projects / openssl.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
history | raw | HEAD
Add X509_CHECK_FLAG_NEVER_CHECK_SUBJECT flag
[openssl.git] / crypto / evp / e_camellia.c
1 /* ====================================================================
2  * Copyright (c) 2006 The OpenSSL Project.  All rights reserved.
3  *
4  * Redistribution and use in source and binary forms, with or without
5  * modification, are permitted provided that the following conditions
6  * are met:
7  *
8  * 1. Redistributions of source code must retain the above copyright
9  *    notice, this list of conditions and the following disclaimer.
10  *
11  * 2. Redistributions in binary form must reproduce the above copyright
12  *    notice, this list of conditions and the following disclaimer in
13  *    the documentation and/or other materials provided with the
14  *    distribution.
15  *
16  * 3. All advertising materials mentioning features or use of this
17  *    software must display the following acknowledgment:
18  *    "This product includes software developed by the OpenSSL Project
19  *    for use in the OpenSSL Toolkit. (http://www.openssl.org/)"
20  *
21  * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to
22  *    endorse or promote products derived from this software without
23  *    prior written permission. For written permission, please contact
24  *    openssl-core@openssl.org.
25  *
26  * 5. Products derived from this software may not be called "OpenSSL"
27  *    nor may "OpenSSL" appear in their names without prior written
28  *    permission of the OpenSSL Project.
29  *
30  * 6. Redistributions of any form whatsoever must retain the following
31  *    acknowledgment:
32  *    "This product includes software developed by the OpenSSL Project
33  *    for use in the OpenSSL Toolkit (http://www.openssl.org/)"
34  *
35  * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY
36  * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
37  * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
38  * PURPOSE ARE DISCLAIMED.  IN NO EVENT SHALL THE OpenSSL PROJECT OR
39  * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
40  * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
41  * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
42  * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
43  * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
44  * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
45  * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
46  * OF THE POSSIBILITY OF SUCH DAMAGE.
47  * ====================================================================
48  *
49  * This product includes cryptographic software written by Eric Young
50  * (eay@cryptsoft.com).  This product includes software written by Tim
51  * Hudson (tjh@cryptsoft.com).
52  *
53  */
54
55 #include <openssl/opensslconf.h>
56 #ifdef OPENSSL_NO_CAMELLIA
57 NON_EMPTY_TRANSLATION_UNIT
58 #else
59
60 # include <openssl/evp.h>
61 # include <openssl/err.h>
62 # include <string.h>
63 # include <assert.h>
64 # include <openssl/camellia.h>
65 # include "internal/evp_int.h"
66 # include "modes_lcl.h"
67
68 static int camellia_init_key(EVP_CIPHER_CTX *ctx, const unsigned char *key,
69                              const unsigned char *iv, int enc);
70
71 /* Camellia subkey Structure */
72 typedef struct {
73     CAMELLIA_KEY ks;
74     block128_f block;
75     union {
76         cbc128_f cbc;
77         ctr128_f ctr;
78     } stream;
79 } EVP_CAMELLIA_KEY;
80
81 # define MAXBITCHUNK     ((size_t)1<<(sizeof(size_t)*8-4))
82
83 /* Attribute operation for Camellia */
84 # define data(ctx)       EVP_C_DATA(EVP_CAMELLIA_KEY,ctx)
85
86 # if defined(AES_ASM) && (defined(__sparc) || defined(__sparc__))
87 /* ---------^^^ this is not a typo, just a way to detect that
88  * assembler support was in general requested... */
89 #  include "sparc_arch.h"
90
91 extern unsigned int OPENSSL_sparcv9cap_P[];
92
93 #  define SPARC_CMLL_CAPABLE      (OPENSSL_sparcv9cap_P[1] & CFR_CAMELLIA)
94
95 void cmll_t4_set_key(const unsigned char *key, int bits, CAMELLIA_KEY *ks);
96 void cmll_t4_encrypt(const unsigned char *in, unsigned char *out,
97                      const CAMELLIA_KEY *key);
98 void cmll_t4_decrypt(const unsigned char *in, unsigned char *out,
99                      const CAMELLIA_KEY *key);
100
101 void cmll128_t4_cbc_encrypt(const unsigned char *in, unsigned char *out,
102                             size_t len, const CAMELLIA_KEY *key,
103                             unsigned char *ivec);
104 void cmll128_t4_cbc_decrypt(const unsigned char *in, unsigned char *out,
105                             size_t len, const CAMELLIA_KEY *key,
106                             unsigned char *ivec);
107 void cmll256_t4_cbc_encrypt(const unsigned char *in, unsigned char *out,
108                             size_t len, const CAMELLIA_KEY *key,
109                             unsigned char *ivec);
110 void cmll256_t4_cbc_decrypt(const unsigned char *in, unsigned char *out,
111                             size_t len, const CAMELLIA_KEY *key,
112                             unsigned char *ivec);
113 void cmll128_t4_ctr32_encrypt(const unsigned char *in, unsigned char *out,
114                               size_t blocks, const CAMELLIA_KEY *key,
115                               unsigned char *ivec);
116 void cmll256_t4_ctr32_encrypt(const unsigned char *in, unsigned char *out,
117                               size_t blocks, const CAMELLIA_KEY *key,
118                               unsigned char *ivec);
119
120 static int cmll_t4_init_key(EVP_CIPHER_CTX *ctx, const unsigned char *key,
121                             const unsigned char *iv, int enc)
122 {
123     int ret, mode, bits;
124     EVP_CAMELLIA_KEY *dat =
125         (EVP_CAMELLIA_KEY *)EVP_CIPHER_CTX_get_cipher_data(ctx);
126
127     mode = EVP_CIPHER_CTX_mode(ctx);
128     bits = EVP_CIPHER_CTX_key_length(ctx) * 8;
129
130     cmll_t4_set_key(key, bits, &dat->ks);
131
132     if ((mode == EVP_CIPH_ECB_MODE || mode == EVP_CIPH_CBC_MODE)
133         && !enc) {
134         ret = 0;
135         dat->block = (block128_f) cmll_t4_decrypt;
136         switch (bits) {
137         case 128:
138             dat->stream.cbc = mode == EVP_CIPH_CBC_MODE ?
139                 (cbc128_f) cmll128_t4_cbc_decrypt : NULL;
140             break;
141         case 192:
142         case 256:
143             dat->stream.cbc = mode == EVP_CIPH_CBC_MODE ?
144                 (cbc128_f) cmll256_t4_cbc_decrypt : NULL;
145             break;
146         default:
147             ret = -1;
148         }
149     } else {
150         ret = 0;
151         dat->block = (block128_f) cmll_t4_encrypt;
152         switch (bits) {
153         case 128:
154             if (mode == EVP_CIPH_CBC_MODE)
155                 dat->stream.cbc = (cbc128_f) cmll128_t4_cbc_encrypt;
156             else if (mode == EVP_CIPH_CTR_MODE)
157                 dat->stream.ctr = (ctr128_f) cmll128_t4_ctr32_encrypt;
158             else
159                 dat->stream.cbc = NULL;
160             break;
161         case 192:
162         case 256:
163             if (mode == EVP_CIPH_CBC_MODE)
164                 dat->stream.cbc = (cbc128_f) cmll256_t4_cbc_encrypt;
165             else if (mode == EVP_CIPH_CTR_MODE)
166                 dat->stream.ctr = (ctr128_f) cmll256_t4_ctr32_encrypt;
167             else
168                 dat->stream.cbc = NULL;
169             break;
170         default:
171             ret = -1;
172         }
173     }
174
175     if (ret < 0) {
176         EVPerr(EVP_F_CMLL_T4_INIT_KEY, EVP_R_CAMELLIA_KEY_SETUP_FAILED);
177         return 0;
178     }
179
180     return 1;
181 }
182
183 #  define cmll_t4_cbc_cipher camellia_cbc_cipher
184 static int cmll_t4_cbc_cipher(EVP_CIPHER_CTX *ctx, unsigned char *out,
185                               const unsigned char *in, size_t len);
186
187 #  define cmll_t4_ecb_cipher camellia_ecb_cipher
188 static int cmll_t4_ecb_cipher(EVP_CIPHER_CTX *ctx, unsigned char *out,
189                               const unsigned char *in, size_t len);
190
191 #  define cmll_t4_ofb_cipher camellia_ofb_cipher
192 static int cmll_t4_ofb_cipher(EVP_CIPHER_CTX *ctx, unsigned char *out,
193                               const unsigned char *in, size_t len);
194
195 #  define cmll_t4_cfb_cipher camellia_cfb_cipher
196 static int cmll_t4_cfb_cipher(EVP_CIPHER_CTX *ctx, unsigned char *out,
197                               const unsigned char *in, size_t len);
198
199 #  define cmll_t4_cfb8_cipher camellia_cfb8_cipher
200 static int cmll_t4_cfb8_cipher(EVP_CIPHER_CTX *ctx, unsigned char *out,
201                                const unsigned char *in, size_t len);
202
203 #  define cmll_t4_cfb1_cipher camellia_cfb1_cipher
204 static int cmll_t4_cfb1_cipher(EVP_CIPHER_CTX *ctx, unsigned char *out,
205                                const unsigned char *in, size_t len);
206
207 #  define cmll_t4_ctr_cipher camellia_ctr_cipher
208 static int cmll_t4_ctr_cipher(EVP_CIPHER_CTX *ctx, unsigned char *out,
209                               const unsigned char *in, size_t len);
210
211 #  define BLOCK_CIPHER_generic(nid,keylen,blocksize,ivlen,nmode,mode,MODE,flags) \
212 static const EVP_CIPHER cmll_t4_##keylen##_##mode = { \
213         nid##_##keylen##_##nmode,blocksize,keylen/8,ivlen, \
214         flags|EVP_CIPH_##MODE##_MODE,   \
215         cmll_t4_init_key,               \
216         cmll_t4_##mode##_cipher,        \
217         NULL,                           \
218         sizeof(EVP_CAMELLIA_KEY),       \
219         NULL,NULL,NULL,NULL }; \
220 static const EVP_CIPHER camellia_##keylen##_##mode = { \
221         nid##_##keylen##_##nmode,blocksize,     \
222         keylen/8,ivlen, \
223         flags|EVP_CIPH_##MODE##_MODE,   \
224         camellia_init_key,              \
225         camellia_##mode##_cipher,       \
226         NULL,                           \
227         sizeof(EVP_CAMELLIA_KEY),       \
228         NULL,NULL,NULL,NULL }; \
229 const EVP_CIPHER *EVP_camellia_##keylen##_##mode(void) \
230 { return SPARC_CMLL_CAPABLE?&cmll_t4_##keylen##_##mode:&camellia_##keylen##_##mode; }
231
232 # else
233
234 #  define BLOCK_CIPHER_generic(nid,keylen,blocksize,ivlen,nmode,mode,MODE,flags) \
235 static const EVP_CIPHER camellia_##keylen##_##mode = { \
236         nid##_##keylen##_##nmode,blocksize,keylen/8,ivlen, \
237         flags|EVP_CIPH_##MODE##_MODE,   \
238         camellia_init_key,              \
239         camellia_##mode##_cipher,       \
240         NULL,                           \
241         sizeof(EVP_CAMELLIA_KEY),       \
242         NULL,NULL,NULL,NULL }; \
243 const EVP_CIPHER *EVP_camellia_##keylen##_##mode(void) \
244 { return &camellia_##keylen##_##mode; }
245
246 # endif
247
248 # define BLOCK_CIPHER_generic_pack(nid,keylen,flags)             \
249         BLOCK_CIPHER_generic(nid,keylen,16,16,cbc,cbc,CBC,flags|EVP_CIPH_FLAG_DEFAULT_ASN1)     \
250         BLOCK_CIPHER_generic(nid,keylen,16,0,ecb,ecb,ECB,flags|EVP_CIPH_FLAG_DEFAULT_ASN1)      \
251         BLOCK_CIPHER_generic(nid,keylen,1,16,ofb128,ofb,OFB,flags|EVP_CIPH_FLAG_DEFAULT_ASN1)   \
252         BLOCK_CIPHER_generic(nid,keylen,1,16,cfb128,cfb,CFB,flags|EVP_CIPH_FLAG_DEFAULT_ASN1)   \
253         BLOCK_CIPHER_generic(nid,keylen,1,16,cfb1,cfb1,CFB,flags)       \
254         BLOCK_CIPHER_generic(nid,keylen,1,16,cfb8,cfb8,CFB,flags)       \
255         BLOCK_CIPHER_generic(nid, keylen, 1, 16, ctr, ctr, CTR, flags)
256
257 /* The subkey for Camellia is generated. */
258 static int camellia_init_key(EVP_CIPHER_CTX *ctx, const unsigned char *key,
259                              const unsigned char *iv, int enc)
260 {
261     int ret, mode;
262     EVP_CAMELLIA_KEY *dat = EVP_C_DATA(EVP_CAMELLIA_KEY,ctx);
263
264     ret = Camellia_set_key(key, EVP_CIPHER_CTX_key_length(ctx) * 8, &dat->ks);
265     if (ret < 0) {
266         EVPerr(EVP_F_CAMELLIA_INIT_KEY, EVP_R_CAMELLIA_KEY_SETUP_FAILED);
267         return 0;
268     }
269
270     mode = EVP_CIPHER_CTX_mode(ctx);
271     if ((mode == EVP_CIPH_ECB_MODE || mode == EVP_CIPH_CBC_MODE)
272         && !enc) {
273         dat->block = (block128_f) Camellia_decrypt;
274         dat->stream.cbc = mode == EVP_CIPH_CBC_MODE ?
275             (cbc128_f) Camellia_cbc_encrypt : NULL;
276     } else {
277         dat->block = (block128_f) Camellia_encrypt;
278         dat->stream.cbc = mode == EVP_CIPH_CBC_MODE ?
279             (cbc128_f) Camellia_cbc_encrypt : NULL;
280     }
281
282     return 1;
283 }
284
285 static int camellia_cbc_cipher(EVP_CIPHER_CTX *ctx, unsigned char *out,
286                                const unsigned char *in, size_t len)
287 {
288     EVP_CAMELLIA_KEY *dat = EVP_C_DATA(EVP_CAMELLIA_KEY,ctx);
289
290     if (dat->stream.cbc)
291         (*dat->stream.cbc) (in, out, len, &dat->ks,
292                             EVP_CIPHER_CTX_iv_noconst(ctx),
293                             EVP_CIPHER_CTX_encrypting(ctx));
294     else if (EVP_CIPHER_CTX_encrypting(ctx))
295         CRYPTO_cbc128_encrypt(in, out, len, &dat->ks,
296                               EVP_CIPHER_CTX_iv_noconst(ctx), dat->block);
297     else
298         CRYPTO_cbc128_decrypt(in, out, len, &dat->ks,
299                               EVP_CIPHER_CTX_iv_noconst(ctx), dat->block);
300
301     return 1;
302 }
303
304 static int camellia_ecb_cipher(EVP_CIPHER_CTX *ctx, unsigned char *out,
305                                const unsigned char *in, size_t len)
306 {
307     size_t bl = EVP_CIPHER_CTX_block_size(ctx);
308     size_t i;
309     EVP_CAMELLIA_KEY *dat = EVP_C_DATA(EVP_CAMELLIA_KEY,ctx);
310
311     if (len < bl)
312         return 1;
313
314     for (i = 0, len -= bl; i <= len; i += bl)
315         (*dat->block) (in + i, out + i, &dat->ks);
316
317     return 1;
318 }
319
320 static int camellia_ofb_cipher(EVP_CIPHER_CTX *ctx, unsigned char *out,
321                                const unsigned char *in, size_t len)
322 {
323     EVP_CAMELLIA_KEY *dat = EVP_C_DATA(EVP_CAMELLIA_KEY,ctx);
324
325     int num = EVP_CIPHER_CTX_num(ctx);
326     CRYPTO_ofb128_encrypt(in, out, len, &dat->ks,
327                           EVP_CIPHER_CTX_iv_noconst(ctx), &num, dat->block);
328     EVP_CIPHER_CTX_set_num(ctx, num);
329     return 1;
330 }
331
332 static int camellia_cfb_cipher(EVP_CIPHER_CTX *ctx, unsigned char *out,
333                                const unsigned char *in, size_t len)
334 {
335     EVP_CAMELLIA_KEY *dat = EVP_C_DATA(EVP_CAMELLIA_KEY,ctx);
336
337     int num = EVP_CIPHER_CTX_num(ctx);
338     CRYPTO_cfb128_encrypt(in, out, len, &dat->ks,
339                           EVP_CIPHER_CTX_iv_noconst(ctx), &num, EVP_CIPHER_CTX_encrypting(ctx), dat->block);
340     EVP_CIPHER_CTX_set_num(ctx, num);
341     return 1;
342 }
343
344 static int camellia_cfb8_cipher(EVP_CIPHER_CTX *ctx, unsigned char *out,
345                                 const unsigned char *in, size_t len)
346 {
347     EVP_CAMELLIA_KEY *dat = EVP_C_DATA(EVP_CAMELLIA_KEY,ctx);
348
349     int num = EVP_CIPHER_CTX_num(ctx);
350     CRYPTO_cfb128_8_encrypt(in, out, len, &dat->ks,
351                             EVP_CIPHER_CTX_iv_noconst(ctx), &num, EVP_CIPHER_CTX_encrypting(ctx), dat->block);
352     EVP_CIPHER_CTX_set_num(ctx, num);
353     return 1;
354 }
355
356 static int camellia_cfb1_cipher(EVP_CIPHER_CTX *ctx, unsigned char *out,
357                                 const unsigned char *in, size_t len)
358 {
359     EVP_CAMELLIA_KEY *dat = EVP_C_DATA(EVP_CAMELLIA_KEY,ctx);
360
361     if (EVP_CIPHER_CTX_test_flags(ctx, EVP_CIPH_FLAG_LENGTH_BITS)) {
362         int num = EVP_CIPHER_CTX_num(ctx);
363         CRYPTO_cfb128_1_encrypt(in, out, len, &dat->ks,
364                                 EVP_CIPHER_CTX_iv_noconst(ctx), &num, EVP_CIPHER_CTX_encrypting(ctx), dat->block);
365         EVP_CIPHER_CTX_set_num(ctx, num);
366         return 1;
367     }
368
369     while (len >= MAXBITCHUNK) {
370         int num = EVP_CIPHER_CTX_num(ctx);
371         CRYPTO_cfb128_1_encrypt(in, out, MAXBITCHUNK * 8, &dat->ks,
372                                 EVP_CIPHER_CTX_iv_noconst(ctx), &num, EVP_CIPHER_CTX_encrypting(ctx), dat->block);
373         len -= MAXBITCHUNK;
374         EVP_CIPHER_CTX_set_num(ctx, num);
375     }
376     if (len) {
377         int num = EVP_CIPHER_CTX_num(ctx);
378         CRYPTO_cfb128_1_encrypt(in, out, len * 8, &dat->ks,
379                                 EVP_CIPHER_CTX_iv_noconst(ctx), &num, EVP_CIPHER_CTX_encrypting(ctx), dat->block);
380         EVP_CIPHER_CTX_set_num(ctx, num);
381     }
382
383     return 1;
384 }
385
386 static int camellia_ctr_cipher(EVP_CIPHER_CTX *ctx, unsigned char *out,
387                                const unsigned char *in, size_t len)
388 {
389     unsigned int num = EVP_CIPHER_CTX_num(ctx);
390     EVP_CAMELLIA_KEY *dat = EVP_C_DATA(EVP_CAMELLIA_KEY,ctx);
391
392     if (dat->stream.ctr)
393         CRYPTO_ctr128_encrypt_ctr32(in, out, len, &dat->ks,
394                                     EVP_CIPHER_CTX_iv_noconst(ctx),
395                                     EVP_CIPHER_CTX_buf_noconst(ctx), &num,
396                                     dat->stream.ctr);
397     else
398         CRYPTO_ctr128_encrypt(in, out, len, &dat->ks,
399                               EVP_CIPHER_CTX_iv_noconst(ctx),
400                               EVP_CIPHER_CTX_buf_noconst(ctx), &num,
401                               dat->block);
402     EVP_CIPHER_CTX_set_num(ctx, num);
403     return 1;
404 }
405
406 BLOCK_CIPHER_generic_pack(NID_camellia, 128, 0)
407     BLOCK_CIPHER_generic_pack(NID_camellia, 192, 0)
408     BLOCK_CIPHER_generic_pack(NID_camellia, 256, 0)
409 #endif
Unnamed repository; edit this file 'description' to name the repository.