Path: blob/main/crypto/openssl/providers/implementations/ciphers/cipher_aes_ocb_hw.c
108638 views
/*1* Copyright 2019-2024 The OpenSSL Project Authors. All Rights Reserved.2*3* Licensed under the Apache License 2.0 (the "License"). You may not use4* this file except in compliance with the License. You can obtain a copy5* in the file LICENSE in the source distribution or at6* https://www.openssl.org/source/license.html7*/89/*10* This file uses the low level AES functions (which are deprecated for11* non-internal use) in order to implement provider AES ciphers.12*/13#include "internal/deprecated.h"1415#include "cipher_aes_ocb.h"1617#define OCB_SET_KEY_FN(fn_set_enc_key, fn_set_dec_key, \18fn_block_enc, fn_block_dec, \19fn_stream_enc, fn_stream_dec) \20CRYPTO_ocb128_cleanup(&ctx->ocb); \21fn_set_enc_key(key, keylen * 8, &ctx->ksenc.ks); \22fn_set_dec_key(key, keylen * 8, &ctx->ksdec.ks); \23if (!CRYPTO_ocb128_init(&ctx->ocb, &ctx->ksenc.ks, &ctx->ksdec.ks, \24(block128_f)fn_block_enc, (block128_f)fn_block_dec, \25ctx->base.enc ? (ocb128_f)fn_stream_enc : (ocb128_f)fn_stream_dec)) \26return 0; \27ctx->key_set = 12829static int cipher_hw_aes_ocb_generic_initkey(PROV_CIPHER_CTX *vctx,30const unsigned char *key,31size_t keylen)32{33PROV_AES_OCB_CTX *ctx = (PROV_AES_OCB_CTX *)vctx;3435/*36* We set both the encrypt and decrypt key here because decrypt37* needs both. (i.e- AAD uses encrypt).38*/39#ifdef HWAES_CAPABLE40if (HWAES_CAPABLE) {41OCB_SET_KEY_FN(HWAES_set_encrypt_key, HWAES_set_decrypt_key,42HWAES_encrypt, HWAES_decrypt,43HWAES_ocb_encrypt, HWAES_ocb_decrypt);44} else45#endif46#ifdef VPAES_CAPABLE47if (VPAES_CAPABLE) {48OCB_SET_KEY_FN(vpaes_set_encrypt_key, vpaes_set_decrypt_key,49vpaes_encrypt, vpaes_decrypt, NULL, NULL);50} else51#endif52{53OCB_SET_KEY_FN(AES_set_encrypt_key, AES_set_decrypt_key,54AES_encrypt, AES_decrypt, NULL, NULL);55}56return 1;57}5859#if defined(AESNI_CAPABLE)6061static int cipher_hw_aes_ocb_aesni_initkey(PROV_CIPHER_CTX *vctx,62const unsigned char *key,63size_t keylen)64{65PROV_AES_OCB_CTX *ctx = (PROV_AES_OCB_CTX *)vctx;6667OCB_SET_KEY_FN(aesni_set_encrypt_key, aesni_set_decrypt_key,68aesni_encrypt, aesni_decrypt,69aesni_ocb_encrypt, aesni_ocb_decrypt);70return 1;71}7273#define PROV_CIPHER_HW_declare() \74static const PROV_CIPHER_HW aesni_ocb = { \75cipher_hw_aes_ocb_aesni_initkey, \76NULL \77};78#define PROV_CIPHER_HW_select() \79if (AESNI_CAPABLE) \80return &aesni_ocb;8182#elif defined(SPARC_AES_CAPABLE)8384static int cipher_hw_aes_ocb_t4_initkey(PROV_CIPHER_CTX *vctx,85const unsigned char *key,86size_t keylen)87{88PROV_AES_OCB_CTX *ctx = (PROV_AES_OCB_CTX *)vctx;8990OCB_SET_KEY_FN(aes_t4_set_encrypt_key, aes_t4_set_decrypt_key,91aes_t4_encrypt, aes_t4_decrypt, NULL, NULL);92return 1;93}9495#define PROV_CIPHER_HW_declare() \96static const PROV_CIPHER_HW aes_t4_ocb = { \97cipher_hw_aes_ocb_t4_initkey, \98NULL \99};100#define PROV_CIPHER_HW_select() \101if (SPARC_AES_CAPABLE) \102return &aes_t4_ocb;103104#elif defined(OPENSSL_CPUID_OBJ) && defined(__riscv) && __riscv_xlen == 64105106static int cipher_hw_aes_ocb_rv64i_zknd_zkne_initkey(PROV_CIPHER_CTX *vctx,107const unsigned char *key,108size_t keylen)109{110PROV_AES_OCB_CTX *ctx = (PROV_AES_OCB_CTX *)vctx;111112OCB_SET_KEY_FN(rv64i_zkne_set_encrypt_key, rv64i_zknd_set_decrypt_key,113rv64i_zkne_encrypt, rv64i_zknd_decrypt, NULL, NULL);114return 1;115}116117static int cipher_hw_aes_ocb_rv64i_zvkned_initkey(PROV_CIPHER_CTX *vctx,118const unsigned char *key,119size_t keylen)120{121PROV_AES_OCB_CTX *ctx = (PROV_AES_OCB_CTX *)vctx;122123/* Zvkned only supports 128 and 256 bit keys. */124if (keylen * 8 == 128 || keylen * 8 == 256) {125OCB_SET_KEY_FN(rv64i_zvkned_set_encrypt_key,126rv64i_zvkned_set_decrypt_key,127rv64i_zvkned_encrypt, rv64i_zvkned_decrypt,128NULL, NULL);129} else {130OCB_SET_KEY_FN(AES_set_encrypt_key, AES_set_encrypt_key,131rv64i_zvkned_encrypt, rv64i_zvkned_decrypt,132NULL, NULL);133}134return 1;135}136137#define PROV_CIPHER_HW_declare() \138static const PROV_CIPHER_HW aes_rv64i_zknd_zkne_ocb = { \139cipher_hw_aes_ocb_rv64i_zknd_zkne_initkey, \140NULL \141}; \142static const PROV_CIPHER_HW aes_rv64i_zvkned_ocb = { \143cipher_hw_aes_ocb_rv64i_zvkned_initkey, \144NULL \145};146#define PROV_CIPHER_HW_select() \147if (RISCV_HAS_ZVKNED() && riscv_vlen() >= 128) \148return &aes_rv64i_zvkned_ocb; \149else if (RISCV_HAS_ZKND_AND_ZKNE()) \150return &aes_rv64i_zknd_zkne_ocb;151152#elif defined(OPENSSL_CPUID_OBJ) && defined(__riscv) && __riscv_xlen == 32153154static int cipher_hw_aes_ocb_rv32i_zknd_zkne_initkey(PROV_CIPHER_CTX *vctx,155const unsigned char *key,156size_t keylen)157{158PROV_AES_OCB_CTX *ctx = (PROV_AES_OCB_CTX *)vctx;159160OCB_SET_KEY_FN(rv32i_zkne_set_encrypt_key, rv32i_zknd_zkne_set_decrypt_key,161rv32i_zkne_encrypt, rv32i_zknd_decrypt, NULL, NULL);162return 1;163}164165static int cipher_hw_aes_ocb_rv32i_zbkb_zknd_zkne_initkey(PROV_CIPHER_CTX *vctx,166const unsigned char *key,167size_t keylen)168{169PROV_AES_OCB_CTX *ctx = (PROV_AES_OCB_CTX *)vctx;170171OCB_SET_KEY_FN(rv32i_zbkb_zkne_set_encrypt_key, rv32i_zbkb_zknd_zkne_set_decrypt_key,172rv32i_zkne_encrypt, rv32i_zknd_decrypt, NULL, NULL);173return 1;174}175176#define PROV_CIPHER_HW_declare() \177static const PROV_CIPHER_HW aes_rv32i_zknd_zkne_ocb = { \178cipher_hw_aes_ocb_rv32i_zknd_zkne_initkey, \179NULL \180}; \181static const PROV_CIPHER_HW aes_rv32i_zbkb_zknd_zkne_ocb = { \182cipher_hw_aes_ocb_rv32i_zbkb_zknd_zkne_initkey, \183NULL \184};185#define PROV_CIPHER_HW_select() \186if (RISCV_HAS_ZBKB_AND_ZKND_AND_ZKNE()) \187return &aes_rv32i_zbkb_zknd_zkne_ocb; \188if (RISCV_HAS_ZKND_AND_ZKNE()) \189return &aes_rv32i_zknd_zkne_ocb;190#else191#define PROV_CIPHER_HW_declare()192#define PROV_CIPHER_HW_select()193#endif194195static const PROV_CIPHER_HW aes_generic_ocb = {196cipher_hw_aes_ocb_generic_initkey,197NULL198};199PROV_CIPHER_HW_declare()200const PROV_CIPHER_HW *ossl_prov_cipher_hw_aes_ocb(size_t keybits)201{202PROV_CIPHER_HW_select() return &aes_generic_ocb;203}204205206