136 lines
3.4 KiB
C
136 lines
3.4 KiB
C
/* cmac.h
|
|
*
|
|
* Copyright (C) 2006-2023 wolfSSL Inc.
|
|
*
|
|
* This file is part of wolfSSL.
|
|
*
|
|
* wolfSSL is free software; you can redistribute it and/or modify
|
|
* it under the terms of the GNU General Public License as published by
|
|
* the Free Software Foundation; either version 2 of the License, or
|
|
* (at your option) any later version.
|
|
*
|
|
* wolfSSL is distributed in the hope that it will be useful,
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
* GNU General Public License for more details.
|
|
*
|
|
* You should have received a copy of the GNU General Public License
|
|
* along with this program; if not, write to the Free Software
|
|
* Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1335, USA
|
|
*/
|
|
|
|
|
|
#ifndef WOLF_CRYPT_CMAC_H
|
|
#define WOLF_CRYPT_CMAC_H
|
|
|
|
#include <wolfssl/wolfcrypt/types.h>
|
|
#include <wolfssl/wolfcrypt/aes.h>
|
|
|
|
#if !defined(NO_AES) && defined(WOLFSSL_CMAC)
|
|
|
|
#if defined(HAVE_FIPS) && \
|
|
defined(HAVE_FIPS_VERSION) && (HAVE_FIPS_VERSION >= 2)
|
|
#include <wolfssl/wolfcrypt/fips.h>
|
|
#endif /* HAVE_FIPS_VERSION >= 2 */
|
|
|
|
#ifdef __cplusplus
|
|
extern "C" {
|
|
#endif
|
|
|
|
/* avoid redefinition of structs */
|
|
#if !defined(HAVE_FIPS) || \
|
|
(defined(HAVE_FIPS_VERSION) && (HAVE_FIPS_VERSION >= 2))
|
|
|
|
#ifndef WC_CMAC_TYPE_DEFINED
|
|
typedef struct Cmac Cmac;
|
|
#define WC_CMAC_TYPE_DEFINED
|
|
#endif
|
|
struct Cmac {
|
|
Aes aes;
|
|
byte buffer[AES_BLOCK_SIZE]; /* partially stored block */
|
|
byte digest[AES_BLOCK_SIZE]; /* running digest */
|
|
byte k1[AES_BLOCK_SIZE];
|
|
byte k2[AES_BLOCK_SIZE];
|
|
word32 bufferSz;
|
|
word32 totalSz;
|
|
#ifdef WOLF_CRYPTO_CB
|
|
int devId;
|
|
void* devCtx;
|
|
#ifdef WOLFSSL_CAAM
|
|
byte ctx[32]; /* hold state for save and return */
|
|
word32 blackKey;
|
|
word32 keylen;
|
|
byte initialized;
|
|
#endif
|
|
#endif
|
|
#if defined(WOLFSSL_HASH_KEEP)
|
|
byte* msg;
|
|
word32 used;
|
|
word32 len;
|
|
#endif
|
|
#ifdef WOLFSSL_SE050
|
|
byte useSWCrypt; /* Use SW crypt instead of SE050, before SCP03 auth */
|
|
#endif
|
|
};
|
|
|
|
|
|
|
|
typedef enum CmacType {
|
|
WC_CMAC_AES = 1
|
|
} CmacType;
|
|
|
|
#define WC_CMAC_TAG_MAX_SZ AES_BLOCK_SIZE
|
|
#define WC_CMAC_TAG_MIN_SZ (AES_BLOCK_SIZE/4)
|
|
|
|
#endif /* HAVE_FIPS */
|
|
|
|
WOLFSSL_API
|
|
int wc_InitCmac(Cmac* cmac,
|
|
const byte* key, word32 keySz,
|
|
int type, void* unused);
|
|
|
|
WOLFSSL_API
|
|
int wc_InitCmac_ex(Cmac* cmac,
|
|
const byte* key, word32 keySz,
|
|
int type, void* unused, void* heap, int devId);
|
|
|
|
WOLFSSL_API
|
|
int wc_CmacUpdate(Cmac* cmac,
|
|
const byte* in, word32 inSz);
|
|
WOLFSSL_API
|
|
int wc_CmacFinalNoFree(Cmac* cmac,
|
|
byte* out, word32* outSz);
|
|
WOLFSSL_API
|
|
int wc_CmacFinal(Cmac* cmac,
|
|
byte* out, word32* outSz);
|
|
|
|
WOLFSSL_API
|
|
int wc_CmacFree(Cmac* cmac);
|
|
|
|
WOLFSSL_API
|
|
int wc_AesCmacGenerate(byte* out, word32* outSz,
|
|
const byte* in, word32 inSz,
|
|
const byte* key, word32 keySz);
|
|
|
|
WOLFSSL_API
|
|
int wc_AesCmacVerify(const byte* check, word32 checkSz,
|
|
const byte* in, word32 inSz,
|
|
const byte* key, word32 keySz);
|
|
|
|
WOLFSSL_LOCAL
|
|
void ShiftAndXorRb(byte* out, byte* in);
|
|
|
|
#ifdef WOLFSSL_HASH_KEEP
|
|
WOLFSSL_API
|
|
int wc_CMAC_Grow(Cmac* cmac, const byte* in, int inSz);
|
|
#endif
|
|
|
|
#ifdef __cplusplus
|
|
} /* extern "C" */
|
|
#endif
|
|
|
|
|
|
#endif /* NO_AES && WOLFSSL_CMAC */
|
|
#endif /* WOLF_CRYPT_CMAC_H */
|
|
|