| 1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283848586878889909192939495969798 |
- // CryptoSwift
- //
- // Copyright (C) 2014-2018 Marcin Krzyżanowski <marcin@krzyzanowskim.com>
- // This software is provided 'as-is', without any express or implied warranty.
- //
- // In no event will the authors be held liable for any damages arising from the use of this software.
- //
- // Permission is granted to anyone to use this software for any purpose,including commercial applications, and to alter it and redistribute it freely, subject to the following restrictions:
- //
- // - The origin of this software must not be misrepresented; you must not claim that you wrote the original software. If you use this software in a product, an acknowledgment in the product documentation is required.
- // - Altered source versions must be plainly marked as such, and must not be misrepresented as being the original software.
- // - This notice may not be removed or altered from any source or binary distribution.
- //
- public class BlockDecryptor: Cryptor, Updatable {
- @usableFromInline
- let blockSize: Int
- @usableFromInline
- let padding: Padding
- @usableFromInline
- var worker: CipherModeWorker
- @usableFromInline
- var accumulated = Array<UInt8>()
- @usableFromInline
- init(blockSize: Int, padding: Padding, _ worker: CipherModeWorker) throws {
- self.blockSize = blockSize
- self.padding = padding
- self.worker = worker
- }
- @inlinable
- public func update(withBytes bytes: ArraySlice<UInt8>, isLast: Bool = false) throws -> Array<UInt8> {
- self.accumulated += bytes
- // If a worker (eg GCM) can combine ciphertext + tag
- // we need to remove tag from the ciphertext.
- if !isLast && self.accumulated.count < self.blockSize + self.worker.additionalBufferSize {
- return []
- }
- let accumulatedWithoutSuffix: Array<UInt8>
- if self.worker.additionalBufferSize > 0 {
- // FIXME: how slow is that?
- accumulatedWithoutSuffix = Array(self.accumulated.prefix(self.accumulated.count - self.worker.additionalBufferSize))
- } else {
- accumulatedWithoutSuffix = self.accumulated
- }
- var processedBytesCount = 0
- var plaintext = Array<UInt8>(reserveCapacity: accumulatedWithoutSuffix.count)
- // Processing in a block-size manner. It's good for block modes, but bad for stream modes.
- for var chunk in accumulatedWithoutSuffix.batched(by: self.blockSize) {
- if isLast || (accumulatedWithoutSuffix.count - processedBytesCount) >= blockSize {
- let isLastChunk = processedBytesCount + chunk.count == accumulatedWithoutSuffix.count
- if isLast, isLastChunk, var finalizingWorker = worker as? FinalizingDecryptModeWorker {
- chunk = try finalizingWorker.willDecryptLast(bytes: chunk + accumulated.suffix(worker.additionalBufferSize)) // tag size
- }
- if !chunk.isEmpty {
- plaintext += worker.decrypt(block: chunk)
- }
- if isLast, isLastChunk, var finalizingWorker = worker as? FinalizingDecryptModeWorker {
- plaintext = Array(try finalizingWorker.didDecryptLast(bytes: plaintext.slice))
- }
- processedBytesCount += chunk.count
- }
- }
- accumulated.removeFirst(processedBytesCount) // super-slow
- if isLast {
- if accumulatedWithoutSuffix.isEmpty, var finalizingWorker = worker as? FinalizingDecryptModeWorker {
- try finalizingWorker.willDecryptLast(bytes: self.accumulated.suffix(self.worker.additionalBufferSize))
- plaintext = Array(try finalizingWorker.didDecryptLast(bytes: plaintext.slice))
- }
- plaintext = self.padding.remove(from: plaintext, blockSize: self.blockSize)
- }
- return plaintext
- }
- public func seek(to position: Int) throws {
- guard var worker = self.worker as? SeekableModeWorker else {
- fatalError("Not supported")
- }
- try worker.seek(to: position)
- self.worker = worker
- accumulated = []
- }
- }
|
