libarchive/libarchive/archive_cryptor_private.h

299425Smm/*-
299425Smm* Copyright (c) 2014 Michihiro NAKAJIMA
299425Smm* All rights reserved.
299425Smm*
299425Smm* Redistribution and use in source and binary forms, with or without
299425Smm* modification, are permitted provided that the following conditions
299425Smm* are met:
299425Smm* 1. Redistributions of source code must retain the above copyright
299425Smm*    notice, this list of conditions and the following disclaimer.
299425Smm* 2. Redistributions in binary form must reproduce the above copyright
299425Smm*    notice, this list of conditions and the following disclaimer in the
299425Smm*    documentation and/or other materials provided with the distribution.
299425Smm*
299425Smm* THIS SOFTWARE IS PROVIDED BY THE AUTHOR(S) ``AS IS'' AND ANY EXPRESS OR
299425Smm* IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
299425Smm* OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.
299425Smm* IN NO EVENT SHALL THE AUTHOR(S) BE LIABLE FOR ANY DIRECT, INDIRECT,
299425Smm* INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
299425Smm* NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
299425Smm* DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
299425Smm* THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
299425Smm* (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
299425Smm* THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
299425Smm*/
299425Smm
358090Smm#ifndef ARCHIVE_CRYPTOR_PRIVATE_H_INCLUDED
358090Smm#define ARCHIVE_CRYPTOR_PRIVATE_H_INCLUDED
358090Smm
299425Smm#ifndef __LIBARCHIVE_BUILD
299425Smm#error This header is only to be used internally to libarchive.
299425Smm#endif
299425Smm/*
299425Smm * On systems that do not support any recognized crypto libraries,
299425Smm * the archive_cryptor.c file will normally define no usable symbols.
299425Smm *
299425Smm * But some compilers and linkers choke on empty object files, so
299425Smm * define a public symbol that will always exist.  This could
299425Smm * be removed someday if this file gains another always-present
299425Smm * symbol definition.
299425Smm */
299425Smmint __libarchive_cryptor_build_hack(void);
299425Smm
299425Smm#ifdef __APPLE__
299425Smm# include <AvailabilityMacros.h>
299425Smm# if MAC_OS_X_VERSION_MAX_ALLOWED >= 1080
299425Smm#  define ARCHIVE_CRYPTOR_USE_Apple_CommonCrypto
299425Smm# endif
299425Smm#endif
299425Smm
299425Smm#ifdef ARCHIVE_CRYPTOR_USE_Apple_CommonCrypto
299425Smm#include <CommonCrypto/CommonCryptor.h>
299425Smm#include <CommonCrypto/CommonKeyDerivation.h>
299425Smm#define AES_BLOCK_SIZE	16
299425Smm#define AES_MAX_KEY_SIZE kCCKeySizeAES256
299425Smm
299425Smmtypedef struct {
299425Smm	CCCryptorRef	ctx;
299425Smm	uint8_t		key[AES_MAX_KEY_SIZE];
299425Smm	unsigned	key_len;
299425Smm	uint8_t		nonce[AES_BLOCK_SIZE];
299425Smm	uint8_t		encr_buf[AES_BLOCK_SIZE];
299425Smm	unsigned	encr_pos;
299425Smm} archive_crypto_ctx;
299425Smm
299425Smm#elif defined(_WIN32) && !defined(__CYGWIN__) && defined(HAVE_BCRYPT_H)
322072Smm#include <bcrypt.h>
299425Smm
299425Smm/* Common in other bcrypt implementations, but missing from VS2008. */
299425Smm#ifndef BCRYPT_SUCCESS
299425Smm#define BCRYPT_SUCCESS(r) ((NTSTATUS)(r) == STATUS_SUCCESS)
299425Smm#endif
299425Smm
299425Smm#define AES_MAX_KEY_SIZE 32
299425Smm#define AES_BLOCK_SIZE 16
299425Smmtypedef struct {
299425Smm	BCRYPT_ALG_HANDLE hAlg;
299425Smm	BCRYPT_KEY_HANDLE hKey;
299425Smm	PBYTE		keyObj;
299425Smm	DWORD		keyObj_len;
299425Smm	uint8_t		nonce[AES_BLOCK_SIZE];
299425Smm	uint8_t		encr_buf[AES_BLOCK_SIZE];
299425Smm	unsigned	encr_pos;
299425Smm} archive_crypto_ctx;
299425Smm
358090Smm#elif defined(HAVE_LIBMBEDCRYPTO) && defined(HAVE_MBEDTLS_AES_H)
358090Smm#include <mbedtls/aes.h>
358090Smm#include <mbedtls/md.h>
358090Smm#include <mbedtls/pkcs5.h>
358090Smm
358090Smm#define AES_MAX_KEY_SIZE 32
358090Smm#define AES_BLOCK_SIZE 16
358090Smm
358090Smmtypedef struct {
358090Smm	mbedtls_aes_context	ctx;
358090Smm	uint8_t		key[AES_MAX_KEY_SIZE];
358090Smm	unsigned	key_len;
358090Smm	uint8_t		nonce[AES_BLOCK_SIZE];
358090Smm	uint8_t		encr_buf[AES_BLOCK_SIZE];
358090Smm	unsigned	encr_pos;
358090Smm} archive_crypto_ctx;
358090Smm
299425Smm#elif defined(HAVE_LIBNETTLE) && defined(HAVE_NETTLE_AES_H)
299425Smm#if defined(HAVE_NETTLE_PBKDF2_H)
299425Smm#include <nettle/pbkdf2.h>
299425Smm#endif
299425Smm#include <nettle/aes.h>
368708Smm#include <nettle/version.h>
299425Smm
299425Smmtypedef struct {
368708Smm#if NETTLE_VERSION_MAJOR < 3
299425Smm	struct aes_ctx	ctx;
368708Smm#else
368708Smm	union {
368708Smm		struct aes128_ctx c128;
368708Smm		struct aes192_ctx c192;
368708Smm		struct aes256_ctx c256;
368708Smm	}		ctx;
368708Smm#endif
299425Smm	uint8_t		key[AES_MAX_KEY_SIZE];
299425Smm	unsigned	key_len;
299425Smm	uint8_t		nonce[AES_BLOCK_SIZE];
299425Smm	uint8_t		encr_buf[AES_BLOCK_SIZE];
299425Smm	unsigned	encr_pos;
299425Smm} archive_crypto_ctx;
299425Smm
299425Smm#elif defined(HAVE_LIBCRYPTO)
311042Smm#include "archive_openssl_evp_private.h"
299425Smm#define AES_BLOCK_SIZE	16
299425Smm#define AES_MAX_KEY_SIZE 32
299425Smm
299425Smmtypedef struct {
311042Smm	EVP_CIPHER_CTX	*ctx;
299425Smm	const EVP_CIPHER *type;
299425Smm	uint8_t		key[AES_MAX_KEY_SIZE];
299425Smm	unsigned	key_len;
299425Smm	uint8_t		nonce[AES_BLOCK_SIZE];
299425Smm	uint8_t		encr_buf[AES_BLOCK_SIZE];
299425Smm	unsigned	encr_pos;
299425Smm} archive_crypto_ctx;
299425Smm
299425Smm#else
299425Smm
299425Smm#define AES_BLOCK_SIZE	16
299425Smm#define AES_MAX_KEY_SIZE 32
299425Smmtypedef int archive_crypto_ctx;
299425Smm
299425Smm#endif
299425Smm
299425Smm/* defines */
299425Smm#define archive_pbkdf2_sha1(pw, pw_len, salt, salt_len, rounds, dk, dk_len)\
299425Smm  __archive_cryptor.pbkdf2sha1(pw, pw_len, salt, salt_len, rounds, dk, dk_len)
299425Smm
299425Smm#define archive_decrypto_aes_ctr_init(ctx, key, key_len) \
299425Smm  __archive_cryptor.decrypto_aes_ctr_init(ctx, key, key_len)
299425Smm#define archive_decrypto_aes_ctr_update(ctx, in, in_len, out, out_len) \
299425Smm  __archive_cryptor.decrypto_aes_ctr_update(ctx, in, in_len, out, out_len)
299425Smm#define archive_decrypto_aes_ctr_release(ctx) \
299425Smm  __archive_cryptor.decrypto_aes_ctr_release(ctx)
299425Smm
299425Smm#define archive_encrypto_aes_ctr_init(ctx, key, key_len) \
299425Smm  __archive_cryptor.encrypto_aes_ctr_init(ctx, key, key_len)
299425Smm#define archive_encrypto_aes_ctr_update(ctx, in, in_len, out, out_len) \
299425Smm  __archive_cryptor.encrypto_aes_ctr_update(ctx, in, in_len, out, out_len)
299425Smm#define archive_encrypto_aes_ctr_release(ctx) \
299425Smm  __archive_cryptor.encrypto_aes_ctr_release(ctx)
299425Smm
299425Smm/* Minimal interface to cryptographic functionality for internal use in
299425Smm * libarchive */
299425Smmstruct archive_cryptor
299425Smm{
299425Smm  /* PKCS5 PBKDF2 HMAC-SHA1 */
299425Smm  int (*pbkdf2sha1)(const char *pw, size_t pw_len, const uint8_t *salt,
299425Smm    size_t salt_len, unsigned rounds, uint8_t *derived_key,
299425Smm    size_t derived_key_len);
299425Smm  /* AES CTR mode(little endian version) */
299425Smm  int (*decrypto_aes_ctr_init)(archive_crypto_ctx *, const uint8_t *, size_t);
299425Smm  int (*decrypto_aes_ctr_update)(archive_crypto_ctx *, const uint8_t *,
299425Smm    size_t, uint8_t *, size_t *);
299425Smm  int (*decrypto_aes_ctr_release)(archive_crypto_ctx *);
299425Smm  int (*encrypto_aes_ctr_init)(archive_crypto_ctx *, const uint8_t *, size_t);
299425Smm  int (*encrypto_aes_ctr_update)(archive_crypto_ctx *, const uint8_t *,
299425Smm    size_t, uint8_t *, size_t *);
299425Smm  int (*encrypto_aes_ctr_release)(archive_crypto_ctx *);
299425Smm};
299425Smm
299425Smmextern const struct archive_cryptor __archive_cryptor;
299425Smm
299425Smm#endif