zzy34407230
/
mindspore2022
Not watched
1
0
Fork 0
Code
Releases 22 Wiki evaluate Activity
Issues 0 Pull Requests 0 Datasets Model Cloudbrain HPC
You can not select more than 25 topics Topics must start with a chinese character,a letter or number, can include dashes ('-') and can be up to 35 characters long.
Tree: bae1dd3bb0
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'bae1dd3bb0'
${ noResults }
mindspore2022/mindspore/ccsrc/fl/armour/secure_protocol/encrypt.cc

223 lines
6.6 kB
Raw Blame History 

  1. /**

  2.  * Copyright 2021 Huawei Technologies Co., Ltd

  3.  *

  4.  * Licensed under the Apache License, Version 2.0 (the "License");

  5.  * you may not use this file except in compliance with the License.

  6.  * You may obtain a copy of the License at

  7.  *

  8.  * http://www.apache.org/licenses/LICENSE-2.0

  9.  *

  10.  * Unless required by applicable law or agreed to in writing, software

  11.  * distributed under the License is distributed on an "AS IS" BASIS,

  12.  * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.

  13.  * See the License for the specific language governing permissions and

  14.  * limitations under the License.

  15.  */

  16. 

  17. #include "fl/armour/secure_protocol/encrypt.h"

  18. 

  19. namespace mindspore {

  20. namespace armour {

  21. AESEncrypt::AESEncrypt(const uint8_t *key, int key_len, const uint8_t *ivec, int ivec_len, const AES_MODE mode) {

  22.   priv_key_ = key;

  23.   priv_key_len_ = key_len;

  24.   ivec_ = ivec;

  25.   ivec_len_ = ivec_len;

  26.   aes_mode_ = mode;

  27. }

  28. 

  29. AESEncrypt::~AESEncrypt() {}

  30. 

  31. #if defined(_WIN32)

  32. int AESEncrypt::EncryptData(const uint8_t *data, const int len, uint8_t *encrypt_data, int *encrypt_len) {

  33.   MS_LOG(ERROR) << "Unsupported feature in Windows platform.";

  34.   return -1;

  35. }

  36. 

  37. int AESEncrypt::DecryptData(const uint8_t *encrypt_data, const int encrypt_len, uint8_t *data, int *len) {

  38.   MS_LOG(ERROR) << "Unsupported feature in Windows platform.";

  39.   return -1;

  40. }

  41. 

  42. #else

  43. int AESEncrypt::EncryptData(const uint8_t *data, const int len, uint8_t *encrypt_data, int *encrypt_len) const {

  44.   int ret;

  45.   if (priv_key_ == nullptr || ivec_ == nullptr) {

  46.     MS_LOG(ERROR) << "private key or init vector is invalid.";

  47.     return -1;

  48.   }

  49.   if (priv_key_len_ != KEY_LENGTH_16 && priv_key_len_ != KEY_LENGTH_32) {

  50.     MS_LOG(ERROR) << "key length is invalid.";

  51.     return -1;

  52.   }

  53.   if (ivec_len_ != AES_IV_SIZE) {

  54.     MS_LOG(ERROR) << "initial vector size is invalid.";

  55.     return -1;

  56.   }

  57.   if (data == nullptr || len <= 0 || encrypt_data == nullptr || encrypt_len == nullptr) {

  58.     MS_LOG(ERROR) << "input data is invalid.";

  59.     return -1;

  60.   }

  61.   ret = evp_aes_encrypt(data, len, priv_key_, ivec_, encrypt_data, encrypt_len);

  62.   if (ret != 0) {

  63.     return -1;

  64.   }

  65.   return 0;

  66. }

  67. 

  68. int AESEncrypt::DecryptData(const uint8_t *encrypt_data, const int encrypt_len, uint8_t *data, int *len) const {

  69.   int ret = 0;

  70.   if (priv_key_ == nullptr || ivec_ == nullptr) {

  71.     MS_LOG(ERROR) << "private key or init vector is invalid.";

  72.     return -1;

  73.   }

  74.   if (priv_key_len_ != KEY_LENGTH_16 && priv_key_len_ != KEY_LENGTH_32) {

  75.     MS_LOG(ERROR) << "key length is invalid.";

  76.     return -1;

  77.   }

  78.   if (ivec_len_ != AES_IV_SIZE) {

  79.     MS_LOG(ERROR) << "initial vector size is invalid.";

  80.     return -1;

  81.   }

  82.   if (data == nullptr || encrypt_len <= 0 || encrypt_data == nullptr || len == nullptr) {

  83.     MS_LOG(ERROR) << "input data is invalid.";

  84.     return -1;

  85.   }

  86.   if (aes_mode_ == AES_CBC || aes_mode_ == AES_CTR) {

  87.     ret = evp_aes_decrypt(encrypt_data, encrypt_len, priv_key_, ivec_, data, len);

  88.   } else {

  89.     MS_LOG(ERROR) << "This encryption mode is not supported!";

  90.   }

  91.   if (ret != 1) {

  92.     return -1;

  93.   }

  94.   return 0;

  95. }

  96. 

  97. int AESEncrypt::evp_aes_encrypt(const uint8_t *data, const int len, const uint8_t *key, const uint8_t *ivec,

  98.                                 uint8_t *encrypt_data, int *encrypt_len) const {

  99.   EVP_CIPHER_CTX *ctx = EVP_CIPHER_CTX_new();

  100.   if (ctx == NULL) {

  101.     return -1;

  102.   }

  103.   int out_len;

  104.   int ret;

  105.   if (aes_mode_ == AES_CBC) {

  106.     switch (priv_key_len_) {

  107.       case KEY_LENGTH_16:

  108.         ret = EVP_EncryptInit_ex(ctx, EVP_aes_128_cbc(), NULL, key, ivec);

  109.         break;

  110.       case KEY_LENGTH_32:

  111.         ret = EVP_EncryptInit_ex(ctx, EVP_aes_256_cbc(), NULL, key, ivec);

  112.         break;

  113.       default:

  114.         MS_LOG(ERROR) << "key length is incorrect!";

  115.         ret = -1;

  116.     }

  117.     if (ret != 1) {

  118.       EVP_CIPHER_CTX_free(ctx);

  119.       return -1;

  120.     }

  121.     EVP_CIPHER_CTX_set_padding(ctx, EVP_PADDING_PKCS7);

  122.   } else if (aes_mode_ == AES_CTR) {

  123.     switch (priv_key_len_) {

  124.       case KEY_LENGTH_16:

  125.         ret = EVP_EncryptInit_ex(ctx, EVP_aes_128_ctr(), NULL, key, ivec);

  126.         break;

  127.       case KEY_LENGTH_32:

  128.         ret = EVP_EncryptInit_ex(ctx, EVP_aes_256_ctr(), NULL, key, ivec);

  129.         break;

  130.       default:

  131.         MS_LOG(ERROR) << "key length is incorrect!";

  132.         ret = -1;

  133.     }

  134.     if (ret != 1) {

  135.       EVP_CIPHER_CTX_free(ctx);

  136.       return -1;

  137.     }

  138.   } else {

  139.     MS_LOG(ERROR) << "Unsupported encryption mode";

  140.     EVP_CIPHER_CTX_free(ctx);

  141.     return -1;

  142.   }

  143.   ret = EVP_EncryptUpdate(ctx, encrypt_data, &out_len, data, len);

  144.   if (ret != 1) {

  145.     EVP_CIPHER_CTX_free(ctx);

  146.     return -1;

  147.   }

  148.   *encrypt_len = out_len;

  149.   ret = EVP_EncryptFinal_ex(ctx, encrypt_data + *encrypt_len, &out_len);

  150.   if (ret != 1) {

  151.     EVP_CIPHER_CTX_free(ctx);

  152.     return -1;

  153.   }

  154.   *encrypt_len += out_len;

  155.   EVP_CIPHER_CTX_free(ctx);

  156.   return 0;

  157. }

  158. 

  159. int AESEncrypt::evp_aes_decrypt(const uint8_t *encrypt_data, const int len, const uint8_t *key, const uint8_t *ivec,

  160.                                 uint8_t *decrypt_data, int *decrypt_len) const {

  161.   EVP_CIPHER_CTX *ctx = EVP_CIPHER_CTX_new();

  162.   if (ctx == NULL) {

  163.     return -1;

  164.   }

  165.   int out_len;

  166.   int ret;

  167.   if (aes_mode_ == AES_CBC) {

  168.     switch (priv_key_len_) {

  169.       case KEY_LENGTH_16:

  170.         ret = EVP_DecryptInit_ex(ctx, EVP_aes_128_cbc(), NULL, key, ivec);

  171.         break;

  172.       case KEY_LENGTH_32:

  173.         ret = EVP_DecryptInit_ex(ctx, EVP_aes_256_cbc(), NULL, key, ivec);

  174.         break;

  175.       default:

  176.         MS_LOG(ERROR) << "key length is incorrect!";

  177.         ret = -1;

  178.     }

  179.     if (ret != 1) {

  180.       EVP_CIPHER_CTX_free(ctx);

  181.       return -1;

  182.     }

  183.   } else if (aes_mode_ == AES_CTR) {

  184.     switch (priv_key_len_) {

  185.       case KEY_LENGTH_16:

  186.         ret = EVP_DecryptInit_ex(ctx, EVP_aes_128_ctr(), NULL, key, ivec);

  187.         break;

  188.       case KEY_LENGTH_32:

  189.         ret = EVP_DecryptInit_ex(ctx, EVP_aes_256_ctr(), NULL, key, ivec);

  190.         break;

  191.       default:

  192.         MS_LOG(ERROR) << "key length is incorrect!";

  193.         ret = -1;

  194.     }

  195.     if (ret != 1) {

  196.       EVP_CIPHER_CTX_free(ctx);

  197.       return -1;

  198.     }

  199.   } else {

  200.     MS_LOG(ERROR) << "Unsupported encryption mode";

  201.     EVP_CIPHER_CTX_free(ctx);

  202.     return -1;

  203.   }

  204. 

  205.   ret = EVP_DecryptUpdate(ctx, decrypt_data, &out_len, encrypt_data, len);

  206.   if (ret != 1) {

  207.     EVP_CIPHER_CTX_free(ctx);

  208.     return -1;

  209.   }

  210.   *decrypt_len = out_len;

  211.   ret = EVP_DecryptFinal_ex(ctx, decrypt_data + *decrypt_len, &out_len);

  212.   if (ret != 1) {

  213.     EVP_CIPHER_CTX_free(ctx);

  214.     return -1;

  215.   }

  216.   *decrypt_len += out_len;

  217.   EVP_CIPHER_CTX_free(ctx);

  218.   return 0;

  219. }

  220. #endif

  221. }  // namespace armour

  222. }  // namespace mindspore