/* $NetBSD: h_gcm.c,v 1.2 2014/01/17 14:16:08 pgoyette Exp $ */
/*-
* Copyright (c) 2014 The NetBSD Foundation, Inc.
* All rights reserved.
*
* Redistribution and use in source and binary forms, with or without
* modification, are permitted provided that the following conditions
* are met:
* 1. Redistributions of source code must retain the above copyright
* notice, this list of conditions and the following disclaimer.
* 2. Redistributions in binary form must reproduce the above copyright
* notice, this list of conditions and the following disclaimer in the
* documentation and/or other materials provided with the distribution.
*
* THIS SOFTWARE IS PROVIDED BY THE NETBSD FOUNDATION, INC. AND CONTRIBUTORS
* ``AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED
* TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
* PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE FOUNDATION OR CONTRIBUTORS
* BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR
* CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
* SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS
* INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN
* CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
* ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
* POSSIBILITY OF SUCH DAMAGE.
*/
#include <err.h>
#include <fcntl.h>
#include <stdio.h>
#include <string.h>
#include <sys/ioctl.h>
#include <sys/time.h>
#include <crypto/cryptodev.h>
unsigned char key[20] = { 0 };
char plaintx[16] = { 0 };
unsigned char iv[16] = { 0 };
const unsigned char ciphertx[16] = {
0x03, 0x88, 0xda, 0xce, 0x60, 0xb6, 0xa3, 0x92,
0xf3, 0x28, 0xc2, 0xb9, 0x71, 0xb2, 0xfe, 0x78
};
const unsigned char hash[16] = {
0xab, 0x6e, 0x47, 0xd4, 0x2c, 0xec, 0x13, 0xbd,
0xf5, 0x3a, 0x67, 0xb2, 0x12, 0x57, 0xbd, 0xdf
};
int
main(void)
{
int fd, res;
struct session_op cs;
struct crypt_op co;
unsigned char databuf[16];
unsigned char macbuf[16];
unsigned char databuf2[16];
fd = open("/dev/crypto", O_RDWR, 0);
if (fd < 0)
err(1, "open");
memset(&cs, 0, sizeof(cs));
cs.mac = CRYPTO_AES_128_GMAC;
cs.mackeylen = sizeof(key);
cs.mackey = key;
cs.cipher = CRYPTO_AES_GCM_16;
cs.key = key;
cs.keylen = sizeof(key);
res = ioctl(fd, CIOCGSESSION, &cs);
if (res < 0)
err(1, "CIOCGSESSION");
memset(&co, 0, sizeof(co));
memset(databuf, 0, sizeof(databuf));
memset(macbuf, 0, sizeof(macbuf));
co.ses = cs.ses;
co.op = COP_ENCRYPT;
co.len = sizeof(plaintx);
co.src = plaintx;
co.dst = databuf;
co.mac = macbuf;
co.iv = iv;
res = ioctl(fd, CIOCCRYPT, &co);
if (res < 0)
err(1, "CIOCCRYPT");
#if 1
if (memcmp(co.dst, ciphertx, sizeof(ciphertx)))
errx(1, "verification failed");
if (memcmp(macbuf, hash, sizeof(hash)))
errx(1, "hash failed");
#else
{
int i;
for (i = 0; i < sizeof(databuf); i++)
printf("%02x ", databuf[i]);
printf("\n");
}
{
int i;
for (i = 0; i < sizeof(macbuf); i++)
printf("%02x ", macbuf[i]);
printf("\n");
}
#endif
memset(databuf2, 0, sizeof(databuf2));
memset(macbuf, 0, sizeof(macbuf));
co.ses = cs.ses;
co.op = COP_DECRYPT;
co.len = sizeof(databuf);
co.src = databuf;
co.dst = databuf2;
co.mac = macbuf;
co.iv = iv;
res = ioctl(fd, CIOCCRYPT, &co);
if (res < 0)
err(1, "CIOCCRYPT");
if (memcmp(co.dst, plaintx, sizeof(plaintx)))
errx(1, "verification failed");
if (memcmp(macbuf, hash, sizeof(hash)))
errx(1, "hash failed");
return 0;
}