sys/opencrypto/xform.c

1.22  drochner /*	$NetBSD: xform.c,v 1.22 2011/05/05 17:42:17 drochner Exp $ */
 1.1  jonathan /*	$FreeBSD: src/sys/opencrypto/xform.c,v 1.1.2.1 2002/11/21 23:34:23 sam Exp $	*/
 1.1  jonathan /*	$OpenBSD: xform.c,v 1.19 2002/08/16 22:47:25 dhartmei Exp $	*/
 1.1  jonathan
 1.1  jonathan /*
 1.1  jonathan  * The authors of this code are John Ioannidis (ji (at) tla.org),
 1.1  jonathan  * Angelos D. Keromytis (kermit (at) csd.uch.gr) and
 1.1  jonathan  * Niels Provos (provos (at) physnet.uni-hamburg.de).
 1.1  jonathan  *
 1.1  jonathan  * This code was written by John Ioannidis for BSD/OS in Athens, Greece,
 1.1  jonathan  * in November 1995.
 1.1  jonathan  *
 1.1  jonathan  * Ported to OpenBSD and NetBSD, with additional transforms, in December 1996,
 1.1  jonathan  * by Angelos D. Keromytis.
 1.1  jonathan  *
 1.1  jonathan  * Additional transforms and features in 1997 and 1998 by Angelos D. Keromytis
 1.1  jonathan  * and Niels Provos.
 1.1  jonathan  *
 1.1  jonathan  * Additional features in 1999 by Angelos D. Keromytis.
 1.1  jonathan  *
 1.1  jonathan  * Copyright (C) 1995, 1996, 1997, 1998, 1999 by John Ioannidis,
 1.1  jonathan  * Angelos D. Keromytis and Niels Provos.
 1.1  jonathan  *
 1.1  jonathan  * Copyright (C) 2001, Angelos D. Keromytis.
 1.1  jonathan  *
 1.1  jonathan  * Permission to use, copy, and modify this software with or without fee
 1.1  jonathan  * is hereby granted, provided that this entire notice is included in
 1.1  jonathan  * all copies of any software which is or includes a copy or
 1.1  jonathan  * modification of this software.
 1.1  jonathan  * You may use this code under the GNU public license if you so wish. Please
 1.1  jonathan  * contribute changes back to the authors under this freer than GPL license
 1.1  jonathan  * so that we may further the use of strong encryption without limitations to
 1.1  jonathan  * all.
 1.1  jonathan  *
 1.1  jonathan  * THIS SOFTWARE IS BEING PROVIDED "AS IS", WITHOUT ANY EXPRESS OR
 1.1  jonathan  * IMPLIED WARRANTY. IN PARTICULAR, NONE OF THE AUTHORS MAKES ANY
 1.1  jonathan  * REPRESENTATION OR WARRANTY OF ANY KIND CONCERNING THE
 1.1  jonathan  * MERCHANTABILITY OF THIS SOFTWARE OR ITS FITNESS FOR ANY PARTICULAR
 1.1  jonathan  * PURPOSE.
 1.1  jonathan  */
 1.1  jonathan
 1.1  jonathan #include <sys/cdefs.h>
1.22  drochner __KERNEL_RCSID(0, "$NetBSD: xform.c,v 1.22 2011/05/05 17:42:17 drochner Exp $");
 1.1  jonathan
 1.1  jonathan #include <sys/param.h>
 1.1  jonathan #include <sys/malloc.h>
 1.1  jonathan
 1.1  jonathan #include <opencrypto/cryptodev.h>
 1.1  jonathan #include <opencrypto/xform.h>
 1.1  jonathan
1.15   thorpej MALLOC_DEFINE(M_XDATA, "xform", "xform data buffers");
 1.1  jonathan
1.20  drochner const u_int8_t hmac_ipad_buffer[128] = {
1.20  drochner 	0x36, 0x36, 0x36, 0x36, 0x36, 0x36, 0x36, 0x36,
1.20  drochner 	0x36, 0x36, 0x36, 0x36, 0x36, 0x36, 0x36, 0x36,
1.20  drochner 	0x36, 0x36, 0x36, 0x36, 0x36, 0x36, 0x36, 0x36,
1.20  drochner 	0x36, 0x36, 0x36, 0x36, 0x36, 0x36, 0x36, 0x36,
1.20  drochner 	0x36, 0x36, 0x36, 0x36, 0x36, 0x36, 0x36, 0x36,
1.20  drochner 	0x36, 0x36, 0x36, 0x36, 0x36, 0x36, 0x36, 0x36,
1.20  drochner 	0x36, 0x36, 0x36, 0x36, 0x36, 0x36, 0x36, 0x36,
1.20  drochner 	0x36, 0x36, 0x36, 0x36, 0x36, 0x36, 0x36, 0x36,
1.15   thorpej 	0x36, 0x36, 0x36, 0x36, 0x36, 0x36, 0x36, 0x36,
1.15   thorpej 	0x36, 0x36, 0x36, 0x36, 0x36, 0x36, 0x36, 0x36,
1.15   thorpej 	0x36, 0x36, 0x36, 0x36, 0x36, 0x36, 0x36, 0x36,
1.15   thorpej 	0x36, 0x36, 0x36, 0x36, 0x36, 0x36, 0x36, 0x36,
1.15   thorpej 	0x36, 0x36, 0x36, 0x36, 0x36, 0x36, 0x36, 0x36,
1.15   thorpej 	0x36, 0x36, 0x36, 0x36, 0x36, 0x36, 0x36, 0x36,
1.15   thorpej 	0x36, 0x36, 0x36, 0x36, 0x36, 0x36, 0x36, 0x36,
1.15   thorpej 	0x36, 0x36, 0x36, 0x36, 0x36, 0x36, 0x36, 0x36
1.15   thorpej };
1.15   thorpej
1.20  drochner const u_int8_t hmac_opad_buffer[128] = {
1.20  drochner 	0x5C, 0x5C, 0x5C, 0x5C, 0x5C, 0x5C, 0x5C, 0x5C,
1.20  drochner 	0x5C, 0x5C, 0x5C, 0x5C, 0x5C, 0x5C, 0x5C, 0x5C,
1.20  drochner 	0x5C, 0x5C, 0x5C, 0x5C, 0x5C, 0x5C, 0x5C, 0x5C,
1.20  drochner 	0x5C, 0x5C, 0x5C, 0x5C, 0x5C, 0x5C, 0x5C, 0x5C,
1.20  drochner 	0x5C, 0x5C, 0x5C, 0x5C, 0x5C, 0x5C, 0x5C, 0x5C,
1.20  drochner 	0x5C, 0x5C, 0x5C, 0x5C, 0x5C, 0x5C, 0x5C, 0x5C,
1.20  drochner 	0x5C, 0x5C, 0x5C, 0x5C, 0x5C, 0x5C, 0x5C, 0x5C,
1.20  drochner 	0x5C, 0x5C, 0x5C, 0x5C, 0x5C, 0x5C, 0x5C, 0x5C,
1.15   thorpej 	0x5C, 0x5C, 0x5C, 0x5C, 0x5C, 0x5C, 0x5C, 0x5C,
1.15   thorpej 	0x5C, 0x5C, 0x5C, 0x5C, 0x5C, 0x5C, 0x5C, 0x5C,
1.15   thorpej 	0x5C, 0x5C, 0x5C, 0x5C, 0x5C, 0x5C, 0x5C, 0x5C,
1.15   thorpej 	0x5C, 0x5C, 0x5C, 0x5C, 0x5C, 0x5C, 0x5C, 0x5C,
1.15   thorpej 	0x5C, 0x5C, 0x5C, 0x5C, 0x5C, 0x5C, 0x5C, 0x5C,
1.15   thorpej 	0x5C, 0x5C, 0x5C, 0x5C, 0x5C, 0x5C, 0x5C, 0x5C,
1.15   thorpej 	0x5C, 0x5C, 0x5C, 0x5C, 0x5C, 0x5C, 0x5C, 0x5C,
1.15   thorpej 	0x5C, 0x5C, 0x5C, 0x5C, 0x5C, 0x5C, 0x5C, 0x5C
1.15   thorpej };
 1.1  jonathan
 1.1  jonathan /* Encryption instances */
1.21  drochner const struct enc_xform enc_xform_null = {
 1.1  jonathan 	CRYPTO_NULL_CBC, "NULL",
 1.1  jonathan 	/* NB: blocksize of 4 is to generate a properly aligned ESP header */
1.15   thorpej 	4, 0, 256 /* 2048 bits, max key */
 1.1  jonathan };
 1.1  jonathan
1.21  drochner const struct enc_xform enc_xform_des = {
 1.1  jonathan 	CRYPTO_DES_CBC, "DES",
1.15   thorpej 	8, 8, 8
 1.1  jonathan };
 1.1  jonathan
1.21  drochner const struct enc_xform enc_xform_3des = {
 1.1  jonathan 	CRYPTO_3DES_CBC, "3DES",
1.15   thorpej 	8, 24, 24
 1.1  jonathan };
 1.1  jonathan
1.21  drochner const struct enc_xform enc_xform_blf = {
 1.1  jonathan 	CRYPTO_BLF_CBC, "Blowfish",
1.15   thorpej 	8, 5, 56 /* 448 bits, max key */
 1.1  jonathan };
 1.1  jonathan
1.21  drochner const struct enc_xform enc_xform_cast5 = {
 1.1  jonathan 	CRYPTO_CAST_CBC, "CAST-128",
1.15   thorpej 	8, 5, 16
 1.1  jonathan };
 1.1  jonathan
1.21  drochner const struct enc_xform enc_xform_skipjack = {
 1.1  jonathan 	CRYPTO_SKIPJACK_CBC, "Skipjack",
1.15   thorpej 	8, 10, 10
 1.1  jonathan };
 1.1  jonathan
1.21  drochner const struct enc_xform enc_xform_rijndael128 = {
 1.1  jonathan 	CRYPTO_RIJNDAEL128_CBC, "Rijndael-128/AES",
1.15   thorpej 	16, 8, 32
 1.1  jonathan };
 1.1  jonathan
1.21  drochner const struct enc_xform enc_xform_arc4 = {
 1.1  jonathan 	CRYPTO_ARC4, "ARC4",
1.15   thorpej 	1, 1, 32
 1.1  jonathan };
 1.1  jonathan
1.22  drochner const struct enc_xform enc_xform_camellia = {
1.22  drochner 	CRYPTO_CAMELLIA_CBC, "Camellia",
1.22  drochner 	16, 8, 32
1.22  drochner };
1.22  drochner
 1.1  jonathan /* Authentication instances */
1.21  drochner const struct auth_hash auth_hash_null = {
 1.1  jonathan 	CRYPTO_NULL_HMAC, "NULL-HMAC",
1.20  drochner 	0, 0, 12, 64, sizeof(int)		/* NB: context isn't used */
 1.1  jonathan };
 1.1  jonathan
1.21  drochner const struct auth_hash auth_hash_hmac_md5 = {
1.16       tls 	CRYPTO_MD5_HMAC, "HMAC-MD5",
1.20  drochner 	16, 16, 16, 64, sizeof(MD5_CTX)
1.16       tls };
1.16       tls
1.21  drochner const struct auth_hash auth_hash_hmac_sha1 = {
1.16       tls 	CRYPTO_SHA1_HMAC, "HMAC-SHA1",
1.20  drochner 	20, 20, 20, 64, sizeof(SHA1_CTX)
1.16       tls };
1.16       tls
1.21  drochner const struct auth_hash auth_hash_hmac_ripemd_160 = {
1.16       tls 	CRYPTO_RIPEMD160_HMAC, "HMAC-RIPEMD-160",
1.20  drochner 	20, 20, 20, 64, sizeof(RMD160_CTX)
1.16       tls };
1.16       tls
1.21  drochner const struct auth_hash auth_hash_hmac_md5_96 = {
1.17       tls 	CRYPTO_MD5_HMAC_96, "HMAC-MD5-96",
1.20  drochner 	16, 16, 12, 64, sizeof(MD5_CTX)
 1.1  jonathan };
 1.1  jonathan
1.21  drochner const struct auth_hash auth_hash_hmac_sha1_96 = {
1.17       tls 	CRYPTO_SHA1_HMAC_96, "HMAC-SHA1-96",
1.20  drochner 	20, 20, 12, 64, sizeof(SHA1_CTX)
 1.1  jonathan };
 1.1  jonathan
1.21  drochner const struct auth_hash auth_hash_hmac_ripemd_160_96 = {
1.17       tls 	CRYPTO_RIPEMD160_HMAC_96, "HMAC-RIPEMD-160",
1.20  drochner 	20, 20, 12, 64, sizeof(RMD160_CTX)
 1.1  jonathan };
 1.1  jonathan
1.21  drochner const struct auth_hash auth_hash_key_md5 = {
 1.1  jonathan 	CRYPTO_MD5_KPDK, "Keyed MD5",
1.20  drochner 	0, 16, 16, 0, sizeof(MD5_CTX)
 1.1  jonathan };
 1.1  jonathan
1.21  drochner const struct auth_hash auth_hash_key_sha1 = {
 1.1  jonathan 	CRYPTO_SHA1_KPDK, "Keyed SHA1",
1.20  drochner 	0, 20, 20, 0, sizeof(SHA1_CTX)
 1.1  jonathan };
 1.1  jonathan
1.21  drochner const struct auth_hash auth_hash_md5 = {
 1.1  jonathan 	CRYPTO_MD5, "MD5",
1.20  drochner 	0, 16, 16, 0, sizeof(MD5_CTX)
 1.1  jonathan };
 1.1  jonathan
1.21  drochner const struct auth_hash auth_hash_sha1 = {
 1.1  jonathan 	CRYPTO_SHA1, "SHA1",
1.20  drochner 	0, 20, 20, 0, sizeof(SHA1_CTX)
 1.1  jonathan };
 1.1  jonathan
1.21  drochner const struct auth_hash auth_hash_hmac_sha2_256 = {
1.20  drochner 	CRYPTO_SHA2_256_HMAC, "HMAC-SHA2",
1.20  drochner 	32, 32, 16, 64, sizeof(SHA256_CTX)
 1.1  jonathan };
 1.1  jonathan
1.21  drochner const struct auth_hash auth_hash_hmac_sha2_384 = {
1.20  drochner 	CRYPTO_SHA2_384_HMAC, "HMAC-SHA2-384",
1.20  drochner 	48, 48, 24, 128, sizeof(SHA384_CTX)
 1.1  jonathan };
 1.1  jonathan
1.21  drochner const struct auth_hash auth_hash_hmac_sha2_512 = {
1.20  drochner 	CRYPTO_SHA2_512_HMAC, "HMAC-SHA2-512",
1.20  drochner 	64, 64, 32, 128, sizeof(SHA512_CTX)
 1.1  jonathan };
 1.1  jonathan
 1.1  jonathan /* Compression instance */
1.21  drochner const struct comp_algo comp_algo_deflate = {
 1.1  jonathan 	CRYPTO_DEFLATE_COMP, "Deflate",
1.15   thorpej 	90
 1.1  jonathan };
1.18    darran
1.21  drochner const struct comp_algo comp_algo_deflate_nogrow = {
1.19  drochner 	CRYPTO_DEFLATE_COMP_NOGROW, "Deflate",
1.19  drochner 	90
1.19  drochner };
1.19  drochner
1.21  drochner const struct comp_algo comp_algo_gzip = {
1.18    darran 	CRYPTO_GZIP_COMP, "GZIP",
1.18    darran 	90
1.18    darran };