scintia-96 0.3.2

A lightweight, keyed 96-bit permutation based on the Speck cipher, designed for unique ID derivation.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62

pub(crate) const ROT_ALPHA: u32 = 8;
pub(crate) const ROT_BETA: u32 = 3;

/// Internal iterator for generating Scintia-96 round keys.
///
/// This implements the standard Speck key schedule update logic,
/// producing 32-bit round keys from a 128-bit master key.
pub(crate) struct SpeckKeySchedule {
    k: u32,
    l: [u32; 3],
    round: u32,
}

impl SpeckKeySchedule {
    /// Creates a new key schedule iterator from a 128-bit key.
    #[inline]
    pub(crate) fn new(key: [u32; 4]) -> Self {
        Self {
            k: key[0],
            l: [key[1], key[2], key[3]],
            round: 0,
        }
    }
}

impl Iterator for SpeckKeySchedule {
    type Item = u32;

    #[inline]
    fn next(&mut self) -> Option<Self::Item> {
        let current_key = self.k;

        // Key Schedule Update (Speck standard logic)
        // alpha = 8, beta = 3
        let i = self.round;
        let l_idx = (i as usize) % 3;

        let new_l = (self.k.wrapping_add(self.l[l_idx].rotate_right(ROT_ALPHA))) ^ i;
        let new_k = self.k.rotate_left(ROT_BETA) ^ new_l;

        self.l[l_idx] = new_l;
        self.k = new_k;
        self.round += 1;

        Some(current_key)
    }
}

#[inline(always)]
pub(crate) fn encrypt_step(k: u32, x: &mut u32, y: &mut u32, z: &mut u32) {
    *x = (x.rotate_right(ROT_ALPHA).wrapping_add(*y)) ^ k;
    *y = y.rotate_left(ROT_BETA) ^ *x;
    *z ^= *y;
}

#[cfg(feature = "cipher")]
#[inline(always)]
pub(crate) fn decrypt_step(k: u32, x: &mut u32, y: &mut u32, z: &mut u32) {
    *z ^= *y;
    *y = (*y ^ *x).rotate_right(ROT_BETA);
    *x = ((*x ^ k).wrapping_sub(*y)).rotate_left(ROT_ALPHA);
}