/* arcfour.c
 *
 * This implements the Arcfour stream cipher with 128 bit keys. 
 *
 * The Arcfour cipher is believed to be compatible with the RC4 cipher. 
 * RC4 is a registered trademark of RSA Data Security Inc.
 *   
 */

/* lsh, an implementation of the ssh protocol
 *
 * Copyright (C) 1998 Niels M�ller
 *
 * This program is free software; you can redistribute it and/or
 * modify it under the terms of the GNU General Public License as
 * published by the Free Software Foundation; either version 2 of the
 * License, or (at your option) any later version.
 *
 * This program is distributed in the hope that it will be useful, but
 * WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
 * General Public License for more details.
 *
 * You should have received a copy of the GNU General Public License
 * along with this program; if not, write to the Free Software
 * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA  02111-1307  USA
 */

#include "arcfour.h"

#include <assert.h>

#ifdef RCSID
RCSID("$Id$");
#endif

#define SWAP(a,b) do { int _t = a; a = b; b = _t; } while(0)

void arcfour_init(struct arcfour_ctx *ctx)
{
  unsigned i;

  /* Initialize context */

  for (i = 0; i<256; i++)
    ctx->S[i] = i;
}

/* This mode of operation is non-standard and possibly insecure. */
#if 0
void arcfour_update_key(struct arcfour_ctx *ctx,
			UINT32 length, const UINT8 *key)
{
  register UINT8 i = ctx->i;
  register UINT8 j = ctx->j;

  unsigned k;

  for (k = 0; k<length; k++)
    {
      i++; i &= 0xff;
      j += ctx->S[i] + key[k]; j &= 0xff;
      SWAP(ctx->S[i], ctx->S[j]);
    }
  ctx->i = i; ctx->j = j;
}
#endif

void arcfour_stream(struct arcfour_ctx *ctx,
		    UINT32 length, UINT8 *dest)
{
  register UINT8 i = ctx->i;
  register UINT8 j = ctx->j;
  unsigned k;

  for (k = 0; k<length; k++)
    {
      i++; i &= 0xff;
      j += ctx->S[i]; j &= 0xff;
      SWAP(ctx->S[i], ctx->S[j]);
      dest[k] = ctx->S[ (ctx->S[i] + ctx->S[j]) & 0xff ];
    }
  
  ctx->i = i; ctx->j = j;
}

void arcfour_set_key(struct arcfour_ctx *ctx, UINT32 length, const UINT8 *key)
{
  register UINT8 j; /* Depends on the eight-bitness of these variables. */
  unsigned i;
  UINT32 k;

  /* Initialize context */
  arcfour_init(ctx);

  assert(length);
  
  /* Expand key */
  i = j = k = 0;
  for ( ; i<256; i++)
    {
      j += ctx->S[i] + key[k]; j &= 0xff;
      SWAP(ctx->S[i], ctx->S[j]);
      k = (k+1) % length; /* Repeat key if needed */
    } 
  
  ctx->i = ctx->j = 0;
}

void arcfour_crypt(struct arcfour_ctx *ctx, UINT8 *dest,
		   UINT32 length, const UINT8 *src)
{
  register UINT8 i, j;

  i = ctx->i; j = ctx->j;
  while(length--)
    {
      i++; i &= 0xff;
      j += ctx->S[i]; j &= 0xff;
      SWAP(ctx->S[i], ctx->S[j]);
      *dest++ = *src++ ^ ctx->S[ (ctx->S[i] + ctx->S[j]) & 0xff ];
    }
  ctx->i = i; ctx->j = j;
}