crypto/evp/e_aes.c

   1 /* ====================================================================
   2  * Copyright (c) 2001 The OpenSSL Project.  All rights reserved.
   3  *
   4  * Redistribution and use in source and binary forms, with or without
   5  * modification, are permitted provided that the following conditions
   6  * are met:
   7  *
   8  * 1. Redistributions of source code must retain the above copyright
   9  *    notice, this list of conditions and the following disclaimer.
  10  *
  11  * 2. Redistributions in binary form must reproduce the above copyright
  12  *    notice, this list of conditions and the following disclaimer in
  13  *    the documentation and/or other materials provided with the
  14  *    distribution.
  15  *
  16  * 3. All advertising materials mentioning features or use of this
  17  *    software must display the following acknowledgment:
  18  *    "This product includes software developed by the OpenSSL Project
  19  *    for use in the OpenSSL Toolkit. (http://www.openssl.org/)"
  20  *
  21  * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to
  22  *    endorse or promote products derived from this software without
  23  *    prior written permission. For written permission, please contact
  24  *    openssl-core@openssl.org.
  25  *
  26  * 5. Products derived from this software may not be called "OpenSSL"
  27  *    nor may "OpenSSL" appear in their names without prior written
  28  *    permission of the OpenSSL Project.
  29  *
  30  * 6. Redistributions of any form whatsoever must retain the following
  31  *    acknowledgment:
  32  *    "This product includes software developed by the OpenSSL Project
  33  *    for use in the OpenSSL Toolkit (http://www.openssl.org/)"
  34  *
  35  * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY
  36  * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
  37  * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
  38  * PURPOSE ARE DISCLAIMED.  IN NO EVENT SHALL THE OpenSSL PROJECT OR
  39  * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
  40  * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
  41  * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
  42  * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
  43  * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
  44  * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
  45  * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
  46  * OF THE POSSIBILITY OF SUCH DAMAGE.
  47  * ====================================================================
  48  *
  49  */
  50
  51 #include <openssl/opensslconf.h>
  52 #ifndef OPENSSL_NO_AES
  53 #include <openssl/evp.h>
  54 #include <openssl/err.h>
  55 #include <string.h>
  56 #include <assert.h>
  57 #include <openssl/aes.h>
  58 #include <openssl/modes.h>
  59 #include "evp_locl.h"
  60
  61 static int aes_init_key(EVP_CIPHER_CTX *ctx, const unsigned char *key,
  62                                         const unsigned char *iv, int enc);
  63
  64 typedef struct
  65         {
  66         AES_KEY ks;
  67         } EVP_AES_KEY;
  68
  69 #define data(ctx)       EVP_C_DATA(EVP_AES_KEY,ctx)
  70
  71 IMPLEMENT_BLOCK_CIPHER(aes_128, ks, AES, EVP_AES_KEY,
  72                        NID_aes_128, 16, 16, 16, 128,
  73                        EVP_CIPH_FLAG_FIPS|EVP_CIPH_FLAG_DEFAULT_ASN1,
  74                        aes_init_key, NULL, NULL, NULL, NULL)
  75 IMPLEMENT_BLOCK_CIPHER(aes_192, ks, AES, EVP_AES_KEY,
  76                        NID_aes_192, 16, 24, 16, 128,
  77                        EVP_CIPH_FLAG_FIPS|EVP_CIPH_FLAG_DEFAULT_ASN1,
  78                        aes_init_key, NULL, NULL, NULL, NULL)
  79 IMPLEMENT_BLOCK_CIPHER(aes_256, ks, AES, EVP_AES_KEY,
  80                        NID_aes_256, 16, 32, 16, 128,
  81                        EVP_CIPH_FLAG_FIPS|EVP_CIPH_FLAG_DEFAULT_ASN1,
  82                        aes_init_key, NULL, NULL, NULL, NULL)
  83
  84 #define IMPLEMENT_AES_CFBR(ksize,cbits) IMPLEMENT_CFBR(aes,AES,EVP_AES_KEY,ks,ksize,cbits,16,EVP_CIPH_FLAG_FIPS)
  85
  86 IMPLEMENT_AES_CFBR(128,1)
  87 IMPLEMENT_AES_CFBR(192,1)
  88 IMPLEMENT_AES_CFBR(256,1)
  89
  90 IMPLEMENT_AES_CFBR(128,8)
  91 IMPLEMENT_AES_CFBR(192,8)
  92 IMPLEMENT_AES_CFBR(256,8)
  93
  94 static int aes_counter (EVP_CIPHER_CTX *ctx, unsigned char *out,
  95                 const unsigned char *in, size_t len)
  96 {
  97         unsigned int num;
  98         num = ctx->num;
  99 #ifdef AES_CTR_ASM
 100         void AES_ctr32_encrypt(const unsigned char *in, unsigned char *out,
 101                         size_t blocks, const AES_KEY *key,
 102                         const unsigned char ivec[AES_BLOCK_SIZE]);
 103
 104         CRYPTO_ctr128_encrypt_ctr32(in,out,len,
 105                 &((EVP_AES_KEY *)ctx->cipher_data)->ks,
 106                 ctx->iv,ctx->buf,&num,(ctr128_f)AES_ctr32_encrypt);
 107 #else
 108         CRYPTO_ctr128_encrypt(in,out,len,
 109                 &((EVP_AES_KEY *)ctx->cipher_data)->ks,
 110                 ctx->iv,ctx->buf,&num,(block128_f)AES_encrypt);
 111 #endif
 112         ctx->num = (size_t)num;
 113         return 1;
 114 }
 115
 116 static const EVP_CIPHER aes_128_ctr_cipher=
 117         {
 118         NID_aes_128_ctr,1,16,16,
 119         EVP_CIPH_CTR_MODE,
 120         aes_init_key,
 121         aes_counter,
 122         NULL,
 123         sizeof(EVP_AES_KEY),
 124         NULL,
 125         NULL,
 126         NULL,
 127         NULL
 128         };
 129
 130 const EVP_CIPHER *EVP_aes_128_ctr (void)
 131 {       return &aes_128_ctr_cipher;     }
 132
 133 static const EVP_CIPHER aes_192_ctr_cipher=
 134         {
 135         NID_aes_192_ctr,1,24,16,
 136         EVP_CIPH_CTR_MODE,
 137         aes_init_key,
 138         aes_counter,
 139         NULL,
 140         sizeof(EVP_AES_KEY),
 141         NULL,
 142         NULL,
 143         NULL,
 144         NULL
 145         };
 146
 147 const EVP_CIPHER *EVP_aes_192_ctr (void)
 148 {       return &aes_192_ctr_cipher;     }
 149
 150 static const EVP_CIPHER aes_256_ctr_cipher=
 151         {
 152         NID_aes_256_ctr,1,32,16,
 153         EVP_CIPH_CTR_MODE,
 154         aes_init_key,
 155         aes_counter,
 156         NULL,
 157         sizeof(EVP_AES_KEY),
 158         NULL,
 159         NULL,
 160         NULL,
 161         NULL
 162         };
 163
 164 const EVP_CIPHER *EVP_aes_256_ctr (void)
 165 {       return &aes_256_ctr_cipher;     }
 166
 167 static int aes_init_key(EVP_CIPHER_CTX *ctx, const unsigned char *key,
 168                    const unsigned char *iv, int enc)
 169         {
 170         int ret;
 171
 172         if (((ctx->cipher->flags & EVP_CIPH_MODE) == EVP_CIPH_ECB_MODE
 173             || (ctx->cipher->flags & EVP_CIPH_MODE) == EVP_CIPH_CBC_MODE)
 174             && !enc)
 175                 ret=AES_set_decrypt_key(key, ctx->key_len * 8, ctx->cipher_data);
 176         else
 177                 ret=AES_set_encrypt_key(key, ctx->key_len * 8, ctx->cipher_data);
 178
 179         if(ret < 0)
 180                 {
 181                 EVPerr(EVP_F_AES_INIT_KEY,EVP_R_AES_KEY_SETUP_FAILED);
 182                 return 0;
 183                 }
 184
 185         return 1;
 186         }
 187
 188 #endif