Server : Apache System : Linux server2.corals.io 4.18.0-348.2.1.el8_5.x86_64 #1 SMP Mon Nov 15 09:17:08 EST 2021 x86_64 User : corals ( 1002) PHP Version : 7.4.33 Disable Function : exec,passthru,shell_exec,system Directory : /proc/self/root/usr/src/kernels/4.18.0-553.50.1.el8_10.x86_64/include/crypto/ |
/* SPDX-License-Identifier: GPL-2.0 */
#ifndef _CRYPTO_XTS_H
#define _CRYPTO_XTS_H
#include <crypto/b128ops.h>
#include <crypto/internal/skcipher.h>
#include <linux/fips.h>
#define XTS_BLOCK_SIZE 16
#define XTS_TWEAK_CAST(x) ((void (*)(void *, u8*, const u8*))(x))
static inline int xts_check_key(struct crypto_tfm *tfm,
const u8 *key, unsigned int keylen)
{
/*
* key consists of keys of equal size concatenated, therefore
* the length must be even.
*/
if (keylen % 2) {
crypto_tfm_set_flags(tfm, CRYPTO_TFM_RES_BAD_KEY_LEN);
return -EINVAL;
}
/*
* In FIPS mode only a combined key length of either 256 or
* 512 bits is allowed, c.f. FIPS 140-3 IG C.I.
*/
if (fips_enabled && keylen != 32 && keylen != 64) {
crypto_tfm_set_flags(tfm, CRYPTO_TFM_RES_BAD_KEY_LEN);
return -EINVAL;
}
/*
* Ensure that the AES and tweak key are not identical when
* in FIPS mode or the CRYPTO_TFM_REQ_WEAK_KEY flag is set.
*/
if ((fips_enabled || (crypto_tfm_get_flags(tfm) &
CRYPTO_TFM_REQ_WEAK_KEY)) &&
!crypto_memneq(key, key + (keylen / 2), keylen / 2)) {
crypto_tfm_set_flags(tfm, CRYPTO_TFM_RES_WEAK_KEY);
return -EINVAL;
}
return 0;
}
static inline int xts_verify_key(struct crypto_skcipher *tfm,
const u8 *key, unsigned int keylen)
{
return xts_check_key(crypto_skcipher_tfm(tfm), key, keylen);
}
#endif /* _CRYPTO_XTS_H */