2 * Copyright (C) 2011-2012 Free Software Foundation, Inc.
4 * Author: Nikos Mavrogiannopoulos
6 * This file is part of GnuTLS.
8 * The GnuTLS is free software; you can redistribute it and/or
9 * modify it under the terms of the GNU Lesser General Public License
10 * as published by the Free Software Foundation; either version 2.1 of
11 * the License, or (at your option) any later version.
13 * This library is distributed in the hope that it will be useful, but
14 * WITHOUT ANY WARRANTY; without even the implied warranty of
15 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
16 * Lesser General Public License for more details.
18 * You should have received a copy of the GNU Lesser General Public License
19 * along with this program. If not, see <http://www.gnu.org/licenses/>
24 * The following code is an implementation of the AES-128-CBC cipher
25 * using intel's AES instruction set.
28 #include <gnutls_errors.h>
29 #include <gnutls_int.h>
30 #include <gnutls/crypto.h>
31 #include <gnutls_errors.h>
42 aes_cipher_init(gnutls_cipher_algorithm_t algorithm, void **_ctx, int enc)
44 /* we use key size to distinguish */
45 if (algorithm != GNUTLS_CIPHER_AES_128_CBC
46 && algorithm != GNUTLS_CIPHER_AES_192_CBC
47 && algorithm != GNUTLS_CIPHER_AES_256_CBC)
48 return GNUTLS_E_INVALID_REQUEST;
50 *_ctx = gnutls_calloc(1, sizeof(struct aes_ctx));
53 return GNUTLS_E_MEMORY_ERROR;
56 ((struct aes_ctx *) (*_ctx))->enc = enc;
62 aes_cipher_setkey(void *_ctx, const void *userkey, size_t keysize)
64 struct aes_ctx *ctx = _ctx;
69 aesni_set_encrypt_key(userkey, keysize * 8,
70 ALIGN16(&ctx->expanded_key));
73 aesni_set_decrypt_key(userkey, keysize * 8,
74 ALIGN16(&ctx->expanded_key));
77 return gnutls_assert_val(GNUTLS_E_ENCRYPTION_FAILED);
82 static int aes_setiv(void *_ctx, const void *iv, size_t iv_size)
84 struct aes_ctx *ctx = _ctx;
86 memcpy(ctx->iv, iv, 16);
91 aes_encrypt(void *_ctx, const void *src, size_t src_size,
92 void *dst, size_t dst_size)
94 struct aes_ctx *ctx = _ctx;
96 aesni_cbc_encrypt(src, dst, src_size, ALIGN16(&ctx->expanded_key),
102 aes_decrypt(void *_ctx, const void *src, size_t src_size,
103 void *dst, size_t dst_size)
105 struct aes_ctx *ctx = _ctx;
107 aesni_cbc_encrypt(src, dst, src_size, ALIGN16(&ctx->expanded_key),
113 static void aes_deinit(void *_ctx)
118 static const gnutls_crypto_cipher_st cipher_struct = {
119 .init = aes_cipher_init,
120 .setkey = aes_cipher_setkey,
122 .encrypt = aes_encrypt,
123 .decrypt = aes_decrypt,
124 .deinit = aes_deinit,
127 static unsigned check_optimized_aes(void)
129 unsigned int a, b, c, d;
130 gnutls_cpuid(1, &a, &b, &c, &d);
132 return (c & 0x2000000);
136 static unsigned check_pclmul(void)
138 unsigned int a, b, c, d;
139 gnutls_cpuid(1, &a, &b, &c, &d);
145 static unsigned check_intel_or_amd(void)
147 unsigned int a, b, c, d;
148 gnutls_cpuid(0, &a, &b, &c, &d);
150 if ((memcmp(&b, "Genu", 4) == 0 &&
151 memcmp(&d, "ineI", 4) == 0 &&
152 memcmp(&c, "ntel", 4) == 0) ||
153 (memcmp(&b, "Auth", 4) == 0 &&
154 memcmp(&d, "enti", 4) == 0 && memcmp(&c, "cAMD", 4) == 0)) {
161 void register_x86_crypto(void)
165 if (check_intel_or_amd() == 0)
168 if (check_optimized_aes()) {
169 _gnutls_debug_log("Intel AES accelerator was detected\n");
171 gnutls_crypto_single_cipher_register
172 (GNUTLS_CIPHER_AES_128_CBC, 80, &cipher_struct);
178 gnutls_crypto_single_cipher_register
179 (GNUTLS_CIPHER_AES_192_CBC, 80, &cipher_struct);
185 gnutls_crypto_single_cipher_register
186 (GNUTLS_CIPHER_AES_256_CBC, 80, &cipher_struct);
191 if (check_pclmul()) {
192 /* register GCM ciphers */
194 ("Intel GCM accelerator was detected\n");
196 gnutls_crypto_single_cipher_register
197 (GNUTLS_CIPHER_AES_128_GCM, 80,
204 gnutls_crypto_single_cipher_register
205 (GNUTLS_CIPHER_AES_256_GCM, 80,
projects / gnutls:gnutls.git / blob