libkern/crypto/corecrypto_aes.c

   1 /*
   2  * Copyright (c) 2012 Apple Computer, Inc. All rights reserved.
   3  *
   4  * @APPLE_OSREFERENCE_LICENSE_HEADER_START@
   5  *
   6  * This file contains Original Code and/or Modifications of Original Code
   7  * as defined in and that are subject to the Apple Public Source License
   8  * Version 2.0 (the 'License'). You may not use this file except in
   9  * compliance with the License. The rights granted to you under the License
  10  * may not be used to create, or enable the creation or redistribution of,
  11  * unlawful or unlicensed copies of an Apple operating system, or to
  12  * circumvent, violate, or enable the circumvention or violation of, any
  13  * terms of an Apple operating system software license agreement.
  14  *
  15  * Please obtain a copy of the License at
  16  * http://www.opensource.apple.com/apsl/ and read it before using this file.
  17  *
  18  * The Original Code and all software distributed under the License are
  19  * distributed on an 'AS IS' basis, WITHOUT WARRANTY OF ANY KIND, EITHER
  20  * EXPRESS OR IMPLIED, AND APPLE HEREBY DISCLAIMS ALL SUCH WARRANTIES,
  21  * INCLUDING WITHOUT LIMITATION, ANY WARRANTIES OF MERCHANTABILITY,
  22  * FITNESS FOR A PARTICULAR PURPOSE, QUIET ENJOYMENT OR NON-INFRINGEMENT.
  23  * Please see the License for the specific language governing rights and
  24  * limitations under the License.
  25  *
  26  * @APPLE_OSREFERENCE_LICENSE_HEADER_END@
  27  */
  28
  29 #include <libkern/crypto/crypto_internal.h>
  30 #include <libkern/crypto/aes.h>
  31 #include <corecrypto/ccmode.h>
  32 #include <corecrypto/ccaes.h>
  33 #include <kern/debug.h>
  34
  35 aes_rval aes_encrypt_key(const unsigned char *key, int key_len, aes_encrypt_ctx cx[1])
  36 {
  37         const struct ccmode_cbc *cbc = g_crypto_funcs->ccaes_cbc_encrypt;
  38
  39     /* Make sure the context size for the mode fits in the one we have */
  40     if(cbc->size>sizeof(aes_encrypt_ctx))
  41         panic("%s: inconsistent size for AES encrypt context", __FUNCTION__);
  42
  43         cccbc_init(cbc, cx[0].ctx, key_len, key);
  44
  45         return aes_good;
  46 }
  47
  48 aes_rval aes_encrypt_cbc(const unsigned char *in_blk, const unsigned char *in_iv, unsigned int num_blk,
  49                                          unsigned char *out_blk, aes_encrypt_ctx cx[1])
  50 {
  51         const struct ccmode_cbc *cbc = g_crypto_funcs->ccaes_cbc_encrypt;
  52         cccbc_iv_decl(cbc->block_size, ctx_iv);
  53
  54         cccbc_set_iv(cbc, ctx_iv, in_iv);
  55         cccbc_update(cbc, cx[0].ctx, ctx_iv, num_blk, in_blk, out_blk); //Actually cbc encrypt.
  56
  57         return aes_good;
  58 }
  59
  60 /* This does one block of ECB, using the CBC implementation - this allow to use the same context for both CBC and ECB */
  61 aes_rval aes_encrypt(const unsigned char *in_blk, unsigned char *out_blk, aes_encrypt_ctx cx[1])
  62 {
  63        return aes_encrypt_cbc(in_blk, NULL, 1, out_blk, cx);
  64 }
  65
  66 aes_rval aes_decrypt_key(const unsigned char *key, int key_len, aes_decrypt_ctx cx[1])
  67 {
  68         const struct ccmode_cbc *cbc = g_crypto_funcs->ccaes_cbc_decrypt;
  69
  70     /* Make sure the context size for the mode fits in the one we have */
  71     if(cbc->size>sizeof(aes_decrypt_ctx))
  72         panic("%s: inconsistent size for AES decrypt context", __FUNCTION__);
  73
  74         cccbc_init(cbc, cx[0].ctx, key_len, key);
  75
  76         return aes_good;
  77 }
  78
  79 aes_rval aes_decrypt_cbc(const unsigned char *in_blk, const unsigned char *in_iv, unsigned int num_blk,
  80                                                  unsigned char *out_blk, aes_decrypt_ctx cx[1])
  81 {
  82         const struct ccmode_cbc *cbc = g_crypto_funcs->ccaes_cbc_decrypt;
  83         cccbc_iv_decl(cbc->block_size, ctx_iv);
  84
  85         cccbc_set_iv(cbc, ctx_iv, in_iv);
  86         cccbc_update(cbc, cx[0].ctx, ctx_iv, num_blk, in_blk, out_blk); //Actually cbc decrypt.
  87
  88         return aes_good;
  89 }
  90
  91 /* This does one block of ECB, using the CBC implementation - this allow to use the same context for both CBC and ECB */
  92 aes_rval aes_decrypt(const unsigned char *in_blk, unsigned char *out_blk, aes_decrypt_ctx cx[1])
  93 {
  94         return aes_decrypt_cbc(in_blk, NULL, 1, out_blk, cx);
  95 }
  96
  97 aes_rval aes_encrypt_key128(const unsigned char *key, aes_encrypt_ctx cx[1])
  98 {
  99         return aes_encrypt_key(key, 16, cx);
 100 }
 101
 102 aes_rval aes_decrypt_key128(const unsigned char *key, aes_decrypt_ctx cx[1])
 103 {
 104         return aes_decrypt_key(key, 16, cx);
 105 }
 106
 107
 108 aes_rval aes_encrypt_key256(const unsigned char *key, aes_encrypt_ctx cx[1])
 109 {
 110         return aes_encrypt_key(key, 32, cx);
 111 }
 112
 113 aes_rval aes_decrypt_key256(const unsigned char *key, aes_decrypt_ctx cx[1])
 114 {
 115         return aes_decrypt_key(key, 32, cx);
 116 }