1/* 2 * Copyright (c) 2012 Apple Computer, Inc. All rights reserved. 3 * 4 * @APPLE_OSREFERENCE_LICENSE_HEADER_START@ 5 * 6 * This file contains Original Code and/or Modifications of Original Code 7 * as defined in and that are subject to the Apple Public Source License 8 * Version 2.0 (the 'License'). You may not use this file except in 9 * compliance with the License. The rights granted to you under the License 10 * may not be used to create, or enable the creation or redistribution of, 11 * unlawful or unlicensed copies of an Apple operating system, or to 12 * circumvent, violate, or enable the circumvention or violation of, any 13 * terms of an Apple operating system software license agreement. 14 * 15 * Please obtain a copy of the License at 16 * http://www.opensource.apple.com/apsl/ and read it before using this file. 17 * 18 * The Original Code and all software distributed under the License are 19 * distributed on an 'AS IS' basis, WITHOUT WARRANTY OF ANY KIND, EITHER 20 * EXPRESS OR IMPLIED, AND APPLE HEREBY DISCLAIMS ALL SUCH WARRANTIES, 21 * INCLUDING WITHOUT LIMITATION, ANY WARRANTIES OF MERCHANTABILITY, 22 * FITNESS FOR A PARTICULAR PURPOSE, QUIET ENJOYMENT OR NON-INFRINGEMENT. 23 * Please see the License for the specific language governing rights and 24 * limitations under the License. 25 * 26 * @APPLE_OSREFERENCE_LICENSE_HEADER_END@ 27 */ 28 29#include <libkern/crypto/crypto_internal.h> 30#include <libkern/crypto/aes.h> 31#include <corecrypto/ccmode.h> 32#include <corecrypto/ccaes.h> 33#include <kern/debug.h> 34 35aes_rval aes_encrypt_key(const unsigned char *key, int key_len, aes_encrypt_ctx cx[1]) 36{ 37 const struct ccmode_cbc *cbc = g_crypto_funcs->ccaes_cbc_encrypt; 38 39 /* Make sure the context size for the mode fits in the one we have */ 40 if(cbc->size>sizeof(aes_encrypt_ctx)) 41 panic("%s: inconsistent size for AES encrypt context", __FUNCTION__); 42 43 cccbc_init(cbc, cx[0].ctx, key_len, key); 44 45 return aes_good; 46} 47 48aes_rval aes_encrypt_cbc(const unsigned char *in_blk, const unsigned char *in_iv, unsigned int num_blk, 49 unsigned char *out_blk, aes_encrypt_ctx cx[1]) 50{ 51 const struct ccmode_cbc *cbc = g_crypto_funcs->ccaes_cbc_encrypt; 52 cccbc_iv_decl(cbc->block_size, ctx_iv); 53 54 cccbc_set_iv(cbc, ctx_iv, in_iv); 55 cccbc_update(cbc, cx[0].ctx, ctx_iv, num_blk, in_blk, out_blk); //Actually cbc encrypt. 56 57 return aes_good; 58} 59 60/* This does one block of ECB, using the CBC implementation - this allow to use the same context for both CBC and ECB */ 61aes_rval aes_encrypt(const unsigned char *in_blk, unsigned char *out_blk, aes_encrypt_ctx cx[1]) 62{ 63 return aes_encrypt_cbc(in_blk, NULL, 1, out_blk, cx); 64} 65 66aes_rval aes_decrypt_key(const unsigned char *key, int key_len, aes_decrypt_ctx cx[1]) 67{ 68 const struct ccmode_cbc *cbc = g_crypto_funcs->ccaes_cbc_decrypt; 69 70 /* Make sure the context size for the mode fits in the one we have */ 71 if(cbc->size>sizeof(aes_decrypt_ctx)) 72 panic("%s: inconsistent size for AES decrypt context", __FUNCTION__); 73 74 cccbc_init(cbc, cx[0].ctx, key_len, key); 75 76 return aes_good; 77} 78 79aes_rval aes_decrypt_cbc(const unsigned char *in_blk, const unsigned char *in_iv, unsigned int num_blk, 80 unsigned char *out_blk, aes_decrypt_ctx cx[1]) 81{ 82 const struct ccmode_cbc *cbc = g_crypto_funcs->ccaes_cbc_decrypt; 83 cccbc_iv_decl(cbc->block_size, ctx_iv); 84 85 cccbc_set_iv(cbc, ctx_iv, in_iv); 86 cccbc_update(cbc, cx[0].ctx, ctx_iv, num_blk, in_blk, out_blk); //Actually cbc decrypt. 87 88 return aes_good; 89} 90 91/* This does one block of ECB, using the CBC implementation - this allow to use the same context for both CBC and ECB */ 92aes_rval aes_decrypt(const unsigned char *in_blk, unsigned char *out_blk, aes_decrypt_ctx cx[1]) 93{ 94 return aes_decrypt_cbc(in_blk, NULL, 1, out_blk, cx); 95} 96 97aes_rval aes_encrypt_key128(const unsigned char *key, aes_encrypt_ctx cx[1]) 98{ 99 return aes_encrypt_key(key, 16, cx); 100} 101 102aes_rval aes_decrypt_key128(const unsigned char *key, aes_decrypt_ctx cx[1]) 103{ 104 return aes_decrypt_key(key, 16, cx); 105} 106 107 108aes_rval aes_encrypt_key256(const unsigned char *key, aes_encrypt_ctx cx[1]) 109{ 110 return aes_encrypt_key(key, 32, cx); 111} 112 113aes_rval aes_decrypt_key256(const unsigned char *key, aes_decrypt_ctx cx[1]) 114{ 115 return aes_decrypt_key(key, 32, cx); 116} 117