Refactor on setInnerMembers and constructor of AEADBufferBaseEngine

gefeili · gefeili · commit e3979e5d2f0e · 2025-01-23T17:32:22.000+10:30
diff --git a/core/src/main/java/org/bouncycastle/crypto/engines/AEADBufferBaseEngine.java b/core/src/main/java/org/bouncycastle/crypto/engines/AEADBufferBaseEngine.java
@@ -57,7 +57,7 @@ protected enum State
     protected AADOperator aadOperator;
     protected DataOperator dataOperator;
 
-    protected AEADBufferBaseEngine(ProcessingBufferType type)
+    protected void setInnerMembers(ProcessingBufferType type, AADOperatorType aadOperatorType, DataOperatorType dataOperatorType)
     {
         switch (type)
         {
@@ -74,64 +74,17 @@ protected AEADBufferBaseEngine(ProcessingBufferType type)
             processor = new ImmediateLargeMacAADProcessor();
             break;
         }
-    }
 
-    protected void setInnerMembers(ProcessingBufferType type, AADOperatorType aadOperatorType)
-    {
-//        switch (type)
-//        {
-//        case Buffered:
-//            processor = new BufferedAADProcessor();
-//            break;
-//        case BufferedLargeMac:
-//            processor = new BufferedLargeMacAADProcessor();
-//            break;
-//        case Immediate:
-//            processor = new ImmediateAADProcessor();
-//            break;
-//        case ImmediateLargeMac:
-//            processor = new ImmediateLargeMacAADProcessor();
-//            break;
-//        }
-
-        switch (aadOperatorType)
-        {
-        case Default:
-            aadOperator = new DefaultAADOperator();
-            break;
-        case Counter:
-            aadOperator = new CounterAADOperator();
-            break;
-        case Stream:
-            aadOperator = new StreamAADOperator();
-            break;
-        }
-    }
-
-    protected void setInnerMembers(ProcessingBufferType type, AADOperatorType aadOperatorType, DataOperatorType dataOperatorType)
-    {
-//        switch (type)
-//        {
-//        case Buffered:
-//            processor = new BufferedAADProcessor();
-//            break;
-//        case BufferedLargeMac:
-//            processor = new BufferedLargeMacAADProcessor();
-//            break;
-//        case Immediate:
-//            processor = new ImmediateAADProcessor();
-//            break;
-//        case ImmediateLargeMac:
-//            processor = new ImmediateLargeMacAADProcessor();
-//            break;
-//        }
+        m_bufferSizeDecrypt = BlockSize + MAC_SIZE;
 
         switch (aadOperatorType)
         {
         case Default:
+            m_aad = new byte[AADBufferSize];
             aadOperator = new DefaultAADOperator();
             break;
         case Counter:
+            m_aad = new byte[AADBufferSize];
             aadOperator = new CounterAADOperator();
             break;
         case Stream:
@@ -142,9 +95,11 @@ protected void setInnerMembers(ProcessingBufferType type, AADOperatorType aadOpe
         switch (dataOperatorType)
         {
         case Default:
+            m_buf = new byte[m_bufferSizeDecrypt];
             dataOperator = new DefaultDataOperator();
             break;
         case Counter:
+            m_buf = new byte[m_bufferSizeDecrypt];
             dataOperator = new CounterDataOperator();
             break;
         case Stream:
@@ -802,10 +757,16 @@ protected void finishAAD(State nextState, boolean isDoFinal)
 
     protected void bufferReset()
     {
-        Arrays.fill(m_buf, (byte)0);
-        Arrays.fill(m_aad, (byte)0);
-        m_bufPos = 0;
-        m_aadPos = 0;
+        if (m_buf != null)
+        {
+            Arrays.fill(m_buf, (byte)0);
+            m_bufPos = 0;
+        }
+        if (m_aad != null)
+        {
+            Arrays.fill(m_aad, (byte)0);
+            m_aadPos = 0;
+        }
         switch (m_state)
         {
         case DecInit:
diff --git a/core/src/main/java/org/bouncycastle/crypto/engines/AsconAEAD128.java b/core/src/main/java/org/bouncycastle/crypto/engines/AsconAEAD128.java
@@ -21,7 +21,6 @@ public class AsconAEAD128
 {
     public AsconAEAD128()
     {
-        super(ProcessingBufferType.Immediate);
         KEY_SIZE = 16;
         IV_SIZE = 16;
         MAC_SIZE = 16;
@@ -33,6 +32,7 @@ public AsconAEAD128()
         m_buf = new byte[m_bufferSizeDecrypt];
         m_aad = new byte[BlockSize];
         dsep = -9223372036854775808L; //0x80L << 56
+        setInnerMembers(ProcessingBufferType.Immediate, AADOperatorType.Default, DataOperatorType.Default);
     }
 
     protected long pad(int i)
diff --git a/core/src/main/java/org/bouncycastle/crypto/engines/AsconBaseEngine.java b/core/src/main/java/org/bouncycastle/crypto/engines/AsconBaseEngine.java
@@ -24,12 +24,6 @@ abstract class AsconBaseEngine
 
     protected abstract void setBytes(long n, byte[] bs, int off);
 
-    protected AsconBaseEngine(ProcessingBufferType type)
-    {
-        super(type);
-        setInnerMembers(type, AADOperatorType.Default, DataOperatorType.Default);
-    }
-
     private void round(long C)
     {
         long t0 = x0 ^ x1 ^ x2 ^ x3 ^ C ^ (x1 & (x0 ^ x2 ^ x4 ^ C));
diff --git a/core/src/main/java/org/bouncycastle/crypto/engines/AsconEngine.java b/core/src/main/java/org/bouncycastle/crypto/engines/AsconEngine.java
@@ -35,7 +35,6 @@ public enum AsconParameters
 
     public AsconEngine(AsconParameters asconParameters)
     {
-        super(asconParameters == AsconParameters.ascon128a ? ProcessingBufferType.Immediate : ProcessingBufferType.ImmediateLargeMac);
         this.asconParameters = asconParameters;
         IV_SIZE = 16;
         MAC_SIZE = 16;
@@ -68,6 +67,7 @@ public AsconEngine(AsconParameters asconParameters)
         AADBufferSize = BlockSize;
         m_aad = new byte[BlockSize];
         dsep = 1L;
+        setInnerMembers(asconParameters == AsconParameters.ascon128a ? ProcessingBufferType.Immediate : ProcessingBufferType.ImmediateLargeMac, AADOperatorType.Default, DataOperatorType.Default);
     }
 
     protected long pad(int i)
diff --git a/core/src/main/java/org/bouncycastle/crypto/engines/ElephantEngine.java b/core/src/main/java/org/bouncycastle/crypto/engines/ElephantEngine.java
@@ -1,6 +1,5 @@
 package org.bouncycastle.crypto.engines;
 
-import java.io.ByteArrayOutputStream;
 import java.util.Arrays;
 
 /**
@@ -30,13 +29,10 @@ public enum ElephantParameters
     private byte[] next_mask;
     private final byte[] buffer;
     private final byte[] previous_outputMessage;
-    private final ByteArrayOutputStream aadData = new ByteArrayOutputStream();
-    private int messageLen;
     private final Permutation instance;
 
     public ElephantEngine(ElephantParameters parameters)
     {
-        super(ProcessingBufferType.Immediate);
         KEY_SIZE = 16;
         IV_SIZE = 12;
         switch (parameters)
@@ -62,16 +58,13 @@ public ElephantEngine(ElephantParameters parameters)
         default:
             throw new IllegalArgumentException("Invalid parameter settings for Elephant");
         }
-        m_bufferSizeDecrypt = BlockSize + MAC_SIZE;
         tag_buffer = new byte[BlockSize];
         previous_mask = new byte[BlockSize];
         current_mask = new byte[BlockSize];
         next_mask = new byte[BlockSize];
         buffer = new byte[BlockSize];
-        m_buf = new byte[BlockSize + MAC_SIZE];
         previous_outputMessage = new byte[BlockSize];
-        setInnerMembers(ProcessingBufferType.Immediate, AADOperatorType.Stream, DataOperatorType.Default);
-        reset(false);
+        setInnerMembers(ProcessingBufferType.Immediate, AADOperatorType.Stream, DataOperatorType.Counter);
     }
 
     private interface Permutation
@@ -344,7 +337,6 @@ private void processBuffer(byte[] input, int inOff, byte[] output, int outOff, S
         // Value of next_mask will be computed in the next iteration
         swapMasks();
         nb_its++;
-        messageLen += BlockSize;
     }
 
     protected void processBufferDecrypt(byte[] input, int inOff, byte[] output, int outOff)
@@ -396,8 +388,7 @@ private void absorbCiphertext()
 
     protected void processFinalBlock(byte[] output, int outOff)
     {
-        int len = m_bufPos;
-        int mlen = len + messageLen;
+        int mlen = dataOperator.getLen() - (forEncryption ? 0 : MAC_SIZE);
         processFinalAAD();
         int nblocks_c = 1 + mlen / BlockSize;
         int nblocks_m = (mlen % BlockSize) != 0 ? nblocks_c : nblocks_c - 1;
@@ -486,11 +477,10 @@ protected void reset(boolean clearMac)
     {
         Arrays.fill(tag_buffer, (byte)0);
         Arrays.fill(previous_outputMessage, (byte)0);
-        m_bufPos = 0;
         nb_its = 0;
         adOff = -1;
-        messageLen = 0;
         super.reset(clearMac);
+        bufferReset();
     }
 
     protected void checkAAD()
diff --git a/core/src/main/java/org/bouncycastle/crypto/engines/GiftCofbEngine.java b/core/src/main/java/org/bouncycastle/crypto/engines/GiftCofbEngine.java
@@ -24,12 +24,8 @@ public class GiftCofbEngine
 
     public GiftCofbEngine()
     {
-        super(ProcessingBufferType.Buffered);
         AADBufferSize = BlockSize = MAC_SIZE = IV_SIZE = KEY_SIZE = 16;
         algorithmName = "GIFT-COFB AEAD";
-        m_bufferSizeDecrypt = BlockSize + MAC_SIZE;
-        m_buf = new byte[m_bufferSizeDecrypt];
-        m_aad = new byte[AADBufferSize];
         setInnerMembers(ProcessingBufferType.Buffered, AADOperatorType.Counter, DataOperatorType.Counter);
     }
 
diff --git a/core/src/main/java/org/bouncycastle/crypto/engines/ISAPEngine.java b/core/src/main/java/org/bouncycastle/crypto/engines/ISAPEngine.java
@@ -24,8 +24,6 @@ public enum IsapType
 
     public ISAPEngine(IsapType isapType)
     {
-        super(isapType == IsapType.ISAP_K_128A || isapType == IsapType.ISAP_K_128 ? ProcessingBufferType.Immediate :
-            ProcessingBufferType.ImmediateLargeMac);
         KEY_SIZE = 16;
         IV_SIZE = 16;
         MAC_SIZE = 16;
@@ -48,9 +46,7 @@ public ISAPEngine(IsapType isapType)
             algorithmName = "ISAP-K-128 AEAD";
             break;
         }
-        m_bufferSizeDecrypt = BlockSize + MAC_SIZE;
         AADBufferSize = BlockSize;
-        m_aad = new byte[AADBufferSize];
         setInnerMembers(isapType == IsapType.ISAP_K_128A || isapType == IsapType.ISAP_K_128 ? ProcessingBufferType.Immediate :
             ProcessingBufferType.ImmediateLargeMac, AADOperatorType.Default, DataOperatorType.Default);
     }
diff --git a/core/src/main/java/org/bouncycastle/crypto/engines/PhotonBeetleEngine.java b/core/src/main/java/org/bouncycastle/crypto/engines/PhotonBeetleEngine.java
@@ -55,7 +55,6 @@ public enum PhotonBeetleParameters
 
     public PhotonBeetleEngine(PhotonBeetleParameters pbp)
     {
-        super(pbp == PhotonBeetleParameters.pb128 ? ProcessingBufferType.Buffered : ProcessingBufferType.BufferedLargeMac);
         KEY_SIZE = 16;
         IV_SIZE = 16;
         MAC_SIZE = 16;
@@ -77,9 +76,6 @@ public PhotonBeetleEngine(PhotonBeetleParameters pbp)
         STATE_INBYTES = (STATE_INBITS + 7) >>> 3;
         LAST_THREE_BITS_OFFSET = (STATE_INBITS - ((STATE_INBYTES - 1) << 3) - 3);
         algorithmName = "Photon-Beetle AEAD";
-        m_bufferSizeDecrypt = BlockSize + MAC_SIZE;
-        m_buf = new byte[m_bufferSizeDecrypt];
-        m_aad = new byte[AADBufferSize];
         setInnerMembers(pbp == PhotonBeetleParameters.pb128 ? ProcessingBufferType.Buffered : ProcessingBufferType.BufferedLargeMac,
             AADOperatorType.Counter, DataOperatorType.Default);
     }
diff --git a/core/src/main/java/org/bouncycastle/crypto/engines/RomulusEngine.java b/core/src/main/java/org/bouncycastle/crypto/engines/RomulusEngine.java
@@ -78,7 +78,6 @@ public enum RomulusParameters
 
     public RomulusEngine(RomulusParameters romulusParameters)
     {
-        super(romulusParameters == RomulusParameters.RomulusT ? ProcessingBufferType.Immediate : ProcessingBufferType.Buffered);
         KEY_SIZE = IV_SIZE = MAC_SIZE = BlockSize = AADBufferSize = 16;
         CNT = new byte[7];
         switch (romulusParameters)
@@ -97,9 +96,6 @@ public RomulusEngine(RomulusParameters romulusParameters)
             instance = new RomulusT();
             break;
         }
-        m_bufferSizeDecrypt = MAC_SIZE + BlockSize;
-        m_buf = new byte[m_bufferSizeDecrypt];
-        m_aad = new byte[AADBufferSize];
         setInnerMembers(romulusParameters == RomulusParameters.RomulusT ? ProcessingBufferType.Immediate : ProcessingBufferType.Buffered,
             AADOperatorType.Counter,
             romulusParameters == RomulusParameters.RomulusM ? DataOperatorType.Stream : DataOperatorType.Counter);
diff --git a/core/src/main/java/org/bouncycastle/crypto/engines/SparkleEngine.java b/core/src/main/java/org/bouncycastle/crypto/engines/SparkleEngine.java
@@ -41,7 +41,6 @@ public enum SparkleParameters
 
     public SparkleEngine(SparkleParameters sparkleParameters)
     {
-        super(ProcessingBufferType.Buffered);
         int SPARKLE_STATE;
         int SCHWAEMM_TAG_LEN;
         int SPARKLE_CAPACITY;
@@ -110,9 +109,6 @@ public SparkleEngine(SparkleParameters sparkleParameters)
         k = new int[KEY_WORDS];
         npub = new int[RATE_WORDS];
         AADBufferSize = BlockSize = IV_SIZE;
-        m_bufferSizeDecrypt = IV_SIZE + MAC_SIZE;
-        m_buf = new byte[m_bufferSizeDecrypt];
-        m_aad = new byte[BlockSize];
         setInnerMembers(ProcessingBufferType.Buffered, AADOperatorType.Default, DataOperatorType.Default);
 
         // Relied on by processBytes method for decryption
diff --git a/core/src/main/java/org/bouncycastle/crypto/engines/XoodyakEngine.java b/core/src/main/java/org/bouncycastle/crypto/engines/XoodyakEngine.java
@@ -35,16 +35,12 @@ enum MODE
 
     public XoodyakEngine()
     {
-        super(ProcessingBufferType.Buffered);
         algorithmName = "Xoodyak AEAD";
         KEY_SIZE = 16;
         IV_SIZE = 16;
         MAC_SIZE = 16;
         BlockSize = 24;
         AADBufferSize = 44;
-        m_bufferSizeDecrypt = BlockSize + MAC_SIZE;
-        m_buf = new byte[m_bufferSizeDecrypt];
-        m_aad = new byte[AADBufferSize];
         setInnerMembers(ProcessingBufferType.Buffered, AADOperatorType.Default, DataOperatorType.Default);
     }
 
diff --git a/core/src/test/java/org/bouncycastle/crypto/test/ElephantTest.java b/core/src/test/java/org/bouncycastle/crypto/test/ElephantTest.java

Original file line number	Diff line number	Diff line change
`@@ -21,7 +21,6 @@ public class AsconAEAD128`
`21`	`21`	`{`
`22`	`22`	`public AsconAEAD128()`
`23`	`23`	`{`
`24`		`- super(ProcessingBufferType.Immediate);`
`25`	`24`	`KEY_SIZE = 16;`
`26`	`25`	`IV_SIZE = 16;`
`27`	`26`	`MAC_SIZE = 16;`
`@@ -33,6 +32,7 @@ public AsconAEAD128()`
`33`	`32`	`m_buf = new byte[m_bufferSizeDecrypt];`
`34`	`33`	`m_aad = new byte[BlockSize];`
`35`	`34`	`dsep = -9223372036854775808L; //0x80L << 56`
	`35`	`+ setInnerMembers(ProcessingBufferType.Immediate, AADOperatorType.Default, DataOperatorType.Default);`
`36`	`36`	`}`
`37`	`37`
`38`	`38`	`protected long pad(int i)`
Original file line number	Diff line number	Diff line change
`@@ -35,7 +35,6 @@ public enum AsconParameters`
`35`	`35`
`36`	`36`	`public AsconEngine(AsconParameters asconParameters)`
`37`	`37`	`{`
`38`		`- super(asconParameters == AsconParameters.ascon128a ? ProcessingBufferType.Immediate : ProcessingBufferType.ImmediateLargeMac);`
`39`	`38`	`this.asconParameters = asconParameters;`
`40`	`39`	`IV_SIZE = 16;`
`41`	`40`	`MAC_SIZE = 16;`
`@@ -68,6 +67,7 @@ public AsconEngine(AsconParameters asconParameters)`
`68`	`67`	`AADBufferSize = BlockSize;`
`69`	`68`	`m_aad = new byte[BlockSize];`
`70`	`69`	`dsep = 1L;`
	`70`	`+ setInnerMembers(asconParameters == AsconParameters.ascon128a ? ProcessingBufferType.Immediate : ProcessingBufferType.ImmediateLargeMac, AADOperatorType.Default, DataOperatorType.Default);`
`71`	`71`	`}`
`72`	`72`
`73`	`73`	`protected long pad(int i)`
Original file line number	Diff line number	Diff line change
`@@ -24,12 +24,8 @@ public class GiftCofbEngine`
`24`	`24`
`25`	`25`	`public GiftCofbEngine()`
`26`	`26`	`{`
`27`		`- super(ProcessingBufferType.Buffered);`
`28`	`27`	`AADBufferSize = BlockSize = MAC_SIZE = IV_SIZE = KEY_SIZE = 16;`
`29`	`28`	`algorithmName = "GIFT-COFB AEAD";`
`30`		`- m_bufferSizeDecrypt = BlockSize + MAC_SIZE;`
`31`		`- m_buf = new byte[m_bufferSizeDecrypt];`
`32`		`- m_aad = new byte[AADBufferSize];`
`33`	`29`	`setInnerMembers(ProcessingBufferType.Buffered, AADOperatorType.Counter, DataOperatorType.Counter);`
`34`	`30`	`}`
`35`	`31`
Original file line number	Diff line number	Diff line change
`@@ -24,8 +24,6 @@ public enum IsapType`
`24`	`24`
`25`	`25`	`public ISAPEngine(IsapType isapType)`
`26`	`26`	`{`
`27`		`- super(isapType == IsapType.ISAP_K_128A \|\| isapType == IsapType.ISAP_K_128 ? ProcessingBufferType.Immediate :`
`28`		`- ProcessingBufferType.ImmediateLargeMac);`
`29`	`27`	`KEY_SIZE = 16;`
`30`	`28`	`IV_SIZE = 16;`
`31`	`29`	`MAC_SIZE = 16;`
`@@ -48,9 +46,7 @@ public ISAPEngine(IsapType isapType)`
`48`	`46`	`algorithmName = "ISAP-K-128 AEAD";`
`49`	`47`	`break;`
`50`	`48`	`}`
`51`		`- m_bufferSizeDecrypt = BlockSize + MAC_SIZE;`
`52`	`49`	`AADBufferSize = BlockSize;`
`53`		`- m_aad = new byte[AADBufferSize];`
`54`	`50`	`setInnerMembers(isapType == IsapType.ISAP_K_128A \|\| isapType == IsapType.ISAP_K_128 ? ProcessingBufferType.Immediate :`
`55`	`51`	`ProcessingBufferType.ImmediateLargeMac, AADOperatorType.Default, DataOperatorType.Default);`
`56`	`52`	`}`