libkern/crypto/corecrypto_aes.c

   1 /*
   2  * Copyright (c) 2012 Apple Computer, Inc. All rights reserved.
   3  *
   4  * @APPLE_OSREFERENCE_LICENSE_HEADER_START@
   5  *
   6  * This file contains Original Code and/or Modifications of Original Code
   7  * as defined in and that are subject to the Apple Public Source License
   8  * Version 2.0 (the 'License'). You may not use this file except in
   9  * compliance with the License. The rights granted to you under the License
  10  * may not be used to create, or enable the creation or redistribution of,
  11  * unlawful or unlicensed copies of an Apple operating system, or to
  12  * circumvent, violate, or enable the circumvention or violation of, any
  13  * terms of an Apple operating system software license agreement.
  14  *
  15  * Please obtain a copy of the License at
  16  * http://www.opensource.apple.com/apsl/ and read it before using this file.
  17  *
  18  * The Original Code and all software distributed under the License are
  19  * distributed on an 'AS IS' basis, WITHOUT WARRANTY OF ANY KIND, EITHER
  20  * EXPRESS OR IMPLIED, AND APPLE HEREBY DISCLAIMS ALL SUCH WARRANTIES,
  21  * INCLUDING WITHOUT LIMITATION, ANY WARRANTIES OF MERCHANTABILITY,
  22  * FITNESS FOR A PARTICULAR PURPOSE, QUIET ENJOYMENT OR NON-INFRINGEMENT.
  23  * Please see the License for the specific language governing rights and
  24  * limitations under the License.
  25  *
  26  * @APPLE_OSREFERENCE_LICENSE_HEADER_END@
  27  */
  28
  29 #include <libkern/crypto/crypto_internal.h>
  30 #include <libkern/crypto/aes.h>
  31 #include <corecrypto/ccmode.h>
  32 #include <corecrypto/ccaes.h>
  33 #include <kern/debug.h>
  34
  35 aes_rval aes_encrypt_key(const unsigned char *key, int key_len, aes_encrypt_ctx cx[1])
  36 {
  37         const struct ccmode_cbc *cbc = g_crypto_funcs->ccaes_cbc_encrypt;
  38
  39     /* Make sure the context size for the mode fits in the one we have */
  40     if(cbc->size>sizeof(aes_encrypt_ctx))
  41         panic("%s: inconsistent size for AES encrypt context", __FUNCTION__);
  42
  43         cccbc_init(cbc, cx[0].ctx, key_len, key);
  44
  45         return aes_good;
  46 }
  47
  48 aes_rval aes_encrypt_cbc(const unsigned char *in_blk, const unsigned char *in_iv, unsigned int num_blk,
  49                                          unsigned char *out_blk, aes_encrypt_ctx cx[1])
  50 {
  51         const struct ccmode_cbc *cbc = g_crypto_funcs->ccaes_cbc_encrypt;
  52         cccbc_iv_decl(cbc->block_size, ctx_iv);
  53
  54         cccbc_set_iv(cbc, ctx_iv, in_iv);
  55         cccbc_update(cbc, cx[0].ctx, ctx_iv, num_blk, in_blk, out_blk); //Actually cbc encrypt.
  56
  57         return aes_good;
  58 }
  59
  60 #if defined (__i386__) || defined (__x86_64__)
  61 /* This does one block of ECB, using the CBC implementation - this allow to use the same context for both CBC and ECB */
  62 aes_rval aes_encrypt(const unsigned char *in_blk, unsigned char *out_blk, aes_encrypt_ctx cx[1])
  63 {
  64        return aes_encrypt_cbc(in_blk, NULL, 1, out_blk, cx);
  65 }
  66 #endif
  67
  68 aes_rval aes_decrypt_key(const unsigned char *key, int key_len, aes_decrypt_ctx cx[1])
  69 {
  70         const struct ccmode_cbc *cbc = g_crypto_funcs->ccaes_cbc_decrypt;
  71
  72     /* Make sure the context size for the mode fits in the one we have */
  73     if(cbc->size>sizeof(aes_decrypt_ctx))
  74         panic("%s: inconsistent size for AES decrypt context", __FUNCTION__);
  75
  76         cccbc_init(cbc, cx[0].ctx, key_len, key);
  77
  78         return aes_good;
  79 }
  80
  81 aes_rval aes_decrypt_cbc(const unsigned char *in_blk, const unsigned char *in_iv, unsigned int num_blk,
  82                                                  unsigned char *out_blk, aes_decrypt_ctx cx[1])
  83 {
  84         const struct ccmode_cbc *cbc = g_crypto_funcs->ccaes_cbc_decrypt;
  85         cccbc_iv_decl(cbc->block_size, ctx_iv);
  86
  87         cccbc_set_iv(cbc, ctx_iv, in_iv);
  88         cccbc_update(cbc, cx[0].ctx, ctx_iv, num_blk, in_blk, out_blk); //Actually cbc decrypt.
  89
  90         return aes_good;
  91 }
  92
  93 #if defined (__i386__) || defined (__x86_64__)
  94 /* This does one block of ECB, using the CBC implementation - this allow to use the same context for both CBC and ECB */
  95 aes_rval aes_decrypt(const unsigned char *in_blk, unsigned char *out_blk, aes_decrypt_ctx cx[1])
  96 {
  97         return aes_decrypt_cbc(in_blk, NULL, 1, out_blk, cx);
  98 }
  99 #endif
 100
 101 aes_rval aes_encrypt_key128(const unsigned char *key, aes_encrypt_ctx cx[1])
 102 {
 103         return aes_encrypt_key(key, 16, cx);
 104 }
 105
 106 aes_rval aes_decrypt_key128(const unsigned char *key, aes_decrypt_ctx cx[1])
 107 {
 108         return aes_decrypt_key(key, 16, cx);
 109 }
 110
 111
 112 aes_rval aes_encrypt_key256(const unsigned char *key, aes_encrypt_ctx cx[1])
 113 {
 114         return aes_encrypt_key(key, 32, cx);
 115 }
 116
 117 aes_rval aes_decrypt_key256(const unsigned char *key, aes_decrypt_ctx cx[1])
 118 {
 119         return aes_decrypt_key(key, 32, cx);
 120 }