TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls / cf61a742096e517b114051b054d05296a9d9604a / . / library / md.c
blob: 0be1d7e4fc71e746f29be4f360b43c1f36fa0376 [file] [log] [blame]
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]1/**
Gilles Peskine2091f3a2021-02-12 23:34:01 +0100[diff] [blame]2 * \file md.c
Paul Bakker9af723c2014-05-01 13:03:14 +0200[diff] [blame]3 *
Manuel Pégourié-Gonnardb4fe3cb2015-01-22 16:11:05 +0000[diff] [blame]4 * \brief Generic message digest wrapper for mbed TLS
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]5 *
6 * \author Adriaan de Jong <dejong@fox-it.com>
7 *
Bence Szépkúti1e148272020-08-07 13:07:28 +0200[diff] [blame]8 * Copyright The Mbed TLS Contributors
Manuel Pégourié-Gonnard37ff1402015-09-04 14:21:07 +0200[diff] [blame]9 * SPDX-License-Identifier: Apache-2.0
10 *
11 * Licensed under the Apache License, Version 2.0 (the "License"); you may
12 * not use this file except in compliance with the License.
13 * You may obtain a copy of the License at
14 *
15 * http://www.apache.org/licenses/LICENSE-2.0
16 *
17 * Unless required by applicable law or agreed to in writing, software
18 * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
19 * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
20 * See the License for the specific language governing permissions and
21 * limitations under the License.
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]22 */
23
Gilles Peskinedb09ef62020-06-03 01:43:33 +0200[diff] [blame]24#include "common.h"
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]25
Manuel Pégourié-Gonnard0d415212023-02-23 13:02:13 +0100[diff] [blame]26/*
27 * Availability of functions in this module is controlled by two
28 * feature macros:
29 * - MBEDTLS_MD_C enables the whole module;
30 * - MBEDTLS_MD_LIGHT enables only functions for hashing and accessing
31 * most hash metadata (everything except string names); is it
32 * automatically set whenever MBEDTLS_MD_C is defined.
33 *
Manuel Pégourié-Gonnard1e57abd2023-02-23 20:45:26 +0100[diff] [blame]34 * In this file, functions from MD_LIGHT are at the top, MD_C at the end.
35 *
Manuel Pégourié-Gonnard0d415212023-02-23 13:02:13 +0100[diff] [blame]36 * In the future we may want to change the contract of some functions
37 * (behaviour with NULL arguments) depending on whether MD_C is defined or
38 * only MD_LIGHT. Also, the exact scope of MD_LIGHT might vary.
39 *
40 * For these reasons, we're keeping MD_LIGHT internal for now.
41 */
Manuel Pégourié-Gonnardb9b630d2023-02-16 19:07:31 +0100[diff] [blame]42#if defined(MBEDTLS_MD_LIGHT)
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]43
Manuel Pégourié-Gonnard7f809972015-03-09 17:05:11 +0000[diff] [blame]44#include "mbedtls/md.h"
Chris Jonesdaacb592021-03-09 17:03:29 +0000[diff] [blame]45#include "md_wrap.h"
Andres Amaya Garcia1f6301b2018-04-17 09:51:09 -0500[diff] [blame]46#include "mbedtls/platform_util.h"
Janos Follath24eed8d2019-11-22 13:21:35 +0000[diff] [blame]47#include "mbedtls/error.h"
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]48
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]49#include "mbedtls/md5.h"
50#include "mbedtls/ripemd160.h"
51#include "mbedtls/sha1.h"
52#include "mbedtls/sha256.h"
53#include "mbedtls/sha512.h"
54
Manuel Pégourié-Gonnard36fb12e2023-03-28 11:33:23 +0200[diff] [blame]55#if defined(MBEDTLS_PSA_CRYPTO_C)
Gilles Peskine12612e52022-10-22 20:07:28 +0200[diff] [blame]56#include <psa/crypto.h>
Manuel Pégourié-Gonnard36fb12e2023-03-28 11:33:23 +0200[diff] [blame]57#include "md_psa.h"
Manuel Pégourié-Gonnardddbf61a2023-03-28 12:14:01 +0200[diff] [blame]58#include "mbedtls/psa_util.h"
Manuel Pégourié-Gonnard36fb12e2023-03-28 11:33:23 +0200[diff] [blame]59#endif
60
61#if defined(MBEDTLS_MD_SOME_PSA)
Manuel Pégourié-Gonnard9b146392023-03-09 15:56:14 +0100[diff] [blame]62#include "psa_crypto_core.h"
Gilles Peskine12612e52022-10-22 20:07:28 +0200[diff] [blame]63#endif
64
Manuel Pégourié-Gonnarddfb3dc82015-03-25 11:49:07 +0100[diff] [blame]65#include "mbedtls/platform.h"
Manuel Pégourié-Gonnarddfb3dc82015-03-25 11:49:07 +0100[diff] [blame]66
Rich Evans00ab4702015-02-06 13:43:58 +0000[diff] [blame]67#include <string.h>
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]68
Manuel Pégourié-Gonnardbfffa902015-05-28 14:44:00 +0200[diff] [blame]69#if defined(MBEDTLS_FS_IO)
70#include <stdio.h>
Paul Bakkeraf5c85f2011-04-18 03:47:52 +0000[diff] [blame]71#endif
72
Manuel Pégourié-Gonnardcf61a742023-05-25 09:11:41 +0200[diff] [blame^]73/* See comment above MBEDTLS_MD_MAX_SIZE in md.h */
74#if defined(MBEDTLS_PSA_CRYPTO_C) && MBEDTLS_MD_MAX_SIZE < PSA_HASH_MAX_SIZE
75#error "Internal error: MBEDTLS_MD_MAX_SIZE < PSA_HASH_MAX_SIZE"
76#endif
77
Gilles Peskine83d9e092022-10-22 18:32:43 +0200[diff] [blame]78#if defined(MBEDTLS_MD_CAN_MD5)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]79const mbedtls_md_info_t mbedtls_md5_info = {
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]80 "MD5",
Gilles Peskine2838b7b2019-07-19 16:03:39 +0200[diff] [blame]81 MBEDTLS_MD_MD5,
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]82 16,
83 64,
84};
85#endif
86
Gilles Peskine83d9e092022-10-22 18:32:43 +0200[diff] [blame]87#if defined(MBEDTLS_MD_CAN_RIPEMD160)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]88const mbedtls_md_info_t mbedtls_ripemd160_info = {
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]89 "RIPEMD160",
Gilles Peskine2838b7b2019-07-19 16:03:39 +0200[diff] [blame]90 MBEDTLS_MD_RIPEMD160,
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]91 20,
92 64,
93};
94#endif
95
Gilles Peskine83d9e092022-10-22 18:32:43 +0200[diff] [blame]96#if defined(MBEDTLS_MD_CAN_SHA1)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]97const mbedtls_md_info_t mbedtls_sha1_info = {
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]98 "SHA1",
Gilles Peskine2838b7b2019-07-19 16:03:39 +0200[diff] [blame]99 MBEDTLS_MD_SHA1,
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]100 20,
101 64,
102};
103#endif
104
Gilles Peskine83d9e092022-10-22 18:32:43 +0200[diff] [blame]105#if defined(MBEDTLS_MD_CAN_SHA224)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]106const mbedtls_md_info_t mbedtls_sha224_info = {
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]107 "SHA224",
Gilles Peskine2838b7b2019-07-19 16:03:39 +0200[diff] [blame]108 MBEDTLS_MD_SHA224,
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]109 28,
110 64,
111};
Mateusz Starzyke3c48b42021-04-19 16:46:28 +0200[diff] [blame]112#endif
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]113
Gilles Peskine83d9e092022-10-22 18:32:43 +0200[diff] [blame]114#if defined(MBEDTLS_MD_CAN_SHA256)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]115const mbedtls_md_info_t mbedtls_sha256_info = {
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]116 "SHA256",
Gilles Peskine2838b7b2019-07-19 16:03:39 +0200[diff] [blame]117 MBEDTLS_MD_SHA256,
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]118 32,
119 64,
120};
121#endif
122
Gilles Peskine83d9e092022-10-22 18:32:43 +0200[diff] [blame]123#if defined(MBEDTLS_MD_CAN_SHA384)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]124const mbedtls_md_info_t mbedtls_sha384_info = {
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]125 "SHA384",
Gilles Peskine2838b7b2019-07-19 16:03:39 +0200[diff] [blame]126 MBEDTLS_MD_SHA384,
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]127 48,
128 128,
129};
Manuel Pégourié-Gonnardd6020842019-07-17 16:28:21 +0200[diff] [blame]130#endif
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]131
Gilles Peskine83d9e092022-10-22 18:32:43 +0200[diff] [blame]132#if defined(MBEDTLS_MD_CAN_SHA512)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]133const mbedtls_md_info_t mbedtls_sha512_info = {
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]134 "SHA512",
Gilles Peskine2838b7b2019-07-19 16:03:39 +0200[diff] [blame]135 MBEDTLS_MD_SHA512,
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]136 64,
137 128,
138};
139#endif
140
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]141const mbedtls_md_info_t *mbedtls_md_info_from_type(mbedtls_md_type_t md_type)
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]142{
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]143 switch (md_type) {
Gilles Peskine83d9e092022-10-22 18:32:43 +0200[diff] [blame]144#if defined(MBEDTLS_MD_CAN_MD5)
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]145 case MBEDTLS_MD_MD5:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]146 return &mbedtls_md5_info;
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]147#endif
Gilles Peskine83d9e092022-10-22 18:32:43 +0200[diff] [blame]148#if defined(MBEDTLS_MD_CAN_RIPEMD160)
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]149 case MBEDTLS_MD_RIPEMD160:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]150 return &mbedtls_ripemd160_info;
Manuel Pégourié-Gonnarde4d47a62014-01-17 20:41:32 +0100[diff] [blame]151#endif
Gilles Peskine83d9e092022-10-22 18:32:43 +0200[diff] [blame]152#if defined(MBEDTLS_MD_CAN_SHA1)
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]153 case MBEDTLS_MD_SHA1:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]154 return &mbedtls_sha1_info;
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]155#endif
Gilles Peskine83d9e092022-10-22 18:32:43 +0200[diff] [blame]156#if defined(MBEDTLS_MD_CAN_SHA224)
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]157 case MBEDTLS_MD_SHA224:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]158 return &mbedtls_sha224_info;
Mateusz Starzyke3c48b42021-04-19 16:46:28 +0200[diff] [blame]159#endif
Gilles Peskine83d9e092022-10-22 18:32:43 +0200[diff] [blame]160#if defined(MBEDTLS_MD_CAN_SHA256)
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]161 case MBEDTLS_MD_SHA256:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]162 return &mbedtls_sha256_info;
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]163#endif
Gilles Peskine83d9e092022-10-22 18:32:43 +0200[diff] [blame]164#if defined(MBEDTLS_MD_CAN_SHA384)
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]165 case MBEDTLS_MD_SHA384:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]166 return &mbedtls_sha384_info;
Manuel Pégourié-Gonnardd6020842019-07-17 16:28:21 +0200[diff] [blame]167#endif
Gilles Peskine83d9e092022-10-22 18:32:43 +0200[diff] [blame]168#if defined(MBEDTLS_MD_CAN_SHA512)
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]169 case MBEDTLS_MD_SHA512:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]170 return &mbedtls_sha512_info;
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]171#endif
172 default:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]173 return NULL;
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]174 }
175}
176
Gilles Peskine12612e52022-10-22 20:07:28 +0200[diff] [blame]177#if defined(MBEDTLS_MD_SOME_PSA)
178static psa_algorithm_t psa_alg_of_md(const mbedtls_md_info_t *info)
179{
180 switch (info->type) {
181#if defined(MBEDTLS_MD_MD5_VIA_PSA)
182 case MBEDTLS_MD_MD5:
183 return PSA_ALG_MD5;
184#endif
185#if defined(MBEDTLS_MD_RIPEMD160_VIA_PSA)
186 case MBEDTLS_MD_RIPEMD160:
187 return PSA_ALG_RIPEMD160;
188#endif
189#if defined(MBEDTLS_MD_SHA1_VIA_PSA)
190 case MBEDTLS_MD_SHA1:
191 return PSA_ALG_SHA_1;
192#endif
193#if defined(MBEDTLS_MD_SHA224_VIA_PSA)
194 case MBEDTLS_MD_SHA224:
195 return PSA_ALG_SHA_224;
196#endif
197#if defined(MBEDTLS_MD_SHA256_VIA_PSA)
198 case MBEDTLS_MD_SHA256:
199 return PSA_ALG_SHA_256;
200#endif
201#if defined(MBEDTLS_MD_SHA384_VIA_PSA)
202 case MBEDTLS_MD_SHA384:
203 return PSA_ALG_SHA_384;
204#endif
205#if defined(MBEDTLS_MD_SHA512_VIA_PSA)
206 case MBEDTLS_MD_SHA512:
207 return PSA_ALG_SHA_512;
208#endif
209 default:
210 return PSA_ALG_NONE;
211 }
212}
213
Manuel Pégourié-Gonnardf48b1f82023-03-14 10:50:52 +0100[diff] [blame]214static int md_can_use_psa(const mbedtls_md_info_t *info)
Gilles Peskine12612e52022-10-22 20:07:28 +0200[diff] [blame]215{
Manuel Pégourié-Gonnard9b146392023-03-09 15:56:14 +0100[diff] [blame]216 psa_algorithm_t alg = psa_alg_of_md(info);
217 if (alg == PSA_ALG_NONE) {
218 return 0;
219 }
220
221 return psa_can_do_hash(alg);
Gilles Peskine12612e52022-10-22 20:07:28 +0200[diff] [blame]222}
Gilles Peskine12612e52022-10-22 20:07:28 +0200[diff] [blame]223#endif /* MBEDTLS_MD_SOME_PSA */
224
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]225void mbedtls_md_init(mbedtls_md_context_t *ctx)
Paul Bakker84bbeb52014-07-01 14:53:22 +0200[diff] [blame]226{
Manuel Pégourié-Gonnardd8ea37f2023-03-09 10:46:22 +0100[diff] [blame]227 /* Note: this sets engine (if present) to MBEDTLS_MD_ENGINE_LEGACY */
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]228 memset(ctx, 0, sizeof(mbedtls_md_context_t));
Paul Bakker84bbeb52014-07-01 14:53:22 +0200[diff] [blame]229}
230
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]231void mbedtls_md_free(mbedtls_md_context_t *ctx)
Paul Bakker84bbeb52014-07-01 14:53:22 +0200[diff] [blame]232{
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]233 if (ctx == NULL || ctx->md_info == NULL) {
Paul Bakker84bbeb52014-07-01 14:53:22 +0200[diff] [blame]234 return;
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]235 }
Paul Bakker84bbeb52014-07-01 14:53:22 +0200[diff] [blame]236
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]237 if (ctx->md_ctx != NULL) {
Gilles Peskine12612e52022-10-22 20:07:28 +0200[diff] [blame]238#if defined(MBEDTLS_MD_SOME_PSA)
Manuel Pégourié-Gonnardd8ea37f2023-03-09 10:46:22 +0100[diff] [blame]239 if (ctx->engine == MBEDTLS_MD_ENGINE_PSA) {
Gilles Peskine12612e52022-10-22 20:07:28 +0200[diff] [blame]240 psa_hash_abort(ctx->md_ctx);
241 } else
242#endif
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]243 switch (ctx->md_info->type) {
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]244#if defined(MBEDTLS_MD5_C)
245 case MBEDTLS_MD_MD5:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]246 mbedtls_md5_free(ctx->md_ctx);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]247 break;
248#endif
249#if defined(MBEDTLS_RIPEMD160_C)
250 case MBEDTLS_MD_RIPEMD160:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]251 mbedtls_ripemd160_free(ctx->md_ctx);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]252 break;
253#endif
254#if defined(MBEDTLS_SHA1_C)
255 case MBEDTLS_MD_SHA1:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]256 mbedtls_sha1_free(ctx->md_ctx);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]257 break;
258#endif
Mateusz Starzyke3c48b42021-04-19 16:46:28 +0200[diff] [blame]259#if defined(MBEDTLS_SHA224_C)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]260 case MBEDTLS_MD_SHA224:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]261 mbedtls_sha256_free(ctx->md_ctx);
Mateusz Starzyke3c48b42021-04-19 16:46:28 +0200[diff] [blame]262 break;
263#endif
264#if defined(MBEDTLS_SHA256_C)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]265 case MBEDTLS_MD_SHA256:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]266 mbedtls_sha256_free(ctx->md_ctx);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]267 break;
268#endif
Mateusz Starzyk3352a532021-04-06 14:28:22 +0200[diff] [blame]269#if defined(MBEDTLS_SHA384_C)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]270 case MBEDTLS_MD_SHA384:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]271 mbedtls_sha512_free(ctx->md_ctx);
Mateusz Starzyk3352a532021-04-06 14:28:22 +0200[diff] [blame]272 break;
Manuel Pégourié-Gonnardd6020842019-07-17 16:28:21 +0200[diff] [blame]273#endif
Mateusz Starzyk3352a532021-04-06 14:28:22 +0200[diff] [blame]274#if defined(MBEDTLS_SHA512_C)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]275 case MBEDTLS_MD_SHA512:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]276 mbedtls_sha512_free(ctx->md_ctx);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]277 break;
278#endif
279 default:
280 /* Shouldn't happen */
281 break;
282 }
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]283 mbedtls_free(ctx->md_ctx);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]284 }
Paul Bakker84bbeb52014-07-01 14:53:22 +0200[diff] [blame]285
Manuel Pégourié-Gonnard39a376a2023-03-09 17:21:40 +0100[diff] [blame]286#if defined(MBEDTLS_MD_C)
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]287 if (ctx->hmac_ctx != NULL) {
288 mbedtls_platform_zeroize(ctx->hmac_ctx,
289 2 * ctx->md_info->block_size);
290 mbedtls_free(ctx->hmac_ctx);
Manuel Pégourié-Gonnarddfb3dc82015-03-25 11:49:07 +0100[diff] [blame]291 }
Manuel Pégourié-Gonnard39a376a2023-03-09 17:21:40 +0100[diff] [blame]292#endif
Manuel Pégourié-Gonnarddfb3dc82015-03-25 11:49:07 +0100[diff] [blame]293
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]294 mbedtls_platform_zeroize(ctx, sizeof(mbedtls_md_context_t));
Paul Bakker84bbeb52014-07-01 14:53:22 +0200[diff] [blame]295}
296
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]297int mbedtls_md_clone(mbedtls_md_context_t *dst,
298 const mbedtls_md_context_t *src)
Manuel Pégourié-Gonnard052a6c92015-07-06 16:06:02 +0200[diff] [blame]299{
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]300 if (dst == NULL || dst->md_info == NULL ||
Manuel Pégourié-Gonnard052a6c92015-07-06 16:06:02 +0200[diff] [blame]301 src == NULL || src->md_info == NULL ||
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]302 dst->md_info != src->md_info) {
303 return MBEDTLS_ERR_MD_BAD_INPUT_DATA;
Manuel Pégourié-Gonnard052a6c92015-07-06 16:06:02 +0200[diff] [blame]304 }
305
Gilles Peskine12612e52022-10-22 20:07:28 +0200[diff] [blame]306#if defined(MBEDTLS_MD_SOME_PSA)
Manuel Pégourié-Gonnardd8ea37f2023-03-09 10:46:22 +0100[diff] [blame]307 if (src->engine != dst->engine) {
308 /* This can happen with src set to legacy because PSA wasn't ready
309 * yet, and dst to PSA because it became ready in the meantime.
310 * We currently don't support that case (we'd need to re-allocate
311 * md_ctx to the size of the appropriate MD context). */
312 return MBEDTLS_ERR_MD_FEATURE_UNAVAILABLE;
313 }
314
315 if (src->engine == MBEDTLS_MD_ENGINE_PSA) {
Gilles Peskine12612e52022-10-22 20:07:28 +0200[diff] [blame]316 psa_status_t status = psa_hash_clone(src->md_ctx, dst->md_ctx);
317 return mbedtls_md_error_from_psa(status);
318 }
319#endif
320
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]321 switch (src->md_info->type) {
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]322#if defined(MBEDTLS_MD5_C)
323 case MBEDTLS_MD_MD5:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]324 mbedtls_md5_clone(dst->md_ctx, src->md_ctx);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]325 break;
326#endif
327#if defined(MBEDTLS_RIPEMD160_C)
328 case MBEDTLS_MD_RIPEMD160:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]329 mbedtls_ripemd160_clone(dst->md_ctx, src->md_ctx);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]330 break;
331#endif
332#if defined(MBEDTLS_SHA1_C)
333 case MBEDTLS_MD_SHA1:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]334 mbedtls_sha1_clone(dst->md_ctx, src->md_ctx);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]335 break;
336#endif
Mateusz Starzyke3c48b42021-04-19 16:46:28 +0200[diff] [blame]337#if defined(MBEDTLS_SHA224_C)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]338 case MBEDTLS_MD_SHA224:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]339 mbedtls_sha256_clone(dst->md_ctx, src->md_ctx);
Mateusz Starzyke3c48b42021-04-19 16:46:28 +0200[diff] [blame]340 break;
341#endif
342#if defined(MBEDTLS_SHA256_C)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]343 case MBEDTLS_MD_SHA256:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]344 mbedtls_sha256_clone(dst->md_ctx, src->md_ctx);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]345 break;
346#endif
Mateusz Starzyk3352a532021-04-06 14:28:22 +0200[diff] [blame]347#if defined(MBEDTLS_SHA384_C)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]348 case MBEDTLS_MD_SHA384:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]349 mbedtls_sha512_clone(dst->md_ctx, src->md_ctx);
Mateusz Starzyk3352a532021-04-06 14:28:22 +0200[diff] [blame]350 break;
Manuel Pégourié-Gonnardd6020842019-07-17 16:28:21 +0200[diff] [blame]351#endif
Mateusz Starzyk3352a532021-04-06 14:28:22 +0200[diff] [blame]352#if defined(MBEDTLS_SHA512_C)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]353 case MBEDTLS_MD_SHA512:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]354 mbedtls_sha512_clone(dst->md_ctx, src->md_ctx);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]355 break;
356#endif
357 default:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]358 return MBEDTLS_ERR_MD_BAD_INPUT_DATA;
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]359 }
Manuel Pégourié-Gonnard052a6c92015-07-06 16:06:02 +0200[diff] [blame]360
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]361 return 0;
Manuel Pégourié-Gonnard052a6c92015-07-06 16:06:02 +0200[diff] [blame]362}
363
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]364#define ALLOC(type) \
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]365 do { \
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]366 ctx->md_ctx = mbedtls_calloc(1, sizeof(mbedtls_##type##_context)); \
367 if (ctx->md_ctx == NULL) \
368 return MBEDTLS_ERR_MD_ALLOC_FAILED; \
369 mbedtls_##type##_init(ctx->md_ctx); \
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]370 } \
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]371 while (0)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]372
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]373int mbedtls_md_setup(mbedtls_md_context_t *ctx, const mbedtls_md_info_t *md_info, int hmac)
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]374{
Thomas Daubney73cfde82023-05-30 15:34:28 +0100[diff] [blame]375#if defined(MBEDTLS_MD_C)
376 if (ctx == NULL) {
377 return MBEDTLS_ERR_MD_BAD_INPUT_DATA;
378 }
379#endif
380 if (md_info == NULL) {
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]381 return MBEDTLS_ERR_MD_BAD_INPUT_DATA;
382 }
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]383
Gilles Peskined15c7402020-08-19 12:03:11 +0200[diff] [blame]384 ctx->md_info = md_info;
385 ctx->md_ctx = NULL;
Manuel Pégourié-Gonnard39a376a2023-03-09 17:21:40 +0100[diff] [blame]386#if defined(MBEDTLS_MD_C)
Gilles Peskined15c7402020-08-19 12:03:11 +0200[diff] [blame]387 ctx->hmac_ctx = NULL;
Manuel Pégourié-Gonnard39a376a2023-03-09 17:21:40 +0100[diff] [blame]388#else
389 if (hmac != 0) {
390 return MBEDTLS_ERR_MD_BAD_INPUT_DATA;
391 }
392#endif
Gilles Peskined15c7402020-08-19 12:03:11 +0200[diff] [blame]393
Gilles Peskine12612e52022-10-22 20:07:28 +0200[diff] [blame]394#if defined(MBEDTLS_MD_SOME_PSA)
Manuel Pégourié-Gonnardf48b1f82023-03-14 10:50:52 +0100[diff] [blame]395 if (md_can_use_psa(ctx->md_info)) {
Gilles Peskine12612e52022-10-22 20:07:28 +0200[diff] [blame]396 ctx->md_ctx = mbedtls_calloc(1, sizeof(psa_hash_operation_t));
397 if (ctx->md_ctx == NULL) {
398 return MBEDTLS_ERR_MD_ALLOC_FAILED;
399 }
Manuel Pégourié-Gonnardd8ea37f2023-03-09 10:46:22 +0100[diff] [blame]400 ctx->engine = MBEDTLS_MD_ENGINE_PSA;
Gilles Peskine12612e52022-10-22 20:07:28 +0200[diff] [blame]401 } else
402#endif
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]403 switch (md_info->type) {
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]404#if defined(MBEDTLS_MD5_C)
405 case MBEDTLS_MD_MD5:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]406 ALLOC(md5);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]407 break;
408#endif
409#if defined(MBEDTLS_RIPEMD160_C)
410 case MBEDTLS_MD_RIPEMD160:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]411 ALLOC(ripemd160);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]412 break;
413#endif
414#if defined(MBEDTLS_SHA1_C)
415 case MBEDTLS_MD_SHA1:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]416 ALLOC(sha1);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]417 break;
418#endif
Mateusz Starzyke3c48b42021-04-19 16:46:28 +0200[diff] [blame]419#if defined(MBEDTLS_SHA224_C)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]420 case MBEDTLS_MD_SHA224:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]421 ALLOC(sha256);
Mateusz Starzyke3c48b42021-04-19 16:46:28 +0200[diff] [blame]422 break;
423#endif
424#if defined(MBEDTLS_SHA256_C)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]425 case MBEDTLS_MD_SHA256:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]426 ALLOC(sha256);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]427 break;
428#endif
Mateusz Starzyk3352a532021-04-06 14:28:22 +0200[diff] [blame]429#if defined(MBEDTLS_SHA384_C)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]430 case MBEDTLS_MD_SHA384:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]431 ALLOC(sha512);
Mateusz Starzyk3352a532021-04-06 14:28:22 +0200[diff] [blame]432 break;
Manuel Pégourié-Gonnardd6020842019-07-17 16:28:21 +0200[diff] [blame]433#endif
Mateusz Starzyk3352a532021-04-06 14:28:22 +0200[diff] [blame]434#if defined(MBEDTLS_SHA512_C)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]435 case MBEDTLS_MD_SHA512:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]436 ALLOC(sha512);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]437 break;
438#endif
439 default:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]440 return MBEDTLS_ERR_MD_BAD_INPUT_DATA;
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]441 }
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]442
Manuel Pégourié-Gonnard39a376a2023-03-09 17:21:40 +0100[diff] [blame]443#if defined(MBEDTLS_MD_C)
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]444 if (hmac != 0) {
445 ctx->hmac_ctx = mbedtls_calloc(2, md_info->block_size);
446 if (ctx->hmac_ctx == NULL) {
447 mbedtls_md_free(ctx);
448 return MBEDTLS_ERR_MD_ALLOC_FAILED;
Manuel Pégourié-Gonnard4063ceb2015-03-25 16:08:53 +0100[diff] [blame]449 }
Manuel Pégourié-Gonnarddfb3dc82015-03-25 11:49:07 +0100[diff] [blame]450 }
Manuel Pégourié-Gonnard39a376a2023-03-09 17:21:40 +0100[diff] [blame]451#endif
Manuel Pégourié-Gonnarddfb3dc82015-03-25 11:49:07 +0100[diff] [blame]452
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]453 return 0;
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]454}
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]455#undef ALLOC
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]456
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]457int mbedtls_md_starts(mbedtls_md_context_t *ctx)
Paul Bakker562535d2011-01-20 16:42:01 +0000[diff] [blame]458{
Thomas Daubney73cfde82023-05-30 15:34:28 +0100[diff] [blame]459#if defined(MBEDTLS_MD_C)
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]460 if (ctx == NULL || ctx->md_info == NULL) {
461 return MBEDTLS_ERR_MD_BAD_INPUT_DATA;
462 }
Thomas Daubney73cfde82023-05-30 15:34:28 +0100[diff] [blame]463#endif
Paul Bakker562535d2011-01-20 16:42:01 +0000[diff] [blame]464
Gilles Peskine12612e52022-10-22 20:07:28 +0200[diff] [blame]465#if defined(MBEDTLS_MD_SOME_PSA)
Manuel Pégourié-Gonnardd8ea37f2023-03-09 10:46:22 +0100[diff] [blame]466 if (ctx->engine == MBEDTLS_MD_ENGINE_PSA) {
467 psa_algorithm_t alg = psa_alg_of_md(ctx->md_info);
Gilles Peskine12612e52022-10-22 20:07:28 +0200[diff] [blame]468 psa_hash_abort(ctx->md_ctx);
469 psa_status_t status = psa_hash_setup(ctx->md_ctx, alg);
470 return mbedtls_md_error_from_psa(status);
471 }
472#endif
473
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]474 switch (ctx->md_info->type) {
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]475#if defined(MBEDTLS_MD5_C)
476 case MBEDTLS_MD_MD5:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]477 return mbedtls_md5_starts(ctx->md_ctx);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]478#endif
479#if defined(MBEDTLS_RIPEMD160_C)
480 case MBEDTLS_MD_RIPEMD160:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]481 return mbedtls_ripemd160_starts(ctx->md_ctx);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]482#endif
483#if defined(MBEDTLS_SHA1_C)
484 case MBEDTLS_MD_SHA1:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]485 return mbedtls_sha1_starts(ctx->md_ctx);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]486#endif
Mateusz Starzyke3c48b42021-04-19 16:46:28 +0200[diff] [blame]487#if defined(MBEDTLS_SHA224_C)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]488 case MBEDTLS_MD_SHA224:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]489 return mbedtls_sha256_starts(ctx->md_ctx, 1);
Mateusz Starzyke3c48b42021-04-19 16:46:28 +0200[diff] [blame]490#endif
491#if defined(MBEDTLS_SHA256_C)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]492 case MBEDTLS_MD_SHA256:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]493 return mbedtls_sha256_starts(ctx->md_ctx, 0);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]494#endif
Mateusz Starzyk3352a532021-04-06 14:28:22 +0200[diff] [blame]495#if defined(MBEDTLS_SHA384_C)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]496 case MBEDTLS_MD_SHA384:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]497 return mbedtls_sha512_starts(ctx->md_ctx, 1);
Manuel Pégourié-Gonnardd6020842019-07-17 16:28:21 +0200[diff] [blame]498#endif
Mateusz Starzyk3352a532021-04-06 14:28:22 +0200[diff] [blame]499#if defined(MBEDTLS_SHA512_C)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]500 case MBEDTLS_MD_SHA512:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]501 return mbedtls_sha512_starts(ctx->md_ctx, 0);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]502#endif
503 default:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]504 return MBEDTLS_ERR_MD_BAD_INPUT_DATA;
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]505 }
Paul Bakker562535d2011-01-20 16:42:01 +0000[diff] [blame]506}
507
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]508int mbedtls_md_update(mbedtls_md_context_t *ctx, const unsigned char *input, size_t ilen)
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]509{
Thomas Daubney73cfde82023-05-30 15:34:28 +0100[diff] [blame]510#if defined(MBEDTLS_MD_C)
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]511 if (ctx == NULL || ctx->md_info == NULL) {
512 return MBEDTLS_ERR_MD_BAD_INPUT_DATA;
513 }
Thomas Daubney73cfde82023-05-30 15:34:28 +0100[diff] [blame]514#endif
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]515
Gilles Peskine12612e52022-10-22 20:07:28 +0200[diff] [blame]516#if defined(MBEDTLS_MD_SOME_PSA)
Manuel Pégourié-Gonnardd8ea37f2023-03-09 10:46:22 +0100[diff] [blame]517 if (ctx->engine == MBEDTLS_MD_ENGINE_PSA) {
Gilles Peskine12612e52022-10-22 20:07:28 +0200[diff] [blame]518 psa_status_t status = psa_hash_update(ctx->md_ctx, input, ilen);
519 return mbedtls_md_error_from_psa(status);
520 }
521#endif
522
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]523 switch (ctx->md_info->type) {
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]524#if defined(MBEDTLS_MD5_C)
525 case MBEDTLS_MD_MD5:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]526 return mbedtls_md5_update(ctx->md_ctx, input, ilen);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]527#endif
528#if defined(MBEDTLS_RIPEMD160_C)
529 case MBEDTLS_MD_RIPEMD160:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]530 return mbedtls_ripemd160_update(ctx->md_ctx, input, ilen);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]531#endif
532#if defined(MBEDTLS_SHA1_C)
533 case MBEDTLS_MD_SHA1:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]534 return mbedtls_sha1_update(ctx->md_ctx, input, ilen);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]535#endif
Mateusz Starzyke3c48b42021-04-19 16:46:28 +0200[diff] [blame]536#if defined(MBEDTLS_SHA224_C)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]537 case MBEDTLS_MD_SHA224:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]538 return mbedtls_sha256_update(ctx->md_ctx, input, ilen);
Mateusz Starzyke3c48b42021-04-19 16:46:28 +0200[diff] [blame]539#endif
540#if defined(MBEDTLS_SHA256_C)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]541 case MBEDTLS_MD_SHA256:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]542 return mbedtls_sha256_update(ctx->md_ctx, input, ilen);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]543#endif
Mateusz Starzyk3352a532021-04-06 14:28:22 +0200[diff] [blame]544#if defined(MBEDTLS_SHA384_C)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]545 case MBEDTLS_MD_SHA384:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]546 return mbedtls_sha512_update(ctx->md_ctx, input, ilen);
Manuel Pégourié-Gonnardd6020842019-07-17 16:28:21 +0200[diff] [blame]547#endif
Mateusz Starzyk3352a532021-04-06 14:28:22 +0200[diff] [blame]548#if defined(MBEDTLS_SHA512_C)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]549 case MBEDTLS_MD_SHA512:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]550 return mbedtls_sha512_update(ctx->md_ctx, input, ilen);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]551#endif
552 default:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]553 return MBEDTLS_ERR_MD_BAD_INPUT_DATA;
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]554 }
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]555}
556
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]557int mbedtls_md_finish(mbedtls_md_context_t *ctx, unsigned char *output)
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]558{
Thomas Daubney73cfde82023-05-30 15:34:28 +0100[diff] [blame]559#if defined(MBEDTLS_MD_C)
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]560 if (ctx == NULL || ctx->md_info == NULL) {
561 return MBEDTLS_ERR_MD_BAD_INPUT_DATA;
562 }
Thomas Daubney73cfde82023-05-30 15:34:28 +0100[diff] [blame]563#endif
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]564
Gilles Peskine12612e52022-10-22 20:07:28 +0200[diff] [blame]565#if defined(MBEDTLS_MD_SOME_PSA)
Manuel Pégourié-Gonnardd8ea37f2023-03-09 10:46:22 +0100[diff] [blame]566 if (ctx->engine == MBEDTLS_MD_ENGINE_PSA) {
Gilles Peskine12612e52022-10-22 20:07:28 +0200[diff] [blame]567 size_t size = ctx->md_info->size;
568 psa_status_t status = psa_hash_finish(ctx->md_ctx,
569 output, size, &size);
570 return mbedtls_md_error_from_psa(status);
571 }
572#endif
573
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]574 switch (ctx->md_info->type) {
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]575#if defined(MBEDTLS_MD5_C)
576 case MBEDTLS_MD_MD5:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]577 return mbedtls_md5_finish(ctx->md_ctx, output);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]578#endif
579#if defined(MBEDTLS_RIPEMD160_C)
580 case MBEDTLS_MD_RIPEMD160:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]581 return mbedtls_ripemd160_finish(ctx->md_ctx, output);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]582#endif
583#if defined(MBEDTLS_SHA1_C)
584 case MBEDTLS_MD_SHA1:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]585 return mbedtls_sha1_finish(ctx->md_ctx, output);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]586#endif
Mateusz Starzyke3c48b42021-04-19 16:46:28 +0200[diff] [blame]587#if defined(MBEDTLS_SHA224_C)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]588 case MBEDTLS_MD_SHA224:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]589 return mbedtls_sha256_finish(ctx->md_ctx, output);
Mateusz Starzyke3c48b42021-04-19 16:46:28 +0200[diff] [blame]590#endif
591#if defined(MBEDTLS_SHA256_C)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]592 case MBEDTLS_MD_SHA256:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]593 return mbedtls_sha256_finish(ctx->md_ctx, output);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]594#endif
Mateusz Starzyk3352a532021-04-06 14:28:22 +0200[diff] [blame]595#if defined(MBEDTLS_SHA384_C)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]596 case MBEDTLS_MD_SHA384:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]597 return mbedtls_sha512_finish(ctx->md_ctx, output);
Manuel Pégourié-Gonnardd6020842019-07-17 16:28:21 +0200[diff] [blame]598#endif
Mateusz Starzyk3352a532021-04-06 14:28:22 +0200[diff] [blame]599#if defined(MBEDTLS_SHA512_C)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]600 case MBEDTLS_MD_SHA512:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]601 return mbedtls_sha512_finish(ctx->md_ctx, output);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]602#endif
603 default:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]604 return MBEDTLS_ERR_MD_BAD_INPUT_DATA;
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]605 }
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]606}
607
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]608int mbedtls_md(const mbedtls_md_info_t *md_info, const unsigned char *input, size_t ilen,
609 unsigned char *output)
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]610{
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]611 if (md_info == NULL) {
612 return MBEDTLS_ERR_MD_BAD_INPUT_DATA;
613 }
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]614
Gilles Peskine12612e52022-10-22 20:07:28 +0200[diff] [blame]615#if defined(MBEDTLS_MD_SOME_PSA)
Manuel Pégourié-Gonnardf48b1f82023-03-14 10:50:52 +0100[diff] [blame]616 if (md_can_use_psa(md_info)) {
Gilles Peskine12612e52022-10-22 20:07:28 +0200[diff] [blame]617 size_t size = md_info->size;
Manuel Pégourié-Gonnardd8ea37f2023-03-09 10:46:22 +0100[diff] [blame]618 psa_status_t status = psa_hash_compute(psa_alg_of_md(md_info),
Gilles Peskine12612e52022-10-22 20:07:28 +0200[diff] [blame]619 input, ilen,
620 output, size, &size);
621 return mbedtls_md_error_from_psa(status);
622 }
623#endif
624
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]625 switch (md_info->type) {
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]626#if defined(MBEDTLS_MD5_C)
627 case MBEDTLS_MD_MD5:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]628 return mbedtls_md5(input, ilen, output);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]629#endif
630#if defined(MBEDTLS_RIPEMD160_C)
631 case MBEDTLS_MD_RIPEMD160:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]632 return mbedtls_ripemd160(input, ilen, output);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]633#endif
634#if defined(MBEDTLS_SHA1_C)
635 case MBEDTLS_MD_SHA1:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]636 return mbedtls_sha1(input, ilen, output);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]637#endif
Mateusz Starzyke3c48b42021-04-19 16:46:28 +0200[diff] [blame]638#if defined(MBEDTLS_SHA224_C)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]639 case MBEDTLS_MD_SHA224:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]640 return mbedtls_sha256(input, ilen, output, 1);
Mateusz Starzyke3c48b42021-04-19 16:46:28 +0200[diff] [blame]641#endif
642#if defined(MBEDTLS_SHA256_C)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]643 case MBEDTLS_MD_SHA256:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]644 return mbedtls_sha256(input, ilen, output, 0);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]645#endif
Mateusz Starzyk3352a532021-04-06 14:28:22 +0200[diff] [blame]646#if defined(MBEDTLS_SHA384_C)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]647 case MBEDTLS_MD_SHA384:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]648 return mbedtls_sha512(input, ilen, output, 1);
Manuel Pégourié-Gonnardd6020842019-07-17 16:28:21 +0200[diff] [blame]649#endif
Mateusz Starzyk3352a532021-04-06 14:28:22 +0200[diff] [blame]650#if defined(MBEDTLS_SHA512_C)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]651 case MBEDTLS_MD_SHA512:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]652 return mbedtls_sha512(input, ilen, output, 0);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]653#endif
654 default:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]655 return MBEDTLS_ERR_MD_BAD_INPUT_DATA;
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]656 }
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]657}
658
Manuel Pégourié-Gonnard1e57abd2023-02-23 20:45:26 +0100[diff] [blame]659unsigned char mbedtls_md_get_size(const mbedtls_md_info_t *md_info)
660{
661 if (md_info == NULL) {
662 return 0;
663 }
664
665 return md_info->size;
666}
667
668mbedtls_md_type_t mbedtls_md_get_type(const mbedtls_md_info_t *md_info)
669{
670 if (md_info == NULL) {
671 return MBEDTLS_MD_NONE;
672 }
673
674 return md_info->type;
675}
676
Manuel Pégourié-Gonnard36fb12e2023-03-28 11:33:23 +0200[diff] [blame]677#if defined(MBEDTLS_PSA_CRYPTO_C)
678psa_algorithm_t mbedtls_md_psa_alg_from_type(mbedtls_md_type_t md_type)
679{
680 switch (md_type) {
681#if defined(MBEDTLS_MD_CAN_MD5)
682 case MBEDTLS_MD_MD5:
683 return PSA_ALG_MD5;
684#endif
685#if defined(MBEDTLS_MD_CAN_RIPEMD160)
686 case MBEDTLS_MD_RIPEMD160:
687 return PSA_ALG_RIPEMD160;
688#endif
689#if defined(MBEDTLS_MD_CAN_SHA1)
690 case MBEDTLS_MD_SHA1:
691 return PSA_ALG_SHA_1;
692#endif
693#if defined(MBEDTLS_MD_CAN_SHA224)
694 case MBEDTLS_MD_SHA224:
695 return PSA_ALG_SHA_224;
696#endif
697#if defined(MBEDTLS_MD_CAN_SHA256)
698 case MBEDTLS_MD_SHA256:
699 return PSA_ALG_SHA_256;
700#endif
701#if defined(MBEDTLS_MD_CAN_SHA384)
702 case MBEDTLS_MD_SHA384:
703 return PSA_ALG_SHA_384;
704#endif
705#if defined(MBEDTLS_MD_CAN_SHA512)
706 case MBEDTLS_MD_SHA512:
707 return PSA_ALG_SHA_512;
708#endif
709 default:
710 return PSA_ALG_NONE;
711 }
712}
713
714mbedtls_md_type_t mbedtls_md_type_from_psa_alg(psa_algorithm_t psa_alg)
715{
716 switch (psa_alg) {
717#if defined(MBEDTLS_MD_CAN_MD5)
718 case PSA_ALG_MD5:
719 return MBEDTLS_MD_MD5;
720#endif
721#if defined(MBEDTLS_MD_CAN_RIPEMD160)
722 case PSA_ALG_RIPEMD160:
723 return MBEDTLS_MD_RIPEMD160;
724#endif
725#if defined(MBEDTLS_MD_CAN_SHA1)
726 case PSA_ALG_SHA_1:
727 return MBEDTLS_MD_SHA1;
728#endif
729#if defined(MBEDTLS_MD_CAN_SHA224)
730 case PSA_ALG_SHA_224:
731 return MBEDTLS_MD_SHA224;
732#endif
733#if defined(MBEDTLS_MD_CAN_SHA256)
734 case PSA_ALG_SHA_256:
735 return MBEDTLS_MD_SHA256;
736#endif
737#if defined(MBEDTLS_MD_CAN_SHA384)
738 case PSA_ALG_SHA_384:
739 return MBEDTLS_MD_SHA384;
740#endif
741#if defined(MBEDTLS_MD_CAN_SHA512)
742 case PSA_ALG_SHA_512:
743 return MBEDTLS_MD_SHA512;
744#endif
745 default:
746 return MBEDTLS_MD_NONE;
747 }
748}
749
750int mbedtls_md_error_from_psa(psa_status_t status)
751{
Manuel Pégourié-Gonnardb3b54ab2023-03-29 12:36:34 +0200[diff] [blame]752 return PSA_TO_MBEDTLS_ERR_LIST(status, psa_to_md_errors,
753 psa_generic_status_to_mbedtls);
Manuel Pégourié-Gonnard36fb12e2023-03-28 11:33:23 +0200[diff] [blame]754}
755#endif /* MBEDTLS_PSA_CRYPTO_C */
756
757
Manuel Pégourié-Gonnard1e57abd2023-02-23 20:45:26 +0100[diff] [blame]758/************************************************************************
759 * Functions above this separator are part of MBEDTLS_MD_LIGHT, *
760 * functions below are only available when MBEDTLS_MD_C is set. *
761 ************************************************************************/
762#if defined(MBEDTLS_MD_C)
763
764/*
765 * Reminder: update profiles in x509_crt.c when adding a new hash!
766 */
767static const int supported_digests[] = {
768
Gilles Peskine83d9e092022-10-22 18:32:43 +0200[diff] [blame]769#if defined(MBEDTLS_MD_CAN_SHA512)
Manuel Pégourié-Gonnard1e57abd2023-02-23 20:45:26 +0100[diff] [blame]770 MBEDTLS_MD_SHA512,
771#endif
772
Gilles Peskine83d9e092022-10-22 18:32:43 +0200[diff] [blame]773#if defined(MBEDTLS_MD_CAN_SHA384)
Manuel Pégourié-Gonnard1e57abd2023-02-23 20:45:26 +0100[diff] [blame]774 MBEDTLS_MD_SHA384,
775#endif
776
Gilles Peskine83d9e092022-10-22 18:32:43 +0200[diff] [blame]777#if defined(MBEDTLS_MD_CAN_SHA256)
Manuel Pégourié-Gonnard1e57abd2023-02-23 20:45:26 +0100[diff] [blame]778 MBEDTLS_MD_SHA256,
779#endif
Gilles Peskine83d9e092022-10-22 18:32:43 +0200[diff] [blame]780#if defined(MBEDTLS_MD_CAN_SHA224)
Manuel Pégourié-Gonnard1e57abd2023-02-23 20:45:26 +0100[diff] [blame]781 MBEDTLS_MD_SHA224,
782#endif
783
Gilles Peskine83d9e092022-10-22 18:32:43 +0200[diff] [blame]784#if defined(MBEDTLS_MD_CAN_SHA1)
Manuel Pégourié-Gonnard1e57abd2023-02-23 20:45:26 +0100[diff] [blame]785 MBEDTLS_MD_SHA1,
786#endif
787
Gilles Peskine83d9e092022-10-22 18:32:43 +0200[diff] [blame]788#if defined(MBEDTLS_MD_CAN_RIPEMD160)
Manuel Pégourié-Gonnard1e57abd2023-02-23 20:45:26 +0100[diff] [blame]789 MBEDTLS_MD_RIPEMD160,
790#endif
791
Gilles Peskine83d9e092022-10-22 18:32:43 +0200[diff] [blame]792#if defined(MBEDTLS_MD_CAN_MD5)
Manuel Pégourié-Gonnard1e57abd2023-02-23 20:45:26 +0100[diff] [blame]793 MBEDTLS_MD_MD5,
794#endif
795
796 MBEDTLS_MD_NONE
797};
798
799const int *mbedtls_md_list(void)
800{
801 return supported_digests;
802}
803
804const mbedtls_md_info_t *mbedtls_md_info_from_string(const char *md_name)
805{
806 if (NULL == md_name) {
807 return NULL;
808 }
809
810 /* Get the appropriate digest information */
Gilles Peskine83d9e092022-10-22 18:32:43 +0200[diff] [blame]811#if defined(MBEDTLS_MD_CAN_MD5)
Manuel Pégourié-Gonnard1e57abd2023-02-23 20:45:26 +0100[diff] [blame]812 if (!strcmp("MD5", md_name)) {
813 return mbedtls_md_info_from_type(MBEDTLS_MD_MD5);
814 }
815#endif
Gilles Peskine83d9e092022-10-22 18:32:43 +0200[diff] [blame]816#if defined(MBEDTLS_MD_CAN_RIPEMD160)
Manuel Pégourié-Gonnard1e57abd2023-02-23 20:45:26 +0100[diff] [blame]817 if (!strcmp("RIPEMD160", md_name)) {
818 return mbedtls_md_info_from_type(MBEDTLS_MD_RIPEMD160);
819 }
820#endif
Gilles Peskine83d9e092022-10-22 18:32:43 +0200[diff] [blame]821#if defined(MBEDTLS_MD_CAN_SHA1)
Manuel Pégourié-Gonnard1e57abd2023-02-23 20:45:26 +0100[diff] [blame]822 if (!strcmp("SHA1", md_name) || !strcmp("SHA", md_name)) {
823 return mbedtls_md_info_from_type(MBEDTLS_MD_SHA1);
824 }
825#endif
Gilles Peskine83d9e092022-10-22 18:32:43 +0200[diff] [blame]826#if defined(MBEDTLS_MD_CAN_SHA224)
Manuel Pégourié-Gonnard1e57abd2023-02-23 20:45:26 +0100[diff] [blame]827 if (!strcmp("SHA224", md_name)) {
828 return mbedtls_md_info_from_type(MBEDTLS_MD_SHA224);
829 }
830#endif
Gilles Peskine83d9e092022-10-22 18:32:43 +0200[diff] [blame]831#if defined(MBEDTLS_MD_CAN_SHA256)
Manuel Pégourié-Gonnard1e57abd2023-02-23 20:45:26 +0100[diff] [blame]832 if (!strcmp("SHA256", md_name)) {
833 return mbedtls_md_info_from_type(MBEDTLS_MD_SHA256);
834 }
835#endif
Gilles Peskine83d9e092022-10-22 18:32:43 +0200[diff] [blame]836#if defined(MBEDTLS_MD_CAN_SHA384)
Manuel Pégourié-Gonnard1e57abd2023-02-23 20:45:26 +0100[diff] [blame]837 if (!strcmp("SHA384", md_name)) {
838 return mbedtls_md_info_from_type(MBEDTLS_MD_SHA384);
839 }
840#endif
Gilles Peskine83d9e092022-10-22 18:32:43 +0200[diff] [blame]841#if defined(MBEDTLS_MD_CAN_SHA512)
Manuel Pégourié-Gonnard1e57abd2023-02-23 20:45:26 +0100[diff] [blame]842 if (!strcmp("SHA512", md_name)) {
843 return mbedtls_md_info_from_type(MBEDTLS_MD_SHA512);
844 }
845#endif
846 return NULL;
847}
848
849const mbedtls_md_info_t *mbedtls_md_info_from_ctx(
850 const mbedtls_md_context_t *ctx)
851{
852 if (ctx == NULL) {
853 return NULL;
854 }
855
856 return ctx->MBEDTLS_PRIVATE(md_info);
857}
858
859#if defined(MBEDTLS_FS_IO)
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]860int mbedtls_md_file(const mbedtls_md_info_t *md_info, const char *path, unsigned char *output)
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]861{
Janos Follath24eed8d2019-11-22 13:21:35 +0000[diff] [blame]862 int ret = MBEDTLS_ERR_ERROR_CORRUPTION_DETECTED;
Manuel Pégourié-Gonnardbfffa902015-05-28 14:44:00 +0200[diff] [blame]863 FILE *f;
864 size_t n;
865 mbedtls_md_context_t ctx;
866 unsigned char buf[1024];
Paul Bakker9c021ad2011-06-09 15:55:11 +0000[diff] [blame]867
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]868 if (md_info == NULL) {
869 return MBEDTLS_ERR_MD_BAD_INPUT_DATA;
870 }
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]871
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]872 if ((f = fopen(path, "rb")) == NULL) {
873 return MBEDTLS_ERR_MD_FILE_IO_ERROR;
874 }
Manuel Pégourié-Gonnardbcc03082015-06-24 00:09:29 +0200[diff] [blame]875
Gilles Peskineda0913b2022-06-30 17:03:40 +0200[diff] [blame]876 /* Ensure no stdio buffering of secrets, as such buffers cannot be wiped. */
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]877 mbedtls_setbuf(f, NULL);
Gilles Peskineda0913b2022-06-30 17:03:40 +0200[diff] [blame]878
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]879 mbedtls_md_init(&ctx);
Manuel Pégourié-Gonnardbfffa902015-05-28 14:44:00 +0200[diff] [blame]880
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]881 if ((ret = mbedtls_md_setup(&ctx, md_info, 0)) != 0) {
Manuel Pégourié-Gonnardbfffa902015-05-28 14:44:00 +0200[diff] [blame]882 goto cleanup;
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]883 }
Manuel Pégourié-Gonnardbfffa902015-05-28 14:44:00 +0200[diff] [blame]884
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]885 if ((ret = mbedtls_md_starts(&ctx)) != 0) {
Andres Amaya Garcia0dd4fa02017-06-28 14:16:07 +0100[diff] [blame]886 goto cleanup;
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]887 }
Manuel Pégourié-Gonnardbfffa902015-05-28 14:44:00 +0200[diff] [blame]888
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]889 while ((n = fread(buf, 1, sizeof(buf), f)) > 0) {
890 if ((ret = mbedtls_md_update(&ctx, buf, n)) != 0) {
Andres Amaya Garcia0dd4fa02017-06-28 14:16:07 +0100[diff] [blame]891 goto cleanup;
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]892 }
893 }
Manuel Pégourié-Gonnardbfffa902015-05-28 14:44:00 +0200[diff] [blame]894
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]895 if (ferror(f) != 0) {
Manuel Pégourié-Gonnardbfffa902015-05-28 14:44:00 +0200[diff] [blame]896 ret = MBEDTLS_ERR_MD_FILE_IO_ERROR;
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]897 } else {
898 ret = mbedtls_md_finish(&ctx, output);
899 }
Manuel Pégourié-Gonnardbfffa902015-05-28 14:44:00 +0200[diff] [blame]900
901cleanup:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]902 mbedtls_platform_zeroize(buf, sizeof(buf));
903 fclose(f);
904 mbedtls_md_free(&ctx);
Paul Bakker9c021ad2011-06-09 15:55:11 +0000[diff] [blame]905
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]906 return ret;
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]907}
Manuel Pégourié-Gonnard1e57abd2023-02-23 20:45:26 +0100[diff] [blame]908#endif /* MBEDTLS_FS_IO */
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]909
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]910int mbedtls_md_hmac_starts(mbedtls_md_context_t *ctx, const unsigned char *key, size_t keylen)
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]911{
Janos Follath24eed8d2019-11-22 13:21:35 +0000[diff] [blame]912 int ret = MBEDTLS_ERR_ERROR_CORRUPTION_DETECTED;
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]913 unsigned char sum[MBEDTLS_MD_MAX_SIZE];
Manuel Pégourié-Gonnarddfb3dc82015-03-25 11:49:07 +0100[diff] [blame]914 unsigned char *ipad, *opad;
Manuel Pégourié-Gonnard8379a822015-03-24 16:48:22 +0100[diff] [blame]915
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]916 if (ctx == NULL || ctx->md_info == NULL || ctx->hmac_ctx == NULL) {
917 return MBEDTLS_ERR_MD_BAD_INPUT_DATA;
918 }
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]919
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]920 if (keylen > (size_t) ctx->md_info->block_size) {
921 if ((ret = mbedtls_md_starts(ctx)) != 0) {
Andres Amaya Garcia0dd4fa02017-06-28 14:16:07 +0100[diff] [blame]922 goto cleanup;
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]923 }
924 if ((ret = mbedtls_md_update(ctx, key, keylen)) != 0) {
Andres Amaya Garcia0dd4fa02017-06-28 14:16:07 +0100[diff] [blame]925 goto cleanup;
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]926 }
927 if ((ret = mbedtls_md_finish(ctx, sum)) != 0) {
Andres Amaya Garcia0dd4fa02017-06-28 14:16:07 +0100[diff] [blame]928 goto cleanup;
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]929 }
Manuel Pégourié-Gonnard8379a822015-03-24 16:48:22 +0100[diff] [blame]930
931 keylen = ctx->md_info->size;
932 key = sum;
933 }
934
Manuel Pégourié-Gonnarddfb3dc82015-03-25 11:49:07 +0100[diff] [blame]935 ipad = (unsigned char *) ctx->hmac_ctx;
936 opad = (unsigned char *) ctx->hmac_ctx + ctx->md_info->block_size;
937
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]938 memset(ipad, 0x36, ctx->md_info->block_size);
939 memset(opad, 0x5C, ctx->md_info->block_size);
Manuel Pégourié-Gonnard8379a822015-03-24 16:48:22 +0100[diff] [blame]940
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]941 mbedtls_xor(ipad, ipad, key, keylen);
942 mbedtls_xor(opad, opad, key, keylen);
Manuel Pégourié-Gonnard8379a822015-03-24 16:48:22 +0100[diff] [blame]943
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]944 if ((ret = mbedtls_md_starts(ctx)) != 0) {
Andres Amaya Garcia0dd4fa02017-06-28 14:16:07 +0100[diff] [blame]945 goto cleanup;
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]946 }
947 if ((ret = mbedtls_md_update(ctx, ipad,
948 ctx->md_info->block_size)) != 0) {
Andres Amaya Garcia42e5e102017-07-20 16:27:03 +0100[diff] [blame]949 goto cleanup;
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]950 }
Andres Amaya Garcia0dd4fa02017-06-28 14:16:07 +0100[diff] [blame]951
952cleanup:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]953 mbedtls_platform_zeroize(sum, sizeof(sum));
Manuel Pégourié-Gonnard8379a822015-03-24 16:48:22 +0100[diff] [blame]954
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]955 return ret;
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]956}
957
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]958int mbedtls_md_hmac_update(mbedtls_md_context_t *ctx, const unsigned char *input, size_t ilen)
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]959{
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]960 if (ctx == NULL || ctx->md_info == NULL || ctx->hmac_ctx == NULL) {
961 return MBEDTLS_ERR_MD_BAD_INPUT_DATA;
962 }
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]963
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]964 return mbedtls_md_update(ctx, input, ilen);
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]965}
966
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]967int mbedtls_md_hmac_finish(mbedtls_md_context_t *ctx, unsigned char *output)
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]968{
Janos Follath24eed8d2019-11-22 13:21:35 +0000[diff] [blame]969 int ret = MBEDTLS_ERR_ERROR_CORRUPTION_DETECTED;
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]970 unsigned char tmp[MBEDTLS_MD_MAX_SIZE];
Manuel Pégourié-Gonnarddfb3dc82015-03-25 11:49:07 +0100[diff] [blame]971 unsigned char *opad;
Manuel Pégourié-Gonnard8379a822015-03-24 16:48:22 +0100[diff] [blame]972
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]973 if (ctx == NULL || ctx->md_info == NULL || ctx->hmac_ctx == NULL) {
974 return MBEDTLS_ERR_MD_BAD_INPUT_DATA;
975 }
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]976
Manuel Pégourié-Gonnarddfb3dc82015-03-25 11:49:07 +0100[diff] [blame]977 opad = (unsigned char *) ctx->hmac_ctx + ctx->md_info->block_size;
978
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]979 if ((ret = mbedtls_md_finish(ctx, tmp)) != 0) {
980 return ret;
981 }
982 if ((ret = mbedtls_md_starts(ctx)) != 0) {
983 return ret;
984 }
985 if ((ret = mbedtls_md_update(ctx, opad,
986 ctx->md_info->block_size)) != 0) {
987 return ret;
988 }
989 if ((ret = mbedtls_md_update(ctx, tmp,
990 ctx->md_info->size)) != 0) {
991 return ret;
992 }
993 return mbedtls_md_finish(ctx, output);
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]994}
995
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]996int mbedtls_md_hmac_reset(mbedtls_md_context_t *ctx)
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]997{
Janos Follath24eed8d2019-11-22 13:21:35 +0000[diff] [blame]998 int ret = MBEDTLS_ERR_ERROR_CORRUPTION_DETECTED;
Manuel Pégourié-Gonnarddfb3dc82015-03-25 11:49:07 +0100[diff] [blame]999 unsigned char *ipad;
1000
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1001 if (ctx == NULL || ctx->md_info == NULL || ctx->hmac_ctx == NULL) {
1002 return MBEDTLS_ERR_MD_BAD_INPUT_DATA;
1003 }
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]1004
Manuel Pégourié-Gonnarddfb3dc82015-03-25 11:49:07 +0100[diff] [blame]1005 ipad = (unsigned char *) ctx->hmac_ctx;
1006
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1007 if ((ret = mbedtls_md_starts(ctx)) != 0) {
1008 return ret;
1009 }
1010 return mbedtls_md_update(ctx, ipad, ctx->md_info->block_size);
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]1011}
1012
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1013int mbedtls_md_hmac(const mbedtls_md_info_t *md_info,
1014 const unsigned char *key, size_t keylen,
1015 const unsigned char *input, size_t ilen,
1016 unsigned char *output)
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]1017{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1018 mbedtls_md_context_t ctx;
Janos Follath24eed8d2019-11-22 13:21:35 +0000[diff] [blame]1019 int ret = MBEDTLS_ERR_ERROR_CORRUPTION_DETECTED;
Manuel Pégourié-Gonnard8379a822015-03-24 16:48:22 +0100[diff] [blame]1020
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1021 if (md_info == NULL) {
1022 return MBEDTLS_ERR_MD_BAD_INPUT_DATA;
1023 }
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]1024
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1025 mbedtls_md_init(&ctx);
Manuel Pégourié-Gonnard8379a822015-03-24 16:48:22 +0100[diff] [blame]1026
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1027 if ((ret = mbedtls_md_setup(&ctx, md_info, 1)) != 0) {
Andres Amaya Garcia0dd4fa02017-06-28 14:16:07 +0100[diff] [blame]1028 goto cleanup;
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1029 }
Manuel Pégourié-Gonnard8379a822015-03-24 16:48:22 +0100[diff] [blame]1030
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1031 if ((ret = mbedtls_md_hmac_starts(&ctx, key, keylen)) != 0) {
Andres Amaya Garcia0dd4fa02017-06-28 14:16:07 +0100[diff] [blame]1032 goto cleanup;
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1033 }
1034 if ((ret = mbedtls_md_hmac_update(&ctx, input, ilen)) != 0) {
Andres Amaya Garcia0dd4fa02017-06-28 14:16:07 +0100[diff] [blame]1035 goto cleanup;
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1036 }
1037 if ((ret = mbedtls_md_hmac_finish(&ctx, output)) != 0) {
Andres Amaya Garciaaa464ef2017-07-21 14:21:53 +0100[diff] [blame]1038 goto cleanup;
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1039 }
Manuel Pégourié-Gonnard8379a822015-03-24 16:48:22 +0100[diff] [blame]1040
Andres Amaya Garcia0dd4fa02017-06-28 14:16:07 +0100[diff] [blame]1041cleanup:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1042 mbedtls_md_free(&ctx);
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]1043
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1044 return ret;
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]1045}
1046
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1047const char *mbedtls_md_get_name(const mbedtls_md_info_t *md_info)
Manuel Pégourié-Gonnardca878db2015-03-24 12:13:30 +0100[diff] [blame]1048{
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1049 if (md_info == NULL) {
1050 return NULL;
1051 }
Manuel Pégourié-Gonnardca878db2015-03-24 12:13:30 +0100[diff] [blame]1052
1053 return md_info->name;
1054}
Manuel Pégourié-Gonnard1e57abd2023-02-23 20:45:26 +0100[diff] [blame]1055
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1056#endif /* MBEDTLS_MD_C */
Manuel Pégourié-Gonnardb9b630d2023-02-16 19:07:31 +0100[diff] [blame]1057
1058#endif /* MBEDTLS_MD_LIGHT */