1/*
2 * Copyright (c) 2012 Apple Computer, Inc. All rights reserved.
3 *
4 * @APPLE_OSREFERENCE_LICENSE_HEADER_START@
5 *
6 * This file contains Original Code and/or Modifications of Original Code
7 * as defined in and that are subject to the Apple Public Source License
8 * Version 2.0 (the 'License'). You may not use this file except in
9 * compliance with the License. The rights granted to you under the License
10 * may not be used to create, or enable the creation or redistribution of,
11 * unlawful or unlicensed copies of an Apple operating system, or to
12 * circumvent, violate, or enable the circumvention or violation of, any
13 * terms of an Apple operating system software license agreement.
14 *
15 * Please obtain a copy of the License at
16 * http://www.opensource.apple.com/apsl/ and read it before using this file.
17 *
18 * The Original Code and all software distributed under the License are
19 * distributed on an 'AS IS' basis, WITHOUT WARRANTY OF ANY KIND, EITHER
20 * EXPRESS OR IMPLIED, AND APPLE HEREBY DISCLAIMS ALL SUCH WARRANTIES,
21 * INCLUDING WITHOUT LIMITATION, ANY WARRANTIES OF MERCHANTABILITY,
22 * FITNESS FOR A PARTICULAR PURPOSE, QUIET ENJOYMENT OR NON-INFRINGEMENT.
23 * Please see the License for the specific language governing rights and
24 * limitations under the License.
25 *
26 * @APPLE_OSREFERENCE_LICENSE_HEADER_END@
27 */
28
29#ifndef _AES_H
30#define _AES_H
31
32#if defined(__cplusplus)
33extern "C"
34{
35#endif
36
37#include <corecrypto/ccmode.h>
38#include <corecrypto/ccn.h>
39
40#define AES_BLOCK_SIZE 16 /* the AES block size in bytes */
41
42//Unholy HACK: this works because we know the size of the context for every
43//possible corecrypto implementation is less than this.
44#if defined(__ARM_NEON__) && !defined(__arm64__) // for expanded keys in bit slice format
45#define AES_CBC_CTX_MAX_SIZE (ccn_sizeof_size(sizeof(void *)) + ccn_sizeof_size(AES_BLOCK_SIZE) + ccn_sizeof_size(64*4) + (14-1)*128+32 )
46#else
47#define AES_CBC_CTX_MAX_SIZE (ccn_sizeof_size(sizeof(void *)) + ccn_sizeof_size(AES_BLOCK_SIZE) + ccn_sizeof_size(64*4))
48#endif
49
50typedef struct{
51 cccbc_ctx_decl(AES_CBC_CTX_MAX_SIZE, ctx);
52} aes_decrypt_ctx;
53
54typedef struct{
55 cccbc_ctx_decl(AES_CBC_CTX_MAX_SIZE, ctx);
56} aes_encrypt_ctx;
57
58typedef struct{
59 aes_decrypt_ctx decrypt;
60 aes_encrypt_ctx encrypt;
61} aes_ctx;
62
63
64/* for compatibility with old apis*/
65#define aes_ret int
66#define aes_good 0
67#define aes_error -1
68#define aes_rval aes_ret
69
70
71
72/* Key lengths in the range 16 <= key_len <= 32 are given in bytes, */
73/* those in the range 128 <= key_len <= 256 are given in bits */
74
75aes_rval aes_encrypt_key(const unsigned char *key, int key_len, aes_encrypt_ctx cx[1]);
76aes_rval aes_encrypt_key128(const unsigned char *key, aes_encrypt_ctx cx[1]);
77aes_rval aes_encrypt_key256(const unsigned char *key, aes_encrypt_ctx cx[1]);
78
79#if defined (__i386__) || defined (__x86_64__) || defined (__arm64__)
80aes_rval aes_encrypt(const unsigned char *in, unsigned char *out, aes_encrypt_ctx cx[1]);
81#endif
82
83aes_rval aes_encrypt_cbc(const unsigned char *in_blk, const unsigned char *in_iv, unsigned int num_blk,
84 unsigned char *out_blk, aes_encrypt_ctx cx[1]);
85
86
87aes_rval aes_decrypt_key(const unsigned char *key, int key_len, aes_decrypt_ctx cx[1]);
88aes_rval aes_decrypt_key128(const unsigned char *key, aes_decrypt_ctx cx[1]);
89aes_rval aes_decrypt_key256(const unsigned char *key, aes_decrypt_ctx cx[1]);
90
91#if defined (__i386__) || defined (__x86_64__) || defined (__arm64__)
92aes_rval aes_decrypt(const unsigned char *in, unsigned char *out, aes_decrypt_ctx cx[1]);
93#endif
94
95aes_rval aes_decrypt_cbc(const unsigned char *in_blk, const unsigned char *in_iv, unsigned int num_blk,
96 unsigned char *out_blk, aes_decrypt_ctx cx[1]);
97
98aes_rval aes_encrypt_key_gcm(const unsigned char *key, int key_len, ccgcm_ctx *ctx);
99aes_rval aes_encrypt_key_with_iv_gcm(const unsigned char *key, int key_len, const unsigned char *in_iv, ccgcm_ctx *ctx);
100aes_rval aes_encrypt_set_iv_gcm(const unsigned char *in_iv, unsigned int len, ccgcm_ctx *ctx);
101aes_rval aes_encrypt_reset_gcm(ccgcm_ctx *ctx);
102aes_rval aes_encrypt_inc_iv_gcm(unsigned char *out_iv, ccgcm_ctx *ctx);
103aes_rval aes_encrypt_aad_gcm(const unsigned char *aad, unsigned int aad_bytes, ccgcm_ctx *ctx);
104aes_rval aes_encrypt_gcm(const unsigned char *in_blk, unsigned int num_bytes, unsigned char *out_blk, ccgcm_ctx *ctx);
105aes_rval aes_encrypt_finalize_gcm(unsigned char *tag, size_t tag_bytes, ccgcm_ctx *ctx);
106size_t aes_encrypt_get_ctx_size_gcm(void);
107
108aes_rval aes_decrypt_key_gcm(const unsigned char *key, int key_len, ccgcm_ctx *ctx);
109aes_rval aes_decrypt_key_with_iv_gcm(const unsigned char *key, int key_len, const unsigned char *in_iv, ccgcm_ctx *ctx);
110aes_rval aes_decrypt_set_iv_gcm(const unsigned char *in_iv, size_t len, ccgcm_ctx *ctx);
111aes_rval aes_decrypt_reset_gcm(ccgcm_ctx *ctx);
112aes_rval aes_decrypt_inc_iv_gcm(unsigned char *out_iv, ccgcm_ctx *ctx);
113aes_rval aes_decrypt_aad_gcm(const unsigned char *aad, unsigned int aad_bytes, ccgcm_ctx *ctx);
114aes_rval aes_decrypt_gcm(const unsigned char *in_blk, unsigned int num_bytes, unsigned char *out_blk, ccgcm_ctx *ctx);
115aes_rval aes_decrypt_finalize_gcm(unsigned char *tag, size_t tag_bytes, ccgcm_ctx *ctx);
116size_t aes_decrypt_get_ctx_size_gcm(void);
117
118#if defined(__cplusplus)
119}
120#endif
121
122#endif
123