wartheking
/
WaterFlush


			
				
					
						
						
							123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293
							#if !BESTHTTP_DISABLE_ALTERNATE_SSL && (!UNITY_WEBGL || UNITY_EDITOR)
#pragma warning disable
using System;

using Best.HTTP.SecureProtocol.Org.BouncyCastle.Crypto.Utilities;
using Best.HTTP.SecureProtocol.Org.BouncyCastle.Utilities;

namespace Best.HTTP.SecureProtocol.Org.BouncyCastle.Crypto.Modes.Gcm
{
    public sealed class Tables8kGcmMultiplier
        : IGcmMultiplier
    {
        private byte[] H;
        private GcmUtilities.FieldElement[][] T;

        public void Init(byte[] H)
        {
            if (T == null)
            {
                T = new GcmUtilities.FieldElement[2][];
            }
            else if (Arrays.AreEqual(this.H, H))
            {
                return;
            }

            this.H = Arrays.Clone(H);

            for (int i = 0; i < 2; ++i)
            {
                GcmUtilities.FieldElement[] t = T[i] = new GcmUtilities.FieldElement[256];

                // t[0] = 0

                if (i == 0)
                {
                    // t[1] = H.p^7
                    GcmUtilities.AsFieldElement(this.H, out t[1]);
                    GcmUtilities.MultiplyP7(ref t[1]);
                }
                else
                {
                    // t[1] = T[i-1][1].p^8
                    GcmUtilities.MultiplyP8(ref T[i - 1][1], out t[1]);
                }

                for (int n = 1; n < 128; ++n)
                {
                    // t[2.n] = t[n].p^-1
                    GcmUtilities.DivideP(ref t[n], out t[n << 1]);

                    // t[2.n + 1] = t[2.n] + t[1]
                    GcmUtilities.Xor(ref t[n << 1], ref t[1], out t[(n << 1) + 1]);
                }
            }
        }
        uint[] z = new uint[4];

        public void MultiplyH(byte[] x)
        {
            GcmUtilities.FieldElement[] T0 = T[0], T1 = T[1];

            //GcmUtilities.FieldElement z;
            //GcmUtilities.Xor(ref T0[x[14]], ref T1[x[15]], out z);
            //for (int i = 12; i >= 0; i -= 2)
            //{
            //    GcmUtilities.MultiplyP16(ref z);
            //    GcmUtilities.Xor(ref z, ref T0[x[i]]);
            //    GcmUtilities.Xor(ref z, ref T1[x[i + 1]]);
            //}
            //GcmUtilities.AsBytes(ref z, x);

            int vPos = x[15];
            int uPos = x[14];
            ulong z1 = T0[uPos].n1 ^ T1[vPos].n1;
            ulong z0 = T0[uPos].n0 ^ T1[vPos].n0;

            for (int i = 12; i >= 0; i -= 2)
            {
                vPos = x[i + 1];
                uPos = x[i];

                ulong c = z1 << 48;
                z1 = T0[uPos].n1 ^ T1[vPos].n1 ^ ((z1 >> 16) | (z0 << 48));
                z0 = T0[uPos].n0 ^ T1[vPos].n0 ^ (z0 >> 16) ^ c ^ (c >> 1) ^ (c >> 2) ^ (c >> 7);
            }

            GcmUtilities.AsBytes(z0, z1, x);
        }
    }
}
#pragma warning restore
#endif