Bug Summary

File:src/lib/libcrypto/des/ede_cbcm_enc.c
Warning:line 186, column 2
Value stored to 'tin0' is never read

Annotated Source Code

Press '?' to see keyboard shortcuts

clang -cc1 -cc1 -triple amd64-unknown-openbsd7.4 -analyze -disable-free -clear-ast-before-backend -disable-llvm-verifier -discard-value-names -main-file-name ede_cbcm_enc.c -analyzer-checker=core -analyzer-checker=apiModeling -analyzer-checker=unix -analyzer-checker=deadcode -analyzer-checker=security.insecureAPI.UncheckedReturn -analyzer-checker=security.insecureAPI.getpw -analyzer-checker=security.insecureAPI.gets -analyzer-checker=security.insecureAPI.mktemp -analyzer-checker=security.insecureAPI.mkstemp -analyzer-checker=security.insecureAPI.vfork -analyzer-checker=nullability.NullPassedToNonnull -analyzer-checker=nullability.NullReturnedFromNonnull -analyzer-output plist -w -setup-static-analyzer -mrelocation-model pic -pic-level 1 -pic-is-pie -mframe-pointer=all -relaxed-aliasing -ffp-contract=on -fno-rounding-math -mconstructor-aliases -funwind-tables=2 -target-cpu x86-64 -target-feature +retpoline-indirect-calls -target-feature +retpoline-indirect-branches -tune-cpu generic -debugger-tuning=gdb -fcoverage-compilation-dir=/usr/src/lib/libcrypto/obj -resource-dir /usr/local/llvm16/lib/clang/16 -D LIBRESSL_INTERNAL -D HAVE_FUNOPEN -I /usr/src/lib/libcrypto -I /usr/src/lib/libcrypto/arch/amd64 -I /usr/src/lib/libcrypto/asn1 -I /usr/src/lib/libcrypto/bio -I /usr/src/lib/libcrypto/bn -I /usr/src/lib/libcrypto/bn/arch/amd64 -I /usr/src/lib/libcrypto/bytestring -I /usr/src/lib/libcrypto/curve25519 -I /usr/src/lib/libcrypto/dh -I /usr/src/lib/libcrypto/dsa -I /usr/src/lib/libcrypto/ec -I /usr/src/lib/libcrypto/ecdsa -I /usr/src/lib/libcrypto/evp -I /usr/src/lib/libcrypto/hidden -I /usr/src/lib/libcrypto/hmac -I /usr/src/lib/libcrypto/kdf -I /usr/src/lib/libcrypto/modes -I /usr/src/lib/libcrypto/ocsp -I /usr/src/lib/libcrypto/pkcs12 -I /usr/src/lib/libcrypto/rsa -I /usr/src/lib/libcrypto/sha -I /usr/src/lib/libcrypto/ts -I /usr/src/lib/libcrypto/x509 -I /usr/src/lib/libcrypto/obj -D AES_ASM -D BSAES_ASM -D VPAES_ASM -D OPENSSL_IA32_SSE2 -D RSA_ASM -D OPENSSL_BN_ASM_MONT -D OPENSSL_BN_ASM_MONT5 -D MD5_ASM -D GHASH_ASM -D RC4_MD5_ASM -D SHA1_ASM -D SHA256_ASM -D SHA512_ASM -D WHIRLPOOL_ASM -D OPENSSL_CPUID_OBJ -internal-isystem /usr/local/llvm16/lib/clang/16/include -internal-externc-isystem /usr/include -O2 -fdebug-compilation-dir=/usr/src/lib/libcrypto/obj -ferror-limit 19 -fwrapv -D_RET_PROTECTOR -ret-protector -fcf-protection=branch -fno-jump-tables -fgnuc-version=4.2.1 -vectorize-loops -vectorize-slp -fno-builtin-malloc -fno-builtin-calloc -fno-builtin-realloc -fno-builtin-valloc -fno-builtin-free -fno-builtin-strdup -fno-builtin-strndup -analyzer-output=html -faddrsig -D__GCC_HAVE_DWARF2_CFI_ASM=1 -o /home/ben/Projects/scan/2024-01-11-140451-98009-1 -x c /usr/src/lib/libcrypto/des/ede_cbcm_enc.c
1/* $OpenBSD: ede_cbcm_enc.c,v 1.9 2023/07/08 07:34:34 jsing Exp $ */
2/* Written by Ben Laurie <ben@algroup.co.uk> for the OpenSSL
3 * project 13 Feb 1999.
4 */
5/* ====================================================================
6 * Copyright (c) 1999 The OpenSSL Project. All rights reserved.
7 *
8 * Redistribution and use in source and binary forms, with or without
9 * modification, are permitted provided that the following conditions
10 * are met:
11 *
12 * 1. Redistributions of source code must retain the above copyright
13 * notice, this list of conditions and the following disclaimer.
14 *
15 * 2. Redistributions in binary form must reproduce the above copyright
16 * notice, this list of conditions and the following disclaimer in
17 * the documentation and/or other materials provided with the
18 * distribution.
19 *
20 * 3. All advertising materials mentioning features or use of this
21 * software must display the following acknowledgment:
22 * "This product includes software developed by the OpenSSL Project
23 * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)"
24 *
25 * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to
26 * endorse or promote products derived from this software without
27 * prior written permission. For written permission, please contact
28 * licensing@OpenSSL.org.
29 *
30 * 5. Products derived from this software may not be called "OpenSSL"
31 * nor may "OpenSSL" appear in their names without prior written
32 * permission of the OpenSSL Project.
33 *
34 * 6. Redistributions of any form whatsoever must retain the following
35 * acknowledgment:
36 * "This product includes software developed by the OpenSSL Project
37 * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)"
38 *
39 * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY
40 * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
41 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
42 * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR
43 * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
44 * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
45 * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
46 * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
47 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
48 * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
49 * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
50 * OF THE POSSIBILITY OF SUCH DAMAGE.
51 * ====================================================================
52 *
53 * This product includes cryptographic software written by Eric Young
54 * (eay@cryptsoft.com). This product includes software written by Tim
55 * Hudson (tjh@cryptsoft.com).
56 *
57 */
58
59/*
60
61This is an implementation of Triple DES Cipher Block Chaining with Output
62Feedback Masking, by Coppersmith, Johnson and Matyas, (IBM and Certicom).
63
64Note that there is a known attack on this by Biham and Knudsen but it takes
65a lot of work:
66
67http://www.cs.technion.ac.il/users/wwwb/cgi-bin/tr-get.cgi/1998/CS/CS0928.ps.gz
68
69*/
70
71#include <openssl/opensslconf.h> /* To see if OPENSSL_NO_DESCBCM is defined */
72
73#ifndef OPENSSL_NO_DESCBCM
74#include "des_local.h"
75
76void
77DES_ede3_cbcm_encrypt(const unsigned char *in, unsigned char *out,
78 long length, DES_key_schedule *ks1, DES_key_schedule *ks2,
79 DES_key_schedule *ks3, DES_cblock *ivec1, DES_cblock *ivec2,
80 int enc)
81{
82 DES_LONGunsigned int tin0, tin1;
83 DES_LONGunsigned int tout0, tout1, xor0, xor1, m0, m1;
84 long l = length;
85 DES_LONGunsigned int tin[2];
86 unsigned char *iv1, *iv2;
87
88 iv1 = &(*ivec1)[0];
89 iv2 = &(*ivec2)[0];
90
91 if (enc) {
92 c2l(iv1, m0)(m0 =((unsigned int)(*((iv1)++))) , m0|=((unsigned int)(*((iv1
)++)))<< 8L, m0|=((unsigned int)(*((iv1)++)))<<16L
, m0|=((unsigned int)(*((iv1)++)))<<24L);
93 c2l(iv1, m1)(m1 =((unsigned int)(*((iv1)++))) , m1|=((unsigned int)(*((iv1
)++)))<< 8L, m1|=((unsigned int)(*((iv1)++)))<<16L
, m1|=((unsigned int)(*((iv1)++)))<<24L);
94 c2l(iv2, tout0)(tout0 =((unsigned int)(*((iv2)++))) , tout0|=((unsigned int)
(*((iv2)++)))<< 8L, tout0|=((unsigned int)(*((iv2)++)))
<<16L, tout0|=((unsigned int)(*((iv2)++)))<<24L);
95 c2l(iv2, tout1)(tout1 =((unsigned int)(*((iv2)++))) , tout1|=((unsigned int)
(*((iv2)++)))<< 8L, tout1|=((unsigned int)(*((iv2)++)))
<<16L, tout1|=((unsigned int)(*((iv2)++)))<<24L);
96 for (l -= 8; l >= -7; l -= 8) {
97 tin[0] = m0;
98 tin[1] = m1;
99 DES_encrypt1(tin, ks3, 1);
100 m0 = tin[0];
101 m1 = tin[1];
102
103 if (l < 0) {
104 c2ln(in, tin0, tin1, l + 8){ in+=l + 8; tin0=tin1=0; switch (l + 8) { case 8: tin1 =((unsigned
int)(*(--(in))))<<24L; case 7: tin1|=((unsigned int)(*
(--(in))))<<16L; case 6: tin1|=((unsigned int)(*(--(in)
)))<< 8L; case 5: tin1|=((unsigned int)(*(--(in)))); case
4: tin0 =((unsigned int)(*(--(in))))<<24L; case 3: tin0
|=((unsigned int)(*(--(in))))<<16L; case 2: tin0|=((unsigned
int)(*(--(in))))<< 8L; case 1: tin0|=((unsigned int)(*
(--(in)))); } };
105 } else {
106 c2l(in, tin0)(tin0 =((unsigned int)(*((in)++))) , tin0|=((unsigned int)(*(
(in)++)))<< 8L, tin0|=((unsigned int)(*((in)++)))<<
16L, tin0|=((unsigned int)(*((in)++)))<<24L);
107 c2l(in, tin1)(tin1 =((unsigned int)(*((in)++))) , tin1|=((unsigned int)(*(
(in)++)))<< 8L, tin1|=((unsigned int)(*((in)++)))<<
16L, tin1|=((unsigned int)(*((in)++)))<<24L);
108 }
109 tin0 ^= tout0;
110 tin1 ^= tout1;
111
112 tin[0] = tin0;
113 tin[1] = tin1;
114 DES_encrypt1(tin, ks1, 1);
115 tin[0] ^= m0;
116 tin[1] ^= m1;
117 DES_encrypt1(tin, ks2, 0);
118 tin[0] ^= m0;
119 tin[1] ^= m1;
120 DES_encrypt1(tin, ks1, 1);
121 tout0 = tin[0];
122 tout1 = tin[1];
123
124 l2c(tout0, out)(*((out)++)=(unsigned char)(((tout0) )&0xff), *((out)++)=
(unsigned char)(((tout0)>> 8L)&0xff), *((out)++)=(unsigned
char)(((tout0)>>16L)&0xff), *((out)++)=(unsigned char
)(((tout0)>>24L)&0xff));
125 l2c(tout1, out)(*((out)++)=(unsigned char)(((tout1) )&0xff), *((out)++)=
(unsigned char)(((tout1)>> 8L)&0xff), *((out)++)=(unsigned
char)(((tout1)>>16L)&0xff), *((out)++)=(unsigned char
)(((tout1)>>24L)&0xff));
126 }
127 iv1 = &(*ivec1)[0];
128 l2c(m0, iv1)(*((iv1)++)=(unsigned char)(((m0) )&0xff), *((iv1)++)=(unsigned
char)(((m0)>> 8L)&0xff), *((iv1)++)=(unsigned char
)(((m0)>>16L)&0xff), *((iv1)++)=(unsigned char)(((m0
)>>24L)&0xff));
129 l2c(m1, iv1)(*((iv1)++)=(unsigned char)(((m1) )&0xff), *((iv1)++)=(unsigned
char)(((m1)>> 8L)&0xff), *((iv1)++)=(unsigned char
)(((m1)>>16L)&0xff), *((iv1)++)=(unsigned char)(((m1
)>>24L)&0xff));
130
131 iv2 = &(*ivec2)[0];
132 l2c(tout0, iv2)(*((iv2)++)=(unsigned char)(((tout0) )&0xff), *((iv2)++)=
(unsigned char)(((tout0)>> 8L)&0xff), *((iv2)++)=(unsigned
char)(((tout0)>>16L)&0xff), *((iv2)++)=(unsigned char
)(((tout0)>>24L)&0xff));
133 l2c(tout1, iv2)(*((iv2)++)=(unsigned char)(((tout1) )&0xff), *((iv2)++)=
(unsigned char)(((tout1)>> 8L)&0xff), *((iv2)++)=(unsigned
char)(((tout1)>>16L)&0xff), *((iv2)++)=(unsigned char
)(((tout1)>>24L)&0xff));
134 } else {
135 DES_LONGunsigned int t0, t1;
136
137 c2l(iv1, m0)(m0 =((unsigned int)(*((iv1)++))) , m0|=((unsigned int)(*((iv1
)++)))<< 8L, m0|=((unsigned int)(*((iv1)++)))<<16L
, m0|=((unsigned int)(*((iv1)++)))<<24L);
138 c2l(iv1, m1)(m1 =((unsigned int)(*((iv1)++))) , m1|=((unsigned int)(*((iv1
)++)))<< 8L, m1|=((unsigned int)(*((iv1)++)))<<16L
, m1|=((unsigned int)(*((iv1)++)))<<24L);
139 c2l(iv2, xor0)(xor0 =((unsigned int)(*((iv2)++))) , xor0|=((unsigned int)(*
((iv2)++)))<< 8L, xor0|=((unsigned int)(*((iv2)++)))<<
16L, xor0|=((unsigned int)(*((iv2)++)))<<24L);
140 c2l(iv2, xor1)(xor1 =((unsigned int)(*((iv2)++))) , xor1|=((unsigned int)(*
((iv2)++)))<< 8L, xor1|=((unsigned int)(*((iv2)++)))<<
16L, xor1|=((unsigned int)(*((iv2)++)))<<24L);
141 for (l -= 8; l >= -7; l -= 8) {
142 tin[0] = m0;
143 tin[1] = m1;
144 DES_encrypt1(tin, ks3, 1);
145 m0 = tin[0];
146 m1 = tin[1];
147
148 c2l(in, tin0)(tin0 =((unsigned int)(*((in)++))) , tin0|=((unsigned int)(*(
(in)++)))<< 8L, tin0|=((unsigned int)(*((in)++)))<<
16L, tin0|=((unsigned int)(*((in)++)))<<24L);
149 c2l(in, tin1)(tin1 =((unsigned int)(*((in)++))) , tin1|=((unsigned int)(*(
(in)++)))<< 8L, tin1|=((unsigned int)(*((in)++)))<<
16L, tin1|=((unsigned int)(*((in)++)))<<24L);
150
151 t0 = tin0;
152 t1 = tin1;
153
154 tin[0] = tin0;
155 tin[1] = tin1;
156 DES_encrypt1(tin, ks1, 0);
157 tin[0] ^= m0;
158 tin[1] ^= m1;
159 DES_encrypt1(tin, ks2, 1);
160 tin[0] ^= m0;
161 tin[1] ^= m1;
162 DES_encrypt1(tin, ks1, 0);
163 tout0 = tin[0];
164 tout1 = tin[1];
165
166 tout0 ^= xor0;
167 tout1 ^= xor1;
168 if (l < 0) {
169 l2cn(tout0, tout1, out, l + 8){ out+=l + 8; switch (l + 8) { case 8: *(--(out))=(unsigned char
)(((tout1)>>24L)&0xff); case 7: *(--(out))=(unsigned
char)(((tout1)>>16L)&0xff); case 6: *(--(out))=(unsigned
char)(((tout1)>> 8L)&0xff); case 5: *(--(out))=(unsigned
char)(((tout1) )&0xff); case 4: *(--(out))=(unsigned char
)(((tout0)>>24L)&0xff); case 3: *(--(out))=(unsigned
char)(((tout0)>>16L)&0xff); case 2: *(--(out))=(unsigned
char)(((tout0)>> 8L)&0xff); case 1: *(--(out))=(unsigned
char)(((tout0) )&0xff); } };
170 } else {
171 l2c(tout0, out)(*((out)++)=(unsigned char)(((tout0) )&0xff), *((out)++)=
(unsigned char)(((tout0)>> 8L)&0xff), *((out)++)=(unsigned
char)(((tout0)>>16L)&0xff), *((out)++)=(unsigned char
)(((tout0)>>24L)&0xff));
172 l2c(tout1, out)(*((out)++)=(unsigned char)(((tout1) )&0xff), *((out)++)=
(unsigned char)(((tout1)>> 8L)&0xff), *((out)++)=(unsigned
char)(((tout1)>>16L)&0xff), *((out)++)=(unsigned char
)(((tout1)>>24L)&0xff));
173 }
174 xor0 = t0;
175 xor1 = t1;
176 }
177
178 iv1 = &(*ivec1)[0];
179 l2c(m0, iv1)(*((iv1)++)=(unsigned char)(((m0) )&0xff), *((iv1)++)=(unsigned
char)(((m0)>> 8L)&0xff), *((iv1)++)=(unsigned char
)(((m0)>>16L)&0xff), *((iv1)++)=(unsigned char)(((m0
)>>24L)&0xff));
180 l2c(m1, iv1)(*((iv1)++)=(unsigned char)(((m1) )&0xff), *((iv1)++)=(unsigned
char)(((m1)>> 8L)&0xff), *((iv1)++)=(unsigned char
)(((m1)>>16L)&0xff), *((iv1)++)=(unsigned char)(((m1
)>>24L)&0xff));
181
182 iv2 = &(*ivec2)[0];
183 l2c(xor0, iv2)(*((iv2)++)=(unsigned char)(((xor0) )&0xff), *((iv2)++)=(
unsigned char)(((xor0)>> 8L)&0xff), *((iv2)++)=(unsigned
char)(((xor0)>>16L)&0xff), *((iv2)++)=(unsigned char
)(((xor0)>>24L)&0xff));
184 l2c(xor1, iv2)(*((iv2)++)=(unsigned char)(((xor1) )&0xff), *((iv2)++)=(
unsigned char)(((xor1)>> 8L)&0xff), *((iv2)++)=(unsigned
char)(((xor1)>>16L)&0xff), *((iv2)++)=(unsigned char
)(((xor1)>>24L)&0xff));
185 }
186 tin0 = tin1 = tout0 = tout1 = xor0 = xor1 = 0;
Value stored to 'tin0' is never read
187 tin[0] = tin[1] = 0;
188}
189#endif