X-Git-Url: https://git.saurik.com/apple/security.git/blobdiff_plain/72a12576750f52947eb043106ba5c12c0d07decf..b1ab9ed8d0e0f1c3b66d7daa8fd5564444c56195:/libsecurity_apple_csp/lib/desContext.cpp diff --git a/libsecurity_apple_csp/lib/desContext.cpp b/libsecurity_apple_csp/lib/desContext.cpp new file mode 100644 index 00000000..6b546d29 --- /dev/null +++ b/libsecurity_apple_csp/lib/desContext.cpp @@ -0,0 +1,197 @@ +/* + * Copyright (c) 2000-2001 Apple Computer, Inc. All Rights Reserved. + * + * The contents of this file constitute Original Code as defined in and are + * subject to the Apple Public Source License Version 1.2 (the 'License'). + * You may not use this file except in compliance with the License. Please obtain + * a copy of the License at http://www.apple.com/publicsource and read it before + * using this file. + * + * This Original Code and all software distributed under the License are + * distributed on an 'AS IS' basis, WITHOUT WARRANTY OF ANY KIND, EITHER EXPRESS + * OR IMPLIED, AND APPLE HEREBY DISCLAIMS ALL SUCH WARRANTIES, INCLUDING WITHOUT + * LIMITATION, ANY WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR + * PURPOSE, QUIET ENJOYMENT OR NON-INFRINGEMENT. Please see the License for the + * specific language governing rights and limitations under the License. + */ + + +/* + * desContext.cpp - glue between BlockCrytpor and DES implementation + * Written by Doug Mitchell 3/28/2001 + */ + +#include "desContext.h" +#include +#include +#include + +#define DESDebug(args...) secdebug("desContext", ## args) + +/* + * DES encrypt/decrypt. + */ +DESContext::DESContext(AppleCSPSession &session) : BlockCryptor(session), DesInst(NULL) +{ +} + +DESContext::~DESContext() +{ + if (DesInst != NULL) { + CCCryptorRelease(DesInst); + } + + DesInst = NULL; +} + +/* + * Standard CSPContext init, called from CSPFullPluginSession::init(). + * Reusable, e.g., query followed by en/decrypt. + */ +void DESContext::init( + const Context &context, + bool encrypting) +{ + CSSM_SIZE keyLen; + uint8 *keyData = NULL; + + /* obtain key from context */ + symmetricKeyBits(context, session(), CSSM_ALGID_DES, + encrypting ? CSSM_KEYUSE_ENCRYPT : CSSM_KEYUSE_DECRYPT, + keyData, keyLen); + if(keyLen != (DES_KEY_SIZE_BITS_EXTERNAL / 8)) { + CssmError::throwMe(CSSMERR_CSP_INVALID_ATTR_KEY); + } + + if (DesInst != NULL) + { + CCCryptorRelease(DesInst); + } + + (void) CCCryptorCreateWithMode(0, kCCModeECB, kCCAlgorithmDES, ccDefaultPadding, NULL, keyData, kCCKeySizeDES, NULL, 0, 0, 0, &DesInst); + + /* Finally, have BlockCryptor do its setup */ + setup(DES_BLOCK_SIZE_BYTES, context); +} + +/* + * Functions called by BlockCryptor + * DES does encrypt/decrypt in place + */ +void DESContext::encryptBlock( + const void *plainText, // length implied (one block) + size_t plainTextLen, + void *cipherText, + size_t &cipherTextLen, // in/out, throws on overflow + bool final) // ignored +{ + if(plainTextLen != DES_BLOCK_SIZE_BYTES) { + CssmError::throwMe(CSSMERR_CSP_INPUT_LENGTH_ERROR); + } + if(cipherTextLen < DES_BLOCK_SIZE_BYTES) { + CssmError::throwMe(CSSMERR_CSP_OUTPUT_LENGTH_ERROR); + } + (void) CCCryptorEncryptDataBlock(DesInst, NULL, plainText, DES_BLOCK_SIZE_BYTES, cipherText); + cipherTextLen = DES_BLOCK_SIZE_BYTES; +} + +void DESContext::decryptBlock( + const void *cipherText, // length implied (one block) + size_t cipherTextLen, + void *plainText, + size_t &plainTextLen, // in/out, throws on overflow + bool final) // ignored +{ + if(plainTextLen < DES_BLOCK_SIZE_BYTES) { + CssmError::throwMe(CSSMERR_CSP_OUTPUT_LENGTH_ERROR); + } + if(plainText != cipherText) { + /* little optimization for callers who want to decrypt in place */ + memmove(plainText, cipherText, DES_BLOCK_SIZE_BYTES); + } + (void) CCCryptorDecryptDataBlock(DesInst, NULL, cipherText, DES_BLOCK_SIZE_BYTES, plainText); + plainTextLen = DES_BLOCK_SIZE_BYTES; +} + +/*** + *** Triple-DES - EDE, 24-bit key only + ***/ + +DES3Context::DES3Context(AppleCSPSession &session) : BlockCryptor(session), DesInst(NULL) +{ +} + + + +DES3Context::~DES3Context() +{ + if (DesInst != NULL) { + CCCryptorRelease(DesInst); + } + + DesInst = NULL; +} + +/* + * Standard CSPContext init, called from CSPFullPluginSession::init(). + * Reusable, e.g., query followed by en/decrypt. + */ +void DES3Context::init( + const Context &context, + bool encrypting) +{ + CSSM_SIZE keyLen; + uint8 *keyData = NULL; + + /* obtain key from context */ + symmetricKeyBits(context, session(), CSSM_ALGID_3DES_3KEY_EDE, + encrypting ? CSSM_KEYUSE_ENCRYPT : CSSM_KEYUSE_DECRYPT, + keyData, keyLen); + if(keyLen != DES3_KEY_SIZE_BYTES) { + CssmError::throwMe(CSSMERR_CSP_INVALID_ATTR_KEY); + } + + if (DesInst != NULL) { + CCCryptorRelease(DesInst); + } + + (void) CCCryptorCreateWithMode(0, kCCModeECB, kCCAlgorithm3DES, ccDefaultPadding, NULL, keyData, kCCKeySize3DES, NULL, 0, 0, 0, &DesInst); + + /* Finally, have BlockCryptor do its setup */ + setup(DES3_BLOCK_SIZE_BYTES, context); +} + +/* + * Functions called by BlockCryptor + * DES does encrypt/decrypt in place + */ +void DES3Context::encryptBlock( + const void *plainText, // length implied (one block) + size_t plainTextLen, + void *cipherText, + size_t &cipherTextLen, // in/out, throws on overflow + bool final) // ignored +{ + if(plainTextLen != DES3_BLOCK_SIZE_BYTES) { + CssmError::throwMe(CSSMERR_CSP_INPUT_LENGTH_ERROR); + } + if(cipherTextLen < DES3_BLOCK_SIZE_BYTES) { + CssmError::throwMe(CSSMERR_CSP_OUTPUT_LENGTH_ERROR); + } + (void) CCCryptorEncryptDataBlock(DesInst, NULL, plainText, DES3_BLOCK_SIZE_BYTES, cipherText); + cipherTextLen = DES3_BLOCK_SIZE_BYTES; +} + +void DES3Context::decryptBlock( + const void *cipherText, // length implied (one block) + size_t cipherTextLen, + void *plainText, + size_t &plainTextLen, // in/out, throws on overflow + bool final) // ignored +{ + if(plainTextLen < DES3_BLOCK_SIZE_BYTES) { + CssmError::throwMe(CSSMERR_CSP_OUTPUT_LENGTH_ERROR); + } + (void) CCCryptorDecryptDataBlock(DesInst, NULL, cipherText, DES3_BLOCK_SIZE_BYTES, plainText); + plainTextLen = DES3_BLOCK_SIZE_BYTES; +}