| Index: net/quic/crypto/aes_128_gcm_decrypter_openssl.cc
|
| ===================================================================
|
| --- net/quic/crypto/aes_128_gcm_decrypter_openssl.cc (revision 0)
|
| +++ net/quic/crypto/aes_128_gcm_decrypter_openssl.cc (revision 0)
|
| @@ -0,0 +1,129 @@
|
| +// Copyright (c) 2013 The Chromium Authors. All rights reserved.
|
| +// Use of this source code is governed by a BSD-style license that can be
|
| +// found in the LICENSE file.
|
| +
|
| +#include "net/quic/crypto/aes_128_gcm_decrypter.h"
|
| +
|
| +#include <openssl/evp.h>
|
| +
|
| +#include "base/memory/scoped_ptr.h"
|
| +#include "net/quic/crypto/scoped_evp_cipher_ctx.h"
|
| +
|
| +using base::StringPiece;
|
| +
|
| +namespace net {
|
| +
|
| +namespace {
|
| +
|
| +const size_t kKeySize = 16;
|
| +const size_t kNoncePrefixSize = 4;
|
| +const size_t kAuthTagSize = 16;
|
| +
|
| +} // namespace
|
| +
|
| +bool Aes128GcmDecrypter::SetKey(StringPiece key) {
|
| + DCHECK_EQ(key.size(), sizeof(key_));
|
| + if (key.size() != sizeof(key_)) {
|
| + return false;
|
| + }
|
| + memcpy(key_, key.data(), key.size());
|
| + return true;
|
| +}
|
| +
|
| +bool Aes128GcmDecrypter::SetNoncePrefix(StringPiece nonce_prefix) {
|
| + DCHECK_EQ(nonce_prefix.size(), kNoncePrefixSize);
|
| + if (nonce_prefix.size() != kNoncePrefixSize) {
|
| + return false;
|
| + }
|
| + memcpy(nonce_, nonce_prefix.data(), nonce_prefix.size());
|
| + return true;
|
| +}
|
| +
|
| +QuicData* Aes128GcmDecrypter::Decrypt(QuicPacketSequenceNumber sequence_number,
|
| + StringPiece associated_data,
|
| + StringPiece ciphertext) {
|
| + COMPILE_ASSERT(sizeof(nonce_) == kNoncePrefixSize + sizeof(sequence_number),
|
| + incorrect_nonce_size);
|
| + memcpy(nonce_ + kNoncePrefixSize, &sequence_number, sizeof(sequence_number));
|
| + return DecryptWithNonce(StringPiece(reinterpret_cast<char*>(nonce_),
|
| + sizeof(nonce_)),
|
| + associated_data, ciphertext);
|
| +}
|
| +
|
| +StringPiece Aes128GcmDecrypter::GetKey() const {
|
| + return StringPiece(reinterpret_cast<const char*>(key_), sizeof(key_));
|
| +}
|
| +
|
| +StringPiece Aes128GcmDecrypter::GetNoncePrefix() const {
|
| + return StringPiece(reinterpret_cast<const char*>(nonce_), kNoncePrefixSize);
|
| +}
|
| +
|
| +QuicData* Aes128GcmDecrypter::DecryptWithNonce(StringPiece nonce,
|
| + StringPiece associated_data,
|
| + StringPiece ciphertext) {
|
| + if (ciphertext.length() < kAuthTagSize) {
|
| + return NULL;
|
| + }
|
| + size_t plaintext_size = ciphertext.length() - kAuthTagSize;
|
| + scoped_ptr<char[]> plaintext(new char[plaintext_size]);
|
| +
|
| + // |output| points to the position in the |plaintext| buffer to receive
|
| + // the next output.
|
| + unsigned char* output = reinterpret_cast<unsigned char*>(plaintext.get());
|
| + // |output_len| is passed to an OpenSSL function to receive the output
|
| + // length.
|
| + int output_len;
|
| +
|
| + ScopedEVPCipherCtx ctx;
|
| +
|
| + // Set the cipher type and the key. The IV (nonce) is set below.
|
| + if (EVP_DecryptInit_ex(ctx.get(), EVP_aes_128_gcm(), NULL, key_,
|
| + NULL) == 0) {
|
| + return NULL;
|
| + }
|
| +
|
| + // Set the IV (nonce) length.
|
| + if (EVP_CIPHER_CTX_ctrl(ctx.get(), EVP_CTRL_GCM_SET_IVLEN, nonce.size(),
|
| + NULL) == 0) {
|
| + return NULL;
|
| + }
|
| + // Set the IV (nonce).
|
| + if (EVP_DecryptInit_ex(ctx.get(), NULL, NULL, NULL,
|
| + reinterpret_cast<const unsigned char*>(
|
| + nonce.data())) == 0) {
|
| + return NULL;
|
| + }
|
| +
|
| + // Set the authentication tag.
|
| + if (EVP_CIPHER_CTX_ctrl(ctx.get(), EVP_CTRL_GCM_SET_TAG, kAuthTagSize,
|
| + const_cast<char*>(ciphertext.data()) +
|
| + plaintext_size) == 0) {
|
| + return NULL;
|
| + }
|
| +
|
| + // Set the associated data. The second argument (output buffer) must be
|
| + // NULL.
|
| + if (EVP_DecryptUpdate(ctx.get(), NULL, &output_len,
|
| + reinterpret_cast<const unsigned char*>(
|
| + associated_data.data()),
|
| + associated_data.size()) == 0) {
|
| + return NULL;
|
| + }
|
| +
|
| + if (EVP_DecryptUpdate(ctx.get(), output, &output_len,
|
| + reinterpret_cast<const unsigned char*>(
|
| + ciphertext.data()),
|
| + plaintext_size) == 0) {
|
| + return NULL;
|
| + }
|
| + output += output_len;
|
| +
|
| + if (EVP_DecryptFinal_ex(ctx.get(), output, &output_len) == 0) {
|
| + return NULL;
|
| + }
|
| + output += output_len;
|
| +
|
| + return new QuicData(plaintext.release(), plaintext_size, true);
|
| +}
|
| +
|
| +} // namespace net
|
|
|
| Property changes on: net/quic/crypto/aes_128_gcm_decrypter_openssl.cc
|
| ___________________________________________________________________
|
| Added: svn:eol-style
|
| + LF
|
|
|
|
|
Chromium Code Reviews
Issue 12623017:
Add Aes128GcmEncrypter and Aes128GcmDecrypter (Closed)
Base URL: svn://svn.chromium.org/chrome/trunk/src/