common/des/des_crypt.c

	des_crypt.c revision 735564919188238196dbd0d320770dda59b38369
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin/*
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin * CDDL HEADER START
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin *
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin * The contents of this file are subject to the terms of the
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin * Common Development and Distribution License (the "License").
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin * You may not use this file except in compliance with the License.
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin *
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin * You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin * or http://www.opensolaris.org/os/licensing.
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin * See the License for the specific language governing permissions
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin * and limitations under the License.
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin *
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin * When distributing Covered Code, include this CDDL HEADER in each
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin * file and include the License file at usr/src/OPENSOLARIS.LICENSE.
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin * If applicable, add the following below this CDDL HEADER, with the
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin * fields enclosed by brackets "[]" replaced with your own identifying
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin * information: Portions Copyright [yyyy] [name of copyright owner]
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin *
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin * CDDL HEADER END
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin *
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin/*
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin * Copyright 2009 Sun Microsystems, Inc.  All rights reserved.
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin * Use is subject to license terms.
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin/*  Copyright (c) 1983, 1984, 1985, 1986, 1987, 1988, 1989 AT&T */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin/*    All Rights Reserved   */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin/*
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin * Portions of this source code were derived from Berkeley 4.3 BSD
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin * under license from the Regents of the University of California.
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin/*
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin * des_crypt.c, DES encryption library routines
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin#include <sys/errno.h>
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin#include <sys/modctl.h>
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin#include <sys/systm.h>
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin#include <sys/cmn_err.h>
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin#include <sys/ddi.h>
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin#include <sys/crypto/common.h>
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin#include <sys/crypto/spi.h>
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin#include <sys/sysmacros.h>
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin#include <sys/strsun.h>
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin#include <sys/note.h>
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin#include <modes/modes.h>
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin#define _DES_FIPS_POST
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin#include <des/des_impl.h>
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin/* EXPORT DELETE START */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin#include <sys/types.h>
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin#include <rpc/des_crypt.h>
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin#include <des/des.h>
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin#ifdef sun_hardware
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin#include <sys/ioctl.h>
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin#ifdef _KERNEL
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin#include <sys/conf.h>
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chinstatic int g_desfd = -1;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin#define getdesfd()  (cdevsw[11].d_open(0, 0) ? -1 : 0)
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin#define ioctl(a, b, c)  (cdevsw[11].d_ioctl(0, b, c, 0) ? -1 : 0)
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin#else
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin#define getdesfd()  (open("/dev/des", 0, 0))
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin#endif  /* _KERNEL */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin#endif  /* sun */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chinstatic int common_crypt(char *key, char *buf, size_t len,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    unsigned int mode, struct desparams *desp);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chinextern int _des_crypt(char *buf, size_t len, struct desparams *desp);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin/* EXPORT DELETE END */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chinextern struct mod_ops mod_cryptoops;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin/*
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin * Module linkage information for the kernel.
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chinstatic struct modlmisc modlmisc = {
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    &mod_miscops,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    "des encryption",
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin};
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chinstatic struct modlcrypto modlcrypto = {
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    &mod_cryptoops,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    "DES Kernel SW Provider"
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin};
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chinstatic struct modlinkage modlinkage = {
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    MODREV_1,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    &modlmisc,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    &modlcrypto,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    NULL
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin};
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin/* EXPORT DELETE START */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin#define DES_MIN_KEY_LEN     DES_MINBYTES
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin#define DES_MAX_KEY_LEN     DES_MAXBYTES
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin#define DES3_MIN_KEY_LEN    DES3_MAXBYTES   /* no CKK_DES2 support */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin#define DES3_MAX_KEY_LEN    DES3_MAXBYTES
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin/* EXPORT DELETE END */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin#ifndef DES_MIN_KEY_LEN
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin#define DES_MIN_KEY_LEN     0
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin#endif
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin#ifndef DES_MAX_KEY_LEN
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin#define DES_MAX_KEY_LEN     0
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin#endif
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin#ifndef DES3_MIN_KEY_LEN
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin#define DES3_MIN_KEY_LEN    0
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin#endif
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin#ifndef DES3_MAX_KEY_LEN
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin#define DES3_MAX_KEY_LEN    0
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin#endif
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin/*
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin * Mechanism info structure passed to KCF during registration.
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chinstatic crypto_mech_info_t des_mech_info_tab[] = {
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    /* DES_ECB */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    {SUN_CKM_DES_ECB, DES_ECB_MECH_INFO_TYPE,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        CRYPTO_FG_ENCRYPT | CRYPTO_FG_ENCRYPT_ATOMIC |
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        CRYPTO_FG_DECRYPT | CRYPTO_FG_DECRYPT_ATOMIC,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        DES_MIN_KEY_LEN, DES_MAX_KEY_LEN, CRYPTO_KEYSIZE_UNIT_IN_BYTES},
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    /* DES_CBC */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    {SUN_CKM_DES_CBC, DES_CBC_MECH_INFO_TYPE,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        CRYPTO_FG_ENCRYPT | CRYPTO_FG_ENCRYPT_ATOMIC |
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        CRYPTO_FG_DECRYPT | CRYPTO_FG_DECRYPT_ATOMIC,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        DES_MIN_KEY_LEN, DES_MAX_KEY_LEN, CRYPTO_KEYSIZE_UNIT_IN_BYTES},
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    /* DES3_ECB */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    {SUN_CKM_DES3_ECB, DES3_ECB_MECH_INFO_TYPE,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        CRYPTO_FG_ENCRYPT | CRYPTO_FG_ENCRYPT_ATOMIC |
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        CRYPTO_FG_DECRYPT | CRYPTO_FG_DECRYPT_ATOMIC,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        DES3_MIN_KEY_LEN, DES3_MAX_KEY_LEN, CRYPTO_KEYSIZE_UNIT_IN_BYTES},
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    /* DES3_CBC */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    {SUN_CKM_DES3_CBC, DES3_CBC_MECH_INFO_TYPE,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        CRYPTO_FG_ENCRYPT | CRYPTO_FG_ENCRYPT_ATOMIC |
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        CRYPTO_FG_DECRYPT | CRYPTO_FG_DECRYPT_ATOMIC,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        DES3_MIN_KEY_LEN, DES3_MAX_KEY_LEN, CRYPTO_KEYSIZE_UNIT_IN_BYTES}
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin};
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin/* operations are in-place if the output buffer is NULL */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin#define DES_ARG_INPLACE(input, output)              \
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    if ((output) == NULL)                   \
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        (output) = (input);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chinstatic void des_provider_status(crypto_provider_handle_t, uint_t *);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chinstatic crypto_control_ops_t des_control_ops = {
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    des_provider_status
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin};
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chinstatic int
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chindes_common_init(crypto_ctx_t *, crypto_mechanism_t *, crypto_key_t *,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    crypto_spi_ctx_template_t, crypto_req_handle_t);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chinstatic int des_common_init_ctx(des_ctx_t *, crypto_spi_ctx_template_t *,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    crypto_mechanism_t *, crypto_key_t *, des_strength_t, int);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chinstatic int des_encrypt_final(crypto_ctx_t *, crypto_data_t *,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    crypto_req_handle_t);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chinstatic int des_decrypt_final(crypto_ctx_t *, crypto_data_t *,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    crypto_req_handle_t);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chinstatic int des_encrypt(crypto_ctx_t *, crypto_data_t *, crypto_data_t *,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    crypto_req_handle_t);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chinstatic int des_encrypt_update(crypto_ctx_t *, crypto_data_t *,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    crypto_data_t *, crypto_req_handle_t);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chinstatic int des_encrypt_atomic(crypto_provider_handle_t, crypto_session_id_t,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    crypto_mechanism_t *, crypto_key_t *, crypto_data_t *,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    crypto_data_t *, crypto_spi_ctx_template_t, crypto_req_handle_t);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chinstatic int des_decrypt(crypto_ctx_t *, crypto_data_t *, crypto_data_t *,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    crypto_req_handle_t);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chinstatic int des_decrypt_update(crypto_ctx_t *, crypto_data_t *,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    crypto_data_t *, crypto_req_handle_t);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chinstatic int des_decrypt_atomic(crypto_provider_handle_t, crypto_session_id_t,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    crypto_mechanism_t *, crypto_key_t *, crypto_data_t *,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    crypto_data_t *, crypto_spi_ctx_template_t, crypto_req_handle_t);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chinstatic crypto_cipher_ops_t des_cipher_ops = {
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    des_common_init,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    des_encrypt,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    des_encrypt_update,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    des_encrypt_final,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    des_encrypt_atomic,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    des_common_init,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    des_decrypt,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    des_decrypt_update,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    des_decrypt_final,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    des_decrypt_atomic
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin};
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chinstatic int des_create_ctx_template(crypto_provider_handle_t,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    crypto_mechanism_t *, crypto_key_t *, crypto_spi_ctx_template_t *,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    size_t *, crypto_req_handle_t);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chinstatic int des_free_context(crypto_ctx_t *);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chinstatic crypto_ctx_ops_t des_ctx_ops = {
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    des_create_ctx_template,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    des_free_context
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin};
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chinstatic int des_key_check(crypto_provider_handle_t, crypto_mechanism_t *,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    crypto_key_t *);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chinstatic crypto_key_ops_t des_key_ops = {
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    NULL,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    NULL,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    NULL,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    NULL,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    NULL,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    des_key_check
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin};
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chinstatic void des_POST(int *);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chinstatic crypto_fips140_ops_t des_fips140_ops = {
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    des_POST
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin};
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chinstatic crypto_ops_t des_crypto_ops = {
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    &des_control_ops,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    NULL,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    &des_cipher_ops,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    NULL,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    NULL,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    NULL,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    NULL,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    NULL,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    NULL,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    NULL,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    NULL,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    &des_key_ops,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    NULL,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    &des_ctx_ops,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    NULL,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    NULL,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    &des_fips140_ops
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin};
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chinstatic crypto_provider_info_t des_prov_info = {
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    CRYPTO_SPI_VERSION_4,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    "DES Software Provider",
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    CRYPTO_SW_PROVIDER,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    {&modlinkage},
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    NULL,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    &des_crypto_ops,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    sizeof (des_mech_info_tab)/sizeof (crypto_mech_info_t),
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    des_mech_info_tab
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin};
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chinstatic crypto_kcf_provider_handle_t des_prov_handle = NULL;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chinint
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin_init(void)
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin{
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    int ret;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    if ((ret = mod_install(&modlinkage)) != 0)
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        return (ret);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    /*
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin     * Register with KCF. If the registration fails, log an
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin     * error but do not uninstall the module, since the functionality
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin     * provided by misc/des should still be available.
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin     */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    if ((ret = crypto_register_provider(&des_prov_info,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        &des_prov_handle)) != CRYPTO_SUCCESS) {
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        cmn_err(CE_WARN, "des _init: crypto_register_provider() "
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin            "failed (0x%x)", ret);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    }
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    return (0);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin}
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chinint
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin_info(struct modinfo *modinfop)
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin{
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    return (mod_info(&modlinkage, modinfop));
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin}
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin/*
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin * Copy 8 bytes
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin#define COPY8(src, dst) { \
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    char *a = (char *)dst; \
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    char *b = (char *)src; \
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    *a++ = *b++; *a++ = *b++; *a++ = *b++; *a++ = *b++; \
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    *a++ = *b++; *a++ = *b++; *a++ = *b++; *a++ = *b++; \
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin}
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin/*
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin * Copy multiple of 8 bytes
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin#define DESCOPY(src, dst, len) { \
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    char *a = (char *)dst; \
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    char *b = (char *)src; \
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    int i; \
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    for (i = (size_t)len; i > 0; i -= 8) { \
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        *a++ = *b++; *a++ = *b++; *a++ = *b++; *a++ = *b++; \
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        *a++ = *b++; *a++ = *b++; *a++ = *b++; *a++ = *b++; \
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    } \
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin}
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin/*
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin * CBC mode encryption
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin/* ARGSUSED */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chinint
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chincbc_crypt(char *key, char *buf, size_t len, unsigned int mode, char *ivec)
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin{
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    int err = 0;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin/* EXPORT DELETE START */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    struct desparams dp;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    dp.des_mode = CBC;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    COPY8(ivec, dp.des_ivec);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    err = common_crypt(key, buf, len, mode, &dp);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    COPY8(dp.des_ivec, ivec);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin/* EXPORT DELETE END */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    return (err);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin}
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin/*
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin * ECB mode encryption
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin/* ARGSUSED */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chinint
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chinecb_crypt(char *key, char *buf, size_t len, unsigned int mode)
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin{
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    int err = 0;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin/* EXPORT DELETE START */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    struct desparams dp;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    dp.des_mode = ECB;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    err = common_crypt(key, buf, len, mode, &dp);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin/* EXPORT DELETE END */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    return (err);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin}
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin/* EXPORT DELETE START */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin/*
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin * Common code to cbc_crypt() & ecb_crypt()
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chinstatic int
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chincommon_crypt(char *key, char *buf, size_t len, unsigned int mode,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    struct desparams *desp)
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin{
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    int desdev;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    if ((len % 8) != 0 || len > DES_MAXDATA)
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        return (DESERR_BADPARAM);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    desp->des_dir =
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        ((mode & DES_DIRMASK) == DES_ENCRYPT) ? ENCRYPT : DECRYPT;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    desdev = mode & DES_DEVMASK;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    COPY8(key, desp->des_key);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin#ifdef sun_hardware
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    if (desdev == DES_HW) {
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        int res;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        if (g_desfd < 0 &&
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin            (g_desfd == -1 || (g_desfd = getdesfd()) < 0))
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin                goto software;  /* no hardware device */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        /*
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin         * hardware
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin         */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        desp->des_len = len;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        if (len <= DES_QUICKLEN) {
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin            DESCOPY(buf, desp->des_data, len);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin            res = ioctl(g_desfd, DESIOCQUICK, (char *)desp);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin            DESCOPY(desp->des_data, buf, len);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        } else {
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin            desp->des_buf = (uchar_t *)buf;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin            res = ioctl(g_desfd, DESIOCBLOCK, (char *)desp);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        }
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        return (res == 0 ? DESERR_NONE : DESERR_HWERROR);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    }
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chinsoftware:
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin#endif
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    /*
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin     * software
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin     */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    if (!_des_crypt(buf, len, desp))
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        return (DESERR_HWERROR);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    return (desdev == DES_SW ? DESERR_NONE : DESERR_NOHWDEVICE);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin}
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin/*
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin * Initialize key schedules for DES and DES3
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chinstatic int
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chininit_keysched(crypto_key_t *key, void *newbie, des_strength_t strength)
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin{
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    uint8_t corrected_key[DES3_KEYSIZE];
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    /*
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin     * Only keys by value are supported by this module.
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin     */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    switch (key->ck_format) {
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    case CRYPTO_KEY_RAW:
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        if (strength == DES && key->ck_length != DES_MAXBITS)
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin            return (CRYPTO_KEY_SIZE_RANGE);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        if (strength == DES3 && key->ck_length != DES3_MAXBITS)
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin            return (CRYPTO_KEY_SIZE_RANGE);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        break;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    default:
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        return (CRYPTO_KEY_TYPE_INCONSISTENT);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    }
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    /*
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin     * Fix parity bits.
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin     * Initialize key schedule even if key is weak.
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin     */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    if (key->ck_data == NULL)
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        return (CRYPTO_ARGUMENTS_BAD);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    des_parity_fix(key->ck_data, strength, corrected_key);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    des_init_keysched(corrected_key, strength, newbie);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    return (CRYPTO_SUCCESS);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin}
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin/* EXPORT DELETE END */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin/*
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin * KCF software provider control entry points.
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin/* ARGSUSED */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chinstatic void
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chindes_provider_status(crypto_provider_handle_t provider, uint_t *status)
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin{
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    *status = CRYPTO_PROVIDER_READY;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin}
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin/*
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin * KCF software provider encrypt entry points.
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chinstatic int
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chindes_common_init(crypto_ctx_t *ctx, crypto_mechanism_t *mechanism,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    crypto_key_t *key, crypto_spi_ctx_template_t template,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    crypto_req_handle_t req)
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin{
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin/* EXPORT DELETE START */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    des_strength_t strength;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    des_ctx_t *des_ctx = NULL;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    int rv;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    int kmflag;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    /*
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin     * Only keys by value are supported by this module.
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin     */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    if (key->ck_format != CRYPTO_KEY_RAW) {
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        return (CRYPTO_KEY_TYPE_INCONSISTENT);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    }
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    kmflag = crypto_kmflag(req);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    /* Check mechanism type and parameter length */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    switch (mechanism->cm_type) {
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    case DES_ECB_MECH_INFO_TYPE:
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        des_ctx = ecb_alloc_ctx(kmflag);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        /* FALLTHRU */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    case DES_CBC_MECH_INFO_TYPE:
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        if (mechanism->cm_param != NULL &&
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin            mechanism->cm_param_len != DES_BLOCK_LEN)
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin            return (CRYPTO_MECHANISM_PARAM_INVALID);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        if (key->ck_length != DES_MAXBITS)
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin            return (CRYPTO_KEY_SIZE_RANGE);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        strength = DES;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        if (des_ctx == NULL)
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin            des_ctx = cbc_alloc_ctx(kmflag);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        break;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    case DES3_ECB_MECH_INFO_TYPE:
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        des_ctx = ecb_alloc_ctx(kmflag);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        /* FALLTHRU */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    case DES3_CBC_MECH_INFO_TYPE:
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        if (mechanism->cm_param != NULL &&
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin            mechanism->cm_param_len != DES_BLOCK_LEN)
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin            return (CRYPTO_MECHANISM_PARAM_INVALID);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        if (key->ck_length != DES3_MAXBITS)
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin            return (CRYPTO_KEY_SIZE_RANGE);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        strength = DES3;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        if (des_ctx == NULL)
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin            des_ctx = cbc_alloc_ctx(kmflag);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        break;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    default:
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        return (CRYPTO_MECHANISM_INVALID);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    }
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    if ((rv = des_common_init_ctx(des_ctx, template, mechanism, key,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        strength, kmflag)) != CRYPTO_SUCCESS) {
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        crypto_free_mode_ctx(des_ctx);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        return (rv);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    }
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    ctx->cc_provider_private = des_ctx;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin/* EXPORT DELETE END */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    return (CRYPTO_SUCCESS);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin}
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chinstatic void
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chindes_copy_block64(uint8_t *in, uint64_t *out)
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin{
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    if (IS_P2ALIGNED(in, sizeof (uint64_t))) {
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        /* LINTED: pointer alignment */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        out[0] = *(uint64_t *)&in[0];
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    } else {
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        uint64_t tmp64;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin#ifdef _BIG_ENDIAN
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        tmp64 = (((uint64_t)in[0] << 56) |
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin            ((uint64_t)in[1] << 48) |
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin            ((uint64_t)in[2] << 40) |
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin            ((uint64_t)in[3] << 32) |
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin            ((uint64_t)in[4] << 24) |
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin            ((uint64_t)in[5] << 16) |
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin            ((uint64_t)in[6] << 8) |
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin            (uint64_t)in[7]);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin#else
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        tmp64 = (((uint64_t)in[7] << 56) |
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin            ((uint64_t)in[6] << 48) |
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin            ((uint64_t)in[5] << 40) |
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin            ((uint64_t)in[4] << 32) |
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin            ((uint64_t)in[3] << 24) |
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin            ((uint64_t)in[2] << 16) |
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin            ((uint64_t)in[1] << 8) |
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin            (uint64_t)in[0]);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin#endif /* _BIG_ENDIAN */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        out[0] = tmp64;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    }
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin}
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin/* ARGSUSED */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chinstatic int
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chindes_encrypt(crypto_ctx_t *ctx, crypto_data_t *plaintext,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    crypto_data_t *ciphertext, crypto_req_handle_t req)
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin{
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    int ret;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin/* EXPORT DELETE START */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    des_ctx_t *des_ctx;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    /*
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin     * Plaintext must be a multiple of the block size.
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin     * This test only works for non-padded mechanisms
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin     * when blocksize is 2^N.
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin     */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    if ((plaintext->cd_length & (DES_BLOCK_LEN - 1)) != 0)
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        return (CRYPTO_DATA_LEN_RANGE);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    ASSERT(ctx->cc_provider_private != NULL);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    des_ctx = ctx->cc_provider_private;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    DES_ARG_INPLACE(plaintext, ciphertext);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    /*
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin     * We need to just return the length needed to store the output.
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin     * We should not destroy the context for the following case.
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin     */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    if (ciphertext->cd_length < plaintext->cd_length) {
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        ciphertext->cd_length = plaintext->cd_length;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        return (CRYPTO_BUFFER_TOO_SMALL);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    }
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    /*
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin     * Do an update on the specified input data.
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin     */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    ret = des_encrypt_update(ctx, plaintext, ciphertext, req);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    ASSERT(des_ctx->dc_remainder_len == 0);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    (void) des_free_context(ctx);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin/* EXPORT DELETE END */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    /* LINTED */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    return (ret);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin}
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin/* ARGSUSED */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chinstatic int
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chindes_decrypt(crypto_ctx_t *ctx, crypto_data_t *ciphertext,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    crypto_data_t *plaintext, crypto_req_handle_t req)
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin{
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    int ret;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin/* EXPORT DELETE START */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    des_ctx_t *des_ctx;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    /*
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin     * Ciphertext must be a multiple of the block size.
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin     * This test only works for non-padded mechanisms
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin     * when blocksize is 2^N.
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin     */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    if ((ciphertext->cd_length & (DES_BLOCK_LEN - 1)) != 0)
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        return (CRYPTO_ENCRYPTED_DATA_LEN_RANGE);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    ASSERT(ctx->cc_provider_private != NULL);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    des_ctx = ctx->cc_provider_private;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    DES_ARG_INPLACE(ciphertext, plaintext);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    /*
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin     * We need to just return the length needed to store the output.
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin     * We should not destroy the context for the following case.
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin     */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    if (plaintext->cd_length < ciphertext->cd_length) {
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        plaintext->cd_length = ciphertext->cd_length;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        return (CRYPTO_BUFFER_TOO_SMALL);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    }
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    /*
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin     * Do an update on the specified input data.
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin     */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    ret = des_decrypt_update(ctx, ciphertext, plaintext, req);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    ASSERT(des_ctx->dc_remainder_len == 0);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    (void) des_free_context(ctx);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin/* EXPORT DELETE END */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    /* LINTED */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    return (ret);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin}
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin/* ARGSUSED */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chinstatic int
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chindes_encrypt_update(crypto_ctx_t *ctx, crypto_data_t *plaintext,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    crypto_data_t *ciphertext, crypto_req_handle_t req)
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin{
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    off_t saved_offset;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    size_t saved_length, out_len;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    int ret = CRYPTO_SUCCESS;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin/* EXPORT DELETE START */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    ASSERT(ctx->cc_provider_private != NULL);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    DES_ARG_INPLACE(plaintext, ciphertext);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    /* compute number of bytes that will hold the ciphertext */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    out_len = ((des_ctx_t *)ctx->cc_provider_private)->dc_remainder_len;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    out_len += plaintext->cd_length;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    out_len &= ~(DES_BLOCK_LEN - 1);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    /* return length needed to store the output */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    if (ciphertext->cd_length < out_len) {
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        ciphertext->cd_length = out_len;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        return (CRYPTO_BUFFER_TOO_SMALL);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    }
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    saved_offset = ciphertext->cd_offset;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    saved_length = ciphertext->cd_length;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    /*
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin     * Do the DES update on the specified input data.
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin     */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    switch (plaintext->cd_format) {
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    case CRYPTO_DATA_RAW:
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        ret = crypto_update_iov(ctx->cc_provider_private,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin            plaintext, ciphertext, des_encrypt_contiguous_blocks,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin            des_copy_block64);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        break;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    case CRYPTO_DATA_UIO:
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        ret = crypto_update_uio(ctx->cc_provider_private,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin            plaintext, ciphertext, des_encrypt_contiguous_blocks,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin            des_copy_block64);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        break;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    case CRYPTO_DATA_MBLK:
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        ret = crypto_update_mp(ctx->cc_provider_private,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin            plaintext, ciphertext, des_encrypt_contiguous_blocks,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin            des_copy_block64);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        break;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    default:
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        ret = CRYPTO_ARGUMENTS_BAD;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    }
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    if (ret == CRYPTO_SUCCESS) {
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        if (plaintext != ciphertext)
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin            ciphertext->cd_length =
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin                ciphertext->cd_offset - saved_offset;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    } else {
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        ciphertext->cd_length = saved_length;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    }
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    ciphertext->cd_offset = saved_offset;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin/* EXPORT DELETE END */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    return (ret);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin}
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin/* ARGSUSED */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chinstatic int
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chindes_decrypt_update(crypto_ctx_t *ctx, crypto_data_t *ciphertext,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    crypto_data_t *plaintext, crypto_req_handle_t req)
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin{
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    off_t saved_offset;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    size_t saved_length, out_len;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    int ret = CRYPTO_SUCCESS;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin/* EXPORT DELETE START */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    ASSERT(ctx->cc_provider_private != NULL);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    DES_ARG_INPLACE(ciphertext, plaintext);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    /* compute number of bytes that will hold the plaintext */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    out_len = ((des_ctx_t *)ctx->cc_provider_private)->dc_remainder_len;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    out_len += ciphertext->cd_length;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    out_len &= ~(DES_BLOCK_LEN - 1);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    /* return length needed to store the output */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    if (plaintext->cd_length < out_len) {
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        plaintext->cd_length = out_len;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        return (CRYPTO_BUFFER_TOO_SMALL);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    }
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    saved_offset = plaintext->cd_offset;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    saved_length = plaintext->cd_length;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    /*
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin     * Do the DES update on the specified input data.
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin     */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    switch (ciphertext->cd_format) {
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    case CRYPTO_DATA_RAW:
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        ret = crypto_update_iov(ctx->cc_provider_private,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin            ciphertext, plaintext, des_decrypt_contiguous_blocks,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin            des_copy_block64);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        break;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    case CRYPTO_DATA_UIO:
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        ret = crypto_update_uio(ctx->cc_provider_private,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin            ciphertext, plaintext, des_decrypt_contiguous_blocks,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin            des_copy_block64);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        break;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    case CRYPTO_DATA_MBLK:
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        ret = crypto_update_mp(ctx->cc_provider_private,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin            ciphertext, plaintext, des_decrypt_contiguous_blocks,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin            des_copy_block64);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        break;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    default:
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        ret = CRYPTO_ARGUMENTS_BAD;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    }
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    if (ret == CRYPTO_SUCCESS) {
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        if (ciphertext != plaintext)
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin            plaintext->cd_length =
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin                plaintext->cd_offset - saved_offset;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    } else {
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        plaintext->cd_length = saved_length;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    }
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    plaintext->cd_offset = saved_offset;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin/* EXPORT DELETE END */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    return (ret);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin}
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin/* ARGSUSED */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chinstatic int
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chindes_encrypt_final(crypto_ctx_t *ctx, crypto_data_t *ciphertext,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    crypto_req_handle_t req)
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin{
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin/* EXPORT DELETE START */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    des_ctx_t *des_ctx;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    ASSERT(ctx->cc_provider_private != NULL);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    des_ctx = ctx->cc_provider_private;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    /*
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin     * There must be no unprocessed plaintext.
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin     * This happens if the length of the last data is
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin     * not a multiple of the DES block length.
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin     */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    if (des_ctx->dc_remainder_len > 0)
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        return (CRYPTO_DATA_LEN_RANGE);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    (void) des_free_context(ctx);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    ciphertext->cd_length = 0;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin/* EXPORT DELETE END */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    return (CRYPTO_SUCCESS);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin}
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin/* ARGSUSED */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chinstatic int
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chindes_decrypt_final(crypto_ctx_t *ctx, crypto_data_t *plaintext,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    crypto_req_handle_t req)
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin{
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin/* EXPORT DELETE START */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    des_ctx_t *des_ctx;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    ASSERT(ctx->cc_provider_private != NULL);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    des_ctx = ctx->cc_provider_private;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    /*
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin     * There must be no unprocessed ciphertext.
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin     * This happens if the length of the last ciphertext is
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin     * not a multiple of the DES block length.
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin     */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    if (des_ctx->dc_remainder_len > 0)
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        return (CRYPTO_ENCRYPTED_DATA_LEN_RANGE);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    (void) des_free_context(ctx);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    plaintext->cd_length = 0;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin/* EXPORT DELETE END */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    return (CRYPTO_SUCCESS);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin}
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin/* ARGSUSED */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chinstatic int
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chindes_encrypt_atomic(crypto_provider_handle_t provider,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    crypto_session_id_t session_id, crypto_mechanism_t *mechanism,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    crypto_key_t *key, crypto_data_t *plaintext, crypto_data_t *ciphertext,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    crypto_spi_ctx_template_t template, crypto_req_handle_t req)
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin{
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    int ret;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin/* EXPORT DELETE START */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    des_ctx_t des_ctx;      /* on the stack */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    des_strength_t strength;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    off_t saved_offset;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    size_t saved_length;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    DES_ARG_INPLACE(plaintext, ciphertext);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    /*
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin     * Plaintext must be a multiple of the block size.
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin     * This test only works for non-padded mechanisms
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin     * when blocksize is 2^N.
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin     */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    if ((plaintext->cd_length & (DES_BLOCK_LEN - 1)) != 0)
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        return (CRYPTO_DATA_LEN_RANGE);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    /* return length needed to store the output */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    if (ciphertext->cd_length < plaintext->cd_length) {
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        ciphertext->cd_length = plaintext->cd_length;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        return (CRYPTO_BUFFER_TOO_SMALL);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    }
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    /* Check mechanism type and parameter length */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    switch (mechanism->cm_type) {
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    case DES_ECB_MECH_INFO_TYPE:
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    case DES_CBC_MECH_INFO_TYPE:
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        if (mechanism->cm_param_len > 0 &&
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin            mechanism->cm_param_len != DES_BLOCK_LEN)
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin            return (CRYPTO_MECHANISM_PARAM_INVALID);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        if (key->ck_length != DES_MINBITS)
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin            return (CRYPTO_KEY_SIZE_RANGE);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        strength = DES;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        break;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    case DES3_ECB_MECH_INFO_TYPE:
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    case DES3_CBC_MECH_INFO_TYPE:
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        if (mechanism->cm_param_len > 0 &&
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin            mechanism->cm_param_len != DES_BLOCK_LEN)
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin            return (CRYPTO_MECHANISM_PARAM_INVALID);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        if (key->ck_length != DES3_MAXBITS)
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin            return (CRYPTO_KEY_SIZE_RANGE);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        strength = DES3;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        break;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    default:
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        return (CRYPTO_MECHANISM_INVALID);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    }
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    bzero(&des_ctx, sizeof (des_ctx_t));
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    if ((ret = des_common_init_ctx(&des_ctx, template, mechanism, key,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        strength, crypto_kmflag(req))) != CRYPTO_SUCCESS) {
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        return (ret);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    }
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    saved_offset = ciphertext->cd_offset;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    saved_length = ciphertext->cd_length;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    /*
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin     * Do the update on the specified input data.
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin     */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    switch (plaintext->cd_format) {
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    case CRYPTO_DATA_RAW:
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        ret = crypto_update_iov(&des_ctx, plaintext, ciphertext,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin            des_encrypt_contiguous_blocks, des_copy_block64);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        break;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    case CRYPTO_DATA_UIO:
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        ret = crypto_update_uio(&des_ctx, plaintext, ciphertext,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin            des_encrypt_contiguous_blocks, des_copy_block64);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        break;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    case CRYPTO_DATA_MBLK:
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        ret = crypto_update_mp(&des_ctx, plaintext, ciphertext,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin            des_encrypt_contiguous_blocks, des_copy_block64);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        break;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    default:
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        ret = CRYPTO_ARGUMENTS_BAD;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    }
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    if (des_ctx.dc_flags & PROVIDER_OWNS_KEY_SCHEDULE) {
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        bzero(des_ctx.dc_keysched, des_ctx.dc_keysched_len);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        kmem_free(des_ctx.dc_keysched, des_ctx.dc_keysched_len);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    }
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    if (ret == CRYPTO_SUCCESS) {
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        ASSERT(des_ctx.dc_remainder_len == 0);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        if (plaintext != ciphertext)
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin            ciphertext->cd_length =
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin                ciphertext->cd_offset - saved_offset;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    } else {
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        ciphertext->cd_length = saved_length;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    }
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    ciphertext->cd_offset = saved_offset;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin/* EXPORT DELETE END */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    /* LINTED */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    return (ret);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin}
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin/* ARGSUSED */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chinstatic int
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chindes_decrypt_atomic(crypto_provider_handle_t provider,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    crypto_session_id_t session_id, crypto_mechanism_t *mechanism,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    crypto_key_t *key, crypto_data_t *ciphertext, crypto_data_t *plaintext,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    crypto_spi_ctx_template_t template, crypto_req_handle_t req)
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin{
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    int ret;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin/* EXPORT DELETE START */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    des_ctx_t des_ctx;  /* on the stack */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    des_strength_t strength;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    off_t saved_offset;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    size_t saved_length;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    DES_ARG_INPLACE(ciphertext, plaintext);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    /*
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin     * Ciphertext must be a multiple of the block size.
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin     * This test only works for non-padded mechanisms
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin     * when blocksize is 2^N.
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin     */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    if ((ciphertext->cd_length & (DES_BLOCK_LEN - 1)) != 0)
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        return (CRYPTO_DATA_LEN_RANGE);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    /* return length needed to store the output */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    if (plaintext->cd_length < ciphertext->cd_length) {
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        plaintext->cd_length = ciphertext->cd_length;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        return (CRYPTO_BUFFER_TOO_SMALL);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    }
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    /* Check mechanism type and parameter length */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    switch (mechanism->cm_type) {
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    case DES_ECB_MECH_INFO_TYPE:
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    case DES_CBC_MECH_INFO_TYPE:
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        if (mechanism->cm_param_len > 0 &&
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin            mechanism->cm_param_len != DES_BLOCK_LEN)
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin            return (CRYPTO_MECHANISM_PARAM_INVALID);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        if (key->ck_length != DES_MINBITS)
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin            return (CRYPTO_KEY_SIZE_RANGE);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        strength = DES;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        break;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    case DES3_ECB_MECH_INFO_TYPE:
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    case DES3_CBC_MECH_INFO_TYPE:
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        if (mechanism->cm_param_len > 0 &&
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin            mechanism->cm_param_len != DES_BLOCK_LEN)
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin            return (CRYPTO_MECHANISM_PARAM_INVALID);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        if (key->ck_length != DES3_MAXBITS)
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin            return (CRYPTO_KEY_SIZE_RANGE);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        strength = DES3;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        break;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    default:
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        return (CRYPTO_MECHANISM_INVALID);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    }
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    bzero(&des_ctx, sizeof (des_ctx_t));
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    if ((ret = des_common_init_ctx(&des_ctx, template, mechanism, key,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        strength, crypto_kmflag(req))) != CRYPTO_SUCCESS) {
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        return (ret);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    }
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    saved_offset = plaintext->cd_offset;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    saved_length = plaintext->cd_length;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    /*
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin     * Do the update on the specified input data.
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin     */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    switch (ciphertext->cd_format) {
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    case CRYPTO_DATA_RAW:
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        ret = crypto_update_iov(&des_ctx, ciphertext, plaintext,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin            des_decrypt_contiguous_blocks, des_copy_block64);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        break;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    case CRYPTO_DATA_UIO:
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        ret = crypto_update_uio(&des_ctx, ciphertext, plaintext,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin            des_decrypt_contiguous_blocks, des_copy_block64);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        break;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    case CRYPTO_DATA_MBLK:
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        ret = crypto_update_mp(&des_ctx, ciphertext, plaintext,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin            des_decrypt_contiguous_blocks, des_copy_block64);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        break;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    default:
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        ret = CRYPTO_ARGUMENTS_BAD;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    }
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    if (des_ctx.dc_flags & PROVIDER_OWNS_KEY_SCHEDULE) {
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        bzero(des_ctx.dc_keysched, des_ctx.dc_keysched_len);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        kmem_free(des_ctx.dc_keysched, des_ctx.dc_keysched_len);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    }
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    if (ret == CRYPTO_SUCCESS) {
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        ASSERT(des_ctx.dc_remainder_len == 0);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        if (ciphertext != plaintext)
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin            plaintext->cd_length =
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin                plaintext->cd_offset - saved_offset;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    } else {
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        plaintext->cd_length = saved_length;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    }
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    plaintext->cd_offset = saved_offset;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin/* EXPORT DELETE END */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    /* LINTED */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    return (ret);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin}
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin/*
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin * KCF software provider context template entry points.
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin/* ARGSUSED */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chinstatic int
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chindes_create_ctx_template(crypto_provider_handle_t provider,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    crypto_mechanism_t *mechanism, crypto_key_t *key,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    crypto_spi_ctx_template_t *tmpl, size_t *tmpl_size, crypto_req_handle_t req)
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin{
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin/* EXPORT DELETE START */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    des_strength_t strength;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    void *keysched;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    size_t size;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    int rv;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    switch (mechanism->cm_type) {
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    case DES_ECB_MECH_INFO_TYPE:
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        strength = DES;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        break;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    case DES_CBC_MECH_INFO_TYPE:
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        strength = DES;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        break;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    case DES3_ECB_MECH_INFO_TYPE:
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        strength = DES3;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        break;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    case DES3_CBC_MECH_INFO_TYPE:
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        strength = DES3;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        break;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    default:
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        return (CRYPTO_MECHANISM_INVALID);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    }
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    if ((keysched = des_alloc_keysched(&size, strength,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        crypto_kmflag(req))) == NULL) {
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        return (CRYPTO_HOST_MEMORY);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    }
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    /*
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin     * Initialize key schedule.  Key length information is stored
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin     * in the key.
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin     */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    if ((rv = init_keysched(key, keysched, strength)) != CRYPTO_SUCCESS) {
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        bzero(keysched, size);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        kmem_free(keysched, size);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        return (rv);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    }
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    *tmpl = keysched;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    *tmpl_size = size;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin/* EXPORT DELETE END */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    return (CRYPTO_SUCCESS);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin}
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin/* ARGSUSED */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chinstatic int
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chindes_free_context(crypto_ctx_t *ctx)
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin{
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin/* EXPORT DELETE START */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    des_ctx_t *des_ctx = ctx->cc_provider_private;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    if (des_ctx != NULL) {
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        if (des_ctx->dc_flags & PROVIDER_OWNS_KEY_SCHEDULE) {
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin            ASSERT(des_ctx->dc_keysched_len != 0);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin            bzero(des_ctx->dc_keysched, des_ctx->dc_keysched_len);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin            kmem_free(des_ctx->dc_keysched,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin                des_ctx->dc_keysched_len);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        }
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        crypto_free_mode_ctx(des_ctx);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        ctx->cc_provider_private = NULL;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    }
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin/* EXPORT DELETE END */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    return (CRYPTO_SUCCESS);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin}
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin/*
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin * Pass it to des_keycheck() which will
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin * fix it (parity bits), and check if the fixed key is weak.
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin/* ARGSUSED */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chinstatic int
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chindes_key_check(crypto_provider_handle_t pd, crypto_mechanism_t *mech,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    crypto_key_t *key)
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin{
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin/* EXPORT DELETE START */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    int expectedkeylen;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    des_strength_t strength;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    uint8_t keydata[DES3_MAX_KEY_LEN];
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    if ((mech == NULL) || (key == NULL))
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        return (CRYPTO_ARGUMENTS_BAD);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    switch (mech->cm_type) {
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    case DES_ECB_MECH_INFO_TYPE:
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    case DES_CBC_MECH_INFO_TYPE:
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        expectedkeylen = DES_MINBITS;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        strength = DES;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        break;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    case DES3_ECB_MECH_INFO_TYPE:
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    case DES3_CBC_MECH_INFO_TYPE:
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        expectedkeylen = DES3_MAXBITS;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        strength = DES3;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        break;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    default:
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        return (CRYPTO_MECHANISM_INVALID);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    }
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    if (key->ck_format != CRYPTO_KEY_RAW)
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        return (CRYPTO_KEY_TYPE_INCONSISTENT);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    if (key->ck_length != expectedkeylen)
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        return (CRYPTO_KEY_SIZE_RANGE);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    bcopy(key->ck_data, keydata, CRYPTO_BITS2BYTES(expectedkeylen));
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    if (des_keycheck(keydata, strength, key->ck_data) == B_FALSE)
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        return (CRYPTO_WEAK_KEY);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin/* EXPORT DELETE END */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    return (CRYPTO_SUCCESS);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin}
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin/* ARGSUSED */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chinstatic int
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chindes_common_init_ctx(des_ctx_t *des_ctx, crypto_spi_ctx_template_t *template,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    crypto_mechanism_t *mechanism, crypto_key_t *key, des_strength_t strength,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    int kmflag)
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin{
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    int rv = CRYPTO_SUCCESS;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin/* EXPORT DELETE START */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    void *keysched;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    size_t size;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    if (template == NULL) {
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        if ((keysched = des_alloc_keysched(&size, strength,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin            kmflag)) == NULL)
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin            return (CRYPTO_HOST_MEMORY);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        /*
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin         * Initialize key schedule.
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin         * Key length is stored in the key.
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin         */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        if ((rv = init_keysched(key, keysched,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin            strength)) != CRYPTO_SUCCESS)
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin            kmem_free(keysched, size);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        des_ctx->dc_flags |= PROVIDER_OWNS_KEY_SCHEDULE;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        des_ctx->dc_keysched_len = size;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    } else {
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        keysched = template;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    }
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    des_ctx->dc_keysched = keysched;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    if (strength == DES3) {
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        des_ctx->dc_flags |= DES3_STRENGTH;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    }
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    switch (mechanism->cm_type) {
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    case DES_CBC_MECH_INFO_TYPE:
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    case DES3_CBC_MECH_INFO_TYPE:
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        rv = cbc_init_ctx((cbc_ctx_t *)des_ctx, mechanism->cm_param,
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin            mechanism->cm_param_len, DES_BLOCK_LEN, des_copy_block64);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        break;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    case DES_ECB_MECH_INFO_TYPE:
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    case DES3_ECB_MECH_INFO_TYPE:
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        des_ctx->dc_flags |= ECB_MODE;
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    }
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    if (rv != CRYPTO_SUCCESS) {
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        if (des_ctx->dc_flags & PROVIDER_OWNS_KEY_SCHEDULE) {
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin            bzero(keysched, size);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin            kmem_free(keysched, size);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin        }
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    }
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin/* EXPORT DELETE END */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    return (rv);
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin}
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin/*
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin * Triple DES Power-Up Self-Test
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin */
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chinvoid
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chindes_POST(int *rc)
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin{
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin    *rc = fips_des3_post();
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin}
7c2fbfb345896881c631598ee3852ce9ce33fb07April Chin