Minor change in ISAPEngine

gefeili · gefeili · commit b530e8352507 · 2025-01-06T17:10:46.000+10:30
diff --git a/core/src/main/java/org/bouncycastle/crypto/engines/ISAPEngine.java b/core/src/main/java/org/bouncycastle/crypto/engines/ISAPEngine.java
@@ -409,11 +409,11 @@ public void isap_mac(byte[] ad, int adlen, byte[] c, int clen, byte[] tag)
             // Absorb C
             ABSORB_MAC(SX, c, clen, E, C);
             // Derive K*
-            shortToByte(SX, tag, 0);
+            shortToByte(SX, tag);
             isap_rk(ISAP_IV2_16, tag, KEY_SIZE, SX, KEY_SIZE, C);
             // Squeeze tag
             PermuteRoundsHX(SX, E, C);
-            shortToByte(SX, tag, 0);
+            shortToByte(SX, tag);
         }
 
         public void isap_enc(byte[] m, int mOff, int mlen, byte[] c, int cOff, int clen)
@@ -459,11 +459,11 @@ private void byteToShort(byte[] input, short[] output, int outLen)
             }
         }
 
-        private void shortToByte(short[] input, byte[] output, int outOff)
+        private void shortToByte(short[] input, byte[] output)
         {
             for (int i = 0; i < 8; ++i)
             {
-                Pack.shortToLittleEndian(input[i], output, outOff + (i << 1));
+                Pack.shortToLittleEndian(input[i], output, (i << 1));
             }
         }
 
@@ -847,7 +847,7 @@ public int doFinal(byte[] output, int outOff)
         }
         int len;
         byte[] c;
-        byte[] ad;
+        byte[] ad = aadData.toByteArray();
         if (forEncryption)
         {
             byte[] enc_input = message.toByteArray();
@@ -859,7 +859,6 @@ public int doFinal(byte[] output, int outOff)
             ISAPAEAD.isap_enc(enc_input, 0, len, output, outOff, output.length);
             outputStream.write(output, outOff, len);
             outOff += len;
-            ad = aadData.toByteArray();
             c = outputStream.toByteArray();
             mac = new byte[MAC_SIZE];
             ISAPAEAD.isap_mac(ad, ad.length, c, c.length, mac);
@@ -868,7 +867,6 @@ public int doFinal(byte[] output, int outOff)
         }
         else
         {
-            ad = aadData.toByteArray();
             c = message.toByteArray();
             mac = new byte[MAC_SIZE];
             len = c.length - mac.length;
@@ -887,21 +885,20 @@ public int doFinal(byte[] output, int outOff)
             }
             ISAPAEAD.isap_enc(c, 0, len, output, outOff, output.length);
         }
-//        reset(false);
         return len;
     }
 
     @Override
     public int getUpdateOutputSize(int len)
     {
-        int total = Math.max(0, len + message.size() + (forEncryption ? 0 : -16));
+        int total = Math.max(0, len + message.size() + (forEncryption ? 0 : -MAC_SIZE));
         return total - total % ISAP_rH_SZ;
     }
 
     @Override
     public int getOutputSize(int len)
     {
-        return Math.max(0, len + message.size() + (forEncryption ? 16 : -16));
+        return Math.max(0, len + message.size() + (forEncryption ? MAC_SIZE : -MAC_SIZE));
     }
 
     protected void reset(boolean clearMac)

Original file line number	Diff line number	Diff line change
`@@ -409,11 +409,11 @@ public void isap_mac(byte[] ad, int adlen, byte[] c, int clen, byte[] tag)`
`409`	`409`	`// Absorb C`
`410`	`410`	`ABSORB_MAC(SX, c, clen, E, C);`
`411`	`411`	`// Derive K*`
`412`		`- shortToByte(SX, tag, 0);`
	`412`	`+ shortToByte(SX, tag);`
`413`	`413`	`isap_rk(ISAP_IV2_16, tag, KEY_SIZE, SX, KEY_SIZE, C);`
`414`	`414`	`// Squeeze tag`
`415`	`415`	`PermuteRoundsHX(SX, E, C);`
`416`		`- shortToByte(SX, tag, 0);`
	`416`	`+ shortToByte(SX, tag);`
`417`	`417`	`}`
`418`	`418`
`419`	`419`	`public void isap_enc(byte[] m, int mOff, int mlen, byte[] c, int cOff, int clen)`
`@@ -459,11 +459,11 @@ private void byteToShort(byte[] input, short[] output, int outLen)`
`459`	`459`	`}`
`460`	`460`	`}`
`461`	`461`
`462`		`- private void shortToByte(short[] input, byte[] output, int outOff)`
	`462`	`+ private void shortToByte(short[] input, byte[] output)`
`463`	`463`	`{`
`464`	`464`	`for (int i = 0; i < 8; ++i)`
`465`	`465`	`{`
`466`		`- Pack.shortToLittleEndian(input[i], output, outOff + (i << 1));`
	`466`	`+ Pack.shortToLittleEndian(input[i], output, (i << 1));`
`467`	`467`	`}`
`468`	`468`	`}`
`469`	`469`
`@@ -847,7 +847,7 @@ public int doFinal(byte[] output, int outOff)`
`847`	`847`	`}`
`848`	`848`	`int len;`
`849`	`849`	`byte[] c;`
`850`		`- byte[] ad;`
	`850`	`+ byte[] ad = aadData.toByteArray();`
`851`	`851`	`if (forEncryption)`
`852`	`852`	`{`
`853`	`853`	`byte[] enc_input = message.toByteArray();`
`@@ -859,7 +859,6 @@ public int doFinal(byte[] output, int outOff)`
`859`	`859`	`ISAPAEAD.isap_enc(enc_input, 0, len, output, outOff, output.length);`
`860`	`860`	`outputStream.write(output, outOff, len);`
`861`	`861`	`outOff += len;`
`862`		`- ad = aadData.toByteArray();`
`863`	`862`	`c = outputStream.toByteArray();`
`864`	`863`	`mac = new byte[MAC_SIZE];`
`865`	`864`	`ISAPAEAD.isap_mac(ad, ad.length, c, c.length, mac);`
`@@ -868,7 +867,6 @@ public int doFinal(byte[] output, int outOff)`
`868`	`867`	`}`
`869`	`868`	`else`
`870`	`869`	`{`
`871`		`- ad = aadData.toByteArray();`
`872`	`870`	`c = message.toByteArray();`
`873`	`871`	`mac = new byte[MAC_SIZE];`
`874`	`872`	`len = c.length - mac.length;`
`@@ -887,21 +885,20 @@ public int doFinal(byte[] output, int outOff)`
`887`	`885`	`}`
`888`	`886`	`ISAPAEAD.isap_enc(c, 0, len, output, outOff, output.length);`
`889`	`887`	`}`
`890`		`-// reset(false);`
`891`	`888`	`return len;`
`892`	`889`	`}`
`893`	`890`
`894`	`891`	`@Override`
`895`	`892`	`public int getUpdateOutputSize(int len)`
`896`	`893`	`{`
`897`		`- int total = Math.max(0, len + message.size() + (forEncryption ? 0 : -16));`
	`894`	`+ int total = Math.max(0, len + message.size() + (forEncryption ? 0 : -MAC_SIZE));`
`898`	`895`	`return total - total % ISAP_rH_SZ;`
`899`	`896`	`}`
`900`	`897`
`901`	`898`	`@Override`
`902`	`899`	`public int getOutputSize(int len)`
`903`	`900`	`{`
`904`		`- return Math.max(0, len + message.size() + (forEncryption ? 16 : -16));`
	`901`	`+ return Math.max(0, len + message.size() + (forEncryption ? MAC_SIZE : -MAC_SIZE));`
`905`	`902`	`}`
`906`	`903`
`907`	`904`	`protected void reset(boolean clearMac)`