ipxe/src/crypto/axtls_aes.c

#include "crypto/axtls/crypto.h"
#include <string.h>
#include <errno.h>
#include <gpxe/crypto.h>
#include <gpxe/aes.h>

struct aes_cbc_context {
	AES_CTX ctx;
	int decrypting;
};

static int aes_cbc_setkey ( void *ctx, const void *key, size_t keylen ) {
	struct aes_cbc_context *aesctx = ctx;
	AES_MODE mode;

	switch ( keylen ) {
	case ( 128 / 8 ):
		mode = AES_MODE_128;
		break;
	case ( 256 / 8 ):
		mode = AES_MODE_256;
		break;
	default:
		return -EINVAL;
	}

	AES_set_key ( &aesctx->ctx, key, aesctx->ctx.iv, mode );

	aesctx->decrypting = 0;

	return 0;
}

static void aes_cbc_setiv ( void *ctx, const void *iv ) {
	struct aes_cbc_context *aesctx = ctx;

	memcpy ( aesctx->ctx.iv, iv, sizeof ( aesctx->ctx.iv ) );
}

static void aes_cbc_encrypt ( void *ctx, const void *data, void *dst,
			      size_t len ) {
	struct aes_cbc_context *aesctx = ctx;

	if ( aesctx->decrypting )
		assert ( 0 );

	AES_cbc_encrypt ( &aesctx->ctx, data, dst, len );
}

static void aes_cbc_decrypt ( void *ctx, const void *data, void *dst,
			      size_t len ) {
	struct aes_cbc_context *aesctx = ctx;

	if ( ! aesctx->decrypting ) {
		AES_convert_key ( &aesctx->ctx );
		aesctx->decrypting = 1;
	}

	AES_cbc_decrypt ( &aesctx->ctx, data, dst, len );
}

struct cipher_algorithm aes_cbc_algorithm = {
	.name		= "aes_cbc",
	.ctxsize	= sizeof ( struct aes_cbc_context ),
	.blocksize	= 16,
	.setkey		= aes_cbc_setkey,
	.setiv		= aes_cbc_setiv,
	.encrypt	= aes_cbc_encrypt,
	.decrypt	= aes_cbc_decrypt,
};
Added wrapper for AXTLS AES code 2007-01-31 19:09:20 +01:00			`#include "crypto/axtls/crypto.h"`
			`#include <string.h>`
Add per-file error identifiers 2007-07-24 18:11:31 +02:00			`#include <errno.h>`
Added wrapper for AXTLS AES code 2007-01-31 19:09:20 +01:00			`#include <gpxe/crypto.h>`
			`#include <gpxe/aes.h>`

[crypto] Move AES_convert_key() hack into axtls_aes.c Although the nature of the hack is essentially unchanged, this allows us to remove the hardcoded assumption in tls.c that the RX cipher is AES. 2009-02-18 22:33:54 +01:00			`struct aes_cbc_context {`
			`AES_CTX ctx;`
			`int decrypting;`
			`};`

[crypto] Rename aes_algorithm to aes_cbc_algorithm 2009-02-18 22:25:14 +01:00			`static int aes_cbc_setkey ( void ctx, const void key, size_t keylen ) {`
[crypto] Move AES_convert_key() hack into axtls_aes.c Although the nature of the hack is essentially unchanged, this allows us to remove the hardcoded assumption in tls.c that the RX cipher is AES. 2009-02-18 22:33:54 +01:00			`struct aes_cbc_context *aesctx = ctx;`
Added wrapper for AXTLS AES code 2007-01-31 19:09:20 +01:00			`AES_MODE mode;`

			`switch ( keylen ) {`
			`case ( 128 / 8 ):`
			`mode = AES_MODE_128;`
			`break;`
			`case ( 256 / 8 ):`
			`mode = AES_MODE_256;`
			`break;`
			`default:`
			`return -EINVAL;`
			`}`

[crypto] Move AES_convert_key() hack into axtls_aes.c Although the nature of the hack is essentially unchanged, this allows us to remove the hardcoded assumption in tls.c that the RX cipher is AES. 2009-02-18 22:33:54 +01:00			`AES_set_key ( &aesctx->ctx, key, aesctx->ctx.iv, mode );`

			`aesctx->decrypting = 0;`

Added wrapper for AXTLS AES code 2007-01-31 19:09:20 +01:00			`return 0;`
			`}`

[crypto] Rename aes_algorithm to aes_cbc_algorithm 2009-02-18 22:25:14 +01:00			`static void aes_cbc_setiv ( void ctx, const void iv ) {`
[crypto] Move AES_convert_key() hack into axtls_aes.c Although the nature of the hack is essentially unchanged, this allows us to remove the hardcoded assumption in tls.c that the RX cipher is AES. 2009-02-18 22:33:54 +01:00			`struct aes_cbc_context *aesctx = ctx;`
Added wrapper for AXTLS AES code 2007-01-31 19:09:20 +01:00
[crypto] Move AES_convert_key() hack into axtls_aes.c Although the nature of the hack is essentially unchanged, this allows us to remove the hardcoded assumption in tls.c that the RX cipher is AES. 2009-02-18 22:33:54 +01:00			`memcpy ( aesctx->ctx.iv, iv, sizeof ( aesctx->ctx.iv ) );`
Added wrapper for AXTLS AES code 2007-01-31 19:09:20 +01:00			`}`

[crypto] Rename aes_algorithm to aes_cbc_algorithm 2009-02-18 22:25:14 +01:00			`static void aes_cbc_encrypt ( void ctx, const void data, void *dst,`
			`size_t len ) {`
[crypto] Move AES_convert_key() hack into axtls_aes.c Although the nature of the hack is essentially unchanged, this allows us to remove the hardcoded assumption in tls.c that the RX cipher is AES. 2009-02-18 22:33:54 +01:00			`struct aes_cbc_context *aesctx = ctx;`
Added wrapper for AXTLS AES code 2007-01-31 19:09:20 +01:00
[crypto] Move AES_convert_key() hack into axtls_aes.c Although the nature of the hack is essentially unchanged, this allows us to remove the hardcoded assumption in tls.c that the RX cipher is AES. 2009-02-18 22:33:54 +01:00			`if ( aesctx->decrypting )`
			`assert ( 0 );`

			`AES_cbc_encrypt ( &aesctx->ctx, data, dst, len );`
Added wrapper for AXTLS AES code 2007-01-31 19:09:20 +01:00			`}`

[crypto] Rename aes_algorithm to aes_cbc_algorithm 2009-02-18 22:25:14 +01:00			`static void aes_cbc_decrypt ( void ctx, const void data, void *dst,`
			`size_t len ) {`
[crypto] Move AES_convert_key() hack into axtls_aes.c Although the nature of the hack is essentially unchanged, this allows us to remove the hardcoded assumption in tls.c that the RX cipher is AES. 2009-02-18 22:33:54 +01:00			`struct aes_cbc_context *aesctx = ctx;`

			`if ( ! aesctx->decrypting ) {`
			`AES_convert_key ( &aesctx->ctx );`
			`aesctx->decrypting = 1;`
			`}`
Added wrapper for AXTLS AES code 2007-01-31 19:09:20 +01:00
[crypto] Move AES_convert_key() hack into axtls_aes.c Although the nature of the hack is essentially unchanged, this allows us to remove the hardcoded assumption in tls.c that the RX cipher is AES. 2009-02-18 22:33:54 +01:00			`AES_cbc_decrypt ( &aesctx->ctx, data, dst, len );`
Added wrapper for AXTLS AES code 2007-01-31 19:09:20 +01:00			`}`

[crypto] Split crypto_algorithm into {digest,cipher,pubkey}_algorithm The various types of cryptographic algorithm are fundamentally different, and it was probably a mistake to try to handle them via a single common type. pubkey_algorithm is a placeholder type for now. 2009-02-18 22:56:02 +01:00			`struct cipher_algorithm aes_cbc_algorithm = {`
[crypto] Rename aes_algorithm to aes_cbc_algorithm 2009-02-18 22:25:14 +01:00			`.name = "aes_cbc",`
[crypto] Move AES_convert_key() hack into axtls_aes.c Although the nature of the hack is essentially unchanged, this allows us to remove the hardcoded assumption in tls.c that the RX cipher is AES. 2009-02-18 22:33:54 +01:00			`.ctxsize = sizeof ( struct aes_cbc_context ),`
Added wrapper for AXTLS AES code 2007-01-31 19:09:20 +01:00			`.blocksize = 16,`
[crypto] Rename aes_algorithm to aes_cbc_algorithm 2009-02-18 22:25:14 +01:00			`.setkey = aes_cbc_setkey,`
			`.setiv = aes_cbc_setiv,`
[crypto] Split crypto_algorithm into {digest,cipher,pubkey}_algorithm The various types of cryptographic algorithm are fundamentally different, and it was probably a mistake to try to handle them via a single common type. pubkey_algorithm is a placeholder type for now. 2009-02-18 22:56:02 +01:00			`.encrypt = aes_cbc_encrypt,`
			`.decrypt = aes_cbc_decrypt,`
Added wrapper for AXTLS AES code 2007-01-31 19:09:20 +01:00			`};`