Accueil Explorer Aide
Connexion
OWEALs
/
openssl
miroir de git://git.openssl.org/openssl.git
2
0
Fork 0
Fichiers Tickets 1 Wiki
Aborescence: 6594baf645
Branches Tags
openssl
/
providers
/
implementations
/
ciphers
/
cipher_aes_gcm_hw_ppc.inc

cipher_aes_gcm_hw_ppc.inc 4.5 KB
Historique Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155 
  1. /*
    2. 

  2.  * Copyright 2001-2022 The OpenSSL Project Authors. All Rights Reserved.
    3. 

  3.  *
    4. 

  4.  * Licensed under the Apache License 2.0 (the "License").  You may not use
    5. 

  5.  * this file except in compliance with the License.  You can obtain a copy
    6. 

  6.  * in the file LICENSE in the source distribution or at
    7. 

  7.  * https://www.openssl.org/source/license.html
    8. 

  8.  */
    9. 

  9. 

  10. /*-
    11. 

  11.  * PPC support for AES GCM.
    12. 

  12.  * This file is included by cipher_aes_gcm_hw.c
    13. 

  13.  */
    14. 

  14. 

  15. static int aes_ppc_gcm_initkey(PROV_GCM_CTX *ctx, const unsigned char *key,
    16. 

  16.                                size_t keylen)
    17. 

  17. {
    18. 

  18.     PROV_AES_GCM_CTX *actx = (PROV_AES_GCM_CTX *)ctx;
    19. 

  19.     AES_KEY *ks = &actx->ks.ks;
    20. 

  20. 

  21.     GCM_HW_SET_KEY_CTR_FN(ks, aes_p8_set_encrypt_key, aes_p8_encrypt,
    22. 

  22.                           aes_p8_ctr32_encrypt_blocks);
    23. 

  23.     return 1;
    24. 

  24. }
    25. 

  25. 

  26. static inline u32 UTO32(unsigned char *buf)
    27. 

  27. {
    28. 

  28.     return ((u32) buf[0] << 24) | ((u32) buf[1] << 16) | ((u32) buf[2] << 8) | ((u32) buf[3]);
    29. 

  29. }
    30. 

  30. 

  31. static inline u32 add32TOU(unsigned char buf[4], u32 n)
    32. 

  32. {
    33. 

  33.     u32 r;
    34. 

  34. 

  35.     r = UTO32(buf);
    36. 

  36.     r += n;
    37. 

  37.     buf[0] = (unsigned char) (r >> 24) & 0xFF;
    38. 

  38.     buf[1] = (unsigned char) (r >> 16) & 0xFF;
    39. 

  39.     buf[2] = (unsigned char) (r >> 8) & 0xFF;
    40. 

  40.     buf[3] = (unsigned char) r & 0xFF;
    41. 

  41.     return r;
    42. 

  42. }
    43. 

  43. 

  44. static size_t ppc_aes_gcm_crypt(const unsigned char *in, unsigned char *out, size_t len,
    45. 

  45.                                 const void *key, unsigned char ivec[16], u64 *Xi, int encrypt)
    46. 

  46. {
    47. 

  47.     int s = 0;
    48. 

  48.     int ndone = 0;
    49. 

  49.     int ctr_reset = 0;
    50. 

  50.     u64 blocks_unused;
    51. 

  51.     u64 nb = len / 16;
    52. 

  52.     u64 next_ctr = 0;
    53. 

  53.     unsigned char ctr_saved[12];
    54. 

  54. 

  55.     memcpy(ctr_saved, ivec, 12);
    56. 

  56. 

  57.     while (nb) {
    58. 

  58.         blocks_unused = (u64) 0xffffffffU + 1 - (u64) UTO32 (ivec + 12);
    59. 

  59.         if (nb > blocks_unused) {
    60. 

  60.             len = blocks_unused * 16;
    61. 

  61.             nb -= blocks_unused;
    62. 

  62.             next_ctr = blocks_unused;
    63. 

  63.             ctr_reset = 1;
    64. 

  64.         } else {
    65. 

  65.             len = nb * 16;
    66. 

  66.             next_ctr = nb;
    67. 

  67.             nb = 0;
    68. 

  68.         }
    69. 

  69. 

  70.         s = encrypt ? ppc_aes_gcm_encrypt(in, out, len, key, ivec, Xi)
    71. 

  71.                     : ppc_aes_gcm_decrypt(in, out, len, key, ivec, Xi);
    72. 

  72. 

  73.         /* add counter to ivec */
    74. 

  74.         add32TOU(ivec + 12, (u32) next_ctr);
    75. 

  75.         if (ctr_reset) {
    76. 

  76.             ctr_reset = 0;
    77. 

  77.             in += len;
    78. 

  78.             out += len;
    79. 

  79.         }
    80. 

  80.         memcpy(ivec, ctr_saved, 12);
    81. 

  81.         ndone += s;
    82. 

  82.     }
    83. 

  83. 

  84.     return ndone;
    85. 

  85. }
    86. 

  86. 

  87. static int ppc_aes_gcm_cipher_update(PROV_GCM_CTX *ctx, const unsigned char *in,
    88. 

  88.                                      size_t len, unsigned char *out)
    89. 

  89. {
    90. 

  90.     if (ctx->enc) {
    91. 

  91.         if (ctx->ctr != NULL) {
    92. 

  92.             size_t bulk = 0;
    93. 

  93. 

  94.             if (len >= AES_GCM_ENC_BYTES && AES_GCM_ASM_PPC(ctx)) {
    95. 

  95.                 size_t res = (16 - ctx->gcm.mres) % 16;
    96. 

  96. 

  97.                 if (CRYPTO_gcm128_encrypt(&ctx->gcm, in, out, res))
    98. 

  98.                     return 0;
    99. 

  99. 

  100.                 bulk = ppc_aes_gcm_crypt(in + res, out + res, len - res,
    101. 

  101.                                          ctx->gcm.key,
    102. 

  102.                                          ctx->gcm.Yi.c, ctx->gcm.Xi.u, 1);
    103. 

  103. 

  104.                 ctx->gcm.len.u[1] += bulk;
    105. 

  105.                 bulk += res;
    106. 

  106.             }
    107. 

  107.             if (CRYPTO_gcm128_encrypt_ctr32(&ctx->gcm, in + bulk, out + bulk,
    108. 

  108.                                             len - bulk, ctx->ctr))
    109. 

  109.                 return 0;
    110. 

  110.         } else {
    111. 

  111.             if (CRYPTO_gcm128_encrypt(&ctx->gcm, in, out, len))
    112. 

  112.                 return 0;
    113. 

  113.         }
    114. 

  114.     } else {
    115. 

  115.         if (ctx->ctr != NULL) {
    116. 

  116.             size_t bulk = 0;
    117. 

  117. 

  118.             if (len >= AES_GCM_DEC_BYTES && AES_GCM_ASM_PPC(ctx)) {
    119. 

  119.                 size_t res = (16 - ctx->gcm.mres) % 16;
    120. 

  120. 

  121.                 if (CRYPTO_gcm128_decrypt(&ctx->gcm, in, out, res))
    122. 

  122.                     return -1;
    123. 

  123. 

  124.                 bulk = ppc_aes_gcm_crypt(in + res, out + res, len - res,
    125. 

  125.                                          ctx->gcm.key,
    126. 

  126.                                          ctx->gcm.Yi.c, ctx->gcm.Xi.u, 0);
    127. 

  127. 

  128.                 ctx->gcm.len.u[1] += bulk;
    129. 

  129.                 bulk += res;
    130. 

  130.             }
    131. 

  131.             if (CRYPTO_gcm128_decrypt_ctr32(&ctx->gcm, in + bulk, out + bulk,
    132. 

  132.                                             len - bulk, ctx->ctr))
    133. 

  133.                 return 0;
    134. 

  134.         } else {
    135. 

  135.             if (CRYPTO_gcm128_decrypt(&ctx->gcm, in, out, len))
    136. 

  136.                 return 0;
    137. 

  137.         }
    138. 

  138.     }
    139. 

  139.     return 1;
    140. 

  140. }
    141. 

  141. 

  142. static const PROV_GCM_HW aes_ppc_gcm = {
    143. 

  143.     aes_ppc_gcm_initkey,
    144. 

  144.     ossl_gcm_setiv,
    145. 

  145.     ossl_gcm_aad_update,
    146. 

  146.     ppc_aes_gcm_cipher_update,
    147. 

  147.     ossl_gcm_cipher_final,
    148. 

  148.     ossl_gcm_one_shot
    149. 

  149. };
    150. 

  150. 

  151. const PROV_GCM_HW *ossl_prov_aes_hw_gcm(size_t keybits)
    152. 

  152. {
    153. 

  153.     return PPC_AES_GCM_CAPABLE ? &aes_ppc_gcm : &aes_gcm;
    154. 

  154. }
    155. 

  155.