1 /*
2  *  Copyright (c) 2016, The OpenThread Authors.
3  *  All rights reserved.
4  *
5  *  Redistribution and use in source and binary forms, with or without
6  *  modification, are permitted provided that the following conditions are met:
7  *  1. Redistributions of source code must retain the above copyright
8  *     notice, this list of conditions and the following disclaimer.
9  *  2. Redistributions in binary form must reproduce the above copyright
10  *     notice, this list of conditions and the following disclaimer in the
11  *     documentation and/or other materials provided with the distribution.
12  *  3. Neither the name of the copyright holder nor the
13  *     names of its contributors may be used to endorse or promote products
14  *     derived from this software without specific prior written permission.
15  *
16  *  THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS"
17  *  AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
18  *  IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
19  *  ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDER OR CONTRIBUTORS BE
20  *  LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR
21  *  CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
22  *  SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS
23  *  INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN
24  *  CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
25  *  ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
26  *  POSSIBILITY OF SUCH DAMAGE.
27  */
28 
29 /**
30  * @file
31  *   This file implements the OpenThread Crypto API.
32  */
33 
34 #include "openthread-core-config.h"
35 
36 #include <openthread/crypto.h>
37 #include <openthread/error.h>
38 
39 #include "common/code_utils.hpp"
40 #include "common/debug.hpp"
41 #include "common/locator_getters.hpp"
42 #include "crypto/aes_ccm.hpp"
43 #include "crypto/ecdsa.hpp"
44 #include "crypto/hmac_sha256.hpp"
45 
46 using namespace ot::Crypto;
47 
otCryptoHmacSha256(const uint8_t * aKey,uint16_t aKeyLength,const uint8_t * aBuf,uint16_t aBufLength,otCryptoSha256Hash * aHash)48 void otCryptoHmacSha256(const uint8_t *     aKey,
49                         uint16_t            aKeyLength,
50                         const uint8_t *     aBuf,
51                         uint16_t            aBufLength,
52                         otCryptoSha256Hash *aHash)
53 {
54     HmacSha256 hmac;
55 
56     OT_ASSERT((aKey != nullptr) && (aBuf != nullptr) && (aHash != nullptr));
57 
58     hmac.Start(aKey, aKeyLength);
59     hmac.Update(aBuf, aBufLength);
60     hmac.Finish(*static_cast<HmacSha256::Hash *>(aHash));
61 }
62 
otCryptoAesCcm(const uint8_t * aKey,uint16_t aKeyLength,uint8_t aTagLength,const void * aNonce,uint8_t aNonceLength,const void * aHeader,uint32_t aHeaderLength,void * aPlainText,void * aCipherText,uint32_t aLength,bool aEncrypt,void * aTag)63 void otCryptoAesCcm(const uint8_t *aKey,
64                     uint16_t       aKeyLength,
65                     uint8_t        aTagLength,
66                     const void *   aNonce,
67                     uint8_t        aNonceLength,
68                     const void *   aHeader,
69                     uint32_t       aHeaderLength,
70                     void *         aPlainText,
71                     void *         aCipherText,
72                     uint32_t       aLength,
73                     bool           aEncrypt,
74                     void *         aTag)
75 {
76     AesCcm aesCcm;
77 
78     OT_ASSERT((aKey != nullptr) && (aNonce != nullptr) && (aPlainText != nullptr) && (aCipherText != nullptr) &&
79               (aTag != nullptr));
80 
81     aesCcm.SetKey(aKey, aKeyLength);
82     aesCcm.Init(aHeaderLength, aLength, aTagLength, aNonce, aNonceLength);
83 
84     if (aHeaderLength != 0)
85     {
86         OT_ASSERT(aHeader != nullptr);
87         aesCcm.Header(aHeader, aHeaderLength);
88     }
89 
90     aesCcm.Payload(aPlainText, aCipherText, aLength, aEncrypt ? AesCcm::kEncrypt : AesCcm::kDecrypt);
91     aesCcm.Finalize(aTag);
92 }
93 
94 #if OPENTHREAD_CONFIG_ECDSA_ENABLE
95 
otCryptoEcdsaSign(uint8_t * aOutput,uint16_t * aOutputLength,const uint8_t * aInputHash,uint16_t aInputHashLength,const uint8_t * aPrivateKey,uint16_t aPrivateKeyLength)96 otError otCryptoEcdsaSign(uint8_t *      aOutput,
97                           uint16_t *     aOutputLength,
98                           const uint8_t *aInputHash,
99                           uint16_t       aInputHashLength,
100                           const uint8_t *aPrivateKey,
101                           uint16_t       aPrivateKeyLength)
102 {
103     return Ecdsa::Sign(aOutput, *aOutputLength, aInputHash, aInputHashLength, aPrivateKey, aPrivateKeyLength);
104 }
105 
106 #endif // OPENTHREAD_CONFIG_ECDSA_ENABLE
107