Lines Matching refs:cctx
317 EVP_AES_CCM_CTX *cctx = EVP_C_DATA(EVP_AES_CCM_CTX,ctx);
322 &cctx->ks.ks);
323 CRYPTO_ccm128_init(&cctx->ccm, cctx->M, cctx->L,
324 &cctx->ks, (block128_f) aesni_encrypt);
325 cctx->str = enc ? (ccm128_f) aesni_ccm64_encrypt_blocks :
327 cctx->key_set = 1;
330 memcpy(ctx->iv, iv, 15 - cctx->L);
331 cctx->iv_set = 1;
672 EVP_AES_CCM_CTX *cctx = EVP_C_DATA(EVP_AES_CCM_CTX,ctx);
677 aes_t4_set_encrypt_key(key, bits, &cctx->ks.ks);
678 CRYPTO_ccm128_init(&cctx->ccm, cctx->M, cctx->L,
679 &cctx->ks, (block128_f) aes_t4_encrypt);
680 cctx->str = NULL;
681 cctx->key_set = 1;
684 memcpy(ctx->iv, iv, 15 - cctx->L);
685 cctx->iv_set = 1;
973 S390X_AES_ECB_CTX *cctx = EVP_C_DATA(S390X_AES_ECB_CTX, ctx);
976 cctx->fc = S390X_AES_FC(keylen);
978 cctx->fc |= S390X_DECRYPT;
980 memcpy(cctx->km.param.k, key, keylen);
987 S390X_AES_ECB_CTX *cctx = EVP_C_DATA(S390X_AES_ECB_CTX, ctx);
989 s390x_km(in, len, out, cctx->fc, &cctx->km.param);
997 S390X_AES_OFB_CTX *cctx = EVP_C_DATA(S390X_AES_OFB_CTX, ctx);
1002 memcpy(cctx->kmo.param.cv, iv, ivlen);
1003 memcpy(cctx->kmo.param.k, key, keylen);
1004 cctx->fc = S390X_AES_FC(keylen);
1005 cctx->res = 0;
1012 S390X_AES_OFB_CTX *cctx = EVP_C_DATA(S390X_AES_OFB_CTX, ctx);
1015 int n = cctx->res;
1018 memcpy(cctx->kmo.param.cv, iv, ivlen);
1020 *out = *in ^ cctx->kmo.param.cv[n];
1031 s390x_kmo(in, len, out, cctx->fc, &cctx->kmo.param);
1038 s390x_km(cctx->kmo.param.cv, 16, cctx->kmo.param.cv, cctx->fc,
1039 cctx->kmo.param.k);
1042 out[n] = in[n] ^ cctx->kmo.param.cv[n];
1047 memcpy(iv, cctx->kmo.param.cv, ivlen);
1048 cctx->res = n;
1056 S390X_AES_CFB_CTX *cctx = EVP_C_DATA(S390X_AES_CFB_CTX, ctx);
1061 cctx->fc = S390X_AES_FC(keylen);
1062 cctx->fc |= 16 << 24; /* 16 bytes cipher feedback */
1064 cctx->fc |= S390X_DECRYPT;
1066 cctx->res = 0;
1067 memcpy(cctx->kmf.param.cv, iv, ivlen);
1068 memcpy(cctx->kmf.param.k, key, keylen);
1075 S390X_AES_CFB_CTX *cctx = EVP_C_DATA(S390X_AES_CFB_CTX, ctx);
1080 int n = cctx->res;
1084 memcpy(cctx->kmf.param.cv, iv, ivlen);
1087 *out = cctx->kmf.param.cv[n] ^ tmp;
1088 cctx->kmf.param.cv[n] = enc ? *out : tmp;
1099 s390x_kmf(in, len, out, cctx->fc, &cctx->kmf.param);
1106 s390x_km(cctx->kmf.param.cv, 16, cctx->kmf.param.cv,
1107 S390X_AES_FC(keylen), cctx->kmf.param.k);
1111 out[n] = cctx->kmf.param.cv[n] ^ tmp;
1112 cctx->kmf.param.cv[n] = enc ? out[n] : tmp;
1117 memcpy(iv, cctx->kmf.param.cv, ivlen);
1118 cctx->res = n;
1126 S390X_AES_CFB_CTX *cctx = EVP_C_DATA(S390X_AES_CFB_CTX, ctx);
1131 cctx->fc = S390X_AES_FC(keylen);
1132 cctx->fc |= 1 << 24; /* 1 byte cipher feedback */
1134 cctx->fc |= S390X_DECRYPT;
1136 memcpy(cctx->kmf.param.cv, iv, ivlen);
1137 memcpy(cctx->kmf.param.k, key, keylen);
1144 S390X_AES_CFB_CTX *cctx = EVP_C_DATA(S390X_AES_CFB_CTX, ctx);
1148 memcpy(cctx->kmf.param.cv, iv, ivlen);
1149 s390x_kmf(in, len, out, cctx->fc, &cctx->kmf.param);
1150 memcpy(iv, cctx->kmf.param.cv, ivlen);
1880 S390X_AES_CCM_CTX *cctx = EVP_C_DATA(S390X_AES_CCM_CTX, ctx);
1886 || len < (EVP_CCM_TLS_EXPLICIT_IV_LEN + (size_t)cctx->aes.ccm.m))
1894 len -= EVP_CCM_TLS_EXPLICIT_IV_LEN + cctx->aes.ccm.m;
1900 s390x_aes_ccm_setiv(cctx, ivec, len);
1903 s390x_aes_ccm_aad(cctx, buf, cctx->aes.ccm.tls_aad_len);
1909 if (s390x_aes_ccm(cctx, in, out, len, enc))
1912 memcpy(out + len, cctx->aes.ccm.kmac_param.icv.b, cctx->aes.ccm.m);
1913 return len + EVP_CCM_TLS_EXPLICIT_IV_LEN + cctx->aes.ccm.m;
1915 if (!s390x_aes_ccm(cctx, in, out, len, enc)) {
1916 if (!CRYPTO_memcmp(cctx->aes.ccm.kmac_param.icv.b, in + len,
1917 cctx->aes.ccm.m))
1934 S390X_AES_CCM_CTX *cctx = EVP_C_DATA(S390X_AES_CCM_CTX, ctx);
1942 cctx->aes.ccm.fc = S390X_AES_FC(keylen);
1943 memcpy(cctx->aes.ccm.kmac_param.k, key, keylen);
1946 cctx->aes.ccm.nonce.b[0] = ((cctx->aes.ccm.l - 1) & 0x7)
1947 | (((cctx->aes.ccm.m - 2) >> 1) & 0x7) << 3;
1948 memset(cctx->aes.ccm.nonce.b + 1, 0,
1949 sizeof(cctx->aes.ccm.nonce.b));
1950 cctx->aes.ccm.blocks = 0;
1952 cctx->aes.ccm.key_set = 1;
1956 memcpy(ctx->iv, iv, 15 - cctx->aes.ccm.l);
1958 cctx->aes.ccm.iv_set = 1;
1973 S390X_AES_CCM_CTX *cctx = EVP_C_DATA(S390X_AES_CCM_CTX, ctx);
1978 if (!cctx->aes.ccm.key_set)
1981 if (cctx->aes.ccm.tls_aad_len >= 0)
1992 if (!cctx->aes.ccm.iv_set)
1998 s390x_aes_ccm_setiv(cctx, ctx->iv, len);
2000 cctx->aes.ccm.len_set = 1;
2005 if (!cctx->aes.ccm.len_set && len)
2008 s390x_aes_ccm_aad(cctx, in, len);
2013 if (!enc && !cctx->aes.ccm.tag_set)
2018 if (!cctx->aes.ccm.len_set) {
2023 s390x_aes_ccm_setiv(cctx, ctx->iv, len);
2025 cctx->aes.ccm.len_set = 1;
2029 if (s390x_aes_ccm(cctx, in, out, len, enc))
2032 cctx->aes.ccm.tag_set = 1;
2037 if (!s390x_aes_ccm(cctx, in, out, len, enc)) {
2039 if (!CRYPTO_memcmp(cctx->aes.ccm.kmac_param.icv.b, buf,
2040 cctx->aes.ccm.m))
2047 cctx->aes.ccm.iv_set = 0;
2048 cctx->aes.ccm.tag_set = 0;
2049 cctx->aes.ccm.len_set = 0;
2061 S390X_AES_CCM_CTX *cctx = EVP_C_DATA(S390X_AES_CCM_CTX, c);
2067 cctx->aes.ccm.key_set = 0;
2068 cctx->aes.ccm.iv_set = 0;
2069 cctx->aes.ccm.l = 8;
2070 cctx->aes.ccm.m = 12;
2071 cctx->aes.ccm.tag_set = 0;
2072 cctx->aes.ccm.len_set = 0;
2073 cctx->aes.ccm.tls_aad_len = -1;
2077 *(int *)ptr = 15 - cctx->aes.ccm.l;
2087 cctx->aes.ccm.tls_aad_len = arg;
2098 if (len < cctx->aes.ccm.m)
2102 len -= cctx->aes.ccm.m;
2109 return cctx->aes.ccm.m;
2127 cctx->aes.ccm.l = arg;
2139 cctx->aes.ccm.tag_set = 1;
2144 cctx->aes.ccm.m = arg;
2149 if (!enc || !cctx->aes.ccm.tag_set)
2152 if(arg < cctx->aes.ccm.m)
2155 memcpy(ptr, cctx->aes.ccm.kmac_param.icv.b, cctx->aes.ccm.m);
2156 cctx->aes.ccm.tag_set = 0;
2157 cctx->aes.ccm.iv_set = 0;
2158 cctx->aes.ccm.len_set = 0;
3282 EVP_AES_CCM_CTX *cctx = EVP_C_DATA(EVP_AES_CCM_CTX,c);
3285 cctx->key_set = 0;
3286 cctx->iv_set = 0;
3287 cctx->L = 8;
3288 cctx->M = 12;
3289 cctx->tag_set = 0;
3290 cctx->len_set = 0;
3291 cctx->tls_aad_len = -1;
3295 *(int *)ptr = 15 - cctx->L;
3303 cctx->tls_aad_len = arg;
3314 if (len < cctx->M)
3316 len -= cctx->M;
3322 return cctx->M;
3338 cctx->L = arg;
3347 cctx->tag_set = 1;
3350 cctx->M = arg;
3354 if (!EVP_CIPHER_CTX_is_encrypting(c) || !cctx->tag_set)
3356 if (!CRYPTO_ccm128_tag(&cctx->ccm, ptr, (size_t)arg))
3358 cctx->tag_set = 0;
3359 cctx->iv_set = 0;
3360 cctx->len_set = 0;
3367 if (cctx->ccm.key) {
3368 if (cctx->ccm.key != &cctx->ks)
3384 EVP_AES_CCM_CTX *cctx = EVP_C_DATA(EVP_AES_CCM_CTX,ctx);
3393 &cctx->ks.ks);
3395 CRYPTO_ccm128_init(&cctx->ccm, cctx->M, cctx->L,
3396 &cctx->ks, (block128_f) HWAES_encrypt);
3397 cctx->str = NULL;
3398 cctx->key_set = 1;
3406 &cctx->ks.ks);
3407 CRYPTO_ccm128_init(&cctx->ccm, cctx->M, cctx->L,
3408 &cctx->ks, (block128_f) vpaes_encrypt);
3409 cctx->str = NULL;
3410 cctx->key_set = 1;
3415 &cctx->ks.ks);
3416 CRYPTO_ccm128_init(&cctx->ccm, cctx->M, cctx->L,
3417 &cctx->ks, (block128_f) AES_encrypt);
3418 cctx->str = NULL;
3419 cctx->key_set = 1;
3422 memcpy(ctx->iv, iv, 15 - cctx->L);
3423 cctx->iv_set = 1;
3431 EVP_AES_CCM_CTX *cctx = EVP_C_DATA(EVP_AES_CCM_CTX,ctx);
3432 CCM128_CONTEXT *ccm = &cctx->ccm;
3434 if (out != in || len < (EVP_CCM_TLS_EXPLICIT_IV_LEN + (size_t)cctx->M))
3444 len -= EVP_CCM_TLS_EXPLICIT_IV_LEN + cctx->M;
3445 if (CRYPTO_ccm128_setiv(ccm, ctx->iv, 15 - cctx->L,
3450 cctx->tls_aad_len);
3455 if (cctx->str ? CRYPTO_ccm128_encrypt_ccm64(ccm, in, out, len,
3456 cctx->str) :
3459 if (!CRYPTO_ccm128_tag(ccm, out + len, cctx->M))
3461 return len + EVP_CCM_TLS_EXPLICIT_IV_LEN + cctx->M;
3463 if (cctx->str ? !CRYPTO_ccm128_decrypt_ccm64(ccm, in, out, len,
3464 cctx->str) :
3467 if (CRYPTO_ccm128_tag(ccm, tag, cctx->M)) {
3468 if (!CRYPTO_memcmp(tag, in + len, cctx->M))
3480 EVP_AES_CCM_CTX *cctx = EVP_C_DATA(EVP_AES_CCM_CTX,ctx);
3481 CCM128_CONTEXT *ccm = &cctx->ccm;
3483 if (!cctx->key_set)
3486 if (cctx->tls_aad_len >= 0)
3493 if (!cctx->iv_set)
3499 15 - cctx->L, len))
3501 cctx->len_set = 1;
3505 if (!cctx->len_set && len)
3512 if (!EVP_CIPHER_CTX_is_encrypting(ctx) && !cctx->tag_set)
3516 if (!cctx->len_set) {
3517 if (CRYPTO_ccm128_setiv(ccm, ctx->iv, 15 - cctx->L, len))
3519 cctx->len_set = 1;
3522 if (cctx->str ? CRYPTO_ccm128_encrypt_ccm64(ccm, in, out, len,
3523 cctx->str) :
3526 cctx->tag_set = 1;
3530 if (cctx->str ? !CRYPTO_ccm128_decrypt_ccm64(ccm, in, out, len,
3531 cctx->str) :
3534 if (CRYPTO_ccm128_tag(ccm, tag, cctx->M)) {
3536 cctx->M))
3542 cctx->iv_set = 0;
3543 cctx->tag_set = 0;
3544 cctx->len_set = 0;