Blame - aes_operation.cpp - android.googlesource.com/platform/system/keymaster

blob: 804d9b3763037bd371ad9e587186277f49417d9b [file] [log] [blame]

Shawn Willden	907c301	2014-12-08 15:51:55 -0700	[diff] [blame]	1	/*
				2	* Copyright 2014 The Android Open Source Project
				3	*
				4	* Licensed under the Apache License, Version 2.0 (the "License");
				5	* you may not use this file except in compliance with the License.
				6	* You may obtain a copy of the License at
				7	*
				8	* http://www.apache.org/licenses/LICENSE-2.0
				9	*
				10	* Unless required by applicable law or agreed to in writing, software
				11	* distributed under the License is distributed on an "AS IS" BASIS,
				12	* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
				13	* See the License for the specific language governing permissions and
				14	* limitations under the License.
				15	*/
				16
Shawn Willden	6dde87c	2014-12-11 14:08:48 -0700	[diff] [blame]	17	#include <stdio.h>
				18
Shawn Willden	907c301	2014-12-08 15:51:55 -0700	[diff] [blame]	19	#include <openssl/aes.h>
Shawn Willden	f0f68b9	2014-12-30 16:03:28 -0700	[diff] [blame]	20	#include <openssl/err.h>
Shawn Willden	907c301	2014-12-08 15:51:55 -0700	[diff] [blame]	21	#include <openssl/rand.h>
				22
Shawn Willden	567a4a0	2014-12-31 12:14:46 -0700	[diff] [blame]	23	#include <keymaster/logger.h>
				24
Shawn Willden	63ac043	2014-12-29 14:07:08 -0700	[diff] [blame]	25	#include "aes_key.h"
Shawn Willden	907c301	2014-12-08 15:51:55 -0700	[diff] [blame]	26	#include "aes_operation.h"
Shawn Willden	f0f68b9	2014-12-30 16:03:28 -0700	[diff] [blame]	27	#include "openssl_err.h"
Shawn Willden	907c301	2014-12-08 15:51:55 -0700	[diff] [blame]	28
				29	namespace keymaster {
				30
Shawn Willden	63ac043	2014-12-29 14:07:08 -0700	[diff] [blame]	31	/**
Shawn Willden	f0f68b9	2014-12-30 16:03:28 -0700	[diff] [blame]	32	* Abstract base for AES operation factories. This class does all of the work to create
				33	* AES operations.
Shawn Willden	63ac043	2014-12-29 14:07:08 -0700	[diff] [blame]	34	*/
Shawn Willden	f0f68b9	2014-12-30 16:03:28 -0700	[diff] [blame]	35	class AesOperationFactory : public OperationFactory {
Shawn Willden	63ac043	2014-12-29 14:07:08 -0700	[diff] [blame]	36	public:
				37	virtual KeyType registry_key() const { return KeyType(KM_ALGORITHM_AES, purpose()); }
				38
Shawn Willden	567a4a0	2014-12-31 12:14:46 -0700	[diff] [blame]	39	virtual Operation* CreateOperation(const Key& key, keymaster_error_t* error);
Shawn Willden	63ac043	2014-12-29 14:07:08 -0700	[diff] [blame]	40	virtual const keymaster_block_mode_t* SupportedBlockModes(size_t* block_mode_count) const;
Shawn Willden	f0f68b9	2014-12-30 16:03:28 -0700	[diff] [blame]	41	virtual const keymaster_padding_t* SupportedPaddingModes(size_t* padding_count) const;
Shawn Willden	63ac043	2014-12-29 14:07:08 -0700	[diff] [blame]	42
				43	virtual keymaster_purpose_t purpose() const = 0;
Shawn Willden	f0f68b9	2014-12-30 16:03:28 -0700	[diff] [blame]	44
				45	private:
Shawn Willden	7a62f5e	2015-03-10 12:59:20 -0600	[diff] [blame]	46	virtual Operation* CreateOcbOperation(const SymmetricKey& key, bool caller_nonce,
				47	keymaster_error_t* error);
Shawn Willden	f0f68b9	2014-12-30 16:03:28 -0700	[diff] [blame]	48	virtual Operation* CreateEvpOperation(const SymmetricKey& key,
				49	keymaster_block_mode_t block_mode,
Shawn Willden	7a62f5e	2015-03-10 12:59:20 -0600	[diff] [blame]	50	keymaster_padding_t padding, bool caller_iv,
				51	keymaster_error_t* error);
Shawn Willden	63ac043	2014-12-29 14:07:08 -0700	[diff] [blame]	52	};
				53
Shawn Willden	f0f68b9	2014-12-30 16:03:28 -0700	[diff] [blame]	54	Operation* AesOperationFactory::CreateOperation(const Key& key, keymaster_error_t* error) {
Shawn Willden	63ac043	2014-12-29 14:07:08 -0700	[diff] [blame]	55	*error = KM_ERROR_OK;
				56
Shawn Willden	f0f68b9	2014-12-30 16:03:28 -0700	[diff] [blame]	57	const SymmetricKey* symmetric_key = static_cast<const SymmetricKey*>(&key);
				58	if (!symmetric_key) {
				59	*error = KM_ERROR_UNKNOWN_ERROR;
				60	return NULL;
				61	}
				62
				63	switch (symmetric_key->key_data_size()) {
				64	case 16:
				65	case 24:
				66	case 32:
				67	break;
				68	default:
				69	*error = KM_ERROR_UNSUPPORTED_KEY_SIZE;
				70	return NULL;
				71	}
				72
Shawn Willden	63ac043	2014-12-29 14:07:08 -0700	[diff] [blame]	73	keymaster_block_mode_t block_mode;
Shawn Willden	f0f68b9	2014-12-30 16:03:28 -0700	[diff] [blame]	74	if (!key.authorizations().GetTagValue(TAG_BLOCK_MODE, &block_mode) \|\| !supported(block_mode))
				75	*error = KM_ERROR_UNSUPPORTED_BLOCK_MODE;
				76
				77	keymaster_padding_t padding = KM_PAD_NONE;
				78	key.authorizations().GetTagValue(TAG_PADDING, &padding);
				79
Shawn Willden	7a62f5e	2015-03-10 12:59:20 -0600	[diff] [blame]	80	bool caller_nonce = key.authorizations().GetTagValue(TAG_CALLER_NONCE);
				81
Shawn Willden	f0f68b9	2014-12-30 16:03:28 -0700	[diff] [blame]	82	if (*error != KM_ERROR_OK)
				83	return NULL;
				84
				85	switch (block_mode) {
				86	case KM_MODE_OCB:
				87	if (padding != KM_PAD_NONE) {
				88	*error = KM_ERROR_UNSUPPORTED_PADDING_MODE;
				89	return NULL;
				90	}
Shawn Willden	7a62f5e	2015-03-10 12:59:20 -0600	[diff] [blame]	91	return CreateOcbOperation(*symmetric_key, caller_nonce, error);
Shawn Willden	f0f68b9	2014-12-30 16:03:28 -0700	[diff] [blame]	92	case KM_MODE_ECB:
				93	case KM_MODE_CBC:
Shawn Willden	7a62f5e	2015-03-10 12:59:20 -0600	[diff] [blame]	94	return CreateEvpOperation(*symmetric_key, block_mode, padding, caller_nonce, error);
Shawn Willden	f0f68b9	2014-12-30 16:03:28 -0700	[diff] [blame]	95	default:
Shawn Willden	63ac043	2014-12-29 14:07:08 -0700	[diff] [blame]	96	*error = KM_ERROR_UNSUPPORTED_BLOCK_MODE;
				97	return NULL;
				98	}
Shawn Willden	f0f68b9	2014-12-30 16:03:28 -0700	[diff] [blame]	99	}
				100
Shawn Willden	7a62f5e	2015-03-10 12:59:20 -0600	[diff] [blame]	101	Operation* AesOperationFactory::CreateOcbOperation(const SymmetricKey& key, bool caller_nonce,
Shawn Willden	f0f68b9	2014-12-30 16:03:28 -0700	[diff] [blame]	102	keymaster_error_t* error) {
				103	*error = KM_ERROR_OK;
Shawn Willden	63ac043	2014-12-29 14:07:08 -0700	[diff] [blame]	104
				105	uint32_t chunk_length;
				106	if (!key.authorizations().GetTagValue(TAG_CHUNK_LENGTH, &chunk_length) \|\|
				107	chunk_length > AeadModeOperation::MAX_CHUNK_LENGTH)
				108	// TODO(swillden): Create and use a better return code.
				109	*error = KM_ERROR_INVALID_ARGUMENT;
				110
				111	uint32_t tag_length;
				112	if (!key.authorizations().GetTagValue(TAG_MAC_LENGTH, &tag_length) \|\|
				113	tag_length > AeadModeOperation::MAX_TAG_LENGTH)
				114	// TODO(swillden): Create and use a better return code.
				115	*error = KM_ERROR_INVALID_ARGUMENT;
				116
				117	keymaster_padding_t padding;
				118	if (key.authorizations().GetTagValue(TAG_PADDING, &padding) && padding != KM_PAD_NONE)
				119	*error = KM_ERROR_UNSUPPORTED_PADDING_MODE;
				120
Shawn Willden	63ac043	2014-12-29 14:07:08 -0700	[diff] [blame]	121	if (*error != KM_ERROR_OK)
				122	return NULL;
				123
Shawn Willden	f0f68b9	2014-12-30 16:03:28 -0700	[diff] [blame]	124	Operation* op = new AesOcbOperation(purpose(), key.key_data(), key.key_data_size(),
Shawn Willden	dfa1c03	2015-02-07 00:39:01 -0700	[diff] [blame]	125	chunk_length, tag_length, caller_nonce);
Shawn Willden	63ac043	2014-12-29 14:07:08 -0700	[diff] [blame]	126	if (!op)
				127	*error = KM_ERROR_MEMORY_ALLOCATION_FAILED;
				128	return op;
				129	}
				130
Shawn Willden	f0f68b9	2014-12-30 16:03:28 -0700	[diff] [blame]	131	Operation* AesOperationFactory::CreateEvpOperation(const SymmetricKey& key,
				132	keymaster_block_mode_t block_mode,
Shawn Willden	7a62f5e	2015-03-10 12:59:20 -0600	[diff] [blame]	133	keymaster_padding_t padding, bool caller_iv,
Shawn Willden	f0f68b9	2014-12-30 16:03:28 -0700	[diff] [blame]	134	keymaster_error_t* error) {
				135	Operation* op = NULL;
				136	switch (purpose()) {
				137	case KM_PURPOSE_ENCRYPT:
Shawn Willden	7a62f5e	2015-03-10 12:59:20 -0600	[diff] [blame]	138	op = new AesEvpEncryptOperation(block_mode, padding, caller_iv, key.key_data(),
				139	key.key_data_size());
Shawn Willden	f0f68b9	2014-12-30 16:03:28 -0700	[diff] [blame]	140	break;
				141	case KM_PURPOSE_DECRYPT:
				142	op = new AesEvpDecryptOperation(block_mode, padding, key.key_data(), key.key_data_size());
				143	break;
				144	default:
				145	*error = KM_ERROR_UNSUPPORTED_PURPOSE;
				146	return NULL;
				147	}
				148
				149	if (!op)
				150	*error = KM_ERROR_MEMORY_ALLOCATION_FAILED;
				151	return op;
				152	}
				153
Shawn Willden	7a62f5e	2015-03-10 12:59:20 -0600	[diff] [blame]	154	static const keymaster_block_mode_t supported_block_modes[] = {KM_MODE_OCB, KM_MODE_ECB,
				155	KM_MODE_CBC};
Shawn Willden	63ac043	2014-12-29 14:07:08 -0700	[diff] [blame]	156
				157	const keymaster_block_mode_t*
Shawn Willden	f0f68b9	2014-12-30 16:03:28 -0700	[diff] [blame]	158	AesOperationFactory::SupportedBlockModes(size_t* block_mode_count) const {
Shawn Willden	63ac043	2014-12-29 14:07:08 -0700	[diff] [blame]	159	*block_mode_count = array_length(supported_block_modes);
				160	return supported_block_modes;
				161	}
				162
Shawn Willden	f0f68b9	2014-12-30 16:03:28 -0700	[diff] [blame]	163	static const keymaster_padding_t supported_padding_modes[] = {KM_PAD_NONE, KM_PAD_PKCS7};
				164	const keymaster_padding_t*
				165	AesOperationFactory::SupportedPaddingModes(size_t* padding_mode_count) const {
				166	*padding_mode_count = array_length(supported_padding_modes);
				167	return supported_padding_modes;
				168	}
Shawn Willden	63ac043	2014-12-29 14:07:08 -0700	[diff] [blame]	169
				170	/**
Shawn Willden	f0f68b9	2014-12-30 16:03:28 -0700	[diff] [blame]	171	* Concrete factory for AES encryption operations.
Shawn Willden	63ac043	2014-12-29 14:07:08 -0700	[diff] [blame]	172	*/
Shawn Willden	f0f68b9	2014-12-30 16:03:28 -0700	[diff] [blame]	173	class AesEncryptionOperationFactory : public AesOperationFactory {
				174	keymaster_purpose_t purpose() const { return KM_PURPOSE_ENCRYPT; }
				175	};
				176	static OperationFactoryRegistry::Registration<AesEncryptionOperationFactory> encrypt_registration;
				177
				178	/**
				179	* Concrete factory for AES decryption operations.
				180	*/
				181	class AesDecryptionOperationFactory : public AesOperationFactory {
Shawn Willden	63ac043	2014-12-29 14:07:08 -0700	[diff] [blame]	182	keymaster_purpose_t purpose() const { return KM_PURPOSE_DECRYPT; }
				183	};
Shawn Willden	f0f68b9	2014-12-30 16:03:28 -0700	[diff] [blame]	184	static OperationFactoryRegistry::Registration<AesDecryptionOperationFactory> decrypt_registration;
Shawn Willden	63ac043	2014-12-29 14:07:08 -0700	[diff] [blame]	185
Shawn Willden	6dde87c	2014-12-11 14:08:48 -0700	[diff] [blame]	186	keymaster_error_t AesOcbOperation::Initialize(uint8_t* key, size_t key_size, size_t nonce_length,
				187	size_t tag_length) {
Shawn Willden	63ac043	2014-12-29 14:07:08 -0700	[diff] [blame]	188	if (tag_length > MAX_TAG_LENGTH \|\| nonce_length > MAX_NONCE_LENGTH)
Shawn Willden	6dde87c	2014-12-11 14:08:48 -0700	[diff] [blame]	189	return KM_ERROR_INVALID_KEY_BLOB;
Shawn Willden	907c301	2014-12-08 15:51:55 -0700	[diff] [blame]	190
Shawn Willden	6dde87c	2014-12-11 14:08:48 -0700	[diff] [blame]	191	if (ae_init(ctx(), key, key_size, nonce_length, tag_length) != AE_SUCCESS) {
				192	memset_s(ctx(), 0, ae_ctx_sizeof());
Shawn Willden	907c301	2014-12-08 15:51:55 -0700	[diff] [blame]	193	return KM_ERROR_UNKNOWN_ERROR;
				194	}
Shawn Willden	907c301	2014-12-08 15:51:55 -0700	[diff] [blame]	195	return KM_ERROR_OK;
				196	}
				197
Shawn Willden	6dde87c	2014-12-11 14:08:48 -0700	[diff] [blame]	198	keymaster_error_t AesOcbOperation::EncryptChunk(const uint8_t* nonce, size_t /* nonce_length */,
				199	size_t tag_length,
				200	const keymaster_blob_t additional_data,
				201	uint8_t* chunk, size_t chunk_size, Buffer* output) {
				202	if (!ctx())
				203	return KM_ERROR_UNKNOWN_ERROR;
				204	uint8_t __attribute__((aligned(16))) tag[MAX_TAG_LENGTH];
Shawn Willden	907c301	2014-12-08 15:51:55 -0700	[diff] [blame]	205
Shawn Willden	6dde87c	2014-12-11 14:08:48 -0700	[diff] [blame]	206	// Encrypt chunk in place.
				207	int ae_err = ae_encrypt(ctx(), nonce, chunk, chunk_size, additional_data.data,
				208	additional_data.data_length, chunk, tag, AE_FINALIZE);
Shawn Willden	907c301	2014-12-08 15:51:55 -0700	[diff] [blame]	209
Shawn Willden	907c301	2014-12-08 15:51:55 -0700	[diff] [blame]	210	if (ae_err < 0)
				211	return KM_ERROR_UNKNOWN_ERROR;
Shawn Willden	6dde87c	2014-12-11 14:08:48 -0700	[diff] [blame]	212	assert(ae_err == (int)buffered_data_length());
Shawn Willden	907c301	2014-12-08 15:51:55 -0700	[diff] [blame]	213
Shawn Willden	6dde87c	2014-12-11 14:08:48 -0700	[diff] [blame]	214	output->write(chunk, buffered_data_length());
				215	output->write(tag, tag_length);
Shawn Willden	907c301	2014-12-08 15:51:55 -0700	[diff] [blame]	216
				217	return KM_ERROR_OK;
				218	}
				219
Shawn Willden	6dde87c	2014-12-11 14:08:48 -0700	[diff] [blame]	220	keymaster_error_t AesOcbOperation::DecryptChunk(const uint8_t* nonce, size_t /* nonce_length */,
				221	const uint8_t* tag, size_t /* tag_length */,
				222	const keymaster_blob_t additional_data,
				223	uint8_t* chunk, size_t chunk_size, Buffer* output) {
				224	if (!ctx())
				225	return KM_ERROR_UNKNOWN_ERROR;
				226
				227	// Decrypt chunk in place
				228	int ae_err = ae_decrypt(ctx(), nonce, chunk, chunk_size, additional_data.data,
				229	additional_data.data_length, chunk, tag, AE_FINALIZE);
				230	if (ae_err == AE_INVALID)
				231	return KM_ERROR_VERIFICATION_FAILED;
				232	else if (ae_err < 0)
				233	return KM_ERROR_UNKNOWN_ERROR;
				234	assert(ae_err == (int)buffered_data_length());
				235	output->write(chunk, chunk_size);
				236
				237	return KM_ERROR_OK;
Shawn Willden	907c301	2014-12-08 15:51:55 -0700	[diff] [blame]	238	}
				239
Shawn Willden	f0f68b9	2014-12-30 16:03:28 -0700	[diff] [blame]	240	AesEvpOperation::AesEvpOperation(keymaster_purpose_t purpose, keymaster_block_mode_t block_mode,
Shawn Willden	7a62f5e	2015-03-10 12:59:20 -0600	[diff] [blame]	241	keymaster_padding_t padding, bool caller_iv, const uint8_t* key,
				242	size_t key_size)
Shawn Willden	f0f68b9	2014-12-30 16:03:28 -0700	[diff] [blame]	243	: Operation(purpose), key_size_(key_size), block_mode_(block_mode), padding_(padding),
Shawn Willden	7a62f5e	2015-03-10 12:59:20 -0600	[diff] [blame]	244	caller_iv_(caller_iv) {
Shawn Willden	f0f68b9	2014-12-30 16:03:28 -0700	[diff] [blame]	245	memcpy(key_, key, key_size_);
				246	EVP_CIPHER_CTX_init(&ctx_);
				247	}
				248
				249	AesEvpOperation::~AesEvpOperation() {
				250	EVP_CIPHER_CTX_cleanup(&ctx_);
				251	}
				252
				253	keymaster_error_t AesEvpOperation::InitializeCipher() {
				254	const EVP_CIPHER* cipher;
				255	switch (block_mode_) {
				256	case KM_MODE_ECB:
				257	switch (key_size_) {
				258	case 16:
				259	cipher = EVP_aes_128_ecb();
				260	break;
				261	case 24:
				262	cipher = EVP_aes_192_ecb();
				263	break;
				264	case 32:
				265	cipher = EVP_aes_256_ecb();
				266	break;
				267	default:
				268	return KM_ERROR_UNSUPPORTED_KEY_SIZE;
				269	}
				270	break;
				271	case KM_MODE_CBC:
				272	switch (key_size_) {
				273	case 16:
				274	cipher = EVP_aes_128_cbc();
				275	break;
				276	case 24:
				277	cipher = EVP_aes_192_cbc();
				278	break;
				279	case 32:
				280	cipher = EVP_aes_256_cbc();
				281	break;
				282	default:
				283	return KM_ERROR_UNSUPPORTED_KEY_SIZE;
				284	}
				285	break;
Shawn Willden	f0f68b9	2014-12-30 16:03:28 -0700	[diff] [blame]	286	default:
				287	return KM_ERROR_UNSUPPORTED_BLOCK_MODE;
				288	}
				289
				290	int init_result =
Shawn Willden	7a62f5e	2015-03-10 12:59:20 -0600	[diff] [blame]	291	EVP_CipherInit_ex(&ctx_, cipher, NULL /* engine */, key_, iv_.get(), evp_encrypt_mode());
Shawn Willden	f0f68b9	2014-12-30 16:03:28 -0700	[diff] [blame]	292
				293	if (!init_result)
				294	return KM_ERROR_UNKNOWN_ERROR;
				295
				296	switch (padding_) {
				297	case KM_PAD_NONE:
				298	EVP_CIPHER_CTX_set_padding(&ctx_, 0 /* disable padding */);
				299	break;
				300	case KM_PAD_PKCS7:
				301	// This is the default for OpenSSL EVP cipher operations.
				302	break;
				303	default:
				304	return KM_ERROR_UNSUPPORTED_PADDING_MODE;
				305	}
				306
Shawn Willden	f0f68b9	2014-12-30 16:03:28 -0700	[diff] [blame]	307	return KM_ERROR_OK;
				308	}
				309
				310	bool AesEvpOperation::need_iv() const {
				311	switch (block_mode_) {
				312	case KM_MODE_CBC:
Shawn Willden	f0f68b9	2014-12-30 16:03:28 -0700	[diff] [blame]	313	return true;
				314	case KM_MODE_ECB:
				315	return false;
				316	default:
				317	// Shouldn't get here.
				318	assert(false);
				319	return false;
				320	}
				321	}
				322
Shawn Willden	7a62f5e	2015-03-10 12:59:20 -0600	[diff] [blame]	323	keymaster_error_t AesEvpOperation::Begin(const AuthorizationSet& input_params,
				324	AuthorizationSet* output_params) {
				325	if (!output_params)
				326	return KM_ERROR_OUTPUT_PARAMETER_NULL;
				327
				328	keymaster_error_t error = KM_ERROR_OK;
				329	if (need_iv()) {
				330	switch (purpose()) {
				331	case KM_PURPOSE_ENCRYPT:
				332	if (caller_iv_)
				333	error = GetIv(input_params);
				334	else {
				335	iv_.reset(new uint8_t[AES_BLOCK_SIZE]);
				336	if (!iv_.get())
				337	return KM_ERROR_MEMORY_ALLOCATION_FAILED;
				338	if (!RAND_bytes(iv_.get(), AES_BLOCK_SIZE))
				339	error = TranslateLastOpenSslError();
				340	}
				341
				342	if (error == KM_ERROR_OK)
				343	output_params->push_back(TAG_NONCE, iv_.get(), AES_BLOCK_SIZE);
				344	break;
				345
				346	case KM_PURPOSE_DECRYPT:
				347	error = GetIv(input_params);
				348	break;
				349	default:
				350	return KM_ERROR_UNSUPPORTED_PURPOSE;
				351	}
				352	}
				353
				354	if (error == KM_ERROR_OK)
				355	error = InitializeCipher();
				356
				357	return error;
				358	}
				359
				360	keymaster_error_t AesEvpOperation::GetIv(const AuthorizationSet& input_params) {
				361	keymaster_blob_t iv_blob;
				362	if (!input_params.GetTagValue(TAG_NONCE, &iv_blob)) {
				363	LOG_E("No IV provided", 0);
				364	return KM_ERROR_INVALID_ARGUMENT;
				365	}
				366	if (iv_blob.data_length != AES_BLOCK_SIZE) {
				367	LOG_E("Expected %d-byte IV for AES operation, but got %d bytes", AES_BLOCK_SIZE,
				368	iv_blob.data_length);
				369	return KM_ERROR_INVALID_ARGUMENT;
				370	}
				371	iv_.reset(dup_array(iv_blob.data, iv_blob.data_length));
Shawn Willden	92b69a3	2015-03-14 11:07:36 -0600	[diff] [blame^]	372	if (!iv_.get())
				373	return KM_ERROR_MEMORY_ALLOCATION_FAILED;
Shawn Willden	f0f68b9	2014-12-30 16:03:28 -0700	[diff] [blame]	374	return KM_ERROR_OK;
				375	}
				376
				377	inline size_t min(size_t a, size_t b) {
				378	if (a < b)
				379	return a;
				380	return b;
				381	}
				382
				383	keymaster_error_t AesEvpOperation::Update(const AuthorizationSet& /* additional_params */,
				384	const Buffer& input, Buffer* output,
				385	size_t* input_consumed) {
				386	output->reserve(input.available_read() + AES_BLOCK_SIZE);
				387
				388	const uint8_t* input_pos = input.peek_read();
				389	const uint8_t* input_end = input_pos + input.available_read();
				390
Shawn Willden	f0f68b9	2014-12-30 16:03:28 -0700	[diff] [blame]	391	int output_written = -1;
				392	if (!EVP_CipherUpdate(&ctx_, output->peek_write(), &output_written, input_pos,
				393	input_end - input_pos))
				394	return TranslateLastOpenSslError();
				395
				396	assert(output_written >= 0);
				397	assert(output_written <= (int)output->available_write());
				398	output->advance_write(output_written);
				399	*input_consumed = input.available_read();
				400	return KM_ERROR_OK;
				401	}
				402
				403	keymaster_error_t AesEvpOperation::Finish(const AuthorizationSet& /* additional_params */,
				404	const Buffer& /* signature /, Buffer output) {
				405	output->reserve(AES_BLOCK_SIZE);
				406
				407	int output_written = -1;
				408	if (!EVP_CipherFinal_ex(&ctx_, output->peek_write(), &output_written)) {
				409	LOG_E("Error encrypting final block: %s", ERR_error_string(ERR_peek_last_error(), NULL));
				410	return TranslateLastOpenSslError();
				411	}
				412
				413	assert(output_written <= AES_BLOCK_SIZE);
				414	output->advance_write(output_written);
				415	return KM_ERROR_OK;
				416	}
				417
				418	keymaster_error_t AesEvpOperation::Abort() {
				419	return KM_ERROR_OK;
				420	}
				421
Shawn Willden	907c301	2014-12-08 15:51:55 -0700	[diff] [blame]	422	} // namespace keymaster