shadps4-emu/ext-cryptopp
1
0
Fork 0
mirror of https://github.com/shadps4-emu/ext-cryptopp.git synced 2024-11-23 18:09:48 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
9dffe71da7
ext-cryptopp/strciphr.cpp

343 lines
11 KiB
C++
Raw Normal View History

Change file preamble to include "originally written by Wei Dai" We have made a fair number of changes, and we don't want WD to receive credit for issues he was not part of
2017-01-27 12:05:45 +00:00
// strciphr.cpp - originally written and placed in the public domain by Wei Dai
CRYPTOPP 5.6.3 RC6 checkin
2015-11-05 06:59:46 +00:00
Update comments in strcpher.cpp
2021-11-29 15:41:49 +00:00
// TODO: Figure out what is happening in ProcessData. The issue surfaced
// for CFB_CipherTemplate<BASE>::ProcessData when we cut-in Cryptogams
// AES ARMv7 asm. Then again in AdditiveCipherTemplate<S>::ProcessData
// for CTR mode with HIGHT, which is a 64-bit block cipher. In both cases,
// inString == outString leads to incorrect results. We think it relates
// to aliasing violations because inString == outString.
Fix CTR mode when using FileSource (GH #683, GH #1010) We think this is another instance problem that surfaced under GH #683 when inString==outString. It violates aliasing rules and the compiler begins removing code. The ultimate workaround was to add a member variable m_tempOutString as scratch space when inString==outString. We did not loose much in the way of perforamce for some reason. It looks like AES/CTR lost about 0.03-0.05 cpb. When combined with the updated xorbuf from GH #1020, the net result was a speedup of 0.1-0.6 cpb. In fact, some ciphers like RC6, gained almost 5 cpb.
2021-03-17 16:17:27 +00:00
//
Update comments in strcpher.cpp
2021-11-29 15:41:49 +00:00
// Also see https://github.com/weidai11/cryptopp/issues/683,
// https://github.com/weidai11/cryptopp/issues/1010 and
// https://github.com/weidai11/cryptopp/issues/1088.
Fix CTR mode when using FileSource (GH #683, GH #1010) We think this is another instance problem that surfaced under GH #683 when inString==outString. It violates aliasing rules and the compiler begins removing code. The ultimate workaround was to add a member variable m_tempOutString as scratch space when inString==outString. We did not loose much in the way of perforamce for some reason. It looks like AES/CTR lost about 0.03-0.05 cpb. When combined with the updated xorbuf from GH #1020, the net result was a speedup of 0.1-0.6 cpb. In fact, some ciphers like RC6, gained almost 5 cpb.
2021-03-17 16:17:27 +00:00
CRYPTOPP 5.6.3 RC6 checkin
2015-11-05 06:59:46 +00:00
#include "pch.h"
#ifndef CRYPTOPP_IMPORTS
#include "strciphr.h"
Squash MS LNK4221 and libtool warnings
2018-07-06 05:22:38 +00:00
// Squash MS LNK4221 and libtool warnings
#ifndef CRYPTOPP_MANUALLY_INSTANTIATE_TEMPLATES
extern const char STRCIPHER_FNAME[] = __FILE__;
#endif
CRYPTOPP 5.6.3 RC6 checkin
2015-11-05 06:59:46 +00:00
NAMESPACE_BEGIN(CryptoPP)
template <class S>
void AdditiveCipherTemplate<S>::UncheckedSetKey(const byte *key, unsigned int length, const NameValuePairs &params)
{
PolicyInterface &policy = this->AccessPolicy();
policy.CipherSetKey(params, key, length);
m_leftOver = 0;
unsigned int bufferByteSize = policy.CanOperateKeystream() ? GetBufferByteSize(policy) : RoundUpToMultipleOf(1024U, GetBufferByteSize(policy));
m_buffer.New(bufferByteSize);
if (this->IsResynchronizable())
{
size_t ivLength;
const byte *iv = this->GetIVAndThrowIfInvalid(params, ivLength);
policy.CipherResynchronize(m_buffer, iv, ivLength);
}
}
template <class S>
void AdditiveCipherTemplate<S>::GenerateBlock(byte *outString, size_t length)
{
if (m_leftOver > 0)
{
Add PtrAdd and PtrSub helper functions This helps contain UB on pointer subtraction by ensuring a ptrdiff_t is used. The code is a little uglier but it is also more portable.
2018-07-10 09:00:02 +00:00
const size_t len = STDMIN(m_leftOver, length);
Cleanup CFB mode for Cryptogams AES
2020-04-13 06:47:38 +00:00
std::memcpy(outString, PtrSub(KeystreamBufferEnd(), m_leftOver), len);
Add PtrAdd and PtrSub helper functions This helps contain UB on pointer subtraction by ensuring a ptrdiff_t is used. The code is a little uglier but it is also more portable.
2018-07-10 09:00:02 +00:00
length -= len; m_leftOver -= len;
outString = PtrAdd(outString, len);
if (!length) {return;}
CRYPTOPP 5.6.3 RC6 checkin
2015-11-05 06:59:46 +00:00
}
PolicyInterface &policy = this->AccessPolicy();
Revert AltiVec and Power8 commits The strategy of "cleanup under-aligned buffers" is not scaling well. Corner cases are still turing up. The library has some corner-case breaks, like old 32-bit Intels. And it still has not solved the AltiVec and Power8 alignment problems. For now we are backing out the changes and investigating other strategies
2017-09-05 20:28:00 +00:00
unsigned int bytesPerIteration = policy.GetBytesPerIteration();
CRYPTOPP 5.6.3 RC6 checkin
2015-11-05 06:59:46 +00:00
if (length >= bytesPerIteration)
{
Add PtrAdd and PtrSub helper functions This helps contain UB on pointer subtraction by ensuring a ptrdiff_t is used. The code is a little uglier but it is also more portable.
2018-07-10 09:00:02 +00:00
const size_t iterations = length / bytesPerIteration;
Revert AltiVec and Power8 commits The strategy of "cleanup under-aligned buffers" is not scaling well. Corner cases are still turing up. The library has some corner-case breaks, like old 32-bit Intels. And it still has not solved the AltiVec and Power8 alignment problems. For now we are backing out the changes and investigating other strategies
2017-09-05 20:28:00 +00:00
policy.WriteKeystream(outString, iterations);
CRYPTOPP 5.6.3 RC6 checkin
2015-11-05 06:59:46 +00:00
length -= iterations * bytesPerIteration;
Add PtrAdd and PtrSub helper functions This helps contain UB on pointer subtraction by ensuring a ptrdiff_t is used. The code is a little uglier but it is also more portable.
2018-07-10 09:00:02 +00:00
outString = PtrAdd(outString, iterations * bytesPerIteration);
CRYPTOPP 5.6.3 RC6 checkin
2015-11-05 06:59:46 +00:00
}
if (length > 0)
{
size_t bufferByteSize = RoundUpToMultipleOf(length, bytesPerIteration);
size_t bufferIterations = bufferByteSize / bytesPerIteration;
Increase use of ptrdiff_t when performing pointer math
2018-07-12 13:48:46 +00:00
policy.WriteKeystream(PtrSub(KeystreamBufferEnd(), bufferByteSize), bufferIterations);
Cleanup CFB mode for Cryptogams AES
2020-04-13 06:47:38 +00:00
std::memcpy(outString, PtrSub(KeystreamBufferEnd(), bufferByteSize), length);
CRYPTOPP 5.6.3 RC6 checkin
2015-11-05 06:59:46 +00:00
m_leftOver = bufferByteSize - length;
}
}
Update comments in strcpher.cpp
2021-11-29 15:41:49 +00:00
// TODO: Figure out what is happening in ProcessData. The issue surfaced
// for CFB_CipherTemplate<BASE>::ProcessData when we cut-in Cryptogams
// AES ARMv7 asm. Then again in AdditiveCipherTemplate<S>::ProcessData
// for CTR mode with HIGHT, which is a 64-bit block cipher. In both cases,
// inString == outString leads to incorrect results. We think it relates
// to aliasing violations because inString == outString.
//
// Also see https://github.com/weidai11/cryptopp/issues/683,
// https://github.com/weidai11/cryptopp/issues/1010 and
// https://github.com/weidai11/cryptopp/issues/1088.
CRYPTOPP 5.6.3 RC6 checkin
2015-11-05 06:59:46 +00:00
template <class S>
void AdditiveCipherTemplate<S>::ProcessData(byte *outString, const byte *inString, size_t length)
{
Avoid memcpy in AdditiveCipherTemplate<S>::ProcessData (GH #683, GH #1010, PR #1019) We found we can avoid the memcpy in the previous workaround by using a volatile pointer. The pointer appears to tame the optimizer so the compiler does not short-circuit some calls when outString == inString.
2021-03-17 02:01:24 +00:00
CRYPTOPP_ASSERT(outString); CRYPTOPP_ASSERT(inString);
CRYPTOPP_ASSERT(length % this->MandatoryBlockSize() == 0);
Add ASSERT in ProcessData to warn of non-distinct buffers (GH #1088)
2021-11-29 00:57:28 +00:00
// If this assert fires, then outString == inString. You could experience a
// performance hit. Also see https://github.com/weidai11/cryptopp/issues/1088'
CRYPTOPP_ASSERT(outString != inString);
Avoid memcpy in AdditiveCipherTemplate<S>::ProcessData (GH #683, GH #1010, PR #1019) We found we can avoid the memcpy in the previous workaround by using a volatile pointer. The pointer appears to tame the optimizer so the compiler does not short-circuit some calls when outString == inString.
2021-03-17 02:01:24 +00:00
PolicyInterface &policy = this->AccessPolicy();
unsigned int bytesPerIteration = policy.GetBytesPerIteration();
Fix CTR mode when using FileSource (GH #683, GH #1010) We think this is another instance problem that surfaced under GH #683 when inString==outString. It violates aliasing rules and the compiler begins removing code. The ultimate workaround was to add a member variable m_tempOutString as scratch space when inString==outString. We did not loose much in the way of perforamce for some reason. It looks like AES/CTR lost about 0.03-0.05 cpb. When combined with the updated xorbuf from GH #1020, the net result was a speedup of 0.1-0.6 cpb. In fact, some ciphers like RC6, gained almost 5 cpb.
2021-03-17 16:17:27 +00:00
byte* savedOutString = outString;
size_t savedLength = length;
bool copyOut = false;
if (inString == outString)
{
Update AdditiveCipherTemplate<S>::ProcessData (GH #1010)
2021-04-10 03:37:29 +00:00
// No need to copy inString to outString.
// Just allocate the space.
m_tempOutString.New(length);
Fix CTR mode when using FileSource (GH #683, GH #1010) We think this is another instance problem that surfaced under GH #683 when inString==outString. It violates aliasing rules and the compiler begins removing code. The ultimate workaround was to add a member variable m_tempOutString as scratch space when inString==outString. We did not loose much in the way of perforamce for some reason. It looks like AES/CTR lost about 0.03-0.05 cpb. When combined with the updated xorbuf from GH #1020, the net result was a speedup of 0.1-0.6 cpb. In fact, some ciphers like RC6, gained almost 5 cpb.
2021-03-17 16:17:27 +00:00
m_tempOutString.SetMark(0);
outString = m_tempOutString.BytePtr();
copyOut = true;
}
CRYPTOPP 5.6.3 RC6 checkin
2015-11-05 06:59:46 +00:00
if (m_leftOver > 0)
{
Add PtrAdd and PtrSub helper functions This helps contain UB on pointer subtraction by ensuring a ptrdiff_t is used. The code is a little uglier but it is also more portable.
2018-07-10 09:00:02 +00:00
const size_t len = STDMIN(m_leftOver, length);
Cleanup CFB mode for Cryptogams AES
2020-04-13 06:47:38 +00:00
xorbuf(outString, inString, PtrSub(KeystreamBufferEnd(), m_leftOver), len);
CRYPTOPP 5.6.3 RC6 checkin
2015-11-05 06:59:46 +00:00
Add PtrAdd and PtrSub helper functions This helps contain UB on pointer subtraction by ensuring a ptrdiff_t is used. The code is a little uglier but it is also more portable.
2018-07-10 09:00:02 +00:00
inString = PtrAdd(inString, len);
outString = PtrAdd(outString, len);
Avoid memcpy in AdditiveCipherTemplate<S>::ProcessData (GH #683, GH #1010, PR #1019) We found we can avoid the memcpy in the previous workaround by using a volatile pointer. The pointer appears to tame the optimizer so the compiler does not short-circuit some calls when outString == inString.
2021-03-17 02:01:24 +00:00
length -= len; m_leftOver -= len;
CRYPTOPP 5.6.3 RC6 checkin
2015-11-05 06:59:46 +00:00
}
Fix CTR mode when using FileSource (GH #683, GH #1010) We think this is another instance problem that surfaced under GH #683 when inString==outString. It violates aliasing rules and the compiler begins removing code. The ultimate workaround was to add a member variable m_tempOutString as scratch space when inString==outString. We did not loose much in the way of perforamce for some reason. It looks like AES/CTR lost about 0.03-0.05 cpb. When combined with the updated xorbuf from GH #1020, the net result was a speedup of 0.1-0.6 cpb. In fact, some ciphers like RC6, gained almost 5 cpb.
2021-03-17 16:17:27 +00:00
if (!length) {
if (copyOut)
Update tempOutString buffer length calculation
2021-03-18 03:19:46 +00:00
std::memcpy(savedOutString, m_tempOutString.BytePtr(), savedLength);
Fix CTR mode when using FileSource (GH #683, GH #1010) We think this is another instance problem that surfaced under GH #683 when inString==outString. It violates aliasing rules and the compiler begins removing code. The ultimate workaround was to add a member variable m_tempOutString as scratch space when inString==outString. We did not loose much in the way of perforamce for some reason. It looks like AES/CTR lost about 0.03-0.05 cpb. When combined with the updated xorbuf from GH #1020, the net result was a speedup of 0.1-0.6 cpb. In fact, some ciphers like RC6, gained almost 5 cpb.
2021-03-17 16:17:27 +00:00
return;
}
Avoid memcpy in AdditiveCipherTemplate<S>::ProcessData (GH #683, GH #1010, PR #1019) We found we can avoid the memcpy in the previous workaround by using a volatile pointer. The pointer appears to tame the optimizer so the compiler does not short-circuit some calls when outString == inString.
2021-03-17 02:01:24 +00:00
const unsigned int alignment = policy.GetAlignment();
const bool inAligned = IsAlignedOn(inString, alignment);
const bool outAligned = IsAlignedOn(outString, alignment);
Clear Clang warnings
2021-03-21 12:06:10 +00:00
CRYPTOPP_UNUSED(inAligned); CRYPTOPP_UNUSED(outAligned);
CRYPTOPP 5.6.3 RC6 checkin
2015-11-05 06:59:46 +00:00
if (policy.CanOperateKeystream() && length >= bytesPerIteration)
{
Add PtrAdd and PtrSub helper functions This helps contain UB on pointer subtraction by ensuring a ptrdiff_t is used. The code is a little uglier but it is also more portable.
2018-07-10 09:00:02 +00:00
const size_t iterations = length / bytesPerIteration;
Avoid memcpy in AdditiveCipherTemplate<S>::ProcessData (GH #683, GH #1010, PR #1019) We found we can avoid the memcpy in the previous workaround by using a volatile pointer. The pointer appears to tame the optimizer so the compiler does not short-circuit some calls when outString == inString.
2021-03-17 02:01:24 +00:00
KeystreamOperationFlags flags = static_cast<KeystreamOperationFlags>(
(inAligned ? EnumToInt(INPUT_ALIGNED) : 0) | (outAligned ? EnumToInt(OUTPUT_ALIGNED) : 0));
KeystreamOperation operation = KeystreamOperation(flags);
CRYPTOPP 5.6.3 RC6 checkin
2015-11-05 06:59:46 +00:00
policy.OperateKeystream(operation, outString, inString, iterations);
Add PtrAdd and PtrSub helper functions This helps contain UB on pointer subtraction by ensuring a ptrdiff_t is used. The code is a little uglier but it is also more portable.
2018-07-10 09:00:02 +00:00
inString = PtrAdd(inString, iterations * bytesPerIteration);
outString = PtrAdd(outString, iterations * bytesPerIteration);
CRYPTOPP 5.6.3 RC6 checkin
2015-11-05 06:59:46 +00:00
length -= iterations * bytesPerIteration;
}
size_t bufferByteSize = m_buffer.size();
size_t bufferIterations = bufferByteSize / bytesPerIteration;
while (length >= bufferByteSize)
{
policy.WriteKeystream(m_buffer, bufferIterations);
xorbuf(outString, inString, KeystreamBufferBegin(), bufferByteSize);
Add PtrAdd and PtrSub helper functions This helps contain UB on pointer subtraction by ensuring a ptrdiff_t is used. The code is a little uglier but it is also more portable.
2018-07-10 09:00:02 +00:00
inString = PtrAdd(inString, bufferByteSize);
outString = PtrAdd(outString, bufferByteSize);
Avoid memcpy in AdditiveCipherTemplate<S>::ProcessData (GH #683, GH #1010, PR #1019) We found we can avoid the memcpy in the previous workaround by using a volatile pointer. The pointer appears to tame the optimizer so the compiler does not short-circuit some calls when outString == inString.
2021-03-17 02:01:24 +00:00
length -= bufferByteSize;
CRYPTOPP 5.6.3 RC6 checkin
2015-11-05 06:59:46 +00:00
}
if (length > 0)
{
bufferByteSize = RoundUpToMultipleOf(length, bytesPerIteration);
bufferIterations = bufferByteSize / bytesPerIteration;
Increase use of ptrdiff_t when performing pointer math
2018-07-12 13:48:46 +00:00
policy.WriteKeystream(PtrSub(KeystreamBufferEnd(), bufferByteSize), bufferIterations);
xorbuf(outString, inString, PtrSub(KeystreamBufferEnd(), bufferByteSize), length);
Avoid memcpy in AdditiveCipherTemplate<S>::ProcessData (GH #683, GH #1010, PR #1019) We found we can avoid the memcpy in the previous workaround by using a volatile pointer. The pointer appears to tame the optimizer so the compiler does not short-circuit some calls when outString == inString.
2021-03-17 02:01:24 +00:00
CRYPTOPP 5.6.3 RC6 checkin
2015-11-05 06:59:46 +00:00
m_leftOver = bufferByteSize - length;
}
Fix CTR mode when using FileSource (GH #683, GH #1010) We think this is another instance problem that surfaced under GH #683 when inString==outString. It violates aliasing rules and the compiler begins removing code. The ultimate workaround was to add a member variable m_tempOutString as scratch space when inString==outString. We did not loose much in the way of perforamce for some reason. It looks like AES/CTR lost about 0.03-0.05 cpb. When combined with the updated xorbuf from GH #1020, the net result was a speedup of 0.1-0.6 cpb. In fact, some ciphers like RC6, gained almost 5 cpb.
2021-03-17 16:17:27 +00:00
if (copyOut)
std::memcpy(savedOutString, m_tempOutString.BytePtr(), savedLength);
CRYPTOPP 5.6.3 RC6 checkin
2015-11-05 06:59:46 +00:00
}
template <class S>
void AdditiveCipherTemplate<S>::Resynchronize(const byte *iv, int length)
{
PolicyInterface &policy = this->AccessPolicy();
m_leftOver = 0;
m_buffer.New(GetBufferByteSize(policy));
policy.CipherResynchronize(m_buffer, iv, this->ThrowIfInvalidIVLength(length));
}
template <class BASE>
void AdditiveCipherTemplate<BASE>::Seek(lword position)
{
PolicyInterface &policy = this->AccessPolicy();
Avoid memcpy in AdditiveCipherTemplate<S>::ProcessData (GH #683, GH #1010, PR #1019) We found we can avoid the memcpy in the previous workaround by using a volatile pointer. The pointer appears to tame the optimizer so the compiler does not short-circuit some calls when outString == inString.
2021-03-17 02:01:24 +00:00
unsigned int bytesPerIteration = policy.GetBytesPerIteration();
CRYPTOPP 5.6.3 RC6 checkin
2015-11-05 06:59:46 +00:00
policy.SeekToIteration(position / bytesPerIteration);
position %= bytesPerIteration;
if (position > 0)
{
Increase use of ptrdiff_t when performing pointer math
2018-07-12 13:48:46 +00:00
policy.WriteKeystream(PtrSub(KeystreamBufferEnd(), bytesPerIteration), 1);
Avoid memcpy in AdditiveCipherTemplate<S>::ProcessData (GH #683, GH #1010, PR #1019) We found we can avoid the memcpy in the previous workaround by using a volatile pointer. The pointer appears to tame the optimizer so the compiler does not short-circuit some calls when outString == inString.
2021-03-17 02:01:24 +00:00
m_leftOver = bytesPerIteration - static_cast<unsigned int>(position);
CRYPTOPP 5.6.3 RC6 checkin
2015-11-05 06:59:46 +00:00
}
else
m_leftOver = 0;
}
template <class BASE>
void CFB_CipherTemplate<BASE>::UncheckedSetKey(const byte *key, unsigned int length, const NameValuePairs &params)
{
PolicyInterface &policy = this->AccessPolicy();
policy.CipherSetKey(params, key, length);
if (this->IsResynchronizable())
{
size_t ivLength;
const byte *iv = this->GetIVAndThrowIfInvalid(params, ivLength);
policy.CipherResynchronize(iv, ivLength);
}
m_leftOver = policy.GetBytesPerIteration();
}
template <class BASE>
void CFB_CipherTemplate<BASE>::Resynchronize(const byte *iv, int length)
{
PolicyInterface &policy = this->AccessPolicy();
policy.CipherResynchronize(iv, this->ThrowIfInvalidIVLength(length));
m_leftOver = policy.GetBytesPerIteration();
}
Update comments in strcpher.cpp
2021-11-29 15:41:49 +00:00
// TODO: Figure out what is happening in ProcessData. The issue surfaced
// for CFB_CipherTemplate<BASE>::ProcessData when we cut-in Cryptogams
// AES ARMv7 asm. Then again in AdditiveCipherTemplate<S>::ProcessData
// for CTR mode with HIGHT, which is a 64-bit block cipher. In both cases,
// inString == outString leads to incorrect results. We think it relates
// to aliasing violations because inString == outString.
//
// Also see https://github.com/weidai11/cryptopp/issues/683,
// https://github.com/weidai11/cryptopp/issues/1010 and
// https://github.com/weidai11/cryptopp/issues/1088.
CRYPTOPP 5.6.3 RC6 checkin
2015-11-05 06:59:46 +00:00
template <class BASE>
void CFB_CipherTemplate<BASE>::ProcessData(byte *outString, const byte *inString, size_t length)
{
Add PtrAdd and PtrSub helper functions This helps contain UB on pointer subtraction by ensuring a ptrdiff_t is used. The code is a little uglier but it is also more portable.
2018-07-10 09:00:02 +00:00
CRYPTOPP_ASSERT(outString); CRYPTOPP_ASSERT(inString);
Add CRYPTOPP_ASSERT (Issue 277, CVE-2016-7420) trap.h and CRYPTOPP_ASSERT has existed for over a year in Master. We deferred on the cut-over waiting for a minor version bump (5.7). We have to use it now due to CVE-2016-7420
2016-09-16 15:27:15 +00:00
CRYPTOPP_ASSERT(length % this->MandatoryBlockSize() == 0);
CRYPTOPP 5.6.3 RC6 checkin
2015-11-05 06:59:46 +00:00
Add ASSERT in ProcessData to warn of non-distinct buffers (GH #1088)
2021-11-29 00:57:28 +00:00
// If this assert fires, then outString == inString. You could experience a
// performance hit. Also see https://github.com/weidai11/cryptopp/issues/1088'
CRYPTOPP_ASSERT(outString != inString);
CRYPTOPP 5.6.3 RC6 checkin
2015-11-05 06:59:46 +00:00
PolicyInterface &policy = this->AccessPolicy();
Avoid memcpy in AdditiveCipherTemplate<S>::ProcessData (GH #683, GH #1010, PR #1019) We found we can avoid the memcpy in the previous workaround by using a volatile pointer. The pointer appears to tame the optimizer so the compiler does not short-circuit some calls when outString == inString.
2021-03-17 02:01:24 +00:00
unsigned int bytesPerIteration = policy.GetBytesPerIteration();
CRYPTOPP 5.6.3 RC6 checkin
2015-11-05 06:59:46 +00:00
byte *reg = policy.GetRegisterBegin();
Fix CTR mode when using FileSource (GH #683, GH #1010) We think this is another instance problem that surfaced under GH #683 when inString==outString. It violates aliasing rules and the compiler begins removing code. The ultimate workaround was to add a member variable m_tempOutString as scratch space when inString==outString. We did not loose much in the way of perforamce for some reason. It looks like AES/CTR lost about 0.03-0.05 cpb. When combined with the updated xorbuf from GH #1020, the net result was a speedup of 0.1-0.6 cpb. In fact, some ciphers like RC6, gained almost 5 cpb.
2021-03-17 16:17:27 +00:00
byte* savedOutString = outString;
size_t savedLength = length;
bool copyOut = false;
if (inString == outString)
{
Update AdditiveCipherTemplate<S>::ProcessData (GH #1010)
2021-04-10 03:37:29 +00:00
// No need to copy inString to outString.
// Just allocate the space.
m_tempOutString.New(length);
Fix CTR mode when using FileSource (GH #683, GH #1010) We think this is another instance problem that surfaced under GH #683 when inString==outString. It violates aliasing rules and the compiler begins removing code. The ultimate workaround was to add a member variable m_tempOutString as scratch space when inString==outString. We did not loose much in the way of perforamce for some reason. It looks like AES/CTR lost about 0.03-0.05 cpb. When combined with the updated xorbuf from GH #1020, the net result was a speedup of 0.1-0.6 cpb. In fact, some ciphers like RC6, gained almost 5 cpb.
2021-03-17 16:17:27 +00:00
m_tempOutString.SetMark(0);
outString = m_tempOutString.BytePtr();
copyOut = true;
}
CRYPTOPP 5.6.3 RC6 checkin
2015-11-05 06:59:46 +00:00
if (m_leftOver)
{
Add PtrAdd and PtrSub helper functions This helps contain UB on pointer subtraction by ensuring a ptrdiff_t is used. The code is a little uglier but it is also more portable.
2018-07-10 09:00:02 +00:00
const size_t len = STDMIN(m_leftOver, length);
CombineMessageAndShiftRegister(outString, PtrAdd(reg, bytesPerIteration - m_leftOver), inString, len);
CRYPTOPP 5.6.3 RC6 checkin
2015-11-05 06:59:46 +00:00
Add PtrAdd and PtrSub helper functions This helps contain UB on pointer subtraction by ensuring a ptrdiff_t is used. The code is a little uglier but it is also more portable.
2018-07-10 09:00:02 +00:00
inString = PtrAdd(inString, len);
outString = PtrAdd(outString, len);
Avoid memcpy in AdditiveCipherTemplate<S>::ProcessData (GH #683, GH #1010, PR #1019) We found we can avoid the memcpy in the previous workaround by using a volatile pointer. The pointer appears to tame the optimizer so the compiler does not short-circuit some calls when outString == inString.
2021-03-17 02:01:24 +00:00
m_leftOver -= len; length -= len;
Add PtrAdd and PtrSub helper functions This helps contain UB on pointer subtraction by ensuring a ptrdiff_t is used. The code is a little uglier but it is also more portable.
2018-07-10 09:00:02 +00:00
}
Revert AltiVec and Power8 commits The strategy of "cleanup under-aligned buffers" is not scaling well. Corner cases are still turing up. The library has some corner-case breaks, like old 32-bit Intels. And it still has not solved the AltiVec and Power8 alignment problems. For now we are backing out the changes and investigating other strategies
2017-09-05 20:28:00 +00:00
Fix CTR mode when using FileSource (GH #683, GH #1010) We think this is another instance problem that surfaced under GH #683 when inString==outString. It violates aliasing rules and the compiler begins removing code. The ultimate workaround was to add a member variable m_tempOutString as scratch space when inString==outString. We did not loose much in the way of perforamce for some reason. It looks like AES/CTR lost about 0.03-0.05 cpb. When combined with the updated xorbuf from GH #1020, the net result was a speedup of 0.1-0.6 cpb. In fact, some ciphers like RC6, gained almost 5 cpb.
2021-03-17 16:17:27 +00:00
if (!length) {
if (copyOut)
Update tempOutString buffer length calculation
2021-03-18 03:19:46 +00:00
std::memcpy(savedOutString, m_tempOutString.BytePtr(), savedLength);
Fix CTR mode when using FileSource (GH #683, GH #1010) We think this is another instance problem that surfaced under GH #683 when inString==outString. It violates aliasing rules and the compiler begins removing code. The ultimate workaround was to add a member variable m_tempOutString as scratch space when inString==outString. We did not loose much in the way of perforamce for some reason. It looks like AES/CTR lost about 0.03-0.05 cpb. When combined with the updated xorbuf from GH #1020, the net result was a speedup of 0.1-0.6 cpb. In fact, some ciphers like RC6, gained almost 5 cpb.
2021-03-17 16:17:27 +00:00
return;
}
Enable same buffer for in and out on ARM A-32 (GH #683)
2018-10-14 02:16:59 +00:00
const unsigned int alignment = policy.GetAlignment();
Avoid memcpy in AdditiveCipherTemplate<S>::ProcessData (GH #683, GH #1010, PR #1019) We found we can avoid the memcpy in the previous workaround by using a volatile pointer. The pointer appears to tame the optimizer so the compiler does not short-circuit some calls when outString == inString.
2021-03-17 02:01:24 +00:00
const bool inAligned = IsAlignedOn(inString, alignment);
const bool outAligned = IsAlignedOn(outString, alignment);
Clear Clang warnings
2021-03-21 12:06:10 +00:00
CRYPTOPP_UNUSED(inAligned); CRYPTOPP_UNUSED(outAligned);
Cleanup CFB mode for Cryptogams AES
2020-04-13 06:47:38 +00:00
if (policy.CanIterate() && length >= bytesPerIteration && outAligned)
CRYPTOPP 5.6.3 RC6 checkin
2015-11-05 06:59:46 +00:00
{
Cleanup CFB mode for Cryptogams AES
2020-04-13 06:47:38 +00:00
CipherDir cipherDir = GetCipherDir(*this);
Fix CTR mode when using FileSource (GH #683, GH #1010) We think this is another instance problem that surfaced under GH #683 when inString==outString. It violates aliasing rules and the compiler begins removing code. The ultimate workaround was to add a member variable m_tempOutString as scratch space when inString==outString. We did not loose much in the way of perforamce for some reason. It looks like AES/CTR lost about 0.03-0.05 cpb. When combined with the updated xorbuf from GH #1020, the net result was a speedup of 0.1-0.6 cpb. In fact, some ciphers like RC6, gained almost 5 cpb.
2021-03-17 16:17:27 +00:00
policy.Iterate(outString, inString, cipherDir, length / bytesPerIteration);
Enable same buffer for in and out on ARM A-32 (GH #683)
2018-10-14 02:16:59 +00:00
const size_t remainder = length % bytesPerIteration;
inString = PtrAdd(inString, length - remainder);
outString = PtrAdd(outString, length - remainder);
length = remainder;
CRYPTOPP 5.6.3 RC6 checkin
2015-11-05 06:59:46 +00:00
}
while (length >= bytesPerIteration)
{
policy.TransformRegister();
CombineMessageAndShiftRegister(outString, reg, inString, bytesPerIteration);
Avoid memcpy in AdditiveCipherTemplate<S>::ProcessData (GH #683, GH #1010, PR #1019) We found we can avoid the memcpy in the previous workaround by using a volatile pointer. The pointer appears to tame the optimizer so the compiler does not short-circuit some calls when outString == inString.
2021-03-17 02:01:24 +00:00
Add PtrAdd and PtrSub helper functions This helps contain UB on pointer subtraction by ensuring a ptrdiff_t is used. The code is a little uglier but it is also more portable.
2018-07-10 09:00:02 +00:00
inString = PtrAdd(inString, bytesPerIteration);
outString = PtrAdd(outString, bytesPerIteration);
Avoid memcpy in AdditiveCipherTemplate<S>::ProcessData (GH #683, GH #1010, PR #1019) We found we can avoid the memcpy in the previous workaround by using a volatile pointer. The pointer appears to tame the optimizer so the compiler does not short-circuit some calls when outString == inString.
2021-03-17 02:01:24 +00:00
length -= bytesPerIteration;
CRYPTOPP 5.6.3 RC6 checkin
2015-11-05 06:59:46 +00:00
}
if (length > 0)
{
policy.TransformRegister();
CombineMessageAndShiftRegister(outString, reg, inString, length);
m_leftOver = bytesPerIteration - length;
}
Fix CTR mode when using FileSource (GH #683, GH #1010) We think this is another instance problem that surfaced under GH #683 when inString==outString. It violates aliasing rules and the compiler begins removing code. The ultimate workaround was to add a member variable m_tempOutString as scratch space when inString==outString. We did not loose much in the way of perforamce for some reason. It looks like AES/CTR lost about 0.03-0.05 cpb. When combined with the updated xorbuf from GH #1020, the net result was a speedup of 0.1-0.6 cpb. In fact, some ciphers like RC6, gained almost 5 cpb.
2021-03-17 16:17:27 +00:00
if (copyOut)
std::memcpy(savedOutString, m_tempOutString.BytePtr(), savedLength);
CRYPTOPP 5.6.3 RC6 checkin
2015-11-05 06:59:46 +00:00
}
template <class BASE>
void CFB_EncryptionTemplate<BASE>::CombineMessageAndShiftRegister(byte *output, byte *reg, const byte *message, size_t length)
{
xorbuf(reg, message, length);
Cleanup CFB mode for Cryptogams AES
2020-04-13 06:47:38 +00:00
std::memcpy(output, reg, length);
CRYPTOPP 5.6.3 RC6 checkin
2015-11-05 06:59:46 +00:00
}
template <class BASE>
void CFB_DecryptionTemplate<BASE>::CombineMessageAndShiftRegister(byte *output, byte *reg, const byte *message, size_t length)
{
Add PtrAdd and PtrSub helper functions This helps contain UB on pointer subtraction by ensuring a ptrdiff_t is used. The code is a little uglier but it is also more portable.
2018-07-10 09:00:02 +00:00
for (size_t i=0; i<length; i++)
CRYPTOPP 5.6.3 RC6 checkin
2015-11-05 06:59:46 +00:00
{
byte b = message[i];
output[i] = reg[i] ^ b;
reg[i] = b;
}
}
NAMESPACE_END
#endif
Reference in New Issue Copy Permalink