Merge branch '1953-gcfb-large-data' into 'main'

1953 gcfb large data

See merge request root/bc-java!63

Author: dghgit

core/src/main/java/org/bouncycastle/crypto/modes/GCFBBlockCipher.java

@@ -25,14 +25,16 @@ public class GCFBBlockCipher
 
     private final CFBBlockCipher cfbEngine;
 
+    private ParametersWithIV initParams;
+
     private KeyParameter key;
-    private long         counter = 0;
-    private boolean      forEncryption;
+    private long counter = 0;
+    private boolean forEncryption;
 
     public GCFBBlockCipher(BlockCipher engine)
     {
         super(engine);
-
+        //TODO: Ensure the key size of the engine is 32 bits
         this.cfbEngine = new CFBBlockCipher(engine, engine.getBlockSize() * 8);
     }
 
@@ -41,12 +43,15 @@ public void init(boolean forEncryption, CipherParameters params)
     {
         counter = 0;
         cfbEngine.init(forEncryption, params);
+        byte[] iv = null;
 
         this.forEncryption = forEncryption;
 
         if (params instanceof ParametersWithIV)
         {
-            params = ((ParametersWithIV)params).getParameters();
+            ParametersWithIV ivParams = (ParametersWithIV)params;
+            params = ivParams.getParameters();
+            iv = ivParams.getIV();
         }
 
         if (params instanceof ParametersWithRandom)
@@ -60,6 +65,23 @@ public void init(boolean forEncryption, CipherParameters params)
         }
 
         key = (KeyParameter)params;
+
+        /* Pick up key/IV from parameters or most recent parameters */
+        if (key == null && initParams != null)
+        {
+            key = (KeyParameter)initParams.getParameters();
+        }
+        if (iv == null && initParams != null)
+        {
+            iv = initParams.getIV();
+        }
+        else
+        {
+            iv = cfbEngine.getCurrentIV();
+        }
+
+        /* Save the initParameters */
+        initParams = new ParametersWithIV(key, iv);
     }
 
     public String getAlgorithmName()
@@ -83,18 +105,19 @@ public int processBlock(byte[] in, int inOff, byte[] out, int outOff)
 
     protected byte calculateByte(byte b)
     {
-        if (counter > 0 && counter % 1024 == 0)
+        if (counter > 0 && (counter & 1023) == 0)
         {
-            BlockCipher  base = cfbEngine.getUnderlyingCipher();
+            BlockCipher base = cfbEngine.getUnderlyingCipher();
 
             base.init(false, key);
 
             byte[] nextKey = new byte[32];
+            int blockSize = base.getBlockSize();
 
-            base.processBlock(C, 0, nextKey, 0);
-            base.processBlock(C, 8, nextKey, 8);
-            base.processBlock(C, 16, nextKey, 16);
-            base.processBlock(C, 24, nextKey, 24);
+            for (int i = 0; i < nextKey.length; i += blockSize)
+            {
+                base.processBlock(C, i, nextKey, i);
+            }
 
             key = new KeyParameter(nextKey);
 
@@ -115,6 +138,14 @@ protected byte calculateByte(byte b)
     public void reset()
     {
         counter = 0;
-        cfbEngine.reset();
+        if (initParams != null)
+        {
+            key = (KeyParameter)initParams.getParameters();
+            cfbEngine.init(forEncryption, initParams);
+        }
+        else
+        {
+            cfbEngine.reset();
+        }
     }
 }

core/src/test/java/org/bouncycastle/crypto/test/CipherTest.java

@@ -3,8 +3,10 @@
 import java.security.SecureRandom;
 
 import org.bouncycastle.crypto.BlockCipher;
+import org.bouncycastle.crypto.BufferedBlockCipher;
 import org.bouncycastle.crypto.CipherKeyGenerator;
 import org.bouncycastle.crypto.DataLengthException;
+import org.bouncycastle.crypto.DefaultBufferedBlockCipher;
 import org.bouncycastle.crypto.InvalidCipherTextException;
 import org.bouncycastle.crypto.KeyGenerationParameters;
 import org.bouncycastle.crypto.modes.AEADCipher;
@@ -14,6 +16,7 @@
 import org.bouncycastle.util.test.SimpleTest;
 import org.bouncycastle.util.test.SimpleTestResult;
 import org.bouncycastle.util.test.TestFailedException;
+import org.junit.Assert;
 
 public abstract class CipherTest
     extends SimpleTest
@@ -251,4 +254,52 @@ static void isEqualTo(
             throw new TestFailedException(SimpleTestResult.failed(parent, "no message"));
         }
     }
+
+    static void checkCipher(final BlockCipher pCipher, final int datalen)
+        throws Exception
+    {
+        final SecureRandom random = new SecureRandom();
+        /* Create the data */
+        final byte[] myData = new byte[datalen];
+        random.nextBytes(myData);
+
+        /* Create the Key parameters */
+        final CipherKeyGenerator myGenerator = new CipherKeyGenerator();
+        final KeyGenerationParameters myGenParams = new KeyGenerationParameters(random, 256);
+        myGenerator.init(myGenParams);
+        final byte[] myKey = myGenerator.generateKey();
+        final KeyParameter myKeyParams = new KeyParameter(myKey);
+
+        /* Create the IV */
+        final byte[] myIV = new byte[16];
+        random.nextBytes(myIV);
+
+        /* Create the initParams */
+        final ParametersWithIV myParams = new ParametersWithIV(myKeyParams, myIV);
+
+        /* Wrap Block Cipher with buffered BlockCipher */
+        final BufferedBlockCipher myCipher = new DefaultBufferedBlockCipher(pCipher);
+
+        /* Initialise the cipher for encryption */
+        myCipher.init(true, myParams);
+
+        /* Encipher the text */
+        final byte[] myOutput = new byte[myCipher.getOutputSize(datalen)];
+        int myOutLen = myCipher.processBytes(myData, 0, datalen, myOutput, 0);
+        myCipher.doFinal(myOutput, myOutLen);
+
+        /* Re-Encipher the text (after implicit reset) */
+        final byte[] myOutput2 = new byte[myCipher.getOutputSize(datalen)];
+        myOutLen = myCipher.processBytes(myData, 0, datalen, myOutput2, 0);
+        myCipher.doFinal(myOutput2, myOutLen);
+
+        myCipher.init(false, myParams);
+        final byte[] plaintext = new byte[myCipher.getOutputSize(myOutput.length)];
+        myOutLen = myCipher.processBytes(myOutput2, 0, datalen, plaintext, 0);
+        myCipher.doFinal(plaintext, myOutLen);
+
+        /* Check that the cipherTexts are identical */
+        Assert.assertArrayEquals(myOutput, myOutput2);
+        Assert.assertArrayEquals(myData, plaintext);
+    }
 }

core/src/test/java/org/bouncycastle/crypto/test/GOST28147Test.java

@@ -4,9 +4,11 @@
 import org.bouncycastle.crypto.CipherParameters;
 import org.bouncycastle.crypto.CryptoException;
 import org.bouncycastle.crypto.digests.GOST3411Digest;
+import org.bouncycastle.crypto.engines.AESEngine;
 import org.bouncycastle.crypto.engines.GOST28147Engine;
 import org.bouncycastle.crypto.modes.CBCBlockCipher;
 import org.bouncycastle.crypto.modes.CFBBlockCipher;
+import org.bouncycastle.crypto.modes.GCFBBlockCipher;
 import org.bouncycastle.crypto.modes.GOFBBlockCipher;
 import org.bouncycastle.crypto.params.KeyParameter;
 import org.bouncycastle.crypto.params.ParametersWithIV;
@@ -197,7 +199,8 @@ public void performTest()
         throws Exception
     {
         super.performTest();
-
+        checkCipher(new GCFBBlockCipher(new GOST28147Engine()), 2049);
+        checkCipher(new GCFBBlockCipher(AESEngine.newInstance()), 2049);
         //advanced tests with GOST28147KeyGenerator:
         //encrypt on hesh message; ECB mode:
         byte[] in     = Hex.decode("4e6f77206973207468652074696d6520666f7220616c6c20");