeature::GFNI, Botan::CPUID::has(), Botan::load_be(), Botan::CPUFeature::SM4, and Botan::store_be().

◆ encrypt_n_xex() [1/2]

void Botan::BlockCipher::encrypt_n_xex	(	uint8_t	data[],
		const uint8_t	mask[],
		size_t	blocks ) const

inlineinherited

Definition at line 160 of file block_cipher.h.

                                                                                    {
         const size_t BS = block_size();
         for(size_t i = 0; i != blocks * BS; ++i) {
            data[i] ^= mask[i];
         }
         encrypt_n(data, data, blocks);
         for(size_t i = 0; i != blocks * BS; ++i) {
            data[i] ^= mask[i];
         }
      }

◆ encrypt_n_xex() [2/2]

void Botan::BlockCipher::encrypt_n_xex	(	uint8_t	data[],
		const uint8_t	mask[],
		size_t	blocks ) const

inlineinherited

Definition at line 160 of file block_cipher.h.

                                                                                    {
         const size_t BS = block_size();
         for(size_t i = 0; i != blocks * BS; ++i) {
            data[i] ^= mask[i];
         }
         encrypt_n(data, data, blocks);
         for(size_t i = 0; i != blocks * BS; ++i) {
            data[i] ^= mask[i];
         }
      }

References block_size(), encrypt_n(), and encrypt_n_xex().

Referenced by encrypt_n_xex().

◆ has_keying_material()

bool Botan::SM4::has_keying_material ( ) const

overridevirtual

Returns: true if a key has been set on this object

Implements Botan::SymmetricAlgorithm.

Definition at line 307 of file sm4.cpp.

                                    {
   return !m_RK.empty();
}

◆ key_spec()

Key_Length_Specification Botan::Block_Cipher_Fixed_Params< BS, KMIN, 0, 1, BlockCipher >::key_spec ( ) const

inlinefinalvirtualinherited

Returns: object describing limits on key size

Implements Botan::SymmetricAlgorithm.

Definition at line 216 of file block_cipher.h.

216{ return Key_Length_Specification(KMIN, KMAX, KMOD); }

◆ maximum_keylength() [1/2]

size_t Botan::SymmetricAlgorithm::maximum_keylength ( ) const

inlineinherited

Returns: maximum allowed key length

Definition at line 102 of file sym_algo.h.

102{ return key_spec().maximum_keylength(); }

Botan::Block_Cipher_Fixed_Params< 16, 16 >::key_spec

Key_Length_Specification key_spec() const final

Definition block_cipher.h:216

Botan::Key_Length_Specification::maximum_keylength

size_t maximum_keylength() const

Definition sym_algo.h:56

◆ maximum_keylength() [2/2]

size_t Botan::SymmetricAlgorithm::maximum_keylength ( ) const

inlineinherited

Returns: maximum allowed key length

Definition at line 102 of file sym_algo.h.

102{ return key_spec().maximum_keylength(); }

Botan::SymmetricAlgorithm::key_spec

virtual Key_Length_Specification key_spec() const =0

References key_spec().

◆ minimum_keylength() [1/2]

size_t Botan::SymmetricAlgorithm::minimum_keylength ( ) const

inlineinherited

Returns: minimum allowed key length

Definition at line 107 of file sym_algo.h.

107{ return key_spec().minimum_keylength(); }

Botan::Key_Length_Specification::minimum_keylength

size_t minimum_keylength() const

Definition sym_algo.h:51

◆ minimum_keylength() [2/2]

size_t Botan::SymmetricAlgorithm::minimum_keylength ( ) const

inlineinherited

Returns: minimum allowed key length

Definition at line 107 of file sym_algo.h.

107{ return key_spec().minimum_keylength(); }

References key_spec().

◆ name()

std::string Botan::SM4::name ( ) const

inlineoverridevirtual

Returns: the algorithm name

Implements Botan::SymmetricAlgorithm.

Definition at line 26 of file sm4.h.

26{ return "SM4"; }

◆ new_object()

std::unique_ptr< BlockCipher > Botan::SM4::new_object ( ) const

inlineoverridevirtual

Returns: new object representing the same algorithm as *this

Implements Botan::BlockCipher.

Definition at line 28 of file sm4.h.

28{ return std::make_unique<SM4>(); }

◆ parallel_bytes() [1/2]

size_t Botan::BlockCipher::parallel_bytes ( ) const

inlineinherited

Returns: prefererred parallelism of this cipher in bytes

Definition at line 67 of file block_cipher.h.

67{ return parallelism() * block_size() * BlockCipher::ParallelismMult; }

Botan::Block_Cipher_Fixed_Params< 16, 16 >::parallelism

virtual size_t parallelism() const

Definition block_cipher.h:62

◆ parallel_bytes() [2/2]

size_t Botan::BlockCipher::parallel_bytes ( ) const

inlineinherited

Returns: prefererred parallelism of this cipher in bytes

Definition at line 67 of file block_cipher.h.

67{ return parallelism() * block_size() * BlockCipher::ParallelismMult; }

Botan::BlockCipher::ParallelismMult

static constexpr size_t ParallelismMult

Definition block_cipher.h:52

References block_size(), parallelism(), and ParallelismMult.

Referenced by Botan::CBC_Mode::ideal_granularity().

◆ parallelism()

size_t Botan::SM4::parallelism ( ) const

overridevirtual

Returns: native parallelism of this cipher in blocks

Reimplemented from Botan::BlockCipher.

Definition at line 341 of file sm4.cpp.

                              {
#if defined(BOTAN_HAS_SM4_ARMV8)
   if(CPUID::has(CPUID::Feature::SM4)) {
      return 4;
   }
#endif
 
#if defined(BOTAN_HAS_SM4_GFNI)
   if(CPUID::has(CPUID::Feature::GFNI)) {
      return 8;
   }
#endif
 
   return 1;
}

References Botan::CPUFeature::GFNI, Botan::CPUID::has(), and Botan::CPUFeature::SM4.

◆ provider()

std::string Botan::SM4::provider ( ) const

overridevirtual

Returns: provider information about this implementation. Default is "base", might also return "sse2", "avx2", "openssl", or some other arbitrary string.

Reimplemented from Botan::BlockCipher.

Definition at line 357 of file sm4.cpp.

                              {
#if defined(BOTAN_HAS_SM4_ARMV8)
   if(auto feat = CPUID::check(CPUID::Feature::SM4)) {
      return *feat;
   }
#endif
 
#if defined(BOTAN_HAS_SM4_GFNI)
   if(auto feat = CPUID::check(CPUID::Feature::GFNI)) {
      return *feat;
   }
#endif
 
   return "base";
}

References Botan::CPUID::check(), Botan::CPUFeature::GFNI, and Botan::CPUFeature::SM4.

◆ providers() [1/2]

std::vector< std::string > Botan::BlockCipher::providers ( std::string_view algo_spec )

staticinherited

Returns: list of available providers for this algorithm, empty if not available

Parameters

algo_spec algorithm name

Definition at line 44 of file block_cipher.cpp.

                                                               {
   return probe_providers_of<BlockCipher>(algo, {"base", "commoncrypto"});
}

◆ providers() [2/2]

std::vector< std::string > Botan::BlockCipher::providers ( std::string_view algo_spec )

staticinherited

Returns: list of available providers for this algorithm, empty if not available

Parameters

algo_spec algorithm name

Definition at line 274 of file block_cipher.cpp.

                                                               {
   return probe_providers_of<BlockCipher>(algo, {"base", "commoncrypto"});
}

References Botan::probe_providers_of().

◆ set_key() [1/6]

void Botan::SymmetricAlgorithm::set_key ( const OctetString & key )

inherited

Set the symmetric key of this object.

Parameters

key	the SymmetricKey to be set.

Definition at line 120 of file sym_algo.cpp.

                                                       {
   set_key(std::span{key.begin(), key.length()});
}

◆ set_key() [2/6]

void Botan::SymmetricAlgorithm::set_key	(	const uint8_t	key[],
		size_t	length )

inlineinherited

Set the symmetric key of this object.

Parameters

key	the to be set as a byte array.
length	in bytes of key param

Definition at line 133 of file sym_algo.h.

133{ set_key(std::span{key, length}); }

◆ set_key() [3/6]

void Botan::SymmetricAlgorithm::set_key ( std::span< const uint8_t > key )

inherited

Set the symmetric key of this object.

Parameters

key	the contiguous byte range to be set.

Definition at line 126 of file sym_algo.cpp.

                                                           {
   if(!valid_keylength(key.size())) {
      throw Invalid_Key_Length(name(), key.size());
   }
   key_schedule(key);
}

◆ set_key() [4/6]

void Botan::SymmetricAlgorithm::set_key ( const OctetString & key )

inherited

Set the symmetric key of this object.

Parameters

key	the SymmetricKey to be set.

Definition at line 14 of file sym_algo.cpp.

                                                       {
   set_key(std::span{key.begin(), key.length()});
}

References Botan::OctetString::begin(), Botan::OctetString::length(), and set_key().

Referenced by Botan::create_aes_row_generator(), Botan::Sodium::crypto_stream_salsa20(), Botan::Sodium::crypto_stream_salsa20_xor_ic(), Botan::Sodium::crypto_stream_xsalsa20(), Botan::Sodium::crypto_stream_xsalsa20_xor_ic(), Botan::FPE::fe1_decrypt(), Botan::FPE::fe1_encrypt(), Botan::Sphincs_Hash_Functions_Sha2::PRF_msg(), Botan::Sodium::randombytes_buf_deterministic(), Botan::TLS::TLS_NULL_HMAC_AEAD_Mode::reset(), and set_key().

◆ set_key() [5/6]

void Botan::SymmetricAlgorithm::set_key	(	const uint8_t	key[],
		size_t	length )

inlineinherited

Set the symmetric key of this object.

Parameters

key	the to be set as a byte array.
length	in bytes of key param

Definition at line 133 of file sym_algo.h.

133{ set_key(std::span{key, length}); }

References set_key().

Referenced by set_key().

◆ set_key() [6/6]

void Botan::SymmetricAlgorithm::set_key ( std::span< const uint8_t > key )

inherited

Set the symmetric key of this object.

Parameters

key	the contiguous byte range to be set.

Definition at line 22 of file sym_algo.cpp.

                                                           {
   if(!valid_keylength(key.size())) {
      throw Invalid_Key_Length(name(), key.size());
   }
   key_schedule(key);
}

References name(), and valid_keylength().

◆ valid_keylength() [1/2]

bool Botan::SymmetricAlgorithm::valid_keylength ( size_t length ) const

inlineinherited

Check whether a given key length is valid for this algorithm.

Parameters

length the key length to be checked.

Returns: true if the key length is valid.

Definition at line 114 of file sym_algo.h.

114{ return key_spec().valid_keylength(length); }

Botan::Key_Length_Specification::valid_keylength

bool valid_keylength(size_t length) const

Definition sym_algo.h:44

◆ valid_keylength() [2/2]

bool Botan::SymmetricAlgorithm::valid_keylength ( size_t length ) const

inlineinherited

Check whether a given key length is valid for this algorithm.

Parameters

length the key length to be checked.

Returns: true if the key length is valid.

Definition at line 114 of file sym_algo.h.

114{ return key_spec().valid_keylength(length); }

References key_spec().

Referenced by set_key().

Member Data Documentation

◆ ParallelismMult [1/2]

size_t Botan::BlockCipher::ParallelismMult

staticconstexprinherited

Multiplier on a block cipher's native parallelism

Usually notable performance gains come from further loop blocking, at least for 2 or 4x

Definition at line 52 of file block_cipher.h.

◆ ParallelismMult [2/2]

size_t Botan::BlockCipher::ParallelismMult = 4

staticconstexprinherited

Multiplier on a block cipher's native parallelism

Usually notable performance gains come from further loop blocking, at least for 2 or 4x

Definition at line 52 of file block_cipher.h.

Referenced by Botan::GCM_Mode::ideal_granularity(), and parallel_bytes().

The documentation for this class was generated from the following files:

src/lib/block/sm4/sm4.h
src/lib/block/sm4/sm4.cpp
src/lib/block/sm4/sm4_armv8/sm4_armv8.cpp

Public Types

Public Member Functions

Static Public Member Functions

Static Public Attributes

Protected Member Functions

Detailed Description

Member Enumeration Documentation

◆ anonymous enum

Member Function Documentation

◆ assert_key_material_set() [1/4]

◆ assert_key_material_set() [2/4]

◆ assert_key_material_set() [3/4]

◆ assert_key_material_set() [4/4]

◆ block_size()

◆ clear()

◆ clone() [1/2]

◆ clone() [2/2]

◆ create() [1/2]

◆ create() [2/2]

◆ create_or_throw() [1/2]

◆ create_or_throw() [2/2]

◆ decrypt() [1/8]

◆ decrypt() [2/8]

◆ decrypt() [3/8]

◆ decrypt() [4/8]

◆ decrypt() [5/8]

◆ decrypt() [6/8]

◆ decrypt() [7/8]

◆ decrypt() [8/8]

◆ decrypt_n()

◆ decrypt_n_xex() [1/2]

◆ decrypt_n_xex() [2/2]

◆ encrypt() [1/8]

◆ encrypt() [2/8]

◆ encrypt() [3/8]

◆ encrypt() [4/8]

◆ encrypt() [5/8]

◆ encrypt() [6/8]

◆ encrypt() [7/8]

◆ encrypt() [8/8]

◆ encrypt_n()

◆ encrypt_n_xex() [1/2]

◆ encrypt_n_xex() [2/2]

◆ has_keying_material()

◆ key_spec()

◆ maximum_keylength() [1/2]

◆ maximum_keylength() [2/2]

◆ minimum_keylength() [1/2]

◆ minimum_keylength() [2/2]

◆ name()

◆ new_object()

◆ parallel_bytes() [1/2]

◆ parallel_bytes() [2/2]

◆ parallelism()

◆ provider()

◆ providers() [1/2]

◆ providers() [2/2]

◆ set_key() [1/6]

◆ set_key() [2/6]

◆ set_key() [3/6]

◆ set_key() [4/6]

◆ set_key() [5/6]

◆ set_key() [6/6]

◆ valid_keylength() [1/2]

◆ valid_keylength() [2/2]

Member Data Documentation

◆ ParallelismMult [1/2]

◆ ParallelismMult [2/2]