diff --git a/rsa.lpr b/rsa.lpr
new file mode 100644
index 0000000..015c2f4
--- /dev/null
+++ b/rsa.lpr
@@ -0,0 +1,430 @@
+program rsa;
+{$mode objfpc}{$H+}
+{$DEFINE UseCThreads}
+ {$IFDEF UNIX}{$IFDEF UseCThreads}
+ cthreads,
+ Classes, SysUtils, CustApp,
+ { you can add units after this }
+ gmp, math, rsaunit, crt;
+ { TRSAApplication }
+ TRSAApplication = class(TCustomApplication)
+ protected
+ procedure DoRun; override;
+ public
+ constructor Create(TheOwner: TComponent); override;
+ destructor Destroy; override;
+ procedure WriteHelp; virtual;
+ end;
+{ TRSAApplication }
+procedure TRSAApplication.DoRun;
+ ErrorMsg,s,version: String;
+ pass: tLockedString;
+ n1,n2,n3,modul,
+ e_exponent,d_exponent: mpz_t;
+ state: randstate_t;
+ i,j,bits,maxThreads: longint;
+ gelesen,zulesen: int64;
+ binf: file;
+ textf: textfile;
+ buff: array of byte;
+ privOut,pubOut: textfile;
+ act: tRSAAction;
+ // parse parameters
+ maxThreads:=1;
+ pass:=nil;
+ if HasOption('g','generate') then begin
+ act:=raGen;
+ ErrorMsg:=CheckOptions('g:b:rt:','generate: bits: randomize threads:');
+ if HasOption('b','bits') then
+ bits:=strtoint(GetOptionValue('b','bits')) div 2 + 1
+ else
+ bits:=64;
+ if HasOption('t','threads') then
+ maxThreads:=strtoint(GetOptionValue('t','threads'));
+ end
+ else if HasOption('e','encrypt') then begin
+ act:=raEnc;
+ ErrorMsg:=CheckOptions('e:i:o:','encrypt: input: output:');
+ if (ErrorMsg='') and not (HasOption('i','input') and HasOption('o','output')) then
+ ErrorMsg:='Ich benötige zum Verschlüsseln Dateien!';
+ end
+ else if HasOption('d','decrypt') then begin
+ act:=raDec;
+ ErrorMsg:=CheckOptions('d:i:o:','decrypt: input: output:');
+ if (ErrorMsg='') and not (HasOption('i','input') and HasOption('o','output')) then
+ ErrorMsg:='Ich benötige zum Entschlüsseln Dateien!';
+ end
+ else if HasOption('c','check') then begin
+ act:=raChk;
+ ErrorMsg:=CheckOptions('c:','check:');
+ end
+ else if HasOption('u','update') then begin
+ act:=raUpd;
+ ErrorMsg:=CheckOptions('u:','update:');
+ end
+ else begin
+ act:=raUnk;
+ WriteHelp;
+ Terminate;
+ Exit;
+ end;
+ if ErrorMsg<>'' then begin
+ ShowException(Exception.Create(ErrorMsg));
+ Terminate;
+ Exit;
+ end;
+ { add your program here }
+ case act of
+ raGen: begin
+ readNewPassword(pass,ceil(sqrt(bits/8)));
+ mpz_init(n1);
+ mpz_init(n2);
+ mpz_init(n3);
+ mpz_init(modul);
+ mpz_init(e_exponent);
+ mpz_init(d_exponent);
+ assignfile(privOut,GetOptionValue('g','generate'));
+ rewrite(privOut);
+ assignfile(pubOut,GetOptionValue('g','generate')+'.pub');
+ rewrite(pubOut);
+ if HasOption('r','randomize') then begin
+ s:=acquireRandomness(bits div 4 + 1);
+ mpz_set_str(n1,@(s[1]),16);
+ end
+ else
+ mpz_set_str(n1,'1234567890',10);
+ mp_randinit_default(state);
+ mp_randseed(state,n1);
+ mpz_urandomb(n1,state,bits);
+ mpz_urandomb(n2,state,bits);
+ mpz_ui_pow_ui(n3,2,bits);
+ mpz_add(n1,n1,n3);
+ mpz_add(n2,n2,n3);
+ writeln;
+ write('Suche erste Primzahl ...');
+ nextPrime(n1,maxThreads);
+ writeln;
+ write('... suche zweite Primzahl ...');
+ repeat
+ nextPrime(n2,maxThreads);
+ until mpz_cmp(n1,n2)<>0;
+ mpz_mul(modul,n2,n1);
+ mpz_sub_ui(n1,n1,1);
+ mpz_sub_ui(n2,n2,1);
+ mpz_mul(n3,n1,n2);
+ writeln;
+ writeln('... suche Exponenten ...');
+ repeat
+ mpz_urandomb(e_exponent,state,min(16,bits div 2));
+ mpz_setbit(e_exponent,0);
+ until mpz_invert(d_exponent,e_exponent,n3)<>0;
+ mpz_set_ui(e_exponent,1025);
+ mpz_sub_ui(d_exponent,modul,1000);
+ writeln('... verschlüssele ...');
+ symmetricEncryption(d_exponent,pass,edEnc,'latest');
+ writeln('... speichere ...');
+ writeln(privOut,'Modul: '+mpz_get_str(nil,16,modul));
+ writeln(privOut,'e-Exponent: '+mpz_get_str(nil,16,e_exponent));
+ writeln(privOut,'d-Exponent: '+mpz_get_str(nil,16,d_exponent));
+ writeln(pubOut,'Modul: '+mpz_get_str(nil,16,modul));
+ writeln(pubOut,'e-Exponent: '+mpz_get_str(nil,16,e_exponent));
+ writeln('... fertig');
+ mpz_clear(n1);
+ mpz_clear(n2);
+ mpz_clear(n3);
+ mpz_clear(modul);
+ mpz_clear(e_exponent);
+ mpz_clear(d_exponent);
+ closefile(privOut);
+ closefile(pubOut);
+ end;
+ raEnc: begin
+ mpz_init(n1);
+ mpz_init(n2);
+ mpz_init(n3);
+ mpz_init(modul);
+ mpz_init(e_exponent);
+ mpz_init(d_exponent);
+ if (importKey(modul,e_exponent,d_exponent,version,GetOptionValue('e','encrypt')) and $01) = 0 then begin
+ writeln('Keinen öffentlichen Schlüssel in Datei '''+GetOptionValue('e','encrypt')+''' gefunden!');
+ Terminate;
+ Exit;
+ end;
+ assignfile(binf,GetOptionValue('i','input'));
+ reset(binf,1);
+ assignfile(textf,GetOptionValue('o','output'));
+ rewrite(textf);
+ setlength(buff,1);
+ setlength(buff,(mpz_sizeinbase(modul,256) div sizeof(buff[0]))-1);
+ gelesen:=0;
+ zulesen:=8+filesize(binf);
+ fillchar(buff[0],length(buff)*sizeof(buff[0]),0);
+ while gelesen<zulesen do begin
+ if gelesen=0 then begin
+ for i:=0 to 7 do
+ buff[i]:=(filesize(binf) shr (8*i)) and $ff;
+ gelesen:=8;
+ i:=8 div sizeof(buff[0]);
+ end
+ else i:=0;
+ j:=min((length(buff)-i)*sizeof(buff[0]),zulesen-gelesen);
+ blockread(binf,buff[i],j);
+ gelesen:=gelesen + j;
+ mpz_set_ui(n1,0);
+ for j:=0 to length(buff)-1 do begin
+ mpz_mul_2exp(n1,n1,sizeof(buff[j])*8);
+ mpz_add_ui(n1,n1,buff[j]);
+ end;
+ mpz_powm(n2,n1,e_Exponent,modul);
+ writeln(textf,mpz_get_str(nil,16,n2));
+ end;
+ closefile(binf);
+ closefile(textf);
+ mpz_clear(n1);
+ mpz_clear(n2);
+ mpz_clear(n3);
+ mpz_clear(modul);
+ mpz_clear(e_exponent);
+ mpz_clear(d_exponent);
+ end;
+ raDec: begin
+ write('Passwort des Schlüssels eingeben: ');
+ readlnblind(pass);
+ mpz_init(n1);
+ mpz_init(n2);
+ mpz_init(n3);
+ mpz_init(modul);
+ mpz_init(e_exponent);
+ mpz_init(d_exponent);
+ if (importKey(modul,e_exponent,d_exponent,version,GetOptionValue('d','decrypt')) and $02) = 0 then begin
+ writeln('Keinen privaten Schlüssel in Datei '''+GetOptionValue('d','decrypt')+''' gefunden!');
+ Terminate;
+ Exit;
+ end;
+ symmetricEncryption(d_exponent,pass,edDec,version);
+ setlength(buff,1);
+ setlength(buff,(mpz_sizeinbase(modul,256) div sizeof(buff[0]))-1);
+ fillchar(buff[0],length(buff)*sizeof(buff[0]),0);
+ gelesen:=0;
+ zulesen:=-1;
+ assignfile(textf,GetOptionValue('i','input'));
+ reset(textf);
+ assignfile(binf,GetOptionValue('o','output'));
+ rewrite(binf,1);
+ while not eof(textf) do begin
+ readln(textf,s);
+ mpz_set_str(n1,pchar(s),16);
+ mpz_powm(n2,n1,d_Exponent,modul);
+ for i:=length(buff)-1 downto 0 do begin
+ buff[i]:=mpz_get_ui(n2) and $ff;
+ mpz_fdiv_q_2exp(n2,n2,8);
+ end;
+ if gelesen=0 then begin
+ zulesen:=0;
+ for i:=0 to 7 do
+ zulesen:=zulesen*256+buff[7-i];
+ i:=8 div sizeof(buff[0]);
+ end
+ else
+ i:=0;
+ j:=min(zulesen-gelesen,(length(buff)-i)*sizeof(buff[0]));
+ if j>0 then blockwrite(binf,buff[i],j);
+ gelesen:=gelesen+j;
+ end;
+ if gelesen <> zulesen then
+ writeln(inttostr(gelesen)+' Bytes geschrieben, aber es waren '+inttostr(zulesen)+' angekündigt!');
+ closefile(binf);
+ closefile(textf);
+ mpz_clear(n1);
+ mpz_clear(n2);
+ mpz_clear(n3);
+ mpz_clear(modul);
+ mpz_clear(e_exponent);
+ mpz_clear(d_exponent);
+ end;
+ raChk: begin
+ write('Passwort des Schlüssels eingeben: ');
+ readlnblind(pass);
+ mpz_init(n1);
+ mpz_init(n2);
+ mpz_init(modul);
+ mpz_init(e_exponent);
+ mpz_init(d_exponent);
+ if importKey(modul,e_exponent,d_exponent,version,GetOptionValue('c','check')) <> $03 then begin
+ writeln('Der Datei '''+GetOptionValue('c','check')+''' fehlt mindestens ein Schlüsselteil!');
+ Terminate;
+ Exit;
+ end;
+ symmetricEncryption(d_exponent,pass,edDec,version);
+ for i:=0 to 100 do begin
+ s:=copy(inttostr(i)+paramstr(0),1,mpz_sizeinbase(modul,256)-1);
+ mpz_set_str(n1,pchar(s),256);
+ mpz_powm(n2,n1,e_exponent,modul);
+ mpz_powm(n2,n2,d_exponent,modul);
+ if mpz_cmp(n1,n2)<>0 then
+ writeln('Entschlüsselter Text ist ungleich Original! - Passwort falsch?');
+ end;
+ writeln('Tests abgeschlossen.');
+ mpz_clear(n1);
+ mpz_clear(n2);
+ mpz_clear(modul);
+ mpz_clear(e_exponent);
+ mpz_clear(d_exponent);
+ end;
+ raUpd: begin
+ write('Passwort des Schlüssels eingeben: ');
+ readlnblind(pass);
+ mpz_init(n1);
+ mpz_init(n2);
+ mpz_init(modul);
+ mpz_init(e_exponent);
+ mpz_init(d_exponent);
+ if importKey(modul,e_exponent,d_exponent,version,GetOptionValue('u','update')) <> $03 then begin
+ writeln('Der Datei '''+GetOptionValue('u','update')+''' fehlt mindestens ein Schlüsselteil!');
+ Terminate;
+ Exit;
+ end;
+ symmetricEncryption(d_exponent,pass,edDec,version);
+ write('Neues Passwort vergeben? (j/n) ');
+ readln(s);
+ if pos('j',s)=1 then
+ readNewPassword(pass,ceil(sqrt(mpz_sizeinbase(modul,2)/8)));
+ version:='latest';
+ symmetricEncryption(d_exponent,pass,edEnc,version);
+ repeat
+ write('Ziel zum Speichern eingeben: ');
+ readln(s);
+ until (not fileexists(s)) and (not fileexists(s+'.pub'));
+ assignfile(privOut,s);
+ rewrite(privOut);
+ assignfile(pubOut,s+'.pub');
+ rewrite(pubOut);
+ writeln(privOut,'Modul: '+mpz_get_str(nil,16,modul));
+ writeln(privOut,'Version: '+version);
+ writeln(privOut,'e-Exponent: '+mpz_get_str(nil,16,e_exponent));
+ writeln(privOut,'d-Exponent: '+mpz_get_str(nil,16,d_exponent));
+ writeln(pubOut,'Modul: '+mpz_get_str(nil,16,modul));
+ writeln(pubOut,'e-Exponent: '+mpz_get_str(nil,16,e_exponent));
+ closefile(pubOut);
+ closefile(privOut);
+ mpz_clear(n1);
+ mpz_clear(n2);
+ mpz_clear(modul);
+ mpz_clear(e_exponent);
+ mpz_clear(d_exponent);
+ end;
+ else
+ writeln('Fehler: Funktion noch nicht implementiert!');
+ end{of case};
+ // stop program loop
+ Terminate;
+constructor TRSAApplication.Create(TheOwner: TComponent);
+ inherited Create(TheOwner);
+ StopOnException:=True;
+destructor TRSAApplication.Destroy;
+ inherited Destroy;
+procedure TRSAApplication.WriteHelp;
+ { add your help code here }
+ writeln('Usage: ',ExeName,' -h');
+ writeln(' get help');
+ writeln('Usage: ',ExeName,' -g/--generate $key [-b/--bits $Bits] [-r/--randomize] [-t/--threads $maxThreads]');
+ writeln(' generate key');
+ writeln('Usage: ',ExeName,' -e/--encrypt $key -i/--input $input -o/--output $output');
+ writeln(' encrypt with key');
+ writeln('Usage: ',ExeName,' -d/--decrypt $key -i/--input $input -o/--output $output');
+ writeln(' decrypt with key');
+ writeln('Usage: ',ExeName,' -c/--check $key');
+ writeln(' check integrity of key');
+ writeln('Usage: ',ExeName,' -u/--update $key');
+ writeln(' update key, possibly change passphrase');
+ Application: TRSAApplication;
+ Application:=TRSAApplication.Create(nil);
+ Application.Title:='RSA Application';
+ Application.Run;
+ Application.Free;
diff --git a/rsaunit.pas b/rsaunit.pas
new file mode 100644
index 0000000..cf0c5e7
--- /dev/null
+++ b/rsaunit.pas
@@ -0,0 +1,709 @@
+unit rsaunit;
+{$mode objfpc}{$H+}
+ Classes, SysUtils, gmp, math, crt, mlockunit,
+ dcprijndael, dcpmars, dcpblowfish, dcptwofish, dcpserpent, dcpcrypt2,
+ dcphaval;
+ tRSAAction = (raUnk,raGen,raEnc,raDec,raChk,raUpd);
+ tEncryptionDirection = (edEnc,edDec);
+ tUsedCiphers = (ucRijndael,ucMars,ucBlowfish,ucTwofish,ucSerpent);
+ tLockedString = class
+ private
+ _inh: pchar;
+ memstart: pointer;
+ locked,memlen,
+ pagesize: longint;
+ procedure lock;
+ procedure unlock;
+ procedure wInh(i: pchar);
+ public
+ constructor create;
+ destructor destroy; override;
+ procedure assign(ls: tLockedString);
+ procedure delete(posi,leng: longint);
+ procedure append(s: string);
+ function substr(start,leng: longint): string;
+ function len: longint;
+ function isEqual(s: tLockedString): boolean;
+ function teil(num,tot: longint): string; overload;
+ function teil(cph: tUsedCiphers): string; overload;
+ property inh: pchar
+ read _inh
+ write wInh;
+ end;
+ tNextPrimeThread = class(tThread)
+ fertig: byte; // Bit 0: Primzahl gefunden; Bit 1: execute beendet
+ myNum: mpz_t;
+ abbruch,
+ arbeite: boolean;
+ myStep: longint;
+ cnt: int64;
+ constructor create(num: mpz_t; offset,step: longint);
+ destructor destroy; override;
+ procedure execute; override;
+ end;
+function acquireRandomness(bytes: int64): string; // hex-encoded
+function nextPrime(var num: mpz_t; threads: longint): boolean;
+function nextPrimeSt(var num: mpz_t; step: longint; var keepWorking, abort: boolean; var getestet: int64): boolean; // Prime found?
+function importKey(var m,e,d: mpz_t; out version: string; nam: string): byte; // bit 0: enc-Key found; bit 1: dec-Key found
+procedure symmetricEncryption(var input: mpz_t; key: tLockedString; direction: tEncryptionDirection; version: string);
+function hexdump(arr: array of byte): string; overload;
+function hexdump(s: string): string; overload;
+procedure readlnblind(out s: tLockedString);
+procedure userCallback;
+function mydatetimetostr(tm: extended): string;
+procedure readNewPassword(var pass: tLockedString; len: int64);
+function cpuUtilization: extended;
+ cipherClasses: array[tUsedCiphers] of class of TDCP_blockcipher =
+ (tDCP_Rijndael,tDCP_Mars,tDCP_Blowfish,tDCP_Twofish,tDCP_Serpent);
+ ciphNam: array[tUsedCiphers] of string =
+ ('Rijndael','Mars','Blowfish','Twofish','Serpent');
+ _cpuLastUsed,_cpuLastIdle: int64;
+function acquireRandomness(bytes: int64): string;
+ tf: file;
+ buff: array of byte;
+ i,j: int64;
+ write(stderr,'Zufall sammeln ...');
+ try
+ assignfile(tf,'/dev/random');
+ setlength(buff,bytes);
+ i:=0;
+ j:=0;
+ reset(tf,1);
+ while i<length(buff) do begin
+ blockread(tf,buff[i],(length(buff)-i)*sizeof(buff[0]),j);
+ i:=i+j;
+ if i<length(buff) then begin
+ write(stderr,'.');
+ sleep(100);
+ userCallback;
+ end;
+ end;
+ finally
+ closefile(tf);
+ end;
+ result:='';
+ for i:=0 to length(buff)-1 do
+ result:=result+inttohex(buff[i],2);
+ writeln(stderr,' fertig');
+function nextPrime(var num: mpz_t; threads: longint): boolean;
+// multi threaded
+ npts: array of tNextPrimeThread;
+ i,cnt,step,
+ x,y,penalty: longint;
+ offsets: array of longint;
+ dummy: mpz_t;
+ total: int64;
+ enps,start: extended;
+ mpz_setbit(num,0);
+ result:=false;
+ setlength(offsets,0);
+ step:=0;
+ enps:=mpz_sizeinbase(num,2)*ln(2)/2;
+ mpz_init(dummy);
+ repeat
+ cnt:=0;
+ for i:=0 to length(offsets)-1 do begin
+ mpz_add_ui(dummy,num,offsets[i]);
+ if mpz_gcd_ui(dummy,dummy,step)=1 then inc(cnt)
+ else offsets[i]:=-1;
+ end;
+ if cnt<threads then begin // zu wenige wirklich arbeitende Threads?
+ setlength(offsets,max(threads,length(offsets)+1));
+ for i:=0 to length(offsets)-1 do
+ offsets[i]:=i*2;
+ step:=2*length(offsets);
+ end;
+ until cnt>=threads; // genug wirklich arbeitende Threads?
+ mpz_clear(dummy);
+ if cnt<>threads then
+ writeln(stderr,'Genau '+inttostr(threads)+' arbeitende Threads habe ich nicht hinbekommen, daher habe ich auf '+inttostr(cnt)+' Threads erhöht.');
+ setlength(npts,cnt);
+ cnt:=0;
+ for i:=0 to length(npts)-1 do begin
+ while (cnt<length(offsets)) and (offsets[cnt]=-1) do
+ inc(cnt);
+ if cnt>=length(offsets) then
+ raise Exception.create('Ich habe mich bei den Threads verzählt (zu viele Threads)!');
+ npts[i]:=tNextPrimeThread.create(num,offsets[cnt],step);
+ inc(cnt);
+ end;
+ while (cnt<length(offsets)) and (offsets[cnt]=-1) do
+ inc(cnt);
+ if cnt<>length(offsets) then
+ raise Exception.create('Ich habe mich bei den Threads verzählt (zu wenige Threads)!');
+ for i:=0 to length(npts)-1 do
+ npts[i].suspended:=false;
+ x:=whereX;
+ y:=whereY;
+ start:=now;
+ penalty:=0;
+ repeat
+ for i:=0 to length(npts)-1 do
+ result:=result or odd(npts[i].fertig);
+ if not result then begin
+ if penalty=0 then sleep(1000)
+ else sleep(100);
+ total:=0;
+ for i:=0 to length(npts)-1 do
+ total:=total+npts[i].cnt;
+ gotoxy(x,y);
+ x:=whereX;
+ y:=whereY;
+ write(' '+floattostrf(total/enps*100,ffFixed,10,3)+' % ETA: '+mydatetimetostr((now-start)/max(1,total)*enps)+' ');
+ if cpuUtilization > 0.8 then begin
+ inc(penalty);
+ if penalty>2 then begin
+ for i:=0 to length(npts)-1 do
+ npts[i].arbeite:=false;
+ writeln('Zu hohe Gesamtlast auf der CPU, ich pausiere!');
+ repeat
+ userCallback;
+ sleep(1000);
+ until cpuUtilization<0.4;
+ penalty:=0;
+ writeln('CPU-Last ist wieder gesunken, ich mache weiter!');
+ for i:=0 to length(npts)-1 do
+ npts[i].arbeite:=true;
+ end;
+ end
+ else penalty:=0;
+ userCallback;
+ end;
+ until result;
+ for i:=0 to length(npts)-1 do
+ npts[i].abbruch:=true;
+ repeat
+ result:=true;
+ for i:=0 to length(npts)-1 do
+ result:=result and odd(npts[i].fertig shr 1);
+ if not result then sleep(100);
+ until result;
+ result:=false;
+ for i:=0 to length(npts)-1 do begin
+ if (not result) and odd(npts[i].fertig) then begin
+ result:=true;
+ mpz_set(num,npts[i].myNum);
+ end;
+ npts[i].free;
+ end;
+function nextPrimeSt(var num: mpz_t; step: longint; var keepWorking, abort: boolean; var getestet: int64): boolean;
+// single threaded
+ step:=step+byte(odd(step));
+ mpz_setbit(num,0);
+ result:=false;
+ getestet:=0;
+ result:=mpz_probab_prime_p(num,25) > 0;
+ while not (abort or result) do begin
+ while not keepWorking do
+ sleep(100);
+ userCallback;
+ mpz_add_ui(num,num,step);
+ inc(getestet);
+ result:=mpz_probab_prime_p(num,25) > 0;
+ end;
+function importKey(var m,e,d: mpz_t; out version: string; nam: string): byte; // bit 0: enc-Key found; bit 1: dec-Key found
+ f: textfile;
+ s: string;
+ assignfile(f,nam);
+ reset(f);
+ result:=0;
+ version:='';
+ while not eof(f) do begin
+ readln(f,s);
+ if pos('Modul: ',s)=1 then begin
+ delete(s,1,pos(' ',s));
+ s:=trim(s);
+ mpz_set_str(m,pchar(s),16);
+ result:=result or $04;
+ continue;
+ end;
+ if pos('d-Exponent: ',s)=1 then begin
+ delete(s,1,pos(' ',s));
+ s:=trim(s);
+ mpz_set_str(d,pchar(s),16);
+ result:=result or $02;
+ continue;
+ end;
+ if pos('e-Exponent: ',s)=1 then begin
+ delete(s,1,pos(' ',s));
+ s:=trim(s);
+ mpz_set_str(e,pchar(s),16);
+ result:=result or $01;
+ continue;
+ end;
+ if pos('Version: ',s)=1 then begin
+ delete(s,1,pos(' ',s));
+ version:=trim(s);
+ continue;
+ end;
+ writeln(stderr,'Warnung: Unbekannte Zeile in Schlüsseldatei gefunden und ignoriert.');
+ end;
+ if (result and $04) = 0 then result:=$00
+ else result:=result and $03;
+ closefile(f);
+procedure symmetricEncryption(var input: mpz_t; key: tLockedString; direction: tEncryptionDirection; version: string);
+ ciphers: array[tUsedCiphers] of TDCP_blockcipher;
+ ciph: tUsedCiphers;
+ i: longint;
+ bs,vNum: int64;
+ inh: array[boolean] of array of byte;
+ curr: boolean;
+ mpLen: mpz_t;
+ if version='' then
+ vNum:=0
+ else if version='latest' then begin
+ vNum:=1;
+ version:=inttostr(vNum);
+ end
+ else
+ vNum:=strtoint(version);
+ if direction=edEnc then begin
+ bs:=input.size*sizeof(^);
+ mpz_mul_2exp(input,input,sizeof(bs)*8);
+ mpz_add_ui(input,input,bs);
+ end;
+ mpz_init(mpLen);
+ mpz_set_ui(mpLen,1);
+ for ciph:=low(tUsedCiphers) to high(tUsedCiphers) do begin
+ ciphers[ciph]:=cipherClasses[ciph].Create(nil);
+ case vNum of
+ 0: ciphers[ciph].InitStr(key.teil(ciph),TDCP_haval);
+ 1: ciphers[ciph].InitStr(key.inh+ciphNam[ciph],TDCP_haval);
+ end{of case};
+ mpz_lcm_ui(mpLen,mpLen,ciphers[ciph].getBlockSize div 8);
+ end;
+ bs:=mpz_get_ui(mpLen);
+ mpz_clear(mpLen);
+ bs:=ceil(bs/(input.size*sizeOf(^)))*input.size*sizeOf(^);
+ for curr:=false to true do begin
+ setlength(inh[curr],bs);
+ fillchar(inh[curr][0],length(inh[curr]),$00);
+ move(^,inh[curr][0],min(length(inh[curr]),input.size*sizeOf(^)));
+ end;
+ curr:=false;
+ if direction=edEnc then begin
+ for ciph:=low(tUsedCiphers) to high(tUsedCiphers) do begin
+ bs:=ciphers[ciph].getBlockSize div 8;
+ for i:=0 to (length(inh[curr]) div bs)-1 do begin
+ inh[curr][i*bs]:=inh[curr][i*bs] xor (i and $ff);
+ ciphers[ciph].EncryptECB(inh[curr][i*bs],inh[not curr][i*bs]);
+ end;
+ curr:=not curr;
+ end;
+ end
+ else
+ for ciph:=high(tUsedCiphers) downto low(tUsedCiphers) do begin
+ bs:=ciphers[ciph].getBlockSize div 8;
+ for i:=0 to (length(inh[curr]) div bs)-1 do begin
+ ciphers[ciph].DecryptECB(inh[curr][i*bs],inh[not curr][i*bs]);
+ inh[not curr][i*bs]:=inh[not curr][i*bs] xor (i and $ff);
+ end;
+ curr:=not curr;
+ end;
+ if direction=edDec then begin
+ bs:=0;
+ for i:=sizeof(bs)-1 downto 0 do
+ bs:=(bs shl 8) or inh[curr][i];
+ mpz_realloc2(input,bs*8);
+ move(inh[curr][sizeof(bs)],^,input.alloc*sizeof(^));
+ end
+ else begin
+ mpz_realloc2(input,length(inh[curr])*8);
+ move(inh[curr][0],^,input.alloc*sizeof(^));
+ end;
+ input.size:=input.alloc;
+ for curr:=false to true do
+ setlength(inh[curr],0);
+ for ciph:=low(tUsedCiphers) to high(tUsedCiphers) do
+ ciphers[ciph].free;
+function hexdump(arr: array of byte): string;
+var i: longint;
+ result:='';
+ for i:=0 to length(arr)-1 do
+ result:=result + inttohex(arr[i],2);
+function hexdump(s: string): string;
+var i: longint;
+ result:='';
+ for i:=1 to length(s) do
+ result:=result + inttohex(ord(s[i]),2);
+procedure readlnblind(out s: tLockedString);
+var c: char;
+ s:=tLockedString.create;
+ c:=#0;
+ while not (c in [#13,#27]) do begin
+ c:=readkey;
+ case c of
+ #8:
+ s.delete(s.len,1);
+ #13,#27:
+ writeln;
+ else
+ s.append(c);
+ end{of case};
+ end;
+procedure userCallback;
+ if keypressed then
+ if readkey in [#27,'q'] then begin
+ writeln('Abbruch durch Benutzer!');
+ halt;
+ end;
+function mydatetimetostr(tm: extended): string;
+ zeit: int64;
+ zeit:=floor(tm*24*60*60); // in Sekunden
+ result:=inttostr(zeit mod 60); // Sekunden
+ zeit:=zeit div 60;
+ if zeit=0 then exit;
+ while length(result)<2 do
+ result:='0'+result;
+ result:=inttostr(zeit mod 60)+':'+result; // Minuten
+ zeit:=zeit div 60;
+ if zeit=0 then exit;
+ while length(result)<5 do
+ result:='0'+result;
+ result:=inttostr(zeit mod 24)+':'+result; // Stunden
+ zeit:=zeit div 24;
+ if zeit=0 then exit;
+ result:=', '+result;
+ if (zeit mod 7)<>1 then result:='e'+result;
+ result:=inttostr(zeit mod 7)+' Tag'+result;
+ zeit:=zeit div 7;
+ if zeit=0 then exit;
+ result:=', '+result;
+ if zeit<>1 then result:='n'+result;
+ result:=inttostr(zeit)+' Woche'+result;
+procedure readNewPassword(var pass: tLockedString; len: int64);
+ cPass: tLockedString;
+ cPass:=nil;
+ repeat
+ if cPass<>nil then
+ writeln('Fehler: Die Passwörter unterscheiden sich!');
+ write('Passwort zum Sichern des Schlüssels eingeben: ');
+ readlnblind(pass);
+ cPass.Free;
+ write('Wiederholen: ');
+ readlnblind(cPass);
+ if pass.inh='' then begin
+ writeln('Fehler: Leeres Passwort!');
+ halt(1);
+ end;
+ if pass.len<len then begin
+ writeln('Fehler: Passwort zu kurz, sollte mindestens '+inttostr(len)+' Zeichen lang sein!');
+ pass.inh:='';
+ continue;
+ end;
+ until pass.isEqual(cPass) and (pass.len<>0);
+ cPass.Free;
+function cpuUtilization: extended;
+ procstat: textfile;
+ s: string;
+ used,idle: int64;
+ i: integer;
+ result:=0;
+ s:='';
+ assignfile(procstat,'/proc/stat');
+ reset(procstat);
+ while not eof(procstat) do begin
+ readln(procstat,s);
+ if pos('cpu ',s)=1 then break;
+ end;
+ closefile(procstat);
+ if pos('cpu ',s)<>1 then exit;
+ delete(s,1,pos(' ',s));
+ s:=trim(s);
+ used:=0;
+ idle:=0;
+ for i:=0 to 3 do begin
+ used:=used+idle;
+ idle:=strtoint(copy(s,1,pos(' ',s)-1));
+ delete(s,1,pos(' ',s));
+ s:=trim(s);
+ end;
+ result:=(used-_cpuLastUsed)/max(1,used-_cpuLastUsed + idle-_cpuLastIdle);
+ _cpuLastUsed:=used;
+ _cpuLastIdle:=idle;
+// tLockedString ***************************************************************
+constructor tLockedString.create;
+ inherited create;
+ pagesize:=sysconf(_SC_PAGESIZE);
+ locked:=0;
+ memlen:=0;
+ _inh:=nil;
+ memstart:=nil;
+destructor tLockedString.destroy;
+ unlock;
+ inherited destroy;
+procedure tLockedString.lock;
+ if locked>0 then begin
+ if (locked and (pagesize-1)) <> 0 then // nur ganze Speicherseiten locken!
+ locked:=(locked and not (pagesize-1)) + pagesize;
+ memlen:=locked+pagesize;
+ getmem(memstart,memlen);
+ if memstart=nil then begin
+ writeln('Fehler beim Reservieren des Speichers!');
+ halt(1);
+ end;
+ _inh:=pchar(uint64(memstart) and not (pagesize-1)) + pagesize;
+ if mlock(_inh,locked)<>0 then begin
+ writeln('Fehler beim Sperren des Speichers!');
+ halt(1);
+ end;
+ end;
+procedure tLockedString.unlock;
+ if locked>0 then begin
+ fillchar(memstart^,memlen,$00);
+ if munlock(_inh,locked)<>0 then begin
+ writeln('Fehler beim Entsperren des Speichers!');
+ halt(1);
+ end;
+ freemem(memstart,memlen);
+ memlen:=0;
+ locked:=0;
+ end;
+procedure tLockedString.wInh(i: pchar);
+ if length(i)>=locked-1 then begin
+ unlock;
+ locked:=length(i)+1;
+ lock;
+ end;
+ move(i^,_inh^,length(i)+1);
+procedure tLockedString.assign(ls: tLockedString);
+ unlock;
+ locked:=ls.len+1;
+ lock;
+ move(ls._inh^,_inh^,ls.len+1);
+procedure tLockedString.delete(posi,leng: longint);
+ tmp: tLockedString;
+ if len=0 then exit;
+ while posi<1 do
+ posi:=posi+len;
+ leng:=min(leng,len-posi+1);
+ if leng=0 then exit;
+ tmp:=tLockedString.create;
+ tmp.assign(self);
+ move((tmp._inh+posi-1+leng)^,(_inh+posi-1)^,len+2-posi-leng);
+procedure tLockedString.append(s: string);
+ tmp: tLockedString;
+ if length(s)=0 then exit;
+ if len=0 then begin
+ inh:=pchar(s);
+ exit;
+ end;
+ tmp:=tLockedString.create;
+ tmp.assign(self);
+ unlock;
+ locked:=tmp.len+length(s)+1;
+ lock;
+ move(tmp._inh^,_inh^,tmp.len); // Teil 1
+ move(s[1],(_inh+tmp.len)^,length(s)); // Teil 2
+ (_inh+tmp.len+length(s)+1)^:=#0; // Terminator
+function tLockedString.substr(start,leng: longint): string;
+ leng:=min(leng,len-start+1);
+ if leng<=0 then begin
+ result:='';
+ exit;
+ end;
+ setlength(result,leng);
+ move((_inh+(start-1))^,result[1],length(result));
+function tLockedString.len: longint;
+ result:=length(_inh);
+function tLockedString.isEqual(s: tLockedString): boolean;
+ result:=s.len=len;
+ if result and (len<>0) then
+ result:=compareMem(s._inh,_inh,len+1);
+function tLockedString.teil(cph: tUsedCiphers): string;
+ result:=
+ teil(ord(cph),ord(high(tUsedCiphers))-ord(low(tUsedCiphers))+1);
+function tLockedString.teil(num,tot: longint): string;
+ result:=
+ substr(
+ round(1 + num/(2*tot+1)*2*len),
+ ceil(3*len/(2*tot+1))
+ );
+// tNextPrimeThread ************************************************************
+constructor tNextPrimeThread.create(num: mpz_t; offset,step: longint);
+ inherited create(true);
+ fertig:=0;
+ abbruch:=false;
+ arbeite:=true;
+ mpz_init(myNum);
+ mpz_add_ui(myNum,num,offset);
+ myStep:=step;
+ cnt:=0;
+destructor tNextPrimeThread.destroy;
+ mpz_clear(myNum);
+ inherited destroy;
+procedure tNextPrimeThread.execute;
+ dummy: mpz_t;
+ hoffnungslos: boolean;
+ mpz_init(dummy);
+ hoffnungslos:=mpz_gcd_ui(dummy,myNum,myStep)>1;
+ mpz_clear(dummy);
+ if hoffnungslos then
+ writeln(stderr,'Warnung: Dieser Thread kann keine Primzahlen finden.')
+ else
+ if nextPrimeSt(myNum,myStep,arbeite,abbruch,cnt) then
+ fertig:=fertig or $01;
+ fertig:=fertig or $02;
+ ReturnNilIfGrowHeapFails:=true;
+ _cpuLastUsed:=0;
+ _cpuLastIdle:=0;