ladybird/Libraries/LibCrypto/Cipher/AES.cpp

/*
 * Copyright (c) 2020, Ali Mohammad Pur <mpfard@serenityos.org>
 * Copyright (c) 2025, Altomani Gianluca <altomanigianluca@gmail.com>
 *
 * SPDX-License-Identifier: BSD-2-Clause
 */

#include <LibCrypto/Cipher/AES.h>
#include <LibCrypto/OpenSSL.h>

#include <openssl/evp.h>

namespace Crypto::Cipher {

#define GET_CIPHER(key, mode)            \
    [&key] {                             \
        switch (key.size()) {            \
        case 16:                         \
            return EVP_aes_128_##mode(); \
        case 24:                         \
            return EVP_aes_192_##mode(); \
        case 32:                         \
            return EVP_aes_256_##mode(); \
        default:                         \
            VERIFY_NOT_REACHED();        \
        }                                \
    }()

size_t AESCipher::block_size() const
{
    auto size = EVP_CIPHER_get_block_size(m_cipher);
    VERIFY(size != 0);
    return size;
}

AESCBCCipher::AESCBCCipher(ReadonlyBytes key, bool no_padding)
    : AESCipher(GET_CIPHER(key, cbc), key)
    , m_no_padding(no_padding)
{
}

ErrorOr<ByteBuffer> AESCBCCipher::encrypt(ReadonlyBytes plaintext, ReadonlyBytes iv) const
{
    auto ctx = TRY(OpenSSL_CIPHER_CTX::create());

    OPENSSL_TRY(EVP_EncryptInit(ctx.ptr(), m_cipher, m_key.data(), iv.data()));
    OPENSSL_TRY(EVP_CIPHER_CTX_set_padding(ctx.ptr(), m_no_padding ? 0 : 1));

    auto out = TRY(ByteBuffer::create_uninitialized(plaintext.size() + block_size()));
    int out_size = 0;
    OPENSSL_TRY(EVP_EncryptUpdate(ctx.ptr(), out.data(), &out_size, plaintext.data(), plaintext.size()));

    int final_size = 0;
    OPENSSL_TRY(EVP_EncryptFinal(ctx.ptr(), out.data() + out_size, &final_size));

    return out.slice(0, out_size + final_size);
}

ErrorOr<ByteBuffer> AESCBCCipher::decrypt(ReadonlyBytes ciphertext, ReadonlyBytes iv) const
{
    auto ctx = TRY(OpenSSL_CIPHER_CTX::create());

    OPENSSL_TRY(EVP_DecryptInit(ctx.ptr(), m_cipher, m_key.data(), iv.data()));
    OPENSSL_TRY(EVP_CIPHER_CTX_set_padding(ctx.ptr(), m_no_padding ? 0 : 1));

    auto out = TRY(ByteBuffer::create_uninitialized(ciphertext.size() + block_size()));
    int out_size = 0;
    OPENSSL_TRY(EVP_DecryptUpdate(ctx.ptr(), out.data(), &out_size, ciphertext.data(), ciphertext.size()));

    int final_size = 0;
    OPENSSL_TRY(EVP_DecryptFinal(ctx.ptr(), out.data() + out_size, &final_size));

    return out.slice(0, out_size + final_size);
}

AESCTRCipher::AESCTRCipher(ReadonlyBytes key)
    : AESCipher(GET_CIPHER(key, ctr), key)
{
}

ErrorOr<ByteBuffer> AESCTRCipher::encrypt(ReadonlyBytes plaintext, ReadonlyBytes iv) const
{
    auto ctx = TRY(OpenSSL_CIPHER_CTX::create());

    OPENSSL_TRY(EVP_EncryptInit(ctx.ptr(), m_cipher, m_key.data(), iv.data()));

    auto out = TRY(ByteBuffer::create_uninitialized(plaintext.size() + block_size()));
    int out_size = 0;
    OPENSSL_TRY(EVP_EncryptUpdate(ctx.ptr(), out.data(), &out_size, plaintext.data(), plaintext.size()));

    int final_size = 0;
    OPENSSL_TRY(EVP_EncryptFinal(ctx.ptr(), out.data() + out_size, &final_size));

    return out.slice(0, out_size + final_size);
}

ErrorOr<ByteBuffer> AESCTRCipher::decrypt(ReadonlyBytes ciphertext, ReadonlyBytes iv) const
{
    auto ctx = TRY(OpenSSL_CIPHER_CTX::create());

    OPENSSL_TRY(EVP_DecryptInit(ctx.ptr(), m_cipher, m_key.data(), iv.data()));

    auto out = TRY(ByteBuffer::create_uninitialized(ciphertext.size() + block_size()));
    int out_size = 0;
    OPENSSL_TRY(EVP_DecryptUpdate(ctx.ptr(), out.data(), &out_size, ciphertext.data(), ciphertext.size()));

    int final_size = 0;
    OPENSSL_TRY(EVP_DecryptFinal(ctx.ptr(), out.data() + out_size, &final_size));

    return out.slice(0, out_size + final_size);
}

AESGCMCipher::AESGCMCipher(ReadonlyBytes key)
    : AESCipher(GET_CIPHER(key, gcm), key)
{
}

ErrorOr<AESGCMCipher::EncryptedData> AESGCMCipher::encrypt(ReadonlyBytes plaintext, ReadonlyBytes iv, ReadonlyBytes aad, size_t taglen) const
{
    auto ctx = TRY(OpenSSL_CIPHER_CTX::create());

    OPENSSL_TRY(EVP_DecryptInit(ctx.ptr(), m_cipher, nullptr, nullptr));
    OPENSSL_TRY(EVP_CIPHER_CTX_ctrl(ctx.ptr(), EVP_CTRL_GCM_SET_IVLEN, iv.size(), nullptr));

    OPENSSL_TRY(EVP_EncryptInit(ctx.ptr(), nullptr, m_key.data(), iv.data()));

    // To specify additional authenticated data (AAD), a call to EVP_CipherUpdate(), EVP_EncryptUpdate() or EVP_DecryptUpdate() should be made
    // with the output parameter out set to NULL.
    if (!aad.is_empty()) {
        int aad_size = 0;
        OPENSSL_TRY(EVP_EncryptUpdate(ctx.ptr(), nullptr, &aad_size, aad.data(), aad.size()));
    }

    auto out = TRY(ByteBuffer::create_uninitialized(plaintext.size() + block_size()));
    int out_size = 0;
    OPENSSL_TRY(EVP_EncryptUpdate(ctx.ptr(), out.data(), &out_size, plaintext.data(), plaintext.size()));

    int final_size = 0;
    OPENSSL_TRY(EVP_EncryptFinal(ctx.ptr(), out.data() + out_size, &final_size));

    auto tag = TRY(ByteBuffer::create_uninitialized(taglen));
    OPENSSL_TRY(EVP_CIPHER_CTX_ctrl(ctx.ptr(), EVP_CTRL_GCM_GET_TAG, taglen, tag.data()));

    return EncryptedData {
        .ciphertext = TRY(out.slice(0, out_size + final_size)),
        .tag = tag
    };
}

ErrorOr<ByteBuffer> AESGCMCipher::decrypt(ReadonlyBytes ciphertext, ReadonlyBytes iv, ReadonlyBytes aad, ReadonlyBytes tag) const
{
    auto ctx = TRY(OpenSSL_CIPHER_CTX::create());

    OPENSSL_TRY(EVP_DecryptInit(ctx.ptr(), m_cipher, nullptr, nullptr));
    OPENSSL_TRY(EVP_CIPHER_CTX_ctrl(ctx.ptr(), EVP_CTRL_GCM_SET_IVLEN, iv.size(), nullptr));

    OPENSSL_TRY(EVP_DecryptInit(ctx.ptr(), nullptr, m_key.data(), iv.data()));
    OPENSSL_TRY(EVP_CIPHER_CTX_ctrl(ctx.ptr(), EVP_CTRL_GCM_SET_TAG, tag.size(), const_cast<u8*>(tag.data())));

    // To specify additional authenticated data (AAD), a call to EVP_CipherUpdate(), EVP_EncryptUpdate() or EVP_DecryptUpdate() should be made
    // with the output parameter out set to NULL.
    if (!aad.is_empty()) {
        int aad_size = 0;
        OPENSSL_TRY(EVP_DecryptUpdate(ctx.ptr(), nullptr, &aad_size, aad.data(), aad.size()));
    }

    auto out = TRY(ByteBuffer::create_uninitialized(ciphertext.size() + block_size()));
    int out_size = 0;
    OPENSSL_TRY(EVP_DecryptUpdate(ctx.ptr(), out.data(), &out_size, ciphertext.data(), ciphertext.size()));

    int final_size = 0;
    OPENSSL_TRY(EVP_DecryptFinal(ctx.ptr(), out.data() + out_size, &final_size));

    return out.slice(0, out_size + final_size);
}

AESKWCipher::AESKWCipher(ReadonlyBytes key)
    : AESCipher(GET_CIPHER(key, wrap), key)
{
}

ErrorOr<ByteBuffer> AESKWCipher::wrap(ReadonlyBytes plaintext) const
{
    auto ctx = TRY(OpenSSL_CIPHER_CTX::create());

    OPENSSL_TRY(EVP_EncryptInit(ctx.ptr(), m_cipher, m_key.data(), nullptr));

    auto out = TRY(ByteBuffer::create_uninitialized(plaintext.size() + block_size()));
    int out_size = 0;
    OPENSSL_TRY(EVP_EncryptUpdate(ctx.ptr(), out.data(), &out_size, plaintext.data(), plaintext.size()));

    int final_size = 0;
    OPENSSL_TRY(EVP_EncryptFinal(ctx.ptr(), out.data() + out_size, &final_size));

    return out.slice(0, out_size + final_size);
}

ErrorOr<ByteBuffer> AESKWCipher::unwrap(ReadonlyBytes ciphertext) const
{
    auto ctx = TRY(OpenSSL_CIPHER_CTX::create());

    OPENSSL_TRY(EVP_DecryptInit(ctx.ptr(), m_cipher, m_key.data(), nullptr));

    auto out = TRY(ByteBuffer::create_uninitialized(ciphertext.size() + block_size()));
    int out_size = 0;
    OPENSSL_TRY(EVP_DecryptUpdate(ctx.ptr(), out.data(), &out_size, ciphertext.data(), ciphertext.size()));

    int final_size = 0;
    OPENSSL_TRY(EVP_DecryptFinal(ctx.ptr(), out.data() + out_size, &final_size));

    return out.slice(0, out_size + final_size);
}

}
LibCrypto: Implement Cipher and AES_CBC Also adds a test program to userland 2020-04-27 21:58:04 +04:30			`/*`
AK+Userland: Use mpfard@serenityos.org for my copyright headers 2021-04-23 00:43:01 +04:30			`* Copyright (c) 2020, Ali Mohammad Pur <mpfard@serenityos.org>`
LibCrypto+LibWeb: Refactor AES implementation with OpenSSL 2025-02-23 19:26:35 +01:00			`* Copyright (c) 2025, Altomani Gianluca <altomanigianluca@gmail.com>`
LibCrypto: Implement Cipher and AES_CBC Also adds a test program to userland 2020-04-27 21:58:04 +04:30			`*`
Everything: Move to SPDX license identifiers in all files. SPDX License Identifiers are a more compact / standardized way of representing file license information. See: https://spdx.dev/resources/use/#identifiers This was done with the `ambr` search and replace tool. ambr --no-parent-ignore --key-from-file --rep-from-file key.txt rep.txt * 2021-04-22 01:24:48 -07:00			`* SPDX-License-Identifier: BSD-2-Clause`
LibCrypto: Implement Cipher and AES_CBC Also adds a test program to userland 2020-04-27 21:58:04 +04:30			`*/`

			`#include <LibCrypto/Cipher/AES.h>`
LibCrypto+LibWeb: Refactor AES implementation with OpenSSL 2025-02-23 19:26:35 +01:00			`#include <LibCrypto/OpenSSL.h>`

			`#include <openssl/evp.h>`
LibCrypto: Implement Cipher and AES_CBC Also adds a test program to userland 2020-04-27 21:58:04 +04:30
Everywhere: Use nested namespace qualifiers 2023-07-11 13:49:08 -04:00			`namespace Crypto::Cipher {`
LibCrypto: Implement Cipher and AES_CBC Also adds a test program to userland 2020-04-27 21:58:04 +04:30
LibCrypto+LibWeb: Refactor AES implementation with OpenSSL 2025-02-23 19:26:35 +01:00			`#define GET_CIPHER(key, mode) \`
			`[&key] { \`
			`switch (key.size()) { \`
			`case 16: \`
			`return EVP_aes_128_##mode(); \`
			`case 24: \`
			`return EVP_aes_192_##mode(); \`
			`case 32: \`
			`return EVP_aes_256_##mode(); \`
			`default: \`
			`VERIFY_NOT_REACHED(); \`
			`} \`
			`}()`

			`size_t AESCipher::block_size() const`
LibCrypto+LibTLS: Generalise the use of IV length This is in preparation for the upcoming Galois/Counter mode, which conventionally has 12 bytes of IV as opposed to CBC's 16 bytes. ...Also fixes a lot of style issues, since the author finally found the project's clang config file in the repository root :^) 2020-04-23 02:53:11 +04:30			`{`
LibCrypto+LibWeb: Refactor AES implementation with OpenSSL 2025-02-23 19:26:35 +01:00			`auto size = EVP_CIPHER_get_block_size(m_cipher);`
			`VERIFY(size != 0);`
			`return size;`
LibCrypto+LibTLS: Generalise the use of IV length This is in preparation for the upcoming Galois/Counter mode, which conventionally has 12 bytes of IV as opposed to CBC's 16 bytes. ...Also fixes a lot of style issues, since the author finally found the project's clang config file in the repository root :^) 2020-04-23 02:53:11 +04:30			`}`
LibCrypto: Implement Cipher and AES_CBC Also adds a test program to userland 2020-04-27 21:58:04 +04:30
LibCrypto+LibWeb: Refactor AES implementation with OpenSSL 2025-02-23 19:26:35 +01:00			`AESCBCCipher::AESCBCCipher(ReadonlyBytes key, bool no_padding)`
			`: AESCipher(GET_CIPHER(key, cbc), key)`
			`, m_no_padding(no_padding)`
LibCrypto+LibTLS: Generalise the use of IV length This is in preparation for the upcoming Galois/Counter mode, which conventionally has 12 bytes of IV as opposed to CBC's 16 bytes. ...Also fixes a lot of style issues, since the author finally found the project's clang config file in the repository root :^) 2020-04-23 02:53:11 +04:30			`{`
			`}`
LibCrypto: Implement Cipher and AES_CBC Also adds a test program to userland 2020-04-27 21:58:04 +04:30
LibCrypto+LibWeb: Refactor AES implementation with OpenSSL 2025-02-23 19:26:35 +01:00			`ErrorOr<ByteBuffer> AESCBCCipher::encrypt(ReadonlyBytes plaintext, ReadonlyBytes iv) const`
LibCrypto+LibTLS: Generalise the use of IV length This is in preparation for the upcoming Galois/Counter mode, which conventionally has 12 bytes of IV as opposed to CBC's 16 bytes. ...Also fixes a lot of style issues, since the author finally found the project's clang config file in the repository root :^) 2020-04-23 02:53:11 +04:30			`{`
LibCrypto+LibWeb: Refactor AES implementation with OpenSSL 2025-02-23 19:26:35 +01:00			`auto ctx = TRY(OpenSSL_CIPHER_CTX::create());`

			`OPENSSL_TRY(EVP_EncryptInit(ctx.ptr(), m_cipher, m_key.data(), iv.data()));`
			`OPENSSL_TRY(EVP_CIPHER_CTX_set_padding(ctx.ptr(), m_no_padding ? 0 : 1));`

			`auto out = TRY(ByteBuffer::create_uninitialized(plaintext.size() + block_size()));`
			`int out_size = 0;`
			`OPENSSL_TRY(EVP_EncryptUpdate(ctx.ptr(), out.data(), &out_size, plaintext.data(), plaintext.size()));`

			`int final_size = 0;`
			`OPENSSL_TRY(EVP_EncryptFinal(ctx.ptr(), out.data() + out_size, &final_size));`

			`return out.slice(0, out_size + final_size);`
LibCrypto+LibTLS: Generalise the use of IV length This is in preparation for the upcoming Galois/Counter mode, which conventionally has 12 bytes of IV as opposed to CBC's 16 bytes. ...Also fixes a lot of style issues, since the author finally found the project's clang config file in the repository root :^) 2020-04-23 02:53:11 +04:30			`}`
LibCrypto: Implement Cipher and AES_CBC Also adds a test program to userland 2020-04-27 21:58:04 +04:30
LibCrypto+LibWeb: Refactor AES implementation with OpenSSL 2025-02-23 19:26:35 +01:00			`ErrorOr<ByteBuffer> AESCBCCipher::decrypt(ReadonlyBytes ciphertext, ReadonlyBytes iv) const`
LibCrypto+LibTLS: Generalise the use of IV length This is in preparation for the upcoming Galois/Counter mode, which conventionally has 12 bytes of IV as opposed to CBC's 16 bytes. ...Also fixes a lot of style issues, since the author finally found the project's clang config file in the repository root :^) 2020-04-23 02:53:11 +04:30			`{`
LibCrypto+LibWeb: Refactor AES implementation with OpenSSL 2025-02-23 19:26:35 +01:00			`auto ctx = TRY(OpenSSL_CIPHER_CTX::create());`

			`OPENSSL_TRY(EVP_DecryptInit(ctx.ptr(), m_cipher, m_key.data(), iv.data()));`
			`OPENSSL_TRY(EVP_CIPHER_CTX_set_padding(ctx.ptr(), m_no_padding ? 0 : 1));`

			`auto out = TRY(ByteBuffer::create_uninitialized(ciphertext.size() + block_size()));`
			`int out_size = 0;`
			`OPENSSL_TRY(EVP_DecryptUpdate(ctx.ptr(), out.data(), &out_size, ciphertext.data(), ciphertext.size()));`

			`int final_size = 0;`
			`OPENSSL_TRY(EVP_DecryptFinal(ctx.ptr(), out.data() + out_size, &final_size));`

			`return out.slice(0, out_size + final_size);`
LibCrypto+LibTLS: Generalise the use of IV length This is in preparation for the upcoming Galois/Counter mode, which conventionally has 12 bytes of IV as opposed to CBC's 16 bytes. ...Also fixes a lot of style issues, since the author finally found the project's clang config file in the repository root :^) 2020-04-23 02:53:11 +04:30			`}`
LibCrypto: Implement Cipher and AES_CBC Also adds a test program to userland 2020-04-27 21:58:04 +04:30
LibCrypto+LibWeb: Refactor AES implementation with OpenSSL 2025-02-23 19:26:35 +01:00			`AESCTRCipher::AESCTRCipher(ReadonlyBytes key)`
			`: AESCipher(GET_CIPHER(key, ctr), key)`
LibCrypto+LibTLS: Generalise the use of IV length This is in preparation for the upcoming Galois/Counter mode, which conventionally has 12 bytes of IV as opposed to CBC's 16 bytes. ...Also fixes a lot of style issues, since the author finally found the project's clang config file in the repository root :^) 2020-04-23 02:53:11 +04:30			`{`
LibCrypto+LibWeb: Refactor AES implementation with OpenSSL 2025-02-23 19:26:35 +01:00			`}`
LibCrypto: Implement Cipher and AES_CBC Also adds a test program to userland 2020-04-27 21:58:04 +04:30
LibCrypto+LibWeb: Refactor AES implementation with OpenSSL 2025-02-23 19:26:35 +01:00			`ErrorOr<ByteBuffer> AESCTRCipher::encrypt(ReadonlyBytes plaintext, ReadonlyBytes iv) const`
			`{`
			`auto ctx = TRY(OpenSSL_CIPHER_CTX::create());`
LibCrypto: Implement Cipher and AES_CBC Also adds a test program to userland 2020-04-27 21:58:04 +04:30
LibCrypto+LibWeb: Refactor AES implementation with OpenSSL 2025-02-23 19:26:35 +01:00			`OPENSSL_TRY(EVP_EncryptInit(ctx.ptr(), m_cipher, m_key.data(), iv.data()));`
LibCrypto: Implement Cipher and AES_CBC Also adds a test program to userland 2020-04-27 21:58:04 +04:30
LibCrypto+LibWeb: Refactor AES implementation with OpenSSL 2025-02-23 19:26:35 +01:00			`auto out = TRY(ByteBuffer::create_uninitialized(plaintext.size() + block_size()));`
			`int out_size = 0;`
			`OPENSSL_TRY(EVP_EncryptUpdate(ctx.ptr(), out.data(), &out_size, plaintext.data(), plaintext.size()));`

			`int final_size = 0;`
			`OPENSSL_TRY(EVP_EncryptFinal(ctx.ptr(), out.data() + out_size, &final_size));`

			`return out.slice(0, out_size + final_size);`
LibCrypto+LibTLS: Generalise the use of IV length This is in preparation for the upcoming Galois/Counter mode, which conventionally has 12 bytes of IV as opposed to CBC's 16 bytes. ...Also fixes a lot of style issues, since the author finally found the project's clang config file in the repository root :^) 2020-04-23 02:53:11 +04:30			`}`
LibCrypto: Implement Cipher and AES_CBC Also adds a test program to userland 2020-04-27 21:58:04 +04:30
LibCrypto+LibWeb: Refactor AES implementation with OpenSSL 2025-02-23 19:26:35 +01:00			`ErrorOr<ByteBuffer> AESCTRCipher::decrypt(ReadonlyBytes ciphertext, ReadonlyBytes iv) const`
LibCrypto+LibTLS: Generalise the use of IV length This is in preparation for the upcoming Galois/Counter mode, which conventionally has 12 bytes of IV as opposed to CBC's 16 bytes. ...Also fixes a lot of style issues, since the author finally found the project's clang config file in the repository root :^) 2020-04-23 02:53:11 +04:30			`{`
LibCrypto+LibWeb: Refactor AES implementation with OpenSSL 2025-02-23 19:26:35 +01:00			`auto ctx = TRY(OpenSSL_CIPHER_CTX::create());`
LibCrypto: Implement Cipher and AES_CBC Also adds a test program to userland 2020-04-27 21:58:04 +04:30
LibCrypto+LibWeb: Refactor AES implementation with OpenSSL 2025-02-23 19:26:35 +01:00			`OPENSSL_TRY(EVP_DecryptInit(ctx.ptr(), m_cipher, m_key.data(), iv.data()));`
LibCrypto: Implement Cipher and AES_CBC Also adds a test program to userland 2020-04-27 21:58:04 +04:30
LibCrypto+LibWeb: Refactor AES implementation with OpenSSL 2025-02-23 19:26:35 +01:00			`auto out = TRY(ByteBuffer::create_uninitialized(ciphertext.size() + block_size()));`
			`int out_size = 0;`
			`OPENSSL_TRY(EVP_DecryptUpdate(ctx.ptr(), out.data(), &out_size, ciphertext.data(), ciphertext.size()));`
LibCrypto: Implement Cipher and AES_CBC Also adds a test program to userland 2020-04-27 21:58:04 +04:30
LibCrypto+LibWeb: Refactor AES implementation with OpenSSL 2025-02-23 19:26:35 +01:00			`int final_size = 0;`
			`OPENSSL_TRY(EVP_DecryptFinal(ctx.ptr(), out.data() + out_size, &final_size));`
LibCrypto: Implement Cipher and AES_CBC Also adds a test program to userland 2020-04-27 21:58:04 +04:30
LibCrypto+LibWeb: Refactor AES implementation with OpenSSL 2025-02-23 19:26:35 +01:00			`return out.slice(0, out_size + final_size);`
			`}`

			`AESGCMCipher::AESGCMCipher(ReadonlyBytes key)`
			`: AESCipher(GET_CIPHER(key, gcm), key)`
			`{`
LibCrypto+LibTLS: Generalise the use of IV length This is in preparation for the upcoming Galois/Counter mode, which conventionally has 12 bytes of IV as opposed to CBC's 16 bytes. ...Also fixes a lot of style issues, since the author finally found the project's clang config file in the repository root :^) 2020-04-23 02:53:11 +04:30			`}`
LibCrypto: Implement Cipher and AES_CBC Also adds a test program to userland 2020-04-27 21:58:04 +04:30
LibCrypto+LibWeb: Refactor AES implementation with OpenSSL 2025-02-23 19:26:35 +01:00			`ErrorOr<AESGCMCipher::EncryptedData> AESGCMCipher::encrypt(ReadonlyBytes plaintext, ReadonlyBytes iv, ReadonlyBytes aad, size_t taglen) const`
LibCrypto+LibTLS: Generalise the use of IV length This is in preparation for the upcoming Galois/Counter mode, which conventionally has 12 bytes of IV as opposed to CBC's 16 bytes. ...Also fixes a lot of style issues, since the author finally found the project's clang config file in the repository root :^) 2020-04-23 02:53:11 +04:30			`{`
LibCrypto+LibWeb: Refactor AES implementation with OpenSSL 2025-02-23 19:26:35 +01:00			`auto ctx = TRY(OpenSSL_CIPHER_CTX::create());`

			`OPENSSL_TRY(EVP_DecryptInit(ctx.ptr(), m_cipher, nullptr, nullptr));`
			`OPENSSL_TRY(EVP_CIPHER_CTX_ctrl(ctx.ptr(), EVP_CTRL_GCM_SET_IVLEN, iv.size(), nullptr));`

			`OPENSSL_TRY(EVP_EncryptInit(ctx.ptr(), nullptr, m_key.data(), iv.data()));`

			`// To specify additional authenticated data (AAD), a call to EVP_CipherUpdate(), EVP_EncryptUpdate() or EVP_DecryptUpdate() should be made`
			`// with the output parameter out set to NULL.`
			`if (!aad.is_empty()) {`
			`int aad_size = 0;`
			`OPENSSL_TRY(EVP_EncryptUpdate(ctx.ptr(), nullptr, &aad_size, aad.data(), aad.size()));`
LibCrypto+LibTLS: Generalise the use of IV length This is in preparation for the upcoming Galois/Counter mode, which conventionally has 12 bytes of IV as opposed to CBC's 16 bytes. ...Also fixes a lot of style issues, since the author finally found the project's clang config file in the repository root :^) 2020-04-23 02:53:11 +04:30			`}`
LibCrypto: Implement Cipher and AES_CBC Also adds a test program to userland 2020-04-27 21:58:04 +04:30
LibCrypto+LibWeb: Refactor AES implementation with OpenSSL 2025-02-23 19:26:35 +01:00			`auto out = TRY(ByteBuffer::create_uninitialized(plaintext.size() + block_size()));`
			`int out_size = 0;`
			`OPENSSL_TRY(EVP_EncryptUpdate(ctx.ptr(), out.data(), &out_size, plaintext.data(), plaintext.size()));`

			`int final_size = 0;`
			`OPENSSL_TRY(EVP_EncryptFinal(ctx.ptr(), out.data() + out_size, &final_size));`

			`auto tag = TRY(ByteBuffer::create_uninitialized(taglen));`
			`OPENSSL_TRY(EVP_CIPHER_CTX_ctrl(ctx.ptr(), EVP_CTRL_GCM_GET_TAG, taglen, tag.data()));`

			`return EncryptedData {`
			`.ciphertext = TRY(out.slice(0, out_size + final_size)),`
			`.tag = tag`
			`};`
LibCrypto+LibTLS: Generalise the use of IV length This is in preparation for the upcoming Galois/Counter mode, which conventionally has 12 bytes of IV as opposed to CBC's 16 bytes. ...Also fixes a lot of style issues, since the author finally found the project's clang config file in the repository root :^) 2020-04-23 02:53:11 +04:30			`}`
LibCrypto: Implement Cipher and AES_CBC Also adds a test program to userland 2020-04-27 21:58:04 +04:30
LibCrypto+LibWeb: Refactor AES implementation with OpenSSL 2025-02-23 19:26:35 +01:00			`ErrorOr<ByteBuffer> AESGCMCipher::decrypt(ReadonlyBytes ciphertext, ReadonlyBytes iv, ReadonlyBytes aad, ReadonlyBytes tag) const`
LibCrypto+LibTLS: Generalise the use of IV length This is in preparation for the upcoming Galois/Counter mode, which conventionally has 12 bytes of IV as opposed to CBC's 16 bytes. ...Also fixes a lot of style issues, since the author finally found the project's clang config file in the repository root :^) 2020-04-23 02:53:11 +04:30			`{`
LibCrypto+LibWeb: Refactor AES implementation with OpenSSL 2025-02-23 19:26:35 +01:00			`auto ctx = TRY(OpenSSL_CIPHER_CTX::create());`

			`OPENSSL_TRY(EVP_DecryptInit(ctx.ptr(), m_cipher, nullptr, nullptr));`
			`OPENSSL_TRY(EVP_CIPHER_CTX_ctrl(ctx.ptr(), EVP_CTRL_GCM_SET_IVLEN, iv.size(), nullptr));`

			`OPENSSL_TRY(EVP_DecryptInit(ctx.ptr(), nullptr, m_key.data(), iv.data()));`
			`OPENSSL_TRY(EVP_CIPHER_CTX_ctrl(ctx.ptr(), EVP_CTRL_GCM_SET_TAG, tag.size(), const_cast<u8*>(tag.data())));`

			`// To specify additional authenticated data (AAD), a call to EVP_CipherUpdate(), EVP_EncryptUpdate() or EVP_DecryptUpdate() should be made`
			`// with the output parameter out set to NULL.`
			`if (!aad.is_empty()) {`
			`int aad_size = 0;`
			`OPENSSL_TRY(EVP_DecryptUpdate(ctx.ptr(), nullptr, &aad_size, aad.data(), aad.size()));`
LibCrypto+LibTLS: Generalise the use of IV length This is in preparation for the upcoming Galois/Counter mode, which conventionally has 12 bytes of IV as opposed to CBC's 16 bytes. ...Also fixes a lot of style issues, since the author finally found the project's clang config file in the repository root :^) 2020-04-23 02:53:11 +04:30			`}`
LibCrypto: Implement Cipher and AES_CBC Also adds a test program to userland 2020-04-27 21:58:04 +04:30
LibCrypto+LibWeb: Refactor AES implementation with OpenSSL 2025-02-23 19:26:35 +01:00			`auto out = TRY(ByteBuffer::create_uninitialized(ciphertext.size() + block_size()));`
			`int out_size = 0;`
			`OPENSSL_TRY(EVP_DecryptUpdate(ctx.ptr(), out.data(), &out_size, ciphertext.data(), ciphertext.size()));`

			`int final_size = 0;`
			`OPENSSL_TRY(EVP_DecryptFinal(ctx.ptr(), out.data() + out_size, &final_size));`

			`return out.slice(0, out_size + final_size);`
LibCrypto+LibTLS: Generalise the use of IV length This is in preparation for the upcoming Galois/Counter mode, which conventionally has 12 bytes of IV as opposed to CBC's 16 bytes. ...Also fixes a lot of style issues, since the author finally found the project's clang config file in the repository root :^) 2020-04-23 02:53:11 +04:30			`}`
LibCrypto: Implement Cipher and AES_CBC Also adds a test program to userland 2020-04-27 21:58:04 +04:30
LibCrypto+LibWeb: Refactor AES implementation with OpenSSL 2025-02-23 19:26:35 +01:00			`AESKWCipher::AESKWCipher(ReadonlyBytes key)`
			`: AESCipher(GET_CIPHER(key, wrap), key)`
LibCrypto+LibTLS: Generalise the use of IV length This is in preparation for the upcoming Galois/Counter mode, which conventionally has 12 bytes of IV as opposed to CBC's 16 bytes. ...Also fixes a lot of style issues, since the author finally found the project's clang config file in the repository root :^) 2020-04-23 02:53:11 +04:30			`{`
LibCrypto+LibWeb: Refactor AES implementation with OpenSSL 2025-02-23 19:26:35 +01:00			`}`

			`ErrorOr<ByteBuffer> AESKWCipher::wrap(ReadonlyBytes plaintext) const`
			`{`
			`auto ctx = TRY(OpenSSL_CIPHER_CTX::create());`

			`OPENSSL_TRY(EVP_EncryptInit(ctx.ptr(), m_cipher, m_key.data(), nullptr));`

			`auto out = TRY(ByteBuffer::create_uninitialized(plaintext.size() + block_size()));`
			`int out_size = 0;`
			`OPENSSL_TRY(EVP_EncryptUpdate(ctx.ptr(), out.data(), &out_size, plaintext.data(), plaintext.size()));`

			`int final_size = 0;`
			`OPENSSL_TRY(EVP_EncryptFinal(ctx.ptr(), out.data() + out_size, &final_size));`

			`return out.slice(0, out_size + final_size);`
			`}`

			`ErrorOr<ByteBuffer> AESKWCipher::unwrap(ReadonlyBytes ciphertext) const`
			`{`
			`auto ctx = TRY(OpenSSL_CIPHER_CTX::create());`

			`OPENSSL_TRY(EVP_DecryptInit(ctx.ptr(), m_cipher, m_key.data(), nullptr));`

			`auto out = TRY(ByteBuffer::create_uninitialized(ciphertext.size() + block_size()));`
			`int out_size = 0;`
			`OPENSSL_TRY(EVP_DecryptUpdate(ctx.ptr(), out.data(), &out_size, ciphertext.data(), ciphertext.size()));`

			`int final_size = 0;`
			`OPENSSL_TRY(EVP_DecryptFinal(ctx.ptr(), out.data() + out_size, &final_size));`

			`return out.slice(0, out_size + final_size);`
LibCrypto: Implement Cipher and AES_CBC Also adds a test program to userland 2020-04-27 21:58:04 +04:30			`}`
LibCrypto: Move each subsection into its own namespace 2020-04-07 14:42:27 +04:30
LibCrypto: Implement Cipher and AES_CBC Also adds a test program to userland 2020-04-27 21:58:04 +04:30			`}`