mirror of
https://github.com/yuzu-emu/mbedtls.git
synced 2024-12-02 19:24:16 +01:00
72c8c5b352
Conflict resolution: * `scripts/config.pl`: Take the exclusion of `MBEDTLS_PSA_CRYPTO_SE_C` from the API branch. Take the removal of `MBEDTLS_PSA_CRYPTO_STORAGE_ITS_C` (obsolete) from the development branch. * `tests/scripts/all.sh`: Multiple instances of factoring a sequence of `config.pl` calls into a mere `config.pl baremetal` in the development branch, and a change in the composition of `baremetal` in the API branch. In each case, take the version from development. * `tests/suites/test_suite_psa_crypto_slot_management.function`: A function became non-static in development and disappeared in the API branch. Keep the version from the API branch. Functions need to be non-static if they're defined but unused in some configurations, which is not the case for any function in this file at the moment. * `tests/suites/test_suite_psa_crypto.function`: Consecutive changes in the two branches, reconciled.
153 lines
4.9 KiB
C
153 lines
4.9 KiB
C
/**
|
|
* \file cipher_internal.h
|
|
*
|
|
* \brief Cipher wrappers.
|
|
*
|
|
* \author Adriaan de Jong <dejong@fox-it.com>
|
|
*/
|
|
/*
|
|
* Copyright (C) 2006-2015, ARM Limited, All Rights Reserved
|
|
* SPDX-License-Identifier: Apache-2.0
|
|
*
|
|
* Licensed under the Apache License, Version 2.0 (the "License"); you may
|
|
* not use this file except in compliance with the License.
|
|
* You may obtain a copy of the License at
|
|
*
|
|
* http://www.apache.org/licenses/LICENSE-2.0
|
|
*
|
|
* Unless required by applicable law or agreed to in writing, software
|
|
* distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
|
|
* WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
* See the License for the specific language governing permissions and
|
|
* limitations under the License.
|
|
*
|
|
* This file is part of mbed TLS (https://tls.mbed.org)
|
|
*/
|
|
#ifndef MBEDTLS_CIPHER_WRAP_H
|
|
#define MBEDTLS_CIPHER_WRAP_H
|
|
|
|
#if !defined(MBEDTLS_CONFIG_FILE)
|
|
#include "mbedtls/config.h"
|
|
#else
|
|
#include MBEDTLS_CONFIG_FILE
|
|
#endif
|
|
|
|
#include "mbedtls/cipher.h"
|
|
|
|
#if defined(MBEDTLS_USE_PSA_CRYPTO)
|
|
#include "psa/crypto.h"
|
|
#endif /* MBEDTLS_USE_PSA_CRYPTO */
|
|
|
|
#ifdef __cplusplus
|
|
extern "C" {
|
|
#endif
|
|
|
|
/**
|
|
* Base cipher information. The non-mode specific functions and values.
|
|
*/
|
|
struct mbedtls_cipher_base_t
|
|
{
|
|
/** Base Cipher type (e.g. MBEDTLS_CIPHER_ID_AES) */
|
|
mbedtls_cipher_id_t cipher;
|
|
|
|
/** Encrypt using ECB */
|
|
int (*ecb_func)( void *ctx, mbedtls_operation_t mode,
|
|
const unsigned char *input, unsigned char *output );
|
|
|
|
#if defined(MBEDTLS_CIPHER_MODE_CBC)
|
|
/** Encrypt using CBC */
|
|
int (*cbc_func)( void *ctx, mbedtls_operation_t mode, size_t length,
|
|
unsigned char *iv, const unsigned char *input,
|
|
unsigned char *output );
|
|
#endif
|
|
|
|
#if defined(MBEDTLS_CIPHER_MODE_CFB)
|
|
/** Encrypt using CFB (Full length) */
|
|
int (*cfb_func)( void *ctx, mbedtls_operation_t mode, size_t length, size_t *iv_off,
|
|
unsigned char *iv, const unsigned char *input,
|
|
unsigned char *output );
|
|
#endif
|
|
|
|
#if defined(MBEDTLS_CIPHER_MODE_OFB)
|
|
/** Encrypt using OFB (Full length) */
|
|
int (*ofb_func)( void *ctx, size_t length, size_t *iv_off,
|
|
unsigned char *iv,
|
|
const unsigned char *input,
|
|
unsigned char *output );
|
|
#endif
|
|
|
|
#if defined(MBEDTLS_CIPHER_MODE_CTR)
|
|
/** Encrypt using CTR */
|
|
int (*ctr_func)( void *ctx, size_t length, size_t *nc_off,
|
|
unsigned char *nonce_counter, unsigned char *stream_block,
|
|
const unsigned char *input, unsigned char *output );
|
|
#endif
|
|
|
|
#if defined(MBEDTLS_CIPHER_MODE_XTS)
|
|
/** Encrypt or decrypt using XTS. */
|
|
int (*xts_func)( void *ctx, mbedtls_operation_t mode, size_t length,
|
|
const unsigned char data_unit[16],
|
|
const unsigned char *input, unsigned char *output );
|
|
#endif
|
|
|
|
#if defined(MBEDTLS_CIPHER_MODE_STREAM)
|
|
/** Encrypt using STREAM */
|
|
int (*stream_func)( void *ctx, size_t length,
|
|
const unsigned char *input, unsigned char *output );
|
|
#endif
|
|
|
|
/** Set key for encryption purposes */
|
|
int (*setkey_enc_func)( void *ctx, const unsigned char *key,
|
|
unsigned int key_bitlen );
|
|
|
|
/** Set key for decryption purposes */
|
|
int (*setkey_dec_func)( void *ctx, const unsigned char *key,
|
|
unsigned int key_bitlen);
|
|
|
|
/** Allocate a new context */
|
|
void * (*ctx_alloc_func)( void );
|
|
|
|
/** Free the given context */
|
|
void (*ctx_free_func)( void *ctx );
|
|
|
|
};
|
|
|
|
typedef struct
|
|
{
|
|
mbedtls_cipher_type_t type;
|
|
const mbedtls_cipher_info_t *info;
|
|
} mbedtls_cipher_definition_t;
|
|
|
|
#if defined(MBEDTLS_USE_PSA_CRYPTO)
|
|
typedef enum
|
|
{
|
|
MBEDTLS_CIPHER_PSA_KEY_UNSET = 0,
|
|
MBEDTLS_CIPHER_PSA_KEY_OWNED, /* Used for PSA-based cipher contexts which */
|
|
/* use raw key material internally imported */
|
|
/* as a volatile key, and which hence need */
|
|
/* to destroy that key when the context is */
|
|
/* freed. */
|
|
MBEDTLS_CIPHER_PSA_KEY_NOT_OWNED, /* Used for PSA-based cipher contexts */
|
|
/* which use a key provided by the */
|
|
/* user, and which hence will not be */
|
|
/* destroyed when the context is freed. */
|
|
} mbedtls_cipher_psa_key_ownership;
|
|
|
|
typedef struct
|
|
{
|
|
psa_algorithm_t alg;
|
|
psa_key_handle_t slot;
|
|
mbedtls_cipher_psa_key_ownership slot_state;
|
|
} mbedtls_cipher_context_psa;
|
|
#endif /* MBEDTLS_USE_PSA_CRYPTO */
|
|
|
|
extern const mbedtls_cipher_definition_t mbedtls_cipher_definitions[];
|
|
|
|
extern int mbedtls_cipher_supported[];
|
|
|
|
#ifdef __cplusplus
|
|
}
|
|
#endif
|
|
|
|
#endif /* MBEDTLS_CIPHER_WRAP_H */
|