TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls / d30eed4d55940a7af33b2e6da6179a3480e8f792 / . / library / cipher_wrap.c
blob: 7987518655a53563ba86ead1755b1d349e4e4d46 [file] [log] [blame]
Paul Bakker8123e9d2011-01-06 15:37:30 +0000[diff] [blame]1/**
Paul Bakkerfae35f02013-03-13 10:33:51 +0100[diff] [blame]2 * \file cipher_wrap.c
Paul Bakker9af723c2014-05-01 13:03:14 +0200[diff] [blame]3 *
Manuel Pégourié-Gonnardb4fe3cb2015-01-22 16:11:05 +0000[diff] [blame]4 * \brief Generic cipher wrapper for mbed TLS
Paul Bakker8123e9d2011-01-06 15:37:30 +0000[diff] [blame]5 *
6 * \author Adriaan de Jong <dejong@fox-it.com>
7 *
Bence Szépkúti1e148272020-08-07 13:07:28 +0200[diff] [blame]8 * Copyright The Mbed TLS Contributors
Manuel Pégourié-Gonnard37ff1402015-09-04 14:21:07 +0200[diff] [blame]9 * SPDX-License-Identifier: Apache-2.0
10 *
11 * Licensed under the Apache License, Version 2.0 (the "License"); you may
12 * not use this file except in compliance with the License.
13 * You may obtain a copy of the License at
14 *
15 * http://www.apache.org/licenses/LICENSE-2.0
16 *
17 * Unless required by applicable law or agreed to in writing, software
18 * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
19 * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
20 * See the License for the specific language governing permissions and
21 * limitations under the License.
Paul Bakker8123e9d2011-01-06 15:37:30 +0000[diff] [blame]22 */
23
Gilles Peskinedb09ef62020-06-03 01:43:33 +0200[diff] [blame]24#include "common.h"
Paul Bakker8123e9d2011-01-06 15:37:30 +0000[diff] [blame]25
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]26#if defined(MBEDTLS_CIPHER_C)
Paul Bakker8123e9d2011-01-06 15:37:30 +0000[diff] [blame]27
Chris Jonesdaacb592021-03-09 17:03:29 +0000[diff] [blame]28#include "cipher_wrap.h"
Janos Follath24eed8d2019-11-22 13:21:35 +0000[diff] [blame]29#include "mbedtls/error.h"
Paul Bakkerf6543712012-03-05 14:01:29 +0000[diff] [blame]30
Manuel Pégourié-Gonnarddca3a5d2018-05-07 10:43:27 +0200[diff] [blame]31#if defined(MBEDTLS_CHACHAPOLY_C)
32#include "mbedtls/chachapoly.h"
Daniel King8fe47012016-05-17 20:33:28 -0300[diff] [blame]33#endif
34
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]35#if defined(MBEDTLS_AES_C)
Manuel Pégourié-Gonnard7f809972015-03-09 17:05:11 +0000[diff] [blame]36#include "mbedtls/aes.h"
Paul Bakkerf6543712012-03-05 14:01:29 +0000[diff] [blame]37#endif
38
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]39#if defined(MBEDTLS_CAMELLIA_C)
Manuel Pégourié-Gonnard7f809972015-03-09 17:05:11 +0000[diff] [blame]40#include "mbedtls/camellia.h"
Paul Bakkerf6543712012-03-05 14:01:29 +0000[diff] [blame]41#endif
42
Markku-Juhani O. Saarinenc06e1012017-12-07 11:51:13 +0000[diff] [blame]43#if defined(MBEDTLS_ARIA_C)
44#include "mbedtls/aria.h"
45#endif
46
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]47#if defined(MBEDTLS_DES_C)
Manuel Pégourié-Gonnard7f809972015-03-09 17:05:11 +0000[diff] [blame]48#include "mbedtls/des.h"
Paul Bakker02f61692012-03-15 10:54:25 +0000[diff] [blame]49#endif
Paul Bakker8123e9d2011-01-06 15:37:30 +0000[diff] [blame]50
Daniel Kingbd920622016-05-15 19:56:20 -0300[diff] [blame]51#if defined(MBEDTLS_CHACHA20_C)
52#include "mbedtls/chacha20.h"
53#endif
54
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]55#if defined(MBEDTLS_GCM_C)
Manuel Pégourié-Gonnard7f809972015-03-09 17:05:11 +0000[diff] [blame]56#include "mbedtls/gcm.h"
Manuel Pégourié-Gonnard07f8fa52013-08-30 18:34:08 +0200[diff] [blame]57#endif
58
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]59#if defined(MBEDTLS_CCM_C)
Manuel Pégourié-Gonnard7f809972015-03-09 17:05:11 +0000[diff] [blame]60#include "mbedtls/ccm.h"
Manuel Pégourié-Gonnard41936952014-05-13 13:18:17 +0200[diff] [blame]61#endif
62
Jack Lloydffdf2882019-03-07 17:00:32 -0500[diff] [blame]63#if defined(MBEDTLS_NIST_KW_C)
64#include "mbedtls/nist_kw.h"
65#endif
66
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]67#if defined(MBEDTLS_CIPHER_NULL_CIPHER)
Manuel Pégourié-Gonnard0c851ee2015-02-10 12:47:52 +0000[diff] [blame]68#include <string.h>
69#endif
70
Manuel Pégourié-Gonnard7f809972015-03-09 17:05:11 +0000[diff] [blame]71#include "mbedtls/platform.h"
Paul Bakker6e339b52013-07-03 13:37:05 +0200[diff] [blame]72
Dave Rodgmande3de772023-06-24 12:51:06 +0100[diff] [blame]73#define MBEDTLS_CIPHER_BASE_INDEX_AES 0
74#define MBEDTLS_CIPHER_BASE_INDEX_ARIA 1
75#define MBEDTLS_CIPHER_BASE_INDEX_CAMELLIA 2
76#define MBEDTLS_CIPHER_BASE_INDEX_CCM_AES 3
77#define MBEDTLS_CIPHER_BASE_INDEX_CCM_ARIA 4
78#define MBEDTLS_CIPHER_BASE_INDEX_CCM_CAMELLIA 5
79#define MBEDTLS_CIPHER_BASE_INDEX_CHACHA20_BASE 6
80#define MBEDTLS_CIPHER_BASE_INDEX_CHACHAPOLY_BASE 7
81#define MBEDTLS_CIPHER_BASE_INDEX_DES_EDE3 8
82#define MBEDTLS_CIPHER_BASE_INDEX_DES_EDE 9
83#define MBEDTLS_CIPHER_BASE_INDEX_DES 10
84#define MBEDTLS_CIPHER_BASE_INDEX_GCM_AES 11
85#define MBEDTLS_CIPHER_BASE_INDEX_GCM_ARIA 12
86#define MBEDTLS_CIPHER_BASE_INDEX_GCM_CAMELLIA 13
87#define MBEDTLS_CIPHER_BASE_INDEX_KW_AES 14
88#define MBEDTLS_CIPHER_BASE_INDEX_NULL_BASE 15
89#define MBEDTLS_CIPHER_BASE_INDEX_XTS_AES 16
90
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]91#if defined(MBEDTLS_GCM_C)
Manuel Pégourié-Gonnard87181d12013-10-24 14:02:40 +0200[diff] [blame]92/* shared by all GCM ciphers */
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]93static void *gcm_ctx_alloc(void)
Manuel Pégourié-Gonnard87181d12013-10-24 14:02:40 +0200[diff] [blame]94{
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]95 void *ctx = mbedtls_calloc(1, sizeof(mbedtls_gcm_context));
Manuel Pégourié-Gonnard96fb6852015-06-23 11:39:01 +0200[diff] [blame]96
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]97 if (ctx != NULL) {
98 mbedtls_gcm_init((mbedtls_gcm_context *) ctx);
99 }
Manuel Pégourié-Gonnard96fb6852015-06-23 11:39:01 +0200[diff] [blame]100
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]101 return ctx;
Manuel Pégourié-Gonnard87181d12013-10-24 14:02:40 +0200[diff] [blame]102}
103
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]104static void gcm_ctx_free(void *ctx)
Manuel Pégourié-Gonnard87181d12013-10-24 14:02:40 +0200[diff] [blame]105{
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]106 mbedtls_gcm_free(ctx);
107 mbedtls_free(ctx);
Manuel Pégourié-Gonnard87181d12013-10-24 14:02:40 +0200[diff] [blame]108}
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]109#endif /* MBEDTLS_GCM_C */
Manuel Pégourié-Gonnard87181d12013-10-24 14:02:40 +0200[diff] [blame]110
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]111#if defined(MBEDTLS_CCM_C)
Manuel Pégourié-Gonnard41936952014-05-13 13:18:17 +0200[diff] [blame]112/* shared by all CCM ciphers */
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]113static void *ccm_ctx_alloc(void)
Manuel Pégourié-Gonnard41936952014-05-13 13:18:17 +0200[diff] [blame]114{
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]115 void *ctx = mbedtls_calloc(1, sizeof(mbedtls_ccm_context));
Manuel Pégourié-Gonnard96fb6852015-06-23 11:39:01 +0200[diff] [blame]116
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]117 if (ctx != NULL) {
118 mbedtls_ccm_init((mbedtls_ccm_context *) ctx);
119 }
Manuel Pégourié-Gonnard96fb6852015-06-23 11:39:01 +0200[diff] [blame]120
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]121 return ctx;
Manuel Pégourié-Gonnard41936952014-05-13 13:18:17 +0200[diff] [blame]122}
123
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]124static void ccm_ctx_free(void *ctx)
Manuel Pégourié-Gonnard41936952014-05-13 13:18:17 +0200[diff] [blame]125{
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]126 mbedtls_ccm_free(ctx);
127 mbedtls_free(ctx);
Manuel Pégourié-Gonnard41936952014-05-13 13:18:17 +0200[diff] [blame]128}
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]129#endif /* MBEDTLS_CCM_C */
Manuel Pégourié-Gonnard41936952014-05-13 13:18:17 +0200[diff] [blame]130
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]131#if defined(MBEDTLS_AES_C)
Paul Bakker8123e9d2011-01-06 15:37:30 +0000[diff] [blame]132
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]133static int aes_crypt_ecb_wrap(void *ctx, mbedtls_operation_t operation,
134 const unsigned char *input, unsigned char *output)
Paul Bakker5e0efa72013-09-08 23:04:04 +0200[diff] [blame]135{
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]136 return mbedtls_aes_crypt_ecb((mbedtls_aes_context *) ctx, operation, input, output);
Paul Bakker5e0efa72013-09-08 23:04:04 +0200[diff] [blame]137}
138
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]139#if defined(MBEDTLS_CIPHER_MODE_CBC)
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]140static int aes_crypt_cbc_wrap(void *ctx, mbedtls_operation_t operation, size_t length,
141 unsigned char *iv, const unsigned char *input, unsigned char *output)
Paul Bakker8123e9d2011-01-06 15:37:30 +0000[diff] [blame]142{
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]143 return mbedtls_aes_crypt_cbc((mbedtls_aes_context *) ctx, operation, length, iv, input,
144 output);
Paul Bakker8123e9d2011-01-06 15:37:30 +0000[diff] [blame]145}
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]146#endif /* MBEDTLS_CIPHER_MODE_CBC */
Paul Bakker8123e9d2011-01-06 15:37:30 +0000[diff] [blame]147
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]148#if defined(MBEDTLS_CIPHER_MODE_CFB)
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]149static int aes_crypt_cfb128_wrap(void *ctx, mbedtls_operation_t operation,
150 size_t length, size_t *iv_off, unsigned char *iv,
151 const unsigned char *input, unsigned char *output)
Paul Bakker343a8702011-06-09 14:27:58 +0000[diff] [blame]152{
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]153 return mbedtls_aes_crypt_cfb128((mbedtls_aes_context *) ctx, operation, length, iv_off, iv,
154 input, output);
Paul Bakker343a8702011-06-09 14:27:58 +0000[diff] [blame]155}
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]156#endif /* MBEDTLS_CIPHER_MODE_CFB */
Paul Bakker343a8702011-06-09 14:27:58 +0000[diff] [blame]157
Simon Butcher8c0fd1e2018-04-22 22:58:07 +0100[diff] [blame]158#if defined(MBEDTLS_CIPHER_MODE_OFB)
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]159static int aes_crypt_ofb_wrap(void *ctx, size_t length, size_t *iv_off,
160 unsigned char *iv, const unsigned char *input, unsigned char *output)
Simon Butcher8c0fd1e2018-04-22 22:58:07 +0100[diff] [blame]161{
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]162 return mbedtls_aes_crypt_ofb((mbedtls_aes_context *) ctx, length, iv_off,
163 iv, input, output);
Simon Butcher8c0fd1e2018-04-22 22:58:07 +0100[diff] [blame]164}
165#endif /* MBEDTLS_CIPHER_MODE_OFB */
166
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]167#if defined(MBEDTLS_CIPHER_MODE_CTR)
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]168static int aes_crypt_ctr_wrap(void *ctx, size_t length, size_t *nc_off,
169 unsigned char *nonce_counter, unsigned char *stream_block,
170 const unsigned char *input, unsigned char *output)
Paul Bakker343a8702011-06-09 14:27:58 +0000[diff] [blame]171{
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]172 return mbedtls_aes_crypt_ctr((mbedtls_aes_context *) ctx, length, nc_off, nonce_counter,
173 stream_block, input, output);
Paul Bakker343a8702011-06-09 14:27:58 +0000[diff] [blame]174}
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]175#endif /* MBEDTLS_CIPHER_MODE_CTR */
Paul Bakker343a8702011-06-09 14:27:58 +0000[diff] [blame]176
Jaeden Ameroc6539902018-04-30 17:17:41 +0100[diff] [blame]177#if defined(MBEDTLS_CIPHER_MODE_XTS)
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]178static int aes_crypt_xts_wrap(void *ctx, mbedtls_operation_t operation,
179 size_t length,
180 const unsigned char data_unit[16],
181 const unsigned char *input,
182 unsigned char *output)
Jaeden Ameroc6539902018-04-30 17:17:41 +0100[diff] [blame]183{
184 mbedtls_aes_xts_context *xts_ctx = ctx;
185 int mode;
186
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]187 switch (operation) {
Jaeden Ameroc6539902018-04-30 17:17:41 +0100[diff] [blame]188 case MBEDTLS_ENCRYPT:
189 mode = MBEDTLS_AES_ENCRYPT;
190 break;
191 case MBEDTLS_DECRYPT:
192 mode = MBEDTLS_AES_DECRYPT;
193 break;
194 default:
195 return MBEDTLS_ERR_CIPHER_BAD_INPUT_DATA;
196 }
197
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]198 return mbedtls_aes_crypt_xts(xts_ctx, mode, length,
199 data_unit, input, output);
Jaeden Ameroc6539902018-04-30 17:17:41 +0100[diff] [blame]200}
201#endif /* MBEDTLS_CIPHER_MODE_XTS */
202
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]203static int aes_setkey_dec_wrap(void *ctx, const unsigned char *key,
204 unsigned int key_bitlen)
Paul Bakker8123e9d2011-01-06 15:37:30 +0000[diff] [blame]205{
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]206 return mbedtls_aes_setkey_dec((mbedtls_aes_context *) ctx, key, key_bitlen);
Paul Bakker8123e9d2011-01-06 15:37:30 +0000[diff] [blame]207}
208
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]209static int aes_setkey_enc_wrap(void *ctx, const unsigned char *key,
210 unsigned int key_bitlen)
Paul Bakker8123e9d2011-01-06 15:37:30 +0000[diff] [blame]211{
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]212 return mbedtls_aes_setkey_enc((mbedtls_aes_context *) ctx, key, key_bitlen);
Paul Bakker8123e9d2011-01-06 15:37:30 +0000[diff] [blame]213}
214
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]215static void *aes_ctx_alloc(void)
Paul Bakker8123e9d2011-01-06 15:37:30 +0000[diff] [blame]216{
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]217 mbedtls_aes_context *aes = mbedtls_calloc(1, sizeof(mbedtls_aes_context));
Paul Bakkerc7ea99a2014-06-18 11:12:03 +0200[diff] [blame]218
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]219 if (aes == NULL) {
220 return NULL;
221 }
Paul Bakkerc7ea99a2014-06-18 11:12:03 +0200[diff] [blame]222
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]223 mbedtls_aes_init(aes);
Paul Bakkerc7ea99a2014-06-18 11:12:03 +0200[diff] [blame]224
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]225 return aes;
Paul Bakker8123e9d2011-01-06 15:37:30 +0000[diff] [blame]226}
227
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]228static void aes_ctx_free(void *ctx)
Paul Bakker8123e9d2011-01-06 15:37:30 +0000[diff] [blame]229{
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]230 mbedtls_aes_free((mbedtls_aes_context *) ctx);
231 mbedtls_free(ctx);
Paul Bakker8123e9d2011-01-06 15:37:30 +0000[diff] [blame]232}
233
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]234static const mbedtls_cipher_base_t aes_info = {
235 MBEDTLS_CIPHER_ID_AES,
Paul Bakker5e0efa72013-09-08 23:04:04 +0200[diff] [blame]236 aes_crypt_ecb_wrap,
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]237#if defined(MBEDTLS_CIPHER_MODE_CBC)
Paul Bakker343a8702011-06-09 14:27:58 +0000[diff] [blame]238 aes_crypt_cbc_wrap,
Manuel Pégourié-Gonnardb8ca7232014-12-02 10:09:10 +0100[diff] [blame]239#endif
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]240#if defined(MBEDTLS_CIPHER_MODE_CFB)
Paul Bakker343a8702011-06-09 14:27:58 +0000[diff] [blame]241 aes_crypt_cfb128_wrap,
Manuel Pégourié-Gonnardb8ca7232014-12-02 10:09:10 +0100[diff] [blame]242#endif
Simon Butcher8c0fd1e2018-04-22 22:58:07 +0100[diff] [blame]243#if defined(MBEDTLS_CIPHER_MODE_OFB)
244 aes_crypt_ofb_wrap,
245#endif
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]246#if defined(MBEDTLS_CIPHER_MODE_CTR)
Paul Bakker343a8702011-06-09 14:27:58 +0000[diff] [blame]247 aes_crypt_ctr_wrap,
Manuel Pégourié-Gonnardb8ca7232014-12-02 10:09:10 +0100[diff] [blame]248#endif
Jaeden Ameroc6539902018-04-30 17:17:41 +0100[diff] [blame]249#if defined(MBEDTLS_CIPHER_MODE_XTS)
250 NULL,
251#endif
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]252#if defined(MBEDTLS_CIPHER_MODE_STREAM)
Manuel Pégourié-Gonnard37e230c2013-08-28 13:50:42 +0200[diff] [blame]253 NULL,
Manuel Pégourié-Gonnardb8ca7232014-12-02 10:09:10 +0100[diff] [blame]254#endif
Paul Bakker343a8702011-06-09 14:27:58 +0000[diff] [blame]255 aes_setkey_enc_wrap,
256 aes_setkey_dec_wrap,
257 aes_ctx_alloc,
258 aes_ctx_free
259};
260
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]261static const mbedtls_cipher_info_t aes_128_ecb_info = {
Dave Rodgman3319ae92023-06-24 10:55:04 +0100[diff] [blame]262 "AES-128-ECB",
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]263 16,
264 0 >> MBEDTLS_IV_SIZE_SHIFT,
Dave Rodgman6c6c8422023-06-24 11:14:34 +0100[diff] [blame]265 128 >> MBEDTLS_KEY_BITLEN_SHIFT,
Dave Rodgmand30eed42023-06-24 18:35:42 +0100[diff] [blame^]266 MBEDTLS_MODE_ECB,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]267 MBEDTLS_CIPHER_AES_128_ECB,
Paul Bakker5e0efa72013-09-08 23:04:04 +0200[diff] [blame]268 0,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]269 MBEDTLS_CIPHER_BASE_INDEX_AES
Paul Bakker5e0efa72013-09-08 23:04:04 +0200[diff] [blame]270};
271
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]272static const mbedtls_cipher_info_t aes_192_ecb_info = {
Dave Rodgman3319ae92023-06-24 10:55:04 +0100[diff] [blame]273 "AES-192-ECB",
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]274 16,
275 0 >> MBEDTLS_IV_SIZE_SHIFT,
Dave Rodgman6c6c8422023-06-24 11:14:34 +0100[diff] [blame]276 192 >> MBEDTLS_KEY_BITLEN_SHIFT,
Dave Rodgmand30eed42023-06-24 18:35:42 +0100[diff] [blame^]277 MBEDTLS_MODE_ECB,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]278 MBEDTLS_CIPHER_AES_192_ECB,
Paul Bakker5e0efa72013-09-08 23:04:04 +0200[diff] [blame]279 0,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]280 MBEDTLS_CIPHER_BASE_INDEX_AES
Paul Bakker5e0efa72013-09-08 23:04:04 +0200[diff] [blame]281};
282
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]283static const mbedtls_cipher_info_t aes_256_ecb_info = {
Dave Rodgman3319ae92023-06-24 10:55:04 +0100[diff] [blame]284 "AES-256-ECB",
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]285 16,
286 0 >> MBEDTLS_IV_SIZE_SHIFT,
Dave Rodgman6c6c8422023-06-24 11:14:34 +0100[diff] [blame]287 256 >> MBEDTLS_KEY_BITLEN_SHIFT,
Dave Rodgmand30eed42023-06-24 18:35:42 +0100[diff] [blame^]288 MBEDTLS_MODE_ECB,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]289 MBEDTLS_CIPHER_AES_256_ECB,
Paul Bakker5e0efa72013-09-08 23:04:04 +0200[diff] [blame]290 0,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]291 MBEDTLS_CIPHER_BASE_INDEX_AES
Paul Bakker5e0efa72013-09-08 23:04:04 +0200[diff] [blame]292};
293
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]294#if defined(MBEDTLS_CIPHER_MODE_CBC)
295static const mbedtls_cipher_info_t aes_128_cbc_info = {
Dave Rodgman3319ae92023-06-24 10:55:04 +0100[diff] [blame]296 "AES-128-CBC",
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]297 16,
298 16 >> MBEDTLS_IV_SIZE_SHIFT,
Dave Rodgman6c6c8422023-06-24 11:14:34 +0100[diff] [blame]299 128 >> MBEDTLS_KEY_BITLEN_SHIFT,
Dave Rodgmand30eed42023-06-24 18:35:42 +0100[diff] [blame^]300 MBEDTLS_MODE_CBC,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]301 MBEDTLS_CIPHER_AES_128_CBC,
Manuel Pégourié-Gonnarda235b5b2013-09-03 13:25:52 +0200[diff] [blame]302 0,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]303 MBEDTLS_CIPHER_BASE_INDEX_AES
Paul Bakker8123e9d2011-01-06 15:37:30 +0000[diff] [blame]304};
305
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]306static const mbedtls_cipher_info_t aes_192_cbc_info = {
Dave Rodgman3319ae92023-06-24 10:55:04 +0100[diff] [blame]307 "AES-192-CBC",
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]308 16,
309 16 >> MBEDTLS_IV_SIZE_SHIFT,
Dave Rodgman6c6c8422023-06-24 11:14:34 +0100[diff] [blame]310 192 >> MBEDTLS_KEY_BITLEN_SHIFT,
Dave Rodgmand30eed42023-06-24 18:35:42 +0100[diff] [blame^]311 MBEDTLS_MODE_CBC,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]312 MBEDTLS_CIPHER_AES_192_CBC,
Manuel Pégourié-Gonnarda235b5b2013-09-03 13:25:52 +0200[diff] [blame]313 0,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]314 MBEDTLS_CIPHER_BASE_INDEX_AES
Paul Bakker8123e9d2011-01-06 15:37:30 +0000[diff] [blame]315};
316
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]317static const mbedtls_cipher_info_t aes_256_cbc_info = {
Dave Rodgman3319ae92023-06-24 10:55:04 +0100[diff] [blame]318 "AES-256-CBC",
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]319 16,
320 16 >> MBEDTLS_IV_SIZE_SHIFT,
Dave Rodgman6c6c8422023-06-24 11:14:34 +0100[diff] [blame]321 256 >> MBEDTLS_KEY_BITLEN_SHIFT,
Dave Rodgmand30eed42023-06-24 18:35:42 +0100[diff] [blame^]322 MBEDTLS_MODE_CBC,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]323 MBEDTLS_CIPHER_AES_256_CBC,
Manuel Pégourié-Gonnarda235b5b2013-09-03 13:25:52 +0200[diff] [blame]324 0,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]325 MBEDTLS_CIPHER_BASE_INDEX_AES
Paul Bakker8123e9d2011-01-06 15:37:30 +0000[diff] [blame]326};
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]327#endif /* MBEDTLS_CIPHER_MODE_CBC */
Paul Bakker343a8702011-06-09 14:27:58 +0000[diff] [blame]328
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]329#if defined(MBEDTLS_CIPHER_MODE_CFB)
330static const mbedtls_cipher_info_t aes_128_cfb128_info = {
Dave Rodgman3319ae92023-06-24 10:55:04 +0100[diff] [blame]331 "AES-128-CFB128",
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]332 16,
333 16 >> MBEDTLS_IV_SIZE_SHIFT,
Dave Rodgman6c6c8422023-06-24 11:14:34 +0100[diff] [blame]334 128 >> MBEDTLS_KEY_BITLEN_SHIFT,
Dave Rodgmand30eed42023-06-24 18:35:42 +0100[diff] [blame^]335 MBEDTLS_MODE_CFB,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]336 MBEDTLS_CIPHER_AES_128_CFB128,
Manuel Pégourié-Gonnarda235b5b2013-09-03 13:25:52 +0200[diff] [blame]337 0,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]338 MBEDTLS_CIPHER_BASE_INDEX_AES
Paul Bakker343a8702011-06-09 14:27:58 +0000[diff] [blame]339};
340
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]341static const mbedtls_cipher_info_t aes_192_cfb128_info = {
Dave Rodgman3319ae92023-06-24 10:55:04 +0100[diff] [blame]342 "AES-192-CFB128",
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]343 16,
344 16 >> MBEDTLS_IV_SIZE_SHIFT,
Dave Rodgman6c6c8422023-06-24 11:14:34 +0100[diff] [blame]345 192 >> MBEDTLS_KEY_BITLEN_SHIFT,
Dave Rodgmand30eed42023-06-24 18:35:42 +0100[diff] [blame^]346 MBEDTLS_MODE_CFB,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]347 MBEDTLS_CIPHER_AES_192_CFB128,
Manuel Pégourié-Gonnarda235b5b2013-09-03 13:25:52 +0200[diff] [blame]348 0,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]349 MBEDTLS_CIPHER_BASE_INDEX_AES
Paul Bakker343a8702011-06-09 14:27:58 +0000[diff] [blame]350};
351
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]352static const mbedtls_cipher_info_t aes_256_cfb128_info = {
Dave Rodgman3319ae92023-06-24 10:55:04 +0100[diff] [blame]353 "AES-256-CFB128",
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]354 16,
355 16 >> MBEDTLS_IV_SIZE_SHIFT,
Dave Rodgman6c6c8422023-06-24 11:14:34 +0100[diff] [blame]356 256 >> MBEDTLS_KEY_BITLEN_SHIFT,
Dave Rodgmand30eed42023-06-24 18:35:42 +0100[diff] [blame^]357 MBEDTLS_MODE_CFB,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]358 MBEDTLS_CIPHER_AES_256_CFB128,
Manuel Pégourié-Gonnarda235b5b2013-09-03 13:25:52 +0200[diff] [blame]359 0,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]360 MBEDTLS_CIPHER_BASE_INDEX_AES
Paul Bakker343a8702011-06-09 14:27:58 +0000[diff] [blame]361};
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]362#endif /* MBEDTLS_CIPHER_MODE_CFB */
Paul Bakker343a8702011-06-09 14:27:58 +0000[diff] [blame]363
Simon Butcher8c0fd1e2018-04-22 22:58:07 +0100[diff] [blame]364#if defined(MBEDTLS_CIPHER_MODE_OFB)
365static const mbedtls_cipher_info_t aes_128_ofb_info = {
Dave Rodgman3319ae92023-06-24 10:55:04 +0100[diff] [blame]366 "AES-128-OFB",
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]367 16,
368 16 >> MBEDTLS_IV_SIZE_SHIFT,
Dave Rodgman6c6c8422023-06-24 11:14:34 +0100[diff] [blame]369 128 >> MBEDTLS_KEY_BITLEN_SHIFT,
Dave Rodgmand30eed42023-06-24 18:35:42 +0100[diff] [blame^]370 MBEDTLS_MODE_OFB,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]371 MBEDTLS_CIPHER_AES_128_OFB,
Simon Butcher8c0fd1e2018-04-22 22:58:07 +0100[diff] [blame]372 0,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]373 MBEDTLS_CIPHER_BASE_INDEX_AES
Simon Butcher8c0fd1e2018-04-22 22:58:07 +0100[diff] [blame]374};
375
376static const mbedtls_cipher_info_t aes_192_ofb_info = {
Dave Rodgman3319ae92023-06-24 10:55:04 +0100[diff] [blame]377 "AES-192-OFB",
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]378 16,
379 16 >> MBEDTLS_IV_SIZE_SHIFT,
Dave Rodgman6c6c8422023-06-24 11:14:34 +0100[diff] [blame]380 192 >> MBEDTLS_KEY_BITLEN_SHIFT,
Dave Rodgmand30eed42023-06-24 18:35:42 +0100[diff] [blame^]381 MBEDTLS_MODE_OFB,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]382 MBEDTLS_CIPHER_AES_192_OFB,
Simon Butcher8c0fd1e2018-04-22 22:58:07 +0100[diff] [blame]383 0,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]384 MBEDTLS_CIPHER_BASE_INDEX_AES
Simon Butcher8c0fd1e2018-04-22 22:58:07 +0100[diff] [blame]385};
386
387static const mbedtls_cipher_info_t aes_256_ofb_info = {
Dave Rodgman3319ae92023-06-24 10:55:04 +0100[diff] [blame]388 "AES-256-OFB",
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]389 16,
390 16 >> MBEDTLS_IV_SIZE_SHIFT,
Dave Rodgman6c6c8422023-06-24 11:14:34 +0100[diff] [blame]391 256 >> MBEDTLS_KEY_BITLEN_SHIFT,
Dave Rodgmand30eed42023-06-24 18:35:42 +0100[diff] [blame^]392 MBEDTLS_MODE_OFB,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]393 MBEDTLS_CIPHER_AES_256_OFB,
Simon Butcher8c0fd1e2018-04-22 22:58:07 +0100[diff] [blame]394 0,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]395 MBEDTLS_CIPHER_BASE_INDEX_AES
Simon Butcher8c0fd1e2018-04-22 22:58:07 +0100[diff] [blame]396};
397#endif /* MBEDTLS_CIPHER_MODE_OFB */
398
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]399#if defined(MBEDTLS_CIPHER_MODE_CTR)
400static const mbedtls_cipher_info_t aes_128_ctr_info = {
Dave Rodgman3319ae92023-06-24 10:55:04 +0100[diff] [blame]401 "AES-128-CTR",
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]402 16,
403 16 >> MBEDTLS_IV_SIZE_SHIFT,
Dave Rodgman6c6c8422023-06-24 11:14:34 +0100[diff] [blame]404 128 >> MBEDTLS_KEY_BITLEN_SHIFT,
Dave Rodgmand30eed42023-06-24 18:35:42 +0100[diff] [blame^]405 MBEDTLS_MODE_CTR,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]406 MBEDTLS_CIPHER_AES_128_CTR,
Manuel Pégourié-Gonnarda235b5b2013-09-03 13:25:52 +0200[diff] [blame]407 0,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]408 MBEDTLS_CIPHER_BASE_INDEX_AES
Paul Bakker343a8702011-06-09 14:27:58 +0000[diff] [blame]409};
410
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]411static const mbedtls_cipher_info_t aes_192_ctr_info = {
Dave Rodgman3319ae92023-06-24 10:55:04 +0100[diff] [blame]412 "AES-192-CTR",
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]413 16,
414 16 >> MBEDTLS_IV_SIZE_SHIFT,
Dave Rodgman6c6c8422023-06-24 11:14:34 +0100[diff] [blame]415 192 >> MBEDTLS_KEY_BITLEN_SHIFT,
Dave Rodgmand30eed42023-06-24 18:35:42 +0100[diff] [blame^]416 MBEDTLS_MODE_CTR,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]417 MBEDTLS_CIPHER_AES_192_CTR,
Manuel Pégourié-Gonnarda235b5b2013-09-03 13:25:52 +0200[diff] [blame]418 0,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]419 MBEDTLS_CIPHER_BASE_INDEX_AES
Paul Bakker343a8702011-06-09 14:27:58 +0000[diff] [blame]420};
421
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]422static const mbedtls_cipher_info_t aes_256_ctr_info = {
Dave Rodgman3319ae92023-06-24 10:55:04 +0100[diff] [blame]423 "AES-256-CTR",
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]424 16,
425 16 >> MBEDTLS_IV_SIZE_SHIFT,
Dave Rodgman6c6c8422023-06-24 11:14:34 +0100[diff] [blame]426 256 >> MBEDTLS_KEY_BITLEN_SHIFT,
Dave Rodgmand30eed42023-06-24 18:35:42 +0100[diff] [blame^]427 MBEDTLS_MODE_CTR,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]428 MBEDTLS_CIPHER_AES_256_CTR,
Manuel Pégourié-Gonnarda235b5b2013-09-03 13:25:52 +0200[diff] [blame]429 0,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]430 MBEDTLS_CIPHER_BASE_INDEX_AES
Paul Bakker343a8702011-06-09 14:27:58 +0000[diff] [blame]431};
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]432#endif /* MBEDTLS_CIPHER_MODE_CTR */
Paul Bakker343a8702011-06-09 14:27:58 +0000[diff] [blame]433
Jaeden Ameroc6539902018-04-30 17:17:41 +0100[diff] [blame]434#if defined(MBEDTLS_CIPHER_MODE_XTS)
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]435static int xts_aes_setkey_enc_wrap(void *ctx, const unsigned char *key,
436 unsigned int key_bitlen)
Jaeden Ameroc6539902018-04-30 17:17:41 +0100[diff] [blame]437{
438 mbedtls_aes_xts_context *xts_ctx = ctx;
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]439 return mbedtls_aes_xts_setkey_enc(xts_ctx, key, key_bitlen);
Jaeden Ameroc6539902018-04-30 17:17:41 +0100[diff] [blame]440}
441
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]442static int xts_aes_setkey_dec_wrap(void *ctx, const unsigned char *key,
443 unsigned int key_bitlen)
Jaeden Ameroc6539902018-04-30 17:17:41 +0100[diff] [blame]444{
445 mbedtls_aes_xts_context *xts_ctx = ctx;
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]446 return mbedtls_aes_xts_setkey_dec(xts_ctx, key, key_bitlen);
Jaeden Ameroc6539902018-04-30 17:17:41 +0100[diff] [blame]447}
448
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]449static void *xts_aes_ctx_alloc(void)
Jaeden Ameroc6539902018-04-30 17:17:41 +0100[diff] [blame]450{
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]451 mbedtls_aes_xts_context *xts_ctx = mbedtls_calloc(1, sizeof(*xts_ctx));
Jaeden Ameroc6539902018-04-30 17:17:41 +0100[diff] [blame]452
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]453 if (xts_ctx != NULL) {
454 mbedtls_aes_xts_init(xts_ctx);
455 }
Jaeden Ameroc6539902018-04-30 17:17:41 +0100[diff] [blame]456
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]457 return xts_ctx;
Jaeden Ameroc6539902018-04-30 17:17:41 +0100[diff] [blame]458}
459
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]460static void xts_aes_ctx_free(void *ctx)
Jaeden Ameroc6539902018-04-30 17:17:41 +0100[diff] [blame]461{
462 mbedtls_aes_xts_context *xts_ctx = ctx;
463
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]464 if (xts_ctx == NULL) {
Jaeden Ameroc6539902018-04-30 17:17:41 +0100[diff] [blame]465 return;
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]466 }
Jaeden Ameroc6539902018-04-30 17:17:41 +0100[diff] [blame]467
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]468 mbedtls_aes_xts_free(xts_ctx);
469 mbedtls_free(xts_ctx);
Jaeden Ameroc6539902018-04-30 17:17:41 +0100[diff] [blame]470}
471
472static const mbedtls_cipher_base_t xts_aes_info = {
473 MBEDTLS_CIPHER_ID_AES,
474 NULL,
475#if defined(MBEDTLS_CIPHER_MODE_CBC)
476 NULL,
477#endif
478#if defined(MBEDTLS_CIPHER_MODE_CFB)
479 NULL,
480#endif
481#if defined(MBEDTLS_CIPHER_MODE_OFB)
482 NULL,
483#endif
484#if defined(MBEDTLS_CIPHER_MODE_CTR)
485 NULL,
486#endif
487#if defined(MBEDTLS_CIPHER_MODE_XTS)
488 aes_crypt_xts_wrap,
489#endif
490#if defined(MBEDTLS_CIPHER_MODE_STREAM)
491 NULL,
492#endif
493 xts_aes_setkey_enc_wrap,
494 xts_aes_setkey_dec_wrap,
495 xts_aes_ctx_alloc,
496 xts_aes_ctx_free
497};
498
499static const mbedtls_cipher_info_t aes_128_xts_info = {
Dave Rodgman3319ae92023-06-24 10:55:04 +0100[diff] [blame]500 "AES-128-XTS",
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]501 16,
502 16 >> MBEDTLS_IV_SIZE_SHIFT,
Dave Rodgman6c6c8422023-06-24 11:14:34 +0100[diff] [blame]503 256 >> MBEDTLS_KEY_BITLEN_SHIFT,
Dave Rodgmand30eed42023-06-24 18:35:42 +0100[diff] [blame^]504 MBEDTLS_MODE_XTS,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]505 MBEDTLS_CIPHER_AES_128_XTS,
Jaeden Ameroc6539902018-04-30 17:17:41 +0100[diff] [blame]506 0,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]507 MBEDTLS_CIPHER_BASE_INDEX_XTS_AES
Jaeden Ameroc6539902018-04-30 17:17:41 +0100[diff] [blame]508};
509
510static const mbedtls_cipher_info_t aes_256_xts_info = {
Dave Rodgman3319ae92023-06-24 10:55:04 +0100[diff] [blame]511 "AES-256-XTS",
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]512 16,
513 16 >> MBEDTLS_IV_SIZE_SHIFT,
Dave Rodgman6c6c8422023-06-24 11:14:34 +0100[diff] [blame]514 512 >> MBEDTLS_KEY_BITLEN_SHIFT,
Dave Rodgmand30eed42023-06-24 18:35:42 +0100[diff] [blame^]515 MBEDTLS_MODE_XTS,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]516 MBEDTLS_CIPHER_AES_256_XTS,
Jaeden Ameroc6539902018-04-30 17:17:41 +0100[diff] [blame]517 0,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]518 MBEDTLS_CIPHER_BASE_INDEX_XTS_AES
Jaeden Ameroc6539902018-04-30 17:17:41 +0100[diff] [blame]519};
520#endif /* MBEDTLS_CIPHER_MODE_XTS */
521
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]522#if defined(MBEDTLS_GCM_C)
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]523static int gcm_aes_setkey_wrap(void *ctx, const unsigned char *key,
524 unsigned int key_bitlen)
Manuel Pégourié-Gonnard07f8fa52013-08-30 18:34:08 +0200[diff] [blame]525{
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]526 return mbedtls_gcm_setkey((mbedtls_gcm_context *) ctx, MBEDTLS_CIPHER_ID_AES,
527 key, key_bitlen);
Manuel Pégourié-Gonnard07f8fa52013-08-30 18:34:08 +0200[diff] [blame]528}
529
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]530static const mbedtls_cipher_base_t gcm_aes_info = {
531 MBEDTLS_CIPHER_ID_AES,
Manuel Pégourié-Gonnard07f8fa52013-08-30 18:34:08 +0200[diff] [blame]532 NULL,
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]533#if defined(MBEDTLS_CIPHER_MODE_CBC)
Manuel Pégourié-Gonnard07f8fa52013-08-30 18:34:08 +0200[diff] [blame]534 NULL,
Manuel Pégourié-Gonnardb8ca7232014-12-02 10:09:10 +0100[diff] [blame]535#endif
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]536#if defined(MBEDTLS_CIPHER_MODE_CFB)
Manuel Pégourié-Gonnard07f8fa52013-08-30 18:34:08 +0200[diff] [blame]537 NULL,
Manuel Pégourié-Gonnardb8ca7232014-12-02 10:09:10 +0100[diff] [blame]538#endif
Simon Butcher8c0fd1e2018-04-22 22:58:07 +0100[diff] [blame]539#if defined(MBEDTLS_CIPHER_MODE_OFB)
540 NULL,
541#endif
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]542#if defined(MBEDTLS_CIPHER_MODE_CTR)
Manuel Pégourié-Gonnard07f8fa52013-08-30 18:34:08 +0200[diff] [blame]543 NULL,
Manuel Pégourié-Gonnardb8ca7232014-12-02 10:09:10 +0100[diff] [blame]544#endif
Jaeden Ameroc6539902018-04-30 17:17:41 +0100[diff] [blame]545#if defined(MBEDTLS_CIPHER_MODE_XTS)
546 NULL,
547#endif
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]548#if defined(MBEDTLS_CIPHER_MODE_STREAM)
Paul Bakker5e0efa72013-09-08 23:04:04 +0200[diff] [blame]549 NULL,
Manuel Pégourié-Gonnardb8ca7232014-12-02 10:09:10 +0100[diff] [blame]550#endif
Paul Bakker43aff2a2013-09-09 00:10:27 +0200[diff] [blame]551 gcm_aes_setkey_wrap,
552 gcm_aes_setkey_wrap,
Manuel Pégourié-Gonnard07f8fa52013-08-30 18:34:08 +0200[diff] [blame]553 gcm_ctx_alloc,
554 gcm_ctx_free,
555};
556
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]557static const mbedtls_cipher_info_t aes_128_gcm_info = {
Dave Rodgman3319ae92023-06-24 10:55:04 +0100[diff] [blame]558 "AES-128-GCM",
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]559 16,
560 12 >> MBEDTLS_IV_SIZE_SHIFT,
Dave Rodgman6c6c8422023-06-24 11:14:34 +0100[diff] [blame]561 128 >> MBEDTLS_KEY_BITLEN_SHIFT,
Dave Rodgmand30eed42023-06-24 18:35:42 +0100[diff] [blame^]562 MBEDTLS_MODE_GCM,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]563 MBEDTLS_CIPHER_AES_128_GCM,
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]564 MBEDTLS_CIPHER_VARIABLE_IV_LEN,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]565 MBEDTLS_CIPHER_BASE_INDEX_GCM_AES
Paul Bakker68884e32013-01-07 18:20:04 +0100[diff] [blame]566};
567
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]568static const mbedtls_cipher_info_t aes_192_gcm_info = {
Dave Rodgman3319ae92023-06-24 10:55:04 +0100[diff] [blame]569 "AES-192-GCM",
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]570 16,
571 12 >> MBEDTLS_IV_SIZE_SHIFT,
Dave Rodgman6c6c8422023-06-24 11:14:34 +0100[diff] [blame]572 192 >> MBEDTLS_KEY_BITLEN_SHIFT,
Dave Rodgmand30eed42023-06-24 18:35:42 +0100[diff] [blame^]573 MBEDTLS_MODE_GCM,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]574 MBEDTLS_CIPHER_AES_192_GCM,
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]575 MBEDTLS_CIPHER_VARIABLE_IV_LEN,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]576 MBEDTLS_CIPHER_BASE_INDEX_GCM_AES
Manuel Pégourié-Gonnard83f3fc02013-09-04 12:07:24 +0200[diff] [blame]577};
578
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]579static const mbedtls_cipher_info_t aes_256_gcm_info = {
Dave Rodgman3319ae92023-06-24 10:55:04 +0100[diff] [blame]580 "AES-256-GCM",
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]581 16,
582 12 >> MBEDTLS_IV_SIZE_SHIFT,
Dave Rodgman6c6c8422023-06-24 11:14:34 +0100[diff] [blame]583 256 >> MBEDTLS_KEY_BITLEN_SHIFT,
Dave Rodgmand30eed42023-06-24 18:35:42 +0100[diff] [blame^]584 MBEDTLS_MODE_GCM,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]585 MBEDTLS_CIPHER_AES_256_GCM,
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]586 MBEDTLS_CIPHER_VARIABLE_IV_LEN,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]587 MBEDTLS_CIPHER_BASE_INDEX_GCM_AES
Paul Bakker68884e32013-01-07 18:20:04 +0100[diff] [blame]588};
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]589#endif /* MBEDTLS_GCM_C */
Paul Bakker68884e32013-01-07 18:20:04 +0100[diff] [blame]590
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]591#if defined(MBEDTLS_CCM_C)
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]592static int ccm_aes_setkey_wrap(void *ctx, const unsigned char *key,
593 unsigned int key_bitlen)
Manuel Pégourié-Gonnard41936952014-05-13 13:18:17 +0200[diff] [blame]594{
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]595 return mbedtls_ccm_setkey((mbedtls_ccm_context *) ctx, MBEDTLS_CIPHER_ID_AES,
596 key, key_bitlen);
Manuel Pégourié-Gonnard41936952014-05-13 13:18:17 +0200[diff] [blame]597}
598
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]599static const mbedtls_cipher_base_t ccm_aes_info = {
600 MBEDTLS_CIPHER_ID_AES,
Manuel Pégourié-Gonnard41936952014-05-13 13:18:17 +0200[diff] [blame]601 NULL,
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]602#if defined(MBEDTLS_CIPHER_MODE_CBC)
Manuel Pégourié-Gonnard41936952014-05-13 13:18:17 +0200[diff] [blame]603 NULL,
Manuel Pégourié-Gonnardb8ca7232014-12-02 10:09:10 +0100[diff] [blame]604#endif
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]605#if defined(MBEDTLS_CIPHER_MODE_CFB)
Manuel Pégourié-Gonnard41936952014-05-13 13:18:17 +0200[diff] [blame]606 NULL,
Manuel Pégourié-Gonnardb8ca7232014-12-02 10:09:10 +0100[diff] [blame]607#endif
Simon Butcher8c0fd1e2018-04-22 22:58:07 +0100[diff] [blame]608#if defined(MBEDTLS_CIPHER_MODE_OFB)
609 NULL,
610#endif
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]611#if defined(MBEDTLS_CIPHER_MODE_CTR)
Manuel Pégourié-Gonnard41936952014-05-13 13:18:17 +0200[diff] [blame]612 NULL,
Manuel Pégourié-Gonnardb8ca7232014-12-02 10:09:10 +0100[diff] [blame]613#endif
Jaeden Ameroc6539902018-04-30 17:17:41 +0100[diff] [blame]614#if defined(MBEDTLS_CIPHER_MODE_XTS)
615 NULL,
616#endif
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]617#if defined(MBEDTLS_CIPHER_MODE_STREAM)
Manuel Pégourié-Gonnard41936952014-05-13 13:18:17 +0200[diff] [blame]618 NULL,
Manuel Pégourié-Gonnardb8ca7232014-12-02 10:09:10 +0100[diff] [blame]619#endif
Manuel Pégourié-Gonnard41936952014-05-13 13:18:17 +0200[diff] [blame]620 ccm_aes_setkey_wrap,
621 ccm_aes_setkey_wrap,
622 ccm_ctx_alloc,
623 ccm_ctx_free,
624};
625
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]626static const mbedtls_cipher_info_t aes_128_ccm_info = {
Dave Rodgman3319ae92023-06-24 10:55:04 +0100[diff] [blame]627 "AES-128-CCM",
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]628 16,
629 12 >> MBEDTLS_IV_SIZE_SHIFT,
Dave Rodgman6c6c8422023-06-24 11:14:34 +0100[diff] [blame]630 128 >> MBEDTLS_KEY_BITLEN_SHIFT,
Dave Rodgmand30eed42023-06-24 18:35:42 +0100[diff] [blame^]631 MBEDTLS_MODE_CCM,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]632 MBEDTLS_CIPHER_AES_128_CCM,
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]633 MBEDTLS_CIPHER_VARIABLE_IV_LEN,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]634 MBEDTLS_CIPHER_BASE_INDEX_CCM_AES
Manuel Pégourié-Gonnard41936952014-05-13 13:18:17 +0200[diff] [blame]635};
636
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]637static const mbedtls_cipher_info_t aes_192_ccm_info = {
Dave Rodgman3319ae92023-06-24 10:55:04 +0100[diff] [blame]638 "AES-192-CCM",
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]639 16,
640 12 >> MBEDTLS_IV_SIZE_SHIFT,
Dave Rodgman6c6c8422023-06-24 11:14:34 +0100[diff] [blame]641 192 >> MBEDTLS_KEY_BITLEN_SHIFT,
Dave Rodgmand30eed42023-06-24 18:35:42 +0100[diff] [blame^]642 MBEDTLS_MODE_CCM,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]643 MBEDTLS_CIPHER_AES_192_CCM,
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]644 MBEDTLS_CIPHER_VARIABLE_IV_LEN,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]645 MBEDTLS_CIPHER_BASE_INDEX_CCM_AES
Manuel Pégourié-Gonnard41936952014-05-13 13:18:17 +0200[diff] [blame]646};
647
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]648static const mbedtls_cipher_info_t aes_256_ccm_info = {
Dave Rodgman3319ae92023-06-24 10:55:04 +0100[diff] [blame]649 "AES-256-CCM",
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]650 16,
651 12 >> MBEDTLS_IV_SIZE_SHIFT,
Dave Rodgman6c6c8422023-06-24 11:14:34 +0100[diff] [blame]652 256 >> MBEDTLS_KEY_BITLEN_SHIFT,
Dave Rodgmand30eed42023-06-24 18:35:42 +0100[diff] [blame^]653 MBEDTLS_MODE_CCM,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]654 MBEDTLS_CIPHER_AES_256_CCM,
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]655 MBEDTLS_CIPHER_VARIABLE_IV_LEN,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]656 MBEDTLS_CIPHER_BASE_INDEX_CCM_AES
Manuel Pégourié-Gonnard41936952014-05-13 13:18:17 +0200[diff] [blame]657};
Mateusz Starzyk4cb97392021-10-27 10:42:31 +0200[diff] [blame]658
659static const mbedtls_cipher_info_t aes_128_ccm_star_no_tag_info = {
Dave Rodgman3319ae92023-06-24 10:55:04 +0100[diff] [blame]660 "AES-128-CCM*-NO-TAG",
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]661 16,
662 12 >> MBEDTLS_IV_SIZE_SHIFT,
Dave Rodgman6c6c8422023-06-24 11:14:34 +0100[diff] [blame]663 128 >> MBEDTLS_KEY_BITLEN_SHIFT,
Dave Rodgmand30eed42023-06-24 18:35:42 +0100[diff] [blame^]664 MBEDTLS_MODE_CCM_STAR_NO_TAG,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]665 MBEDTLS_CIPHER_AES_128_CCM_STAR_NO_TAG,
Mateusz Starzyk4cb97392021-10-27 10:42:31 +0200[diff] [blame]666 MBEDTLS_CIPHER_VARIABLE_IV_LEN,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]667 MBEDTLS_CIPHER_BASE_INDEX_CCM_AES
Mateusz Starzyk4cb97392021-10-27 10:42:31 +0200[diff] [blame]668};
669
670static const mbedtls_cipher_info_t aes_192_ccm_star_no_tag_info = {
Dave Rodgman3319ae92023-06-24 10:55:04 +0100[diff] [blame]671 "AES-192-CCM*-NO-TAG",
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]672 16,
673 12 >> MBEDTLS_IV_SIZE_SHIFT,
Dave Rodgman6c6c8422023-06-24 11:14:34 +0100[diff] [blame]674 192 >> MBEDTLS_KEY_BITLEN_SHIFT,
Dave Rodgmand30eed42023-06-24 18:35:42 +0100[diff] [blame^]675 MBEDTLS_MODE_CCM_STAR_NO_TAG,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]676 MBEDTLS_CIPHER_AES_192_CCM_STAR_NO_TAG,
Mateusz Starzyk4cb97392021-10-27 10:42:31 +0200[diff] [blame]677 MBEDTLS_CIPHER_VARIABLE_IV_LEN,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]678 MBEDTLS_CIPHER_BASE_INDEX_CCM_AES
Mateusz Starzyk4cb97392021-10-27 10:42:31 +0200[diff] [blame]679};
680
681static const mbedtls_cipher_info_t aes_256_ccm_star_no_tag_info = {
Dave Rodgman3319ae92023-06-24 10:55:04 +0100[diff] [blame]682 "AES-256-CCM*-NO-TAG",
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]683 16,
684 12 >> MBEDTLS_IV_SIZE_SHIFT,
Dave Rodgman6c6c8422023-06-24 11:14:34 +0100[diff] [blame]685 256 >> MBEDTLS_KEY_BITLEN_SHIFT,
Dave Rodgmand30eed42023-06-24 18:35:42 +0100[diff] [blame^]686 MBEDTLS_MODE_CCM_STAR_NO_TAG,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]687 MBEDTLS_CIPHER_AES_256_CCM_STAR_NO_TAG,
Mateusz Starzyk4cb97392021-10-27 10:42:31 +0200[diff] [blame]688 MBEDTLS_CIPHER_VARIABLE_IV_LEN,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]689 MBEDTLS_CIPHER_BASE_INDEX_CCM_AES
Mateusz Starzyk4cb97392021-10-27 10:42:31 +0200[diff] [blame]690};
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]691#endif /* MBEDTLS_CCM_C */
Manuel Pégourié-Gonnard41936952014-05-13 13:18:17 +0200[diff] [blame]692
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]693#endif /* MBEDTLS_AES_C */
Paul Bakker8123e9d2011-01-06 15:37:30 +0000[diff] [blame]694
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]695#if defined(MBEDTLS_CAMELLIA_C)
Paul Bakker8123e9d2011-01-06 15:37:30 +0000[diff] [blame]696
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]697static int camellia_crypt_ecb_wrap(void *ctx, mbedtls_operation_t operation,
698 const unsigned char *input, unsigned char *output)
Paul Bakker5e0efa72013-09-08 23:04:04 +0200[diff] [blame]699{
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]700 return mbedtls_camellia_crypt_ecb((mbedtls_camellia_context *) ctx, operation, input,
701 output);
Paul Bakker5e0efa72013-09-08 23:04:04 +0200[diff] [blame]702}
703
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]704#if defined(MBEDTLS_CIPHER_MODE_CBC)
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]705static int camellia_crypt_cbc_wrap(void *ctx, mbedtls_operation_t operation,
706 size_t length, unsigned char *iv,
707 const unsigned char *input, unsigned char *output)
Paul Bakker8123e9d2011-01-06 15:37:30 +0000[diff] [blame]708{
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]709 return mbedtls_camellia_crypt_cbc((mbedtls_camellia_context *) ctx, operation, length, iv,
710 input, output);
Paul Bakker8123e9d2011-01-06 15:37:30 +0000[diff] [blame]711}
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]712#endif /* MBEDTLS_CIPHER_MODE_CBC */
Paul Bakker8123e9d2011-01-06 15:37:30 +0000[diff] [blame]713
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]714#if defined(MBEDTLS_CIPHER_MODE_CFB)
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]715static int camellia_crypt_cfb128_wrap(void *ctx, mbedtls_operation_t operation,
716 size_t length, size_t *iv_off, unsigned char *iv,
717 const unsigned char *input, unsigned char *output)
Paul Bakker343a8702011-06-09 14:27:58 +0000[diff] [blame]718{
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]719 return mbedtls_camellia_crypt_cfb128((mbedtls_camellia_context *) ctx, operation, length,
720 iv_off, iv, input, output);
Paul Bakker343a8702011-06-09 14:27:58 +0000[diff] [blame]721}
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]722#endif /* MBEDTLS_CIPHER_MODE_CFB */
Paul Bakker343a8702011-06-09 14:27:58 +0000[diff] [blame]723
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]724#if defined(MBEDTLS_CIPHER_MODE_CTR)
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]725static int camellia_crypt_ctr_wrap(void *ctx, size_t length, size_t *nc_off,
726 unsigned char *nonce_counter, unsigned char *stream_block,
727 const unsigned char *input, unsigned char *output)
Paul Bakker343a8702011-06-09 14:27:58 +0000[diff] [blame]728{
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]729 return mbedtls_camellia_crypt_ctr((mbedtls_camellia_context *) ctx, length, nc_off,
730 nonce_counter, stream_block, input, output);
Paul Bakker343a8702011-06-09 14:27:58 +0000[diff] [blame]731}
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]732#endif /* MBEDTLS_CIPHER_MODE_CTR */
Paul Bakker343a8702011-06-09 14:27:58 +0000[diff] [blame]733
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]734static int camellia_setkey_dec_wrap(void *ctx, const unsigned char *key,
735 unsigned int key_bitlen)
Paul Bakker8123e9d2011-01-06 15:37:30 +0000[diff] [blame]736{
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]737 return mbedtls_camellia_setkey_dec((mbedtls_camellia_context *) ctx, key, key_bitlen);
Paul Bakker8123e9d2011-01-06 15:37:30 +0000[diff] [blame]738}
739
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]740static int camellia_setkey_enc_wrap(void *ctx, const unsigned char *key,
741 unsigned int key_bitlen)
Paul Bakker8123e9d2011-01-06 15:37:30 +0000[diff] [blame]742{
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]743 return mbedtls_camellia_setkey_enc((mbedtls_camellia_context *) ctx, key, key_bitlen);
Paul Bakker8123e9d2011-01-06 15:37:30 +0000[diff] [blame]744}
745
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]746static void *camellia_ctx_alloc(void)
Paul Bakker8123e9d2011-01-06 15:37:30 +0000[diff] [blame]747{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]748 mbedtls_camellia_context *ctx;
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]749 ctx = mbedtls_calloc(1, sizeof(mbedtls_camellia_context));
Paul Bakkerc7ea99a2014-06-18 11:12:03 +0200[diff] [blame]750
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]751 if (ctx == NULL) {
752 return NULL;
753 }
Paul Bakkerc7ea99a2014-06-18 11:12:03 +0200[diff] [blame]754
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]755 mbedtls_camellia_init(ctx);
Paul Bakkerc7ea99a2014-06-18 11:12:03 +0200[diff] [blame]756
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]757 return ctx;
Paul Bakker8123e9d2011-01-06 15:37:30 +0000[diff] [blame]758}
759
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]760static void camellia_ctx_free(void *ctx)
Paul Bakker8123e9d2011-01-06 15:37:30 +0000[diff] [blame]761{
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]762 mbedtls_camellia_free((mbedtls_camellia_context *) ctx);
763 mbedtls_free(ctx);
Paul Bakker8123e9d2011-01-06 15:37:30 +0000[diff] [blame]764}
765
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]766static const mbedtls_cipher_base_t camellia_info = {
767 MBEDTLS_CIPHER_ID_CAMELLIA,
Paul Bakker5e0efa72013-09-08 23:04:04 +0200[diff] [blame]768 camellia_crypt_ecb_wrap,
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]769#if defined(MBEDTLS_CIPHER_MODE_CBC)
Paul Bakker343a8702011-06-09 14:27:58 +0000[diff] [blame]770 camellia_crypt_cbc_wrap,
Manuel Pégourié-Gonnardb8ca7232014-12-02 10:09:10 +0100[diff] [blame]771#endif
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]772#if defined(MBEDTLS_CIPHER_MODE_CFB)
Paul Bakker343a8702011-06-09 14:27:58 +0000[diff] [blame]773 camellia_crypt_cfb128_wrap,
Manuel Pégourié-Gonnardb8ca7232014-12-02 10:09:10 +0100[diff] [blame]774#endif
Simon Butcher8c0fd1e2018-04-22 22:58:07 +0100[diff] [blame]775#if defined(MBEDTLS_CIPHER_MODE_OFB)
776 NULL,
777#endif
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]778#if defined(MBEDTLS_CIPHER_MODE_CTR)
Paul Bakker343a8702011-06-09 14:27:58 +0000[diff] [blame]779 camellia_crypt_ctr_wrap,
Manuel Pégourié-Gonnardb8ca7232014-12-02 10:09:10 +0100[diff] [blame]780#endif
Jaeden Ameroc6539902018-04-30 17:17:41 +0100[diff] [blame]781#if defined(MBEDTLS_CIPHER_MODE_XTS)
782 NULL,
783#endif
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]784#if defined(MBEDTLS_CIPHER_MODE_STREAM)
Manuel Pégourié-Gonnard37e230c2013-08-28 13:50:42 +0200[diff] [blame]785 NULL,
Manuel Pégourié-Gonnardb8ca7232014-12-02 10:09:10 +0100[diff] [blame]786#endif
Paul Bakker343a8702011-06-09 14:27:58 +0000[diff] [blame]787 camellia_setkey_enc_wrap,
788 camellia_setkey_dec_wrap,
789 camellia_ctx_alloc,
790 camellia_ctx_free
791};
792
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]793static const mbedtls_cipher_info_t camellia_128_ecb_info = {
Dave Rodgman3319ae92023-06-24 10:55:04 +0100[diff] [blame]794 "CAMELLIA-128-ECB",
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]795 16,
796 0 >> MBEDTLS_IV_SIZE_SHIFT,
Dave Rodgman6c6c8422023-06-24 11:14:34 +0100[diff] [blame]797 128 >> MBEDTLS_KEY_BITLEN_SHIFT,
Dave Rodgmand30eed42023-06-24 18:35:42 +0100[diff] [blame^]798 MBEDTLS_MODE_ECB,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]799 MBEDTLS_CIPHER_CAMELLIA_128_ECB,
Paul Bakker5e0efa72013-09-08 23:04:04 +0200[diff] [blame]800 0,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]801 MBEDTLS_CIPHER_BASE_INDEX_CAMELLIA
Paul Bakker5e0efa72013-09-08 23:04:04 +0200[diff] [blame]802};
803
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]804static const mbedtls_cipher_info_t camellia_192_ecb_info = {
Dave Rodgman3319ae92023-06-24 10:55:04 +0100[diff] [blame]805 "CAMELLIA-192-ECB",
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]806 16,
807 0 >> MBEDTLS_IV_SIZE_SHIFT,
Dave Rodgman6c6c8422023-06-24 11:14:34 +0100[diff] [blame]808 192 >> MBEDTLS_KEY_BITLEN_SHIFT,
Dave Rodgmand30eed42023-06-24 18:35:42 +0100[diff] [blame^]809 MBEDTLS_MODE_ECB,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]810 MBEDTLS_CIPHER_CAMELLIA_192_ECB,
Paul Bakker5e0efa72013-09-08 23:04:04 +0200[diff] [blame]811 0,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]812 MBEDTLS_CIPHER_BASE_INDEX_CAMELLIA
Paul Bakker5e0efa72013-09-08 23:04:04 +0200[diff] [blame]813};
814
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]815static const mbedtls_cipher_info_t camellia_256_ecb_info = {
Dave Rodgman3319ae92023-06-24 10:55:04 +0100[diff] [blame]816 "CAMELLIA-256-ECB",
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]817 16,
818 0 >> MBEDTLS_IV_SIZE_SHIFT,
Dave Rodgman6c6c8422023-06-24 11:14:34 +0100[diff] [blame]819 256 >> MBEDTLS_KEY_BITLEN_SHIFT,
Dave Rodgmand30eed42023-06-24 18:35:42 +0100[diff] [blame^]820 MBEDTLS_MODE_ECB,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]821 MBEDTLS_CIPHER_CAMELLIA_256_ECB,
Paul Bakker5e0efa72013-09-08 23:04:04 +0200[diff] [blame]822 0,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]823 MBEDTLS_CIPHER_BASE_INDEX_CAMELLIA
Paul Bakker5e0efa72013-09-08 23:04:04 +0200[diff] [blame]824};
825
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]826#if defined(MBEDTLS_CIPHER_MODE_CBC)
827static const mbedtls_cipher_info_t camellia_128_cbc_info = {
Dave Rodgman3319ae92023-06-24 10:55:04 +0100[diff] [blame]828 "CAMELLIA-128-CBC",
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]829 16,
830 16 >> MBEDTLS_IV_SIZE_SHIFT,
Dave Rodgman6c6c8422023-06-24 11:14:34 +0100[diff] [blame]831 128 >> MBEDTLS_KEY_BITLEN_SHIFT,
Dave Rodgmand30eed42023-06-24 18:35:42 +0100[diff] [blame^]832 MBEDTLS_MODE_CBC,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]833 MBEDTLS_CIPHER_CAMELLIA_128_CBC,
Manuel Pégourié-Gonnarda235b5b2013-09-03 13:25:52 +0200[diff] [blame]834 0,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]835 MBEDTLS_CIPHER_BASE_INDEX_CAMELLIA
Paul Bakker8123e9d2011-01-06 15:37:30 +0000[diff] [blame]836};
837
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]838static const mbedtls_cipher_info_t camellia_192_cbc_info = {
Dave Rodgman3319ae92023-06-24 10:55:04 +0100[diff] [blame]839 "CAMELLIA-192-CBC",
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]840 16,
841 16 >> MBEDTLS_IV_SIZE_SHIFT,
Dave Rodgman6c6c8422023-06-24 11:14:34 +0100[diff] [blame]842 192 >> MBEDTLS_KEY_BITLEN_SHIFT,
Dave Rodgmand30eed42023-06-24 18:35:42 +0100[diff] [blame^]843 MBEDTLS_MODE_CBC,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]844 MBEDTLS_CIPHER_CAMELLIA_192_CBC,
Manuel Pégourié-Gonnarda235b5b2013-09-03 13:25:52 +0200[diff] [blame]845 0,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]846 MBEDTLS_CIPHER_BASE_INDEX_CAMELLIA
Paul Bakker8123e9d2011-01-06 15:37:30 +0000[diff] [blame]847};
848
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]849static const mbedtls_cipher_info_t camellia_256_cbc_info = {
Dave Rodgman3319ae92023-06-24 10:55:04 +0100[diff] [blame]850 "CAMELLIA-256-CBC",
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]851 16,
852 16 >> MBEDTLS_IV_SIZE_SHIFT,
Dave Rodgman6c6c8422023-06-24 11:14:34 +0100[diff] [blame]853 256 >> MBEDTLS_KEY_BITLEN_SHIFT,
Dave Rodgmand30eed42023-06-24 18:35:42 +0100[diff] [blame^]854 MBEDTLS_MODE_CBC,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]855 MBEDTLS_CIPHER_CAMELLIA_256_CBC,
Manuel Pégourié-Gonnarda235b5b2013-09-03 13:25:52 +0200[diff] [blame]856 0,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]857 MBEDTLS_CIPHER_BASE_INDEX_CAMELLIA
Paul Bakker8123e9d2011-01-06 15:37:30 +0000[diff] [blame]858};
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]859#endif /* MBEDTLS_CIPHER_MODE_CBC */
Paul Bakker343a8702011-06-09 14:27:58 +0000[diff] [blame]860
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]861#if defined(MBEDTLS_CIPHER_MODE_CFB)
862static const mbedtls_cipher_info_t camellia_128_cfb128_info = {
Dave Rodgman3319ae92023-06-24 10:55:04 +0100[diff] [blame]863 "CAMELLIA-128-CFB128",
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]864 16,
865 16 >> MBEDTLS_IV_SIZE_SHIFT,
Dave Rodgman6c6c8422023-06-24 11:14:34 +0100[diff] [blame]866 128 >> MBEDTLS_KEY_BITLEN_SHIFT,
Dave Rodgmand30eed42023-06-24 18:35:42 +0100[diff] [blame^]867 MBEDTLS_MODE_CFB,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]868 MBEDTLS_CIPHER_CAMELLIA_128_CFB128,
Manuel Pégourié-Gonnarda235b5b2013-09-03 13:25:52 +0200[diff] [blame]869 0,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]870 MBEDTLS_CIPHER_BASE_INDEX_CAMELLIA
Paul Bakker343a8702011-06-09 14:27:58 +0000[diff] [blame]871};
872
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]873static const mbedtls_cipher_info_t camellia_192_cfb128_info = {
Dave Rodgman3319ae92023-06-24 10:55:04 +0100[diff] [blame]874 "CAMELLIA-192-CFB128",
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]875 16,
876 16 >> MBEDTLS_IV_SIZE_SHIFT,
Dave Rodgman6c6c8422023-06-24 11:14:34 +0100[diff] [blame]877 192 >> MBEDTLS_KEY_BITLEN_SHIFT,
Dave Rodgmand30eed42023-06-24 18:35:42 +0100[diff] [blame^]878 MBEDTLS_MODE_CFB,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]879 MBEDTLS_CIPHER_CAMELLIA_192_CFB128,
Manuel Pégourié-Gonnarda235b5b2013-09-03 13:25:52 +0200[diff] [blame]880 0,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]881 MBEDTLS_CIPHER_BASE_INDEX_CAMELLIA
Paul Bakker343a8702011-06-09 14:27:58 +0000[diff] [blame]882};
883
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]884static const mbedtls_cipher_info_t camellia_256_cfb128_info = {
Dave Rodgman3319ae92023-06-24 10:55:04 +0100[diff] [blame]885 "CAMELLIA-256-CFB128",
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]886 16,
887 16 >> MBEDTLS_IV_SIZE_SHIFT,
Dave Rodgman6c6c8422023-06-24 11:14:34 +0100[diff] [blame]888 256 >> MBEDTLS_KEY_BITLEN_SHIFT,
Dave Rodgmand30eed42023-06-24 18:35:42 +0100[diff] [blame^]889 MBEDTLS_MODE_CFB,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]890 MBEDTLS_CIPHER_CAMELLIA_256_CFB128,
Manuel Pégourié-Gonnarda235b5b2013-09-03 13:25:52 +0200[diff] [blame]891 0,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]892 MBEDTLS_CIPHER_BASE_INDEX_CAMELLIA
Paul Bakker343a8702011-06-09 14:27:58 +0000[diff] [blame]893};
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]894#endif /* MBEDTLS_CIPHER_MODE_CFB */
Paul Bakker343a8702011-06-09 14:27:58 +0000[diff] [blame]895
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]896#if defined(MBEDTLS_CIPHER_MODE_CTR)
897static const mbedtls_cipher_info_t camellia_128_ctr_info = {
Dave Rodgman3319ae92023-06-24 10:55:04 +0100[diff] [blame]898 "CAMELLIA-128-CTR",
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]899 16,
900 16 >> MBEDTLS_IV_SIZE_SHIFT,
Dave Rodgman6c6c8422023-06-24 11:14:34 +0100[diff] [blame]901 128 >> MBEDTLS_KEY_BITLEN_SHIFT,
Dave Rodgmand30eed42023-06-24 18:35:42 +0100[diff] [blame^]902 MBEDTLS_MODE_CTR,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]903 MBEDTLS_CIPHER_CAMELLIA_128_CTR,
Manuel Pégourié-Gonnarda235b5b2013-09-03 13:25:52 +0200[diff] [blame]904 0,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]905 MBEDTLS_CIPHER_BASE_INDEX_CAMELLIA
Paul Bakker343a8702011-06-09 14:27:58 +0000[diff] [blame]906};
907
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]908static const mbedtls_cipher_info_t camellia_192_ctr_info = {
Dave Rodgman3319ae92023-06-24 10:55:04 +0100[diff] [blame]909 "CAMELLIA-192-CTR",
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]910 16,
911 16 >> MBEDTLS_IV_SIZE_SHIFT,
Dave Rodgman6c6c8422023-06-24 11:14:34 +0100[diff] [blame]912 192 >> MBEDTLS_KEY_BITLEN_SHIFT,
Dave Rodgmand30eed42023-06-24 18:35:42 +0100[diff] [blame^]913 MBEDTLS_MODE_CTR,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]914 MBEDTLS_CIPHER_CAMELLIA_192_CTR,
Manuel Pégourié-Gonnarda235b5b2013-09-03 13:25:52 +0200[diff] [blame]915 0,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]916 MBEDTLS_CIPHER_BASE_INDEX_CAMELLIA
Paul Bakker343a8702011-06-09 14:27:58 +0000[diff] [blame]917};
918
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]919static const mbedtls_cipher_info_t camellia_256_ctr_info = {
Dave Rodgman3319ae92023-06-24 10:55:04 +0100[diff] [blame]920 "CAMELLIA-256-CTR",
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]921 16,
922 16 >> MBEDTLS_IV_SIZE_SHIFT,
Dave Rodgman6c6c8422023-06-24 11:14:34 +0100[diff] [blame]923 256 >> MBEDTLS_KEY_BITLEN_SHIFT,
Dave Rodgmand30eed42023-06-24 18:35:42 +0100[diff] [blame^]924 MBEDTLS_MODE_CTR,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]925 MBEDTLS_CIPHER_CAMELLIA_256_CTR,
Manuel Pégourié-Gonnarda235b5b2013-09-03 13:25:52 +0200[diff] [blame]926 0,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]927 MBEDTLS_CIPHER_BASE_INDEX_CAMELLIA
Paul Bakker343a8702011-06-09 14:27:58 +0000[diff] [blame]928};
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]929#endif /* MBEDTLS_CIPHER_MODE_CTR */
Paul Bakker343a8702011-06-09 14:27:58 +0000[diff] [blame]930
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]931#if defined(MBEDTLS_GCM_C)
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]932static int gcm_camellia_setkey_wrap(void *ctx, const unsigned char *key,
933 unsigned int key_bitlen)
Manuel Pégourié-Gonnard87181d12013-10-24 14:02:40 +0200[diff] [blame]934{
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]935 return mbedtls_gcm_setkey((mbedtls_gcm_context *) ctx, MBEDTLS_CIPHER_ID_CAMELLIA,
936 key, key_bitlen);
Manuel Pégourié-Gonnard87181d12013-10-24 14:02:40 +0200[diff] [blame]937}
938
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]939static const mbedtls_cipher_base_t gcm_camellia_info = {
940 MBEDTLS_CIPHER_ID_CAMELLIA,
Manuel Pégourié-Gonnard87181d12013-10-24 14:02:40 +0200[diff] [blame]941 NULL,
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]942#if defined(MBEDTLS_CIPHER_MODE_CBC)
Manuel Pégourié-Gonnard87181d12013-10-24 14:02:40 +0200[diff] [blame]943 NULL,
Manuel Pégourié-Gonnardb8ca7232014-12-02 10:09:10 +0100[diff] [blame]944#endif
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]945#if defined(MBEDTLS_CIPHER_MODE_CFB)
Manuel Pégourié-Gonnard87181d12013-10-24 14:02:40 +0200[diff] [blame]946 NULL,
Manuel Pégourié-Gonnardb8ca7232014-12-02 10:09:10 +0100[diff] [blame]947#endif
Simon Butcher8c0fd1e2018-04-22 22:58:07 +0100[diff] [blame]948#if defined(MBEDTLS_CIPHER_MODE_OFB)
949 NULL,
950#endif
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]951#if defined(MBEDTLS_CIPHER_MODE_CTR)
Manuel Pégourié-Gonnard87181d12013-10-24 14:02:40 +0200[diff] [blame]952 NULL,
Manuel Pégourié-Gonnardb8ca7232014-12-02 10:09:10 +0100[diff] [blame]953#endif
Jaeden Ameroc6539902018-04-30 17:17:41 +0100[diff] [blame]954#if defined(MBEDTLS_CIPHER_MODE_XTS)
955 NULL,
956#endif
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]957#if defined(MBEDTLS_CIPHER_MODE_STREAM)
Manuel Pégourié-Gonnard87181d12013-10-24 14:02:40 +0200[diff] [blame]958 NULL,
Manuel Pégourié-Gonnardb8ca7232014-12-02 10:09:10 +0100[diff] [blame]959#endif
Manuel Pégourié-Gonnard87181d12013-10-24 14:02:40 +0200[diff] [blame]960 gcm_camellia_setkey_wrap,
961 gcm_camellia_setkey_wrap,
962 gcm_ctx_alloc,
963 gcm_ctx_free,
964};
965
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]966static const mbedtls_cipher_info_t camellia_128_gcm_info = {
Dave Rodgman3319ae92023-06-24 10:55:04 +0100[diff] [blame]967 "CAMELLIA-128-GCM",
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]968 16,
969 12 >> MBEDTLS_IV_SIZE_SHIFT,
Dave Rodgman6c6c8422023-06-24 11:14:34 +0100[diff] [blame]970 128 >> MBEDTLS_KEY_BITLEN_SHIFT,
Dave Rodgmand30eed42023-06-24 18:35:42 +0100[diff] [blame^]971 MBEDTLS_MODE_GCM,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]972 MBEDTLS_CIPHER_CAMELLIA_128_GCM,
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]973 MBEDTLS_CIPHER_VARIABLE_IV_LEN,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]974 MBEDTLS_CIPHER_BASE_INDEX_GCM_CAMELLIA
Manuel Pégourié-Gonnard87181d12013-10-24 14:02:40 +0200[diff] [blame]975};
976
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]977static const mbedtls_cipher_info_t camellia_192_gcm_info = {
Dave Rodgman3319ae92023-06-24 10:55:04 +0100[diff] [blame]978 "CAMELLIA-192-GCM",
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]979 16,
980 12 >> MBEDTLS_IV_SIZE_SHIFT,
Dave Rodgman6c6c8422023-06-24 11:14:34 +0100[diff] [blame]981 192 >> MBEDTLS_KEY_BITLEN_SHIFT,
Dave Rodgmand30eed42023-06-24 18:35:42 +0100[diff] [blame^]982 MBEDTLS_MODE_GCM,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]983 MBEDTLS_CIPHER_CAMELLIA_192_GCM,
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]984 MBEDTLS_CIPHER_VARIABLE_IV_LEN,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]985 MBEDTLS_CIPHER_BASE_INDEX_GCM_CAMELLIA
Manuel Pégourié-Gonnard87181d12013-10-24 14:02:40 +0200[diff] [blame]986};
987
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]988static const mbedtls_cipher_info_t camellia_256_gcm_info = {
Dave Rodgman3319ae92023-06-24 10:55:04 +0100[diff] [blame]989 "CAMELLIA-256-GCM",
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]990 16,
991 12 >> MBEDTLS_IV_SIZE_SHIFT,
Dave Rodgman6c6c8422023-06-24 11:14:34 +0100[diff] [blame]992 256 >> MBEDTLS_KEY_BITLEN_SHIFT,
Dave Rodgmand30eed42023-06-24 18:35:42 +0100[diff] [blame^]993 MBEDTLS_MODE_GCM,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]994 MBEDTLS_CIPHER_CAMELLIA_256_GCM,
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]995 MBEDTLS_CIPHER_VARIABLE_IV_LEN,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]996 MBEDTLS_CIPHER_BASE_INDEX_GCM_CAMELLIA
Manuel Pégourié-Gonnard87181d12013-10-24 14:02:40 +0200[diff] [blame]997};
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]998#endif /* MBEDTLS_GCM_C */
Manuel Pégourié-Gonnard87181d12013-10-24 14:02:40 +0200[diff] [blame]999
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1000#if defined(MBEDTLS_CCM_C)
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1001static int ccm_camellia_setkey_wrap(void *ctx, const unsigned char *key,
1002 unsigned int key_bitlen)
Manuel Pégourié-Gonnard41936952014-05-13 13:18:17 +0200[diff] [blame]1003{
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1004 return mbedtls_ccm_setkey((mbedtls_ccm_context *) ctx, MBEDTLS_CIPHER_ID_CAMELLIA,
1005 key, key_bitlen);
Manuel Pégourié-Gonnard41936952014-05-13 13:18:17 +0200[diff] [blame]1006}
1007
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1008static const mbedtls_cipher_base_t ccm_camellia_info = {
1009 MBEDTLS_CIPHER_ID_CAMELLIA,
Manuel Pégourié-Gonnard41936952014-05-13 13:18:17 +0200[diff] [blame]1010 NULL,
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1011#if defined(MBEDTLS_CIPHER_MODE_CBC)
Manuel Pégourié-Gonnard41936952014-05-13 13:18:17 +0200[diff] [blame]1012 NULL,
Manuel Pégourié-Gonnardb8ca7232014-12-02 10:09:10 +0100[diff] [blame]1013#endif
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1014#if defined(MBEDTLS_CIPHER_MODE_CFB)
Manuel Pégourié-Gonnard41936952014-05-13 13:18:17 +0200[diff] [blame]1015 NULL,
Manuel Pégourié-Gonnardb8ca7232014-12-02 10:09:10 +0100[diff] [blame]1016#endif
Simon Butcher8c0fd1e2018-04-22 22:58:07 +0100[diff] [blame]1017#if defined(MBEDTLS_CIPHER_MODE_OFB)
1018 NULL,
1019#endif
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1020#if defined(MBEDTLS_CIPHER_MODE_CTR)
Manuel Pégourié-Gonnard41936952014-05-13 13:18:17 +0200[diff] [blame]1021 NULL,
Manuel Pégourié-Gonnardb8ca7232014-12-02 10:09:10 +0100[diff] [blame]1022#endif
Jaeden Ameroc6539902018-04-30 17:17:41 +0100[diff] [blame]1023#if defined(MBEDTLS_CIPHER_MODE_XTS)
1024 NULL,
1025#endif
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1026#if defined(MBEDTLS_CIPHER_MODE_STREAM)
Manuel Pégourié-Gonnard41936952014-05-13 13:18:17 +0200[diff] [blame]1027 NULL,
Manuel Pégourié-Gonnardb8ca7232014-12-02 10:09:10 +0100[diff] [blame]1028#endif
Manuel Pégourié-Gonnard41936952014-05-13 13:18:17 +0200[diff] [blame]1029 ccm_camellia_setkey_wrap,
1030 ccm_camellia_setkey_wrap,
1031 ccm_ctx_alloc,
1032 ccm_ctx_free,
1033};
1034
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1035static const mbedtls_cipher_info_t camellia_128_ccm_info = {
Dave Rodgman3319ae92023-06-24 10:55:04 +0100[diff] [blame]1036 "CAMELLIA-128-CCM",
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1037 16,
1038 12 >> MBEDTLS_IV_SIZE_SHIFT,
Dave Rodgman6c6c8422023-06-24 11:14:34 +0100[diff] [blame]1039 128 >> MBEDTLS_KEY_BITLEN_SHIFT,
Dave Rodgmand30eed42023-06-24 18:35:42 +0100[diff] [blame^]1040 MBEDTLS_MODE_CCM,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1041 MBEDTLS_CIPHER_CAMELLIA_128_CCM,
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1042 MBEDTLS_CIPHER_VARIABLE_IV_LEN,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1043 MBEDTLS_CIPHER_BASE_INDEX_CCM_CAMELLIA
Manuel Pégourié-Gonnard41936952014-05-13 13:18:17 +0200[diff] [blame]1044};
1045
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1046static const mbedtls_cipher_info_t camellia_192_ccm_info = {
Dave Rodgman3319ae92023-06-24 10:55:04 +0100[diff] [blame]1047 "CAMELLIA-192-CCM",
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1048 16,
1049 12 >> MBEDTLS_IV_SIZE_SHIFT,
Dave Rodgman6c6c8422023-06-24 11:14:34 +0100[diff] [blame]1050 192 >> MBEDTLS_KEY_BITLEN_SHIFT,
Dave Rodgmand30eed42023-06-24 18:35:42 +0100[diff] [blame^]1051 MBEDTLS_MODE_CCM,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1052 MBEDTLS_CIPHER_CAMELLIA_192_CCM,
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1053 MBEDTLS_CIPHER_VARIABLE_IV_LEN,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1054 MBEDTLS_CIPHER_BASE_INDEX_CCM_CAMELLIA
Manuel Pégourié-Gonnard41936952014-05-13 13:18:17 +0200[diff] [blame]1055};
1056
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1057static const mbedtls_cipher_info_t camellia_256_ccm_info = {
Dave Rodgman3319ae92023-06-24 10:55:04 +0100[diff] [blame]1058 "CAMELLIA-256-CCM",
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1059 16,
1060 12 >> MBEDTLS_IV_SIZE_SHIFT,
Dave Rodgman6c6c8422023-06-24 11:14:34 +0100[diff] [blame]1061 256 >> MBEDTLS_KEY_BITLEN_SHIFT,
Dave Rodgmand30eed42023-06-24 18:35:42 +0100[diff] [blame^]1062 MBEDTLS_MODE_CCM,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1063 MBEDTLS_CIPHER_CAMELLIA_256_CCM,
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1064 MBEDTLS_CIPHER_VARIABLE_IV_LEN,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1065 MBEDTLS_CIPHER_BASE_INDEX_CCM_CAMELLIA
Manuel Pégourié-Gonnard41936952014-05-13 13:18:17 +0200[diff] [blame]1066};
Mateusz Starzyk4cb97392021-10-27 10:42:31 +0200[diff] [blame]1067
1068static const mbedtls_cipher_info_t camellia_128_ccm_star_no_tag_info = {
Dave Rodgman3319ae92023-06-24 10:55:04 +0100[diff] [blame]1069 "CAMELLIA-128-CCM*-NO-TAG",
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1070 16,
1071 12 >> MBEDTLS_IV_SIZE_SHIFT,
Dave Rodgman6c6c8422023-06-24 11:14:34 +0100[diff] [blame]1072 128 >> MBEDTLS_KEY_BITLEN_SHIFT,
Dave Rodgmand30eed42023-06-24 18:35:42 +0100[diff] [blame^]1073 MBEDTLS_MODE_CCM_STAR_NO_TAG,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1074 MBEDTLS_CIPHER_CAMELLIA_128_CCM_STAR_NO_TAG,
Mateusz Starzyk4cb97392021-10-27 10:42:31 +0200[diff] [blame]1075 MBEDTLS_CIPHER_VARIABLE_IV_LEN,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1076 MBEDTLS_CIPHER_BASE_INDEX_CCM_CAMELLIA
Mateusz Starzyk4cb97392021-10-27 10:42:31 +0200[diff] [blame]1077};
1078
1079static const mbedtls_cipher_info_t camellia_192_ccm_star_no_tag_info = {
Dave Rodgman3319ae92023-06-24 10:55:04 +0100[diff] [blame]1080 "CAMELLIA-192-CCM*-NO-TAG",
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1081 16,
1082 12 >> MBEDTLS_IV_SIZE_SHIFT,
Dave Rodgman6c6c8422023-06-24 11:14:34 +0100[diff] [blame]1083 192 >> MBEDTLS_KEY_BITLEN_SHIFT,
Dave Rodgmand30eed42023-06-24 18:35:42 +0100[diff] [blame^]1084 MBEDTLS_MODE_CCM_STAR_NO_TAG,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1085 MBEDTLS_CIPHER_CAMELLIA_192_CCM_STAR_NO_TAG,
Mateusz Starzyk4cb97392021-10-27 10:42:31 +0200[diff] [blame]1086 MBEDTLS_CIPHER_VARIABLE_IV_LEN,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1087 MBEDTLS_CIPHER_BASE_INDEX_CCM_CAMELLIA
Mateusz Starzyk4cb97392021-10-27 10:42:31 +0200[diff] [blame]1088};
1089
1090static const mbedtls_cipher_info_t camellia_256_ccm_star_no_tag_info = {
Dave Rodgman3319ae92023-06-24 10:55:04 +0100[diff] [blame]1091 "CAMELLIA-256-CCM*-NO-TAG",
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1092 16,
1093 12 >> MBEDTLS_IV_SIZE_SHIFT,
Dave Rodgman6c6c8422023-06-24 11:14:34 +0100[diff] [blame]1094 256 >> MBEDTLS_KEY_BITLEN_SHIFT,
Dave Rodgmand30eed42023-06-24 18:35:42 +0100[diff] [blame^]1095 MBEDTLS_MODE_CCM_STAR_NO_TAG,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1096 MBEDTLS_CIPHER_CAMELLIA_256_CCM_STAR_NO_TAG,
Mateusz Starzyk4cb97392021-10-27 10:42:31 +0200[diff] [blame]1097 MBEDTLS_CIPHER_VARIABLE_IV_LEN,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1098 MBEDTLS_CIPHER_BASE_INDEX_CCM_CAMELLIA
Mateusz Starzyk4cb97392021-10-27 10:42:31 +0200[diff] [blame]1099};
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1100#endif /* MBEDTLS_CCM_C */
Manuel Pégourié-Gonnard41936952014-05-13 13:18:17 +0200[diff] [blame]1101
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1102#endif /* MBEDTLS_CAMELLIA_C */
Paul Bakker8123e9d2011-01-06 15:37:30 +0000[diff] [blame]1103
Markku-Juhani O. Saarinenc06e1012017-12-07 11:51:13 +0000[diff] [blame]1104#if defined(MBEDTLS_ARIA_C)
1105
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1106static int aria_crypt_ecb_wrap(void *ctx, mbedtls_operation_t operation,
1107 const unsigned char *input, unsigned char *output)
Markku-Juhani O. Saarinenc06e1012017-12-07 11:51:13 +0000[diff] [blame]1108{
Manuel Pégourié-Gonnard08c337d2018-05-22 13:18:01 +0200[diff] [blame]1109 (void) operation;
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1110 return mbedtls_aria_crypt_ecb((mbedtls_aria_context *) ctx, input,
1111 output);
Markku-Juhani O. Saarinenc06e1012017-12-07 11:51:13 +0000[diff] [blame]1112}
1113
1114#if defined(MBEDTLS_CIPHER_MODE_CBC)
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1115static int aria_crypt_cbc_wrap(void *ctx, mbedtls_operation_t operation,
1116 size_t length, unsigned char *iv,
1117 const unsigned char *input, unsigned char *output)
Markku-Juhani O. Saarinenc06e1012017-12-07 11:51:13 +0000[diff] [blame]1118{
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1119 return mbedtls_aria_crypt_cbc((mbedtls_aria_context *) ctx, operation, length, iv,
1120 input, output);
Markku-Juhani O. Saarinenc06e1012017-12-07 11:51:13 +0000[diff] [blame]1121}
1122#endif /* MBEDTLS_CIPHER_MODE_CBC */
1123
1124#if defined(MBEDTLS_CIPHER_MODE_CFB)
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1125static int aria_crypt_cfb128_wrap(void *ctx, mbedtls_operation_t operation,
1126 size_t length, size_t *iv_off, unsigned char *iv,
1127 const unsigned char *input, unsigned char *output)
Markku-Juhani O. Saarinenc06e1012017-12-07 11:51:13 +0000[diff] [blame]1128{
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1129 return mbedtls_aria_crypt_cfb128((mbedtls_aria_context *) ctx, operation, length,
1130 iv_off, iv, input, output);
Markku-Juhani O. Saarinenc06e1012017-12-07 11:51:13 +0000[diff] [blame]1131}
1132#endif /* MBEDTLS_CIPHER_MODE_CFB */
1133
1134#if defined(MBEDTLS_CIPHER_MODE_CTR)
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1135static int aria_crypt_ctr_wrap(void *ctx, size_t length, size_t *nc_off,
1136 unsigned char *nonce_counter, unsigned char *stream_block,
1137 const unsigned char *input, unsigned char *output)
Markku-Juhani O. Saarinenc06e1012017-12-07 11:51:13 +0000[diff] [blame]1138{
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1139 return mbedtls_aria_crypt_ctr((mbedtls_aria_context *) ctx, length, nc_off,
1140 nonce_counter, stream_block, input, output);
Markku-Juhani O. Saarinenc06e1012017-12-07 11:51:13 +0000[diff] [blame]1141}
1142#endif /* MBEDTLS_CIPHER_MODE_CTR */
1143
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1144static int aria_setkey_dec_wrap(void *ctx, const unsigned char *key,
1145 unsigned int key_bitlen)
Markku-Juhani O. Saarinenc06e1012017-12-07 11:51:13 +0000[diff] [blame]1146{
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1147 return mbedtls_aria_setkey_dec((mbedtls_aria_context *) ctx, key, key_bitlen);
Markku-Juhani O. Saarinenc06e1012017-12-07 11:51:13 +0000[diff] [blame]1148}
1149
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1150static int aria_setkey_enc_wrap(void *ctx, const unsigned char *key,
1151 unsigned int key_bitlen)
Markku-Juhani O. Saarinenc06e1012017-12-07 11:51:13 +0000[diff] [blame]1152{
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1153 return mbedtls_aria_setkey_enc((mbedtls_aria_context *) ctx, key, key_bitlen);
Markku-Juhani O. Saarinenc06e1012017-12-07 11:51:13 +0000[diff] [blame]1154}
1155
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1156static void *aria_ctx_alloc(void)
Markku-Juhani O. Saarinenc06e1012017-12-07 11:51:13 +0000[diff] [blame]1157{
1158 mbedtls_aria_context *ctx;
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1159 ctx = mbedtls_calloc(1, sizeof(mbedtls_aria_context));
Markku-Juhani O. Saarinenc06e1012017-12-07 11:51:13 +0000[diff] [blame]1160
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1161 if (ctx == NULL) {
1162 return NULL;
1163 }
Markku-Juhani O. Saarinenc06e1012017-12-07 11:51:13 +0000[diff] [blame]1164
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1165 mbedtls_aria_init(ctx);
Markku-Juhani O. Saarinenc06e1012017-12-07 11:51:13 +0000[diff] [blame]1166
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1167 return ctx;
Markku-Juhani O. Saarinenc06e1012017-12-07 11:51:13 +0000[diff] [blame]1168}
1169
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1170static void aria_ctx_free(void *ctx)
Markku-Juhani O. Saarinenc06e1012017-12-07 11:51:13 +0000[diff] [blame]1171{
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1172 mbedtls_aria_free((mbedtls_aria_context *) ctx);
1173 mbedtls_free(ctx);
Markku-Juhani O. Saarinenc06e1012017-12-07 11:51:13 +0000[diff] [blame]1174}
1175
1176static const mbedtls_cipher_base_t aria_info = {
1177 MBEDTLS_CIPHER_ID_ARIA,
1178 aria_crypt_ecb_wrap,
1179#if defined(MBEDTLS_CIPHER_MODE_CBC)
1180 aria_crypt_cbc_wrap,
1181#endif
1182#if defined(MBEDTLS_CIPHER_MODE_CFB)
1183 aria_crypt_cfb128_wrap,
1184#endif
Simon Butcher4844bf22018-06-11 15:21:05 +0100[diff] [blame]1185#if defined(MBEDTLS_CIPHER_MODE_OFB)
1186 NULL,
1187#endif
Markku-Juhani O. Saarinenc06e1012017-12-07 11:51:13 +0000[diff] [blame]1188#if defined(MBEDTLS_CIPHER_MODE_CTR)
1189 aria_crypt_ctr_wrap,
1190#endif
Jaeden Ameroc6539902018-04-30 17:17:41 +0100[diff] [blame]1191#if defined(MBEDTLS_CIPHER_MODE_XTS)
1192 NULL,
1193#endif
Markku-Juhani O. Saarinenc06e1012017-12-07 11:51:13 +0000[diff] [blame]1194#if defined(MBEDTLS_CIPHER_MODE_STREAM)
1195 NULL,
1196#endif
1197 aria_setkey_enc_wrap,
1198 aria_setkey_dec_wrap,
1199 aria_ctx_alloc,
1200 aria_ctx_free
1201};
1202
1203static const mbedtls_cipher_info_t aria_128_ecb_info = {
Dave Rodgman3319ae92023-06-24 10:55:04 +0100[diff] [blame]1204 "ARIA-128-ECB",
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1205 16,
1206 0 >> MBEDTLS_IV_SIZE_SHIFT,
Dave Rodgman6c6c8422023-06-24 11:14:34 +0100[diff] [blame]1207 128 >> MBEDTLS_KEY_BITLEN_SHIFT,
Dave Rodgmand30eed42023-06-24 18:35:42 +0100[diff] [blame^]1208 MBEDTLS_MODE_ECB,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1209 MBEDTLS_CIPHER_ARIA_128_ECB,
Markku-Juhani O. Saarinenc06e1012017-12-07 11:51:13 +0000[diff] [blame]1210 0,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1211 MBEDTLS_CIPHER_BASE_INDEX_ARIA
Markku-Juhani O. Saarinenc06e1012017-12-07 11:51:13 +0000[diff] [blame]1212};
1213
1214static const mbedtls_cipher_info_t aria_192_ecb_info = {
Dave Rodgman3319ae92023-06-24 10:55:04 +0100[diff] [blame]1215 "ARIA-192-ECB",
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1216 16,
1217 0 >> MBEDTLS_IV_SIZE_SHIFT,
Dave Rodgman6c6c8422023-06-24 11:14:34 +0100[diff] [blame]1218 192 >> MBEDTLS_KEY_BITLEN_SHIFT,
Dave Rodgmand30eed42023-06-24 18:35:42 +0100[diff] [blame^]1219 MBEDTLS_MODE_ECB,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1220 MBEDTLS_CIPHER_ARIA_192_ECB,
Markku-Juhani O. Saarinenc06e1012017-12-07 11:51:13 +0000[diff] [blame]1221 0,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1222 MBEDTLS_CIPHER_BASE_INDEX_ARIA
Markku-Juhani O. Saarinenc06e1012017-12-07 11:51:13 +0000[diff] [blame]1223};
1224
1225static const mbedtls_cipher_info_t aria_256_ecb_info = {
Dave Rodgman3319ae92023-06-24 10:55:04 +0100[diff] [blame]1226 "ARIA-256-ECB",
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1227 16,
1228 0 >> MBEDTLS_IV_SIZE_SHIFT,
Dave Rodgman6c6c8422023-06-24 11:14:34 +0100[diff] [blame]1229 256 >> MBEDTLS_KEY_BITLEN_SHIFT,
Dave Rodgmand30eed42023-06-24 18:35:42 +0100[diff] [blame^]1230 MBEDTLS_MODE_ECB,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1231 MBEDTLS_CIPHER_ARIA_256_ECB,
Markku-Juhani O. Saarinenc06e1012017-12-07 11:51:13 +0000[diff] [blame]1232 0,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1233 MBEDTLS_CIPHER_BASE_INDEX_ARIA
Markku-Juhani O. Saarinenc06e1012017-12-07 11:51:13 +0000[diff] [blame]1234};
1235
1236#if defined(MBEDTLS_CIPHER_MODE_CBC)
1237static const mbedtls_cipher_info_t aria_128_cbc_info = {
Dave Rodgman3319ae92023-06-24 10:55:04 +0100[diff] [blame]1238 "ARIA-128-CBC",
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1239 16,
1240 16 >> MBEDTLS_IV_SIZE_SHIFT,
Dave Rodgman6c6c8422023-06-24 11:14:34 +0100[diff] [blame]1241 128 >> MBEDTLS_KEY_BITLEN_SHIFT,
Dave Rodgmand30eed42023-06-24 18:35:42 +0100[diff] [blame^]1242 MBEDTLS_MODE_CBC,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1243 MBEDTLS_CIPHER_ARIA_128_CBC,
Markku-Juhani O. Saarinenc06e1012017-12-07 11:51:13 +0000[diff] [blame]1244 0,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1245 MBEDTLS_CIPHER_BASE_INDEX_ARIA
Markku-Juhani O. Saarinenc06e1012017-12-07 11:51:13 +0000[diff] [blame]1246};
1247
1248static const mbedtls_cipher_info_t aria_192_cbc_info = {
Dave Rodgman3319ae92023-06-24 10:55:04 +0100[diff] [blame]1249 "ARIA-192-CBC",
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1250 16,
1251 16 >> MBEDTLS_IV_SIZE_SHIFT,
Dave Rodgman6c6c8422023-06-24 11:14:34 +0100[diff] [blame]1252 192 >> MBEDTLS_KEY_BITLEN_SHIFT,
Dave Rodgmand30eed42023-06-24 18:35:42 +0100[diff] [blame^]1253 MBEDTLS_MODE_CBC,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1254 MBEDTLS_CIPHER_ARIA_192_CBC,
Markku-Juhani O. Saarinenc06e1012017-12-07 11:51:13 +0000[diff] [blame]1255 0,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1256 MBEDTLS_CIPHER_BASE_INDEX_ARIA
Markku-Juhani O. Saarinenc06e1012017-12-07 11:51:13 +0000[diff] [blame]1257};
1258
1259static const mbedtls_cipher_info_t aria_256_cbc_info = {
Dave Rodgman3319ae92023-06-24 10:55:04 +0100[diff] [blame]1260 "ARIA-256-CBC",
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1261 16,
1262 16 >> MBEDTLS_IV_SIZE_SHIFT,
Dave Rodgman6c6c8422023-06-24 11:14:34 +0100[diff] [blame]1263 256 >> MBEDTLS_KEY_BITLEN_SHIFT,
Dave Rodgmand30eed42023-06-24 18:35:42 +0100[diff] [blame^]1264 MBEDTLS_MODE_CBC,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1265 MBEDTLS_CIPHER_ARIA_256_CBC,
Markku-Juhani O. Saarinenc06e1012017-12-07 11:51:13 +0000[diff] [blame]1266 0,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1267 MBEDTLS_CIPHER_BASE_INDEX_ARIA
Markku-Juhani O. Saarinenc06e1012017-12-07 11:51:13 +0000[diff] [blame]1268};
1269#endif /* MBEDTLS_CIPHER_MODE_CBC */
1270
1271#if defined(MBEDTLS_CIPHER_MODE_CFB)
1272static const mbedtls_cipher_info_t aria_128_cfb128_info = {
Dave Rodgman3319ae92023-06-24 10:55:04 +0100[diff] [blame]1273 "ARIA-128-CFB128",
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1274 16,
1275 16 >> MBEDTLS_IV_SIZE_SHIFT,
Dave Rodgman6c6c8422023-06-24 11:14:34 +0100[diff] [blame]1276 128 >> MBEDTLS_KEY_BITLEN_SHIFT,
Dave Rodgmand30eed42023-06-24 18:35:42 +0100[diff] [blame^]1277 MBEDTLS_MODE_CFB,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1278 MBEDTLS_CIPHER_ARIA_128_CFB128,
Markku-Juhani O. Saarinenc06e1012017-12-07 11:51:13 +0000[diff] [blame]1279 0,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1280 MBEDTLS_CIPHER_BASE_INDEX_ARIA
Markku-Juhani O. Saarinenc06e1012017-12-07 11:51:13 +0000[diff] [blame]1281};
1282
1283static const mbedtls_cipher_info_t aria_192_cfb128_info = {
Dave Rodgman3319ae92023-06-24 10:55:04 +0100[diff] [blame]1284 "ARIA-192-CFB128",
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1285 16,
1286 16 >> MBEDTLS_IV_SIZE_SHIFT,
Dave Rodgman6c6c8422023-06-24 11:14:34 +0100[diff] [blame]1287 192 >> MBEDTLS_KEY_BITLEN_SHIFT,
Dave Rodgmand30eed42023-06-24 18:35:42 +0100[diff] [blame^]1288 MBEDTLS_MODE_CFB,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1289 MBEDTLS_CIPHER_ARIA_192_CFB128,
Markku-Juhani O. Saarinenc06e1012017-12-07 11:51:13 +0000[diff] [blame]1290 0,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1291 MBEDTLS_CIPHER_BASE_INDEX_ARIA
Markku-Juhani O. Saarinenc06e1012017-12-07 11:51:13 +0000[diff] [blame]1292};
1293
1294static const mbedtls_cipher_info_t aria_256_cfb128_info = {
Dave Rodgman3319ae92023-06-24 10:55:04 +0100[diff] [blame]1295 "ARIA-256-CFB128",
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1296 16,
1297 16 >> MBEDTLS_IV_SIZE_SHIFT,
Dave Rodgman6c6c8422023-06-24 11:14:34 +0100[diff] [blame]1298 256 >> MBEDTLS_KEY_BITLEN_SHIFT,
Dave Rodgmand30eed42023-06-24 18:35:42 +0100[diff] [blame^]1299 MBEDTLS_MODE_CFB,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1300 MBEDTLS_CIPHER_ARIA_256_CFB128,
Markku-Juhani O. Saarinenc06e1012017-12-07 11:51:13 +0000[diff] [blame]1301 0,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1302 MBEDTLS_CIPHER_BASE_INDEX_ARIA
Markku-Juhani O. Saarinenc06e1012017-12-07 11:51:13 +0000[diff] [blame]1303};
1304#endif /* MBEDTLS_CIPHER_MODE_CFB */
1305
1306#if defined(MBEDTLS_CIPHER_MODE_CTR)
1307static const mbedtls_cipher_info_t aria_128_ctr_info = {
Dave Rodgman3319ae92023-06-24 10:55:04 +0100[diff] [blame]1308 "ARIA-128-CTR",
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1309 16,
1310 16 >> MBEDTLS_IV_SIZE_SHIFT,
Dave Rodgman6c6c8422023-06-24 11:14:34 +0100[diff] [blame]1311 128 >> MBEDTLS_KEY_BITLEN_SHIFT,
Dave Rodgmand30eed42023-06-24 18:35:42 +0100[diff] [blame^]1312 MBEDTLS_MODE_CTR,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1313 MBEDTLS_CIPHER_ARIA_128_CTR,
Markku-Juhani O. Saarinenc06e1012017-12-07 11:51:13 +0000[diff] [blame]1314 0,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1315 MBEDTLS_CIPHER_BASE_INDEX_ARIA
Markku-Juhani O. Saarinenc06e1012017-12-07 11:51:13 +0000[diff] [blame]1316};
1317
1318static const mbedtls_cipher_info_t aria_192_ctr_info = {
Dave Rodgman3319ae92023-06-24 10:55:04 +0100[diff] [blame]1319 "ARIA-192-CTR",
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1320 16,
1321 16 >> MBEDTLS_IV_SIZE_SHIFT,
Dave Rodgman6c6c8422023-06-24 11:14:34 +0100[diff] [blame]1322 192 >> MBEDTLS_KEY_BITLEN_SHIFT,
Dave Rodgmand30eed42023-06-24 18:35:42 +0100[diff] [blame^]1323 MBEDTLS_MODE_CTR,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1324 MBEDTLS_CIPHER_ARIA_192_CTR,
Markku-Juhani O. Saarinenc06e1012017-12-07 11:51:13 +0000[diff] [blame]1325 0,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1326 MBEDTLS_CIPHER_BASE_INDEX_ARIA
Markku-Juhani O. Saarinenc06e1012017-12-07 11:51:13 +0000[diff] [blame]1327};
1328
1329static const mbedtls_cipher_info_t aria_256_ctr_info = {
Dave Rodgman3319ae92023-06-24 10:55:04 +0100[diff] [blame]1330 "ARIA-256-CTR",
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1331 16,
1332 16 >> MBEDTLS_IV_SIZE_SHIFT,
Dave Rodgman6c6c8422023-06-24 11:14:34 +0100[diff] [blame]1333 256 >> MBEDTLS_KEY_BITLEN_SHIFT,
Dave Rodgmand30eed42023-06-24 18:35:42 +0100[diff] [blame^]1334 MBEDTLS_MODE_CTR,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1335 MBEDTLS_CIPHER_ARIA_256_CTR,
Markku-Juhani O. Saarinenc06e1012017-12-07 11:51:13 +0000[diff] [blame]1336 0,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1337 MBEDTLS_CIPHER_BASE_INDEX_ARIA
Markku-Juhani O. Saarinenc06e1012017-12-07 11:51:13 +0000[diff] [blame]1338};
1339#endif /* MBEDTLS_CIPHER_MODE_CTR */
1340
1341#if defined(MBEDTLS_GCM_C)
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1342static int gcm_aria_setkey_wrap(void *ctx, const unsigned char *key,
1343 unsigned int key_bitlen)
Markku-Juhani O. Saarinenc06e1012017-12-07 11:51:13 +0000[diff] [blame]1344{
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1345 return mbedtls_gcm_setkey((mbedtls_gcm_context *) ctx, MBEDTLS_CIPHER_ID_ARIA,
1346 key, key_bitlen);
Markku-Juhani O. Saarinenc06e1012017-12-07 11:51:13 +0000[diff] [blame]1347}
1348
1349static const mbedtls_cipher_base_t gcm_aria_info = {
1350 MBEDTLS_CIPHER_ID_ARIA,
1351 NULL,
1352#if defined(MBEDTLS_CIPHER_MODE_CBC)
1353 NULL,
1354#endif
1355#if defined(MBEDTLS_CIPHER_MODE_CFB)
1356 NULL,
1357#endif
Simon Butcher4844bf22018-06-11 15:21:05 +0100[diff] [blame]1358#if defined(MBEDTLS_CIPHER_MODE_OFB)
1359 NULL,
1360#endif
Markku-Juhani O. Saarinenc06e1012017-12-07 11:51:13 +0000[diff] [blame]1361#if defined(MBEDTLS_CIPHER_MODE_CTR)
1362 NULL,
1363#endif
Jaeden Ameroc6539902018-04-30 17:17:41 +0100[diff] [blame]1364#if defined(MBEDTLS_CIPHER_MODE_XTS)
1365 NULL,
1366#endif
Markku-Juhani O. Saarinenc06e1012017-12-07 11:51:13 +0000[diff] [blame]1367#if defined(MBEDTLS_CIPHER_MODE_STREAM)
1368 NULL,
1369#endif
1370 gcm_aria_setkey_wrap,
1371 gcm_aria_setkey_wrap,
1372 gcm_ctx_alloc,
1373 gcm_ctx_free,
1374};
1375
1376static const mbedtls_cipher_info_t aria_128_gcm_info = {
Dave Rodgman3319ae92023-06-24 10:55:04 +0100[diff] [blame]1377 "ARIA-128-GCM",
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1378 16,
1379 12 >> MBEDTLS_IV_SIZE_SHIFT,
Dave Rodgman6c6c8422023-06-24 11:14:34 +0100[diff] [blame]1380 128 >> MBEDTLS_KEY_BITLEN_SHIFT,
Dave Rodgmand30eed42023-06-24 18:35:42 +0100[diff] [blame^]1381 MBEDTLS_MODE_GCM,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1382 MBEDTLS_CIPHER_ARIA_128_GCM,
Markku-Juhani O. Saarinenc06e1012017-12-07 11:51:13 +0000[diff] [blame]1383 MBEDTLS_CIPHER_VARIABLE_IV_LEN,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1384 MBEDTLS_CIPHER_BASE_INDEX_GCM_ARIA
Markku-Juhani O. Saarinenc06e1012017-12-07 11:51:13 +0000[diff] [blame]1385};
1386
1387static const mbedtls_cipher_info_t aria_192_gcm_info = {
Dave Rodgman3319ae92023-06-24 10:55:04 +0100[diff] [blame]1388 "ARIA-192-GCM",
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1389 16,
1390 12 >> MBEDTLS_IV_SIZE_SHIFT,
Dave Rodgman6c6c8422023-06-24 11:14:34 +0100[diff] [blame]1391 192 >> MBEDTLS_KEY_BITLEN_SHIFT,
Dave Rodgmand30eed42023-06-24 18:35:42 +0100[diff] [blame^]1392 MBEDTLS_MODE_GCM,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1393 MBEDTLS_CIPHER_ARIA_192_GCM,
Markku-Juhani O. Saarinenc06e1012017-12-07 11:51:13 +0000[diff] [blame]1394 MBEDTLS_CIPHER_VARIABLE_IV_LEN,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1395 MBEDTLS_CIPHER_BASE_INDEX_GCM_ARIA
Markku-Juhani O. Saarinenc06e1012017-12-07 11:51:13 +0000[diff] [blame]1396};
1397
1398static const mbedtls_cipher_info_t aria_256_gcm_info = {
Dave Rodgman3319ae92023-06-24 10:55:04 +0100[diff] [blame]1399 "ARIA-256-GCM",
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1400 16,
1401 12 >> MBEDTLS_IV_SIZE_SHIFT,
Dave Rodgman6c6c8422023-06-24 11:14:34 +0100[diff] [blame]1402 256 >> MBEDTLS_KEY_BITLEN_SHIFT,
Dave Rodgmand30eed42023-06-24 18:35:42 +0100[diff] [blame^]1403 MBEDTLS_MODE_GCM,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1404 MBEDTLS_CIPHER_ARIA_256_GCM,
Markku-Juhani O. Saarinenc06e1012017-12-07 11:51:13 +0000[diff] [blame]1405 MBEDTLS_CIPHER_VARIABLE_IV_LEN,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1406 MBEDTLS_CIPHER_BASE_INDEX_GCM_ARIA
Markku-Juhani O. Saarinenc06e1012017-12-07 11:51:13 +0000[diff] [blame]1407};
1408#endif /* MBEDTLS_GCM_C */
1409
1410#if defined(MBEDTLS_CCM_C)
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1411static int ccm_aria_setkey_wrap(void *ctx, const unsigned char *key,
1412 unsigned int key_bitlen)
Markku-Juhani O. Saarinenc06e1012017-12-07 11:51:13 +0000[diff] [blame]1413{
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1414 return mbedtls_ccm_setkey((mbedtls_ccm_context *) ctx, MBEDTLS_CIPHER_ID_ARIA,
1415 key, key_bitlen);
Markku-Juhani O. Saarinenc06e1012017-12-07 11:51:13 +0000[diff] [blame]1416}
1417
1418static const mbedtls_cipher_base_t ccm_aria_info = {
1419 MBEDTLS_CIPHER_ID_ARIA,
1420 NULL,
1421#if defined(MBEDTLS_CIPHER_MODE_CBC)
1422 NULL,
1423#endif
1424#if defined(MBEDTLS_CIPHER_MODE_CFB)
1425 NULL,
1426#endif
Simon Butcher7487c5b2018-04-29 00:24:51 +0100[diff] [blame]1427#if defined(MBEDTLS_CIPHER_MODE_OFB)
1428 NULL,
1429#endif
Markku-Juhani O. Saarinenc06e1012017-12-07 11:51:13 +0000[diff] [blame]1430#if defined(MBEDTLS_CIPHER_MODE_CTR)
1431 NULL,
1432#endif
Jaeden Ameroc6539902018-04-30 17:17:41 +0100[diff] [blame]1433#if defined(MBEDTLS_CIPHER_MODE_XTS)
1434 NULL,
1435#endif
Markku-Juhani O. Saarinenc06e1012017-12-07 11:51:13 +0000[diff] [blame]1436#if defined(MBEDTLS_CIPHER_MODE_STREAM)
1437 NULL,
1438#endif
1439 ccm_aria_setkey_wrap,
1440 ccm_aria_setkey_wrap,
1441 ccm_ctx_alloc,
1442 ccm_ctx_free,
1443};
1444
1445static const mbedtls_cipher_info_t aria_128_ccm_info = {
Dave Rodgman3319ae92023-06-24 10:55:04 +0100[diff] [blame]1446 "ARIA-128-CCM",
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1447 16,
1448 12 >> MBEDTLS_IV_SIZE_SHIFT,
Dave Rodgman6c6c8422023-06-24 11:14:34 +0100[diff] [blame]1449 128 >> MBEDTLS_KEY_BITLEN_SHIFT,
Dave Rodgmand30eed42023-06-24 18:35:42 +0100[diff] [blame^]1450 MBEDTLS_MODE_CCM,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1451 MBEDTLS_CIPHER_ARIA_128_CCM,
Markku-Juhani O. Saarinenc06e1012017-12-07 11:51:13 +0000[diff] [blame]1452 MBEDTLS_CIPHER_VARIABLE_IV_LEN,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1453 MBEDTLS_CIPHER_BASE_INDEX_CCM_ARIA
Markku-Juhani O. Saarinenc06e1012017-12-07 11:51:13 +0000[diff] [blame]1454};
1455
1456static const mbedtls_cipher_info_t aria_192_ccm_info = {
Dave Rodgman3319ae92023-06-24 10:55:04 +0100[diff] [blame]1457 "ARIA-192-CCM",
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1458 16,
1459 12 >> MBEDTLS_IV_SIZE_SHIFT,
Dave Rodgman6c6c8422023-06-24 11:14:34 +0100[diff] [blame]1460 192 >> MBEDTLS_KEY_BITLEN_SHIFT,
Dave Rodgmand30eed42023-06-24 18:35:42 +0100[diff] [blame^]1461 MBEDTLS_MODE_CCM,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1462 MBEDTLS_CIPHER_ARIA_192_CCM,
Markku-Juhani O. Saarinenc06e1012017-12-07 11:51:13 +0000[diff] [blame]1463 MBEDTLS_CIPHER_VARIABLE_IV_LEN,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1464 MBEDTLS_CIPHER_BASE_INDEX_CCM_ARIA
Markku-Juhani O. Saarinenc06e1012017-12-07 11:51:13 +0000[diff] [blame]1465};
1466
1467static const mbedtls_cipher_info_t aria_256_ccm_info = {
Dave Rodgman3319ae92023-06-24 10:55:04 +0100[diff] [blame]1468 "ARIA-256-CCM",
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1469 16,
1470 12 >> MBEDTLS_IV_SIZE_SHIFT,
Dave Rodgman6c6c8422023-06-24 11:14:34 +0100[diff] [blame]1471 256 >> MBEDTLS_KEY_BITLEN_SHIFT,
Dave Rodgmand30eed42023-06-24 18:35:42 +0100[diff] [blame^]1472 MBEDTLS_MODE_CCM,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1473 MBEDTLS_CIPHER_ARIA_256_CCM,
Markku-Juhani O. Saarinenc06e1012017-12-07 11:51:13 +0000[diff] [blame]1474 MBEDTLS_CIPHER_VARIABLE_IV_LEN,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1475 MBEDTLS_CIPHER_BASE_INDEX_CCM_ARIA
Markku-Juhani O. Saarinenc06e1012017-12-07 11:51:13 +0000[diff] [blame]1476};
Mateusz Starzyk4cb97392021-10-27 10:42:31 +0200[diff] [blame]1477
1478static const mbedtls_cipher_info_t aria_128_ccm_star_no_tag_info = {
Dave Rodgman3319ae92023-06-24 10:55:04 +0100[diff] [blame]1479 "ARIA-128-CCM*-NO-TAG",
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1480 16,
1481 12 >> MBEDTLS_IV_SIZE_SHIFT,
Dave Rodgman6c6c8422023-06-24 11:14:34 +0100[diff] [blame]1482 128 >> MBEDTLS_KEY_BITLEN_SHIFT,
Dave Rodgmand30eed42023-06-24 18:35:42 +0100[diff] [blame^]1483 MBEDTLS_MODE_CCM_STAR_NO_TAG,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1484 MBEDTLS_CIPHER_ARIA_128_CCM_STAR_NO_TAG,
Mateusz Starzyk4cb97392021-10-27 10:42:31 +0200[diff] [blame]1485 MBEDTLS_CIPHER_VARIABLE_IV_LEN,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1486 MBEDTLS_CIPHER_BASE_INDEX_CCM_ARIA
Mateusz Starzyk4cb97392021-10-27 10:42:31 +0200[diff] [blame]1487};
1488
1489static const mbedtls_cipher_info_t aria_192_ccm_star_no_tag_info = {
Dave Rodgman3319ae92023-06-24 10:55:04 +0100[diff] [blame]1490 "ARIA-192-CCM*-NO-TAG",
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1491 16,
1492 12 >> MBEDTLS_IV_SIZE_SHIFT,
Dave Rodgman6c6c8422023-06-24 11:14:34 +0100[diff] [blame]1493 192 >> MBEDTLS_KEY_BITLEN_SHIFT,
Dave Rodgmand30eed42023-06-24 18:35:42 +0100[diff] [blame^]1494 MBEDTLS_MODE_CCM_STAR_NO_TAG,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1495 MBEDTLS_CIPHER_ARIA_192_CCM_STAR_NO_TAG,
Mateusz Starzyk4cb97392021-10-27 10:42:31 +0200[diff] [blame]1496 MBEDTLS_CIPHER_VARIABLE_IV_LEN,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1497 MBEDTLS_CIPHER_BASE_INDEX_CCM_ARIA
Mateusz Starzyk4cb97392021-10-27 10:42:31 +0200[diff] [blame]1498};
1499
1500static const mbedtls_cipher_info_t aria_256_ccm_star_no_tag_info = {
Dave Rodgman3319ae92023-06-24 10:55:04 +0100[diff] [blame]1501 "ARIA-256-CCM*-NO-TAG",
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1502 16,
1503 12 >> MBEDTLS_IV_SIZE_SHIFT,
Dave Rodgman6c6c8422023-06-24 11:14:34 +0100[diff] [blame]1504 256 >> MBEDTLS_KEY_BITLEN_SHIFT,
Dave Rodgmand30eed42023-06-24 18:35:42 +0100[diff] [blame^]1505 MBEDTLS_MODE_CCM_STAR_NO_TAG,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1506 MBEDTLS_CIPHER_ARIA_256_CCM_STAR_NO_TAG,
Mateusz Starzyk4cb97392021-10-27 10:42:31 +0200[diff] [blame]1507 MBEDTLS_CIPHER_VARIABLE_IV_LEN,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1508 MBEDTLS_CIPHER_BASE_INDEX_CCM_ARIA
Mateusz Starzyk4cb97392021-10-27 10:42:31 +0200[diff] [blame]1509};
Markku-Juhani O. Saarinenc06e1012017-12-07 11:51:13 +0000[diff] [blame]1510#endif /* MBEDTLS_CCM_C */
1511
1512#endif /* MBEDTLS_ARIA_C */
1513
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1514#if defined(MBEDTLS_DES_C)
Paul Bakker8123e9d2011-01-06 15:37:30 +0000[diff] [blame]1515
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1516static int des_crypt_ecb_wrap(void *ctx, mbedtls_operation_t operation,
1517 const unsigned char *input, unsigned char *output)
Paul Bakker5e0efa72013-09-08 23:04:04 +0200[diff] [blame]1518{
1519 ((void) operation);
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1520 return mbedtls_des_crypt_ecb((mbedtls_des_context *) ctx, input, output);
Paul Bakker5e0efa72013-09-08 23:04:04 +0200[diff] [blame]1521}
1522
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1523static int des3_crypt_ecb_wrap(void *ctx, mbedtls_operation_t operation,
1524 const unsigned char *input, unsigned char *output)
Paul Bakker5e0efa72013-09-08 23:04:04 +0200[diff] [blame]1525{
1526 ((void) operation);
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1527 return mbedtls_des3_crypt_ecb((mbedtls_des3_context *) ctx, input, output);
Paul Bakker5e0efa72013-09-08 23:04:04 +0200[diff] [blame]1528}
1529
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1530#if defined(MBEDTLS_CIPHER_MODE_CBC)
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1531static int des_crypt_cbc_wrap(void *ctx, mbedtls_operation_t operation, size_t length,
1532 unsigned char *iv, const unsigned char *input, unsigned char *output)
Paul Bakker8123e9d2011-01-06 15:37:30 +0000[diff] [blame]1533{
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1534 return mbedtls_des_crypt_cbc((mbedtls_des_context *) ctx, operation, length, iv, input,
1535 output);
Paul Bakker8123e9d2011-01-06 15:37:30 +0000[diff] [blame]1536}
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1537#endif /* MBEDTLS_CIPHER_MODE_CBC */
Paul Bakker8123e9d2011-01-06 15:37:30 +0000[diff] [blame]1538
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1539#if defined(MBEDTLS_CIPHER_MODE_CBC)
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1540static int des3_crypt_cbc_wrap(void *ctx, mbedtls_operation_t operation, size_t length,
1541 unsigned char *iv, const unsigned char *input, unsigned char *output)
Paul Bakker8123e9d2011-01-06 15:37:30 +0000[diff] [blame]1542{
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1543 return mbedtls_des3_crypt_cbc((mbedtls_des3_context *) ctx, operation, length, iv, input,
1544 output);
Paul Bakker8123e9d2011-01-06 15:37:30 +0000[diff] [blame]1545}
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1546#endif /* MBEDTLS_CIPHER_MODE_CBC */
Paul Bakker8123e9d2011-01-06 15:37:30 +0000[diff] [blame]1547
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1548static int des_setkey_dec_wrap(void *ctx, const unsigned char *key,
1549 unsigned int key_bitlen)
Paul Bakker8123e9d2011-01-06 15:37:30 +0000[diff] [blame]1550{
Manuel Pégourié-Gonnard898e0aa2015-06-18 15:28:12 +0200[diff] [blame]1551 ((void) key_bitlen);
Paul Bakkerd61e7d92011-01-18 16:17:47 +0000[diff] [blame]1552
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1553 return mbedtls_des_setkey_dec((mbedtls_des_context *) ctx, key);
Paul Bakker8123e9d2011-01-06 15:37:30 +0000[diff] [blame]1554}
1555
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1556static int des_setkey_enc_wrap(void *ctx, const unsigned char *key,
1557 unsigned int key_bitlen)
Paul Bakker8123e9d2011-01-06 15:37:30 +0000[diff] [blame]1558{
Manuel Pégourié-Gonnard898e0aa2015-06-18 15:28:12 +0200[diff] [blame]1559 ((void) key_bitlen);
Paul Bakkerd61e7d92011-01-18 16:17:47 +0000[diff] [blame]1560
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1561 return mbedtls_des_setkey_enc((mbedtls_des_context *) ctx, key);
Paul Bakker8123e9d2011-01-06 15:37:30 +0000[diff] [blame]1562}
1563
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1564static int des3_set2key_dec_wrap(void *ctx, const unsigned char *key,
1565 unsigned int key_bitlen)
Paul Bakker8123e9d2011-01-06 15:37:30 +0000[diff] [blame]1566{
Manuel Pégourié-Gonnard898e0aa2015-06-18 15:28:12 +0200[diff] [blame]1567 ((void) key_bitlen);
Paul Bakkerd61e7d92011-01-18 16:17:47 +0000[diff] [blame]1568
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1569 return mbedtls_des3_set2key_dec((mbedtls_des3_context *) ctx, key);
Paul Bakker8123e9d2011-01-06 15:37:30 +0000[diff] [blame]1570}
1571
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1572static int des3_set2key_enc_wrap(void *ctx, const unsigned char *key,
1573 unsigned int key_bitlen)
Paul Bakker8123e9d2011-01-06 15:37:30 +0000[diff] [blame]1574{
Manuel Pégourié-Gonnard898e0aa2015-06-18 15:28:12 +0200[diff] [blame]1575 ((void) key_bitlen);
Paul Bakkerd61e7d92011-01-18 16:17:47 +0000[diff] [blame]1576
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1577 return mbedtls_des3_set2key_enc((mbedtls_des3_context *) ctx, key);
Paul Bakker8123e9d2011-01-06 15:37:30 +0000[diff] [blame]1578}
1579
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1580static int des3_set3key_dec_wrap(void *ctx, const unsigned char *key,
1581 unsigned int key_bitlen)
Paul Bakker8123e9d2011-01-06 15:37:30 +0000[diff] [blame]1582{
Manuel Pégourié-Gonnard898e0aa2015-06-18 15:28:12 +0200[diff] [blame]1583 ((void) key_bitlen);
Paul Bakkerd61e7d92011-01-18 16:17:47 +0000[diff] [blame]1584
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1585 return mbedtls_des3_set3key_dec((mbedtls_des3_context *) ctx, key);
Paul Bakker8123e9d2011-01-06 15:37:30 +0000[diff] [blame]1586}
1587
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1588static int des3_set3key_enc_wrap(void *ctx, const unsigned char *key,
1589 unsigned int key_bitlen)
Paul Bakker8123e9d2011-01-06 15:37:30 +0000[diff] [blame]1590{
Manuel Pégourié-Gonnard898e0aa2015-06-18 15:28:12 +0200[diff] [blame]1591 ((void) key_bitlen);
Paul Bakkerd61e7d92011-01-18 16:17:47 +0000[diff] [blame]1592
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1593 return mbedtls_des3_set3key_enc((mbedtls_des3_context *) ctx, key);
Paul Bakker8123e9d2011-01-06 15:37:30 +0000[diff] [blame]1594}
1595
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1596static void *des_ctx_alloc(void)
Paul Bakker8123e9d2011-01-06 15:37:30 +0000[diff] [blame]1597{
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1598 mbedtls_des_context *des = mbedtls_calloc(1, sizeof(mbedtls_des_context));
Paul Bakker8123e9d2011-01-06 15:37:30 +0000[diff] [blame]1599
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1600 if (des == NULL) {
1601 return NULL;
1602 }
Paul Bakkerc7ea99a2014-06-18 11:12:03 +0200[diff] [blame]1603
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1604 mbedtls_des_init(des);
Paul Bakkerc7ea99a2014-06-18 11:12:03 +0200[diff] [blame]1605
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1606 return des;
Paul Bakker8123e9d2011-01-06 15:37:30 +0000[diff] [blame]1607}
1608
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1609static void des_ctx_free(void *ctx)
Paul Bakker8123e9d2011-01-06 15:37:30 +0000[diff] [blame]1610{
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1611 mbedtls_des_free((mbedtls_des_context *) ctx);
1612 mbedtls_free(ctx);
Paul Bakker34617722014-06-13 17:20:13 +0200[diff] [blame]1613}
1614
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1615static void *des3_ctx_alloc(void)
Paul Bakkerc7ea99a2014-06-18 11:12:03 +0200[diff] [blame]1616{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1617 mbedtls_des3_context *des3;
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1618 des3 = mbedtls_calloc(1, sizeof(mbedtls_des3_context));
Paul Bakkerc7ea99a2014-06-18 11:12:03 +0200[diff] [blame]1619
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1620 if (des3 == NULL) {
1621 return NULL;
1622 }
Paul Bakkerc7ea99a2014-06-18 11:12:03 +0200[diff] [blame]1623
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1624 mbedtls_des3_init(des3);
Paul Bakkerc7ea99a2014-06-18 11:12:03 +0200[diff] [blame]1625
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1626 return des3;
Paul Bakkerc7ea99a2014-06-18 11:12:03 +0200[diff] [blame]1627}
1628
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1629static void des3_ctx_free(void *ctx)
Paul Bakker34617722014-06-13 17:20:13 +0200[diff] [blame]1630{
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1631 mbedtls_des3_free((mbedtls_des3_context *) ctx);
1632 mbedtls_free(ctx);
Paul Bakker8123e9d2011-01-06 15:37:30 +0000[diff] [blame]1633}
1634
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1635static const mbedtls_cipher_base_t des_info = {
1636 MBEDTLS_CIPHER_ID_DES,
Paul Bakker5e0efa72013-09-08 23:04:04 +0200[diff] [blame]1637 des_crypt_ecb_wrap,
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1638#if defined(MBEDTLS_CIPHER_MODE_CBC)
Paul Bakker23986e52011-04-24 08:57:21 +0000[diff] [blame]1639 des_crypt_cbc_wrap,
Manuel Pégourié-Gonnardb8ca7232014-12-02 10:09:10 +0100[diff] [blame]1640#endif
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1641#if defined(MBEDTLS_CIPHER_MODE_CFB)
Manuel Pégourié-Gonnardb9126162014-06-13 15:06:59 +0200[diff] [blame]1642 NULL,
Manuel Pégourié-Gonnardb8ca7232014-12-02 10:09:10 +0100[diff] [blame]1643#endif
Simon Butcher8c0fd1e2018-04-22 22:58:07 +0100[diff] [blame]1644#if defined(MBEDTLS_CIPHER_MODE_OFB)
1645 NULL,
1646#endif
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1647#if defined(MBEDTLS_CIPHER_MODE_CTR)
Manuel Pégourié-Gonnardb9126162014-06-13 15:06:59 +0200[diff] [blame]1648 NULL,
Manuel Pégourié-Gonnardb8ca7232014-12-02 10:09:10 +0100[diff] [blame]1649#endif
Jaeden Ameroc6539902018-04-30 17:17:41 +0100[diff] [blame]1650#if defined(MBEDTLS_CIPHER_MODE_XTS)
1651 NULL,
1652#endif
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1653#if defined(MBEDTLS_CIPHER_MODE_STREAM)
Manuel Pégourié-Gonnard37e230c2013-08-28 13:50:42 +0200[diff] [blame]1654 NULL,
Manuel Pégourié-Gonnardb8ca7232014-12-02 10:09:10 +0100[diff] [blame]1655#endif
Paul Bakker23986e52011-04-24 08:57:21 +0000[diff] [blame]1656 des_setkey_enc_wrap,
1657 des_setkey_dec_wrap,
1658 des_ctx_alloc,
1659 des_ctx_free
Paul Bakker8123e9d2011-01-06 15:37:30 +0000[diff] [blame]1660};
1661
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1662static const mbedtls_cipher_info_t des_ecb_info = {
Dave Rodgman3319ae92023-06-24 10:55:04 +0100[diff] [blame]1663 "DES-ECB",
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1664 8,
1665 0 >> MBEDTLS_IV_SIZE_SHIFT,
Dave Rodgman6c6c8422023-06-24 11:14:34 +0100[diff] [blame]1666 MBEDTLS_KEY_LENGTH_DES >> MBEDTLS_KEY_BITLEN_SHIFT,
Dave Rodgmand30eed42023-06-24 18:35:42 +0100[diff] [blame^]1667 MBEDTLS_MODE_ECB,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1668 MBEDTLS_CIPHER_DES_ECB,
Paul Bakker5e0efa72013-09-08 23:04:04 +0200[diff] [blame]1669 0,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1670 MBEDTLS_CIPHER_BASE_INDEX_DES
Paul Bakker5e0efa72013-09-08 23:04:04 +0200[diff] [blame]1671};
1672
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1673#if defined(MBEDTLS_CIPHER_MODE_CBC)
1674static const mbedtls_cipher_info_t des_cbc_info = {
Dave Rodgman3319ae92023-06-24 10:55:04 +0100[diff] [blame]1675 "DES-CBC",
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1676 8,
1677 8 >> MBEDTLS_IV_SIZE_SHIFT,
Dave Rodgman6c6c8422023-06-24 11:14:34 +0100[diff] [blame]1678 MBEDTLS_KEY_LENGTH_DES >> MBEDTLS_KEY_BITLEN_SHIFT,
Dave Rodgmand30eed42023-06-24 18:35:42 +0100[diff] [blame^]1679 MBEDTLS_MODE_CBC,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1680 MBEDTLS_CIPHER_DES_CBC,
Manuel Pégourié-Gonnarda235b5b2013-09-03 13:25:52 +0200[diff] [blame]1681 0,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1682 MBEDTLS_CIPHER_BASE_INDEX_DES
Paul Bakker343a8702011-06-09 14:27:58 +0000[diff] [blame]1683};
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1684#endif /* MBEDTLS_CIPHER_MODE_CBC */
Paul Bakker343a8702011-06-09 14:27:58 +0000[diff] [blame]1685
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1686static const mbedtls_cipher_base_t des_ede_info = {
1687 MBEDTLS_CIPHER_ID_DES,
Paul Bakker5e0efa72013-09-08 23:04:04 +0200[diff] [blame]1688 des3_crypt_ecb_wrap,
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1689#if defined(MBEDTLS_CIPHER_MODE_CBC)
Paul Bakker23986e52011-04-24 08:57:21 +0000[diff] [blame]1690 des3_crypt_cbc_wrap,
Manuel Pégourié-Gonnardb8ca7232014-12-02 10:09:10 +0100[diff] [blame]1691#endif
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1692#if defined(MBEDTLS_CIPHER_MODE_CFB)
Manuel Pégourié-Gonnardb9126162014-06-13 15:06:59 +0200[diff] [blame]1693 NULL,
Manuel Pégourié-Gonnardb8ca7232014-12-02 10:09:10 +0100[diff] [blame]1694#endif
Simon Butcher8c0fd1e2018-04-22 22:58:07 +0100[diff] [blame]1695#if defined(MBEDTLS_CIPHER_MODE_OFB)
1696 NULL,
1697#endif
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1698#if defined(MBEDTLS_CIPHER_MODE_CTR)
Manuel Pégourié-Gonnardb9126162014-06-13 15:06:59 +0200[diff] [blame]1699 NULL,
Manuel Pégourié-Gonnardb8ca7232014-12-02 10:09:10 +0100[diff] [blame]1700#endif
Jaeden Ameroc6539902018-04-30 17:17:41 +0100[diff] [blame]1701#if defined(MBEDTLS_CIPHER_MODE_XTS)
1702 NULL,
1703#endif
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1704#if defined(MBEDTLS_CIPHER_MODE_STREAM)
Manuel Pégourié-Gonnard37e230c2013-08-28 13:50:42 +0200[diff] [blame]1705 NULL,
Manuel Pégourié-Gonnardb8ca7232014-12-02 10:09:10 +0100[diff] [blame]1706#endif
Paul Bakker23986e52011-04-24 08:57:21 +0000[diff] [blame]1707 des3_set2key_enc_wrap,
1708 des3_set2key_dec_wrap,
1709 des3_ctx_alloc,
Paul Bakker34617722014-06-13 17:20:13 +0200[diff] [blame]1710 des3_ctx_free
Paul Bakker8123e9d2011-01-06 15:37:30 +0000[diff] [blame]1711};
1712
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1713static const mbedtls_cipher_info_t des_ede_ecb_info = {
Dave Rodgman3319ae92023-06-24 10:55:04 +0100[diff] [blame]1714 "DES-EDE-ECB",
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1715 8,
1716 0 >> MBEDTLS_IV_SIZE_SHIFT,
Dave Rodgman6c6c8422023-06-24 11:14:34 +0100[diff] [blame]1717 MBEDTLS_KEY_LENGTH_DES_EDE >> MBEDTLS_KEY_BITLEN_SHIFT,
Dave Rodgmand30eed42023-06-24 18:35:42 +0100[diff] [blame^]1718 MBEDTLS_MODE_ECB,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1719 MBEDTLS_CIPHER_DES_EDE_ECB,
Paul Bakker5e0efa72013-09-08 23:04:04 +0200[diff] [blame]1720 0,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1721 MBEDTLS_CIPHER_BASE_INDEX_DES_EDE
Paul Bakker5e0efa72013-09-08 23:04:04 +0200[diff] [blame]1722};
1723
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1724#if defined(MBEDTLS_CIPHER_MODE_CBC)
1725static const mbedtls_cipher_info_t des_ede_cbc_info = {
Dave Rodgman3319ae92023-06-24 10:55:04 +0100[diff] [blame]1726 "DES-EDE-CBC",
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1727 8,
1728 8 >> MBEDTLS_IV_SIZE_SHIFT,
Dave Rodgman6c6c8422023-06-24 11:14:34 +0100[diff] [blame]1729 MBEDTLS_KEY_LENGTH_DES_EDE >> MBEDTLS_KEY_BITLEN_SHIFT,
Dave Rodgmand30eed42023-06-24 18:35:42 +0100[diff] [blame^]1730 MBEDTLS_MODE_CBC,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1731 MBEDTLS_CIPHER_DES_EDE_CBC,
Manuel Pégourié-Gonnarda235b5b2013-09-03 13:25:52 +0200[diff] [blame]1732 0,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1733 MBEDTLS_CIPHER_BASE_INDEX_DES_EDE
Paul Bakker343a8702011-06-09 14:27:58 +0000[diff] [blame]1734};
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1735#endif /* MBEDTLS_CIPHER_MODE_CBC */
Paul Bakker343a8702011-06-09 14:27:58 +0000[diff] [blame]1736
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1737static const mbedtls_cipher_base_t des_ede3_info = {
Manuel Pégourié-Gonnard9d515832015-06-02 10:00:04 +0100[diff] [blame]1738 MBEDTLS_CIPHER_ID_3DES,
Paul Bakker5e0efa72013-09-08 23:04:04 +0200[diff] [blame]1739 des3_crypt_ecb_wrap,
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1740#if defined(MBEDTLS_CIPHER_MODE_CBC)
Paul Bakker343a8702011-06-09 14:27:58 +0000[diff] [blame]1741 des3_crypt_cbc_wrap,
Manuel Pégourié-Gonnardb8ca7232014-12-02 10:09:10 +0100[diff] [blame]1742#endif
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1743#if defined(MBEDTLS_CIPHER_MODE_CFB)
Manuel Pégourié-Gonnardb9126162014-06-13 15:06:59 +0200[diff] [blame]1744 NULL,
Manuel Pégourié-Gonnardb8ca7232014-12-02 10:09:10 +0100[diff] [blame]1745#endif
Simon Butcher8c0fd1e2018-04-22 22:58:07 +0100[diff] [blame]1746#if defined(MBEDTLS_CIPHER_MODE_OFB)
1747 NULL,
1748#endif
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1749#if defined(MBEDTLS_CIPHER_MODE_CTR)
Manuel Pégourié-Gonnardb9126162014-06-13 15:06:59 +0200[diff] [blame]1750 NULL,
Manuel Pégourié-Gonnardb8ca7232014-12-02 10:09:10 +0100[diff] [blame]1751#endif
Jaeden Ameroc6539902018-04-30 17:17:41 +0100[diff] [blame]1752#if defined(MBEDTLS_CIPHER_MODE_XTS)
1753 NULL,
1754#endif
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1755#if defined(MBEDTLS_CIPHER_MODE_STREAM)
Manuel Pégourié-Gonnard37e230c2013-08-28 13:50:42 +0200[diff] [blame]1756 NULL,
Manuel Pégourié-Gonnardb8ca7232014-12-02 10:09:10 +0100[diff] [blame]1757#endif
Paul Bakker343a8702011-06-09 14:27:58 +0000[diff] [blame]1758 des3_set3key_enc_wrap,
1759 des3_set3key_dec_wrap,
1760 des3_ctx_alloc,
Paul Bakker34617722014-06-13 17:20:13 +0200[diff] [blame]1761 des3_ctx_free
Paul Bakker343a8702011-06-09 14:27:58 +0000[diff] [blame]1762};
1763
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1764static const mbedtls_cipher_info_t des_ede3_ecb_info = {
Dave Rodgman3319ae92023-06-24 10:55:04 +0100[diff] [blame]1765 "DES-EDE3-ECB",
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1766 8,
1767 0 >> MBEDTLS_IV_SIZE_SHIFT,
Dave Rodgman6c6c8422023-06-24 11:14:34 +0100[diff] [blame]1768 MBEDTLS_KEY_LENGTH_DES_EDE3 >> MBEDTLS_KEY_BITLEN_SHIFT,
Dave Rodgmand30eed42023-06-24 18:35:42 +0100[diff] [blame^]1769 MBEDTLS_MODE_ECB,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1770 MBEDTLS_CIPHER_DES_EDE3_ECB,
Paul Bakker5e0efa72013-09-08 23:04:04 +0200[diff] [blame]1771 0,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1772 MBEDTLS_CIPHER_BASE_INDEX_DES_EDE3
Paul Bakker5e0efa72013-09-08 23:04:04 +0200[diff] [blame]1773};
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1774#if defined(MBEDTLS_CIPHER_MODE_CBC)
1775static const mbedtls_cipher_info_t des_ede3_cbc_info = {
Dave Rodgman3319ae92023-06-24 10:55:04 +0100[diff] [blame]1776 "DES-EDE3-CBC",
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1777 8,
1778 8 >> MBEDTLS_IV_SIZE_SHIFT,
Dave Rodgman6c6c8422023-06-24 11:14:34 +0100[diff] [blame]1779 MBEDTLS_KEY_LENGTH_DES_EDE3 >> MBEDTLS_KEY_BITLEN_SHIFT,
Dave Rodgmand30eed42023-06-24 18:35:42 +0100[diff] [blame^]1780 MBEDTLS_MODE_CBC,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1781 MBEDTLS_CIPHER_DES_EDE3_CBC,
Manuel Pégourié-Gonnarda235b5b2013-09-03 13:25:52 +0200[diff] [blame]1782 0,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1783 MBEDTLS_CIPHER_BASE_INDEX_DES_EDE3
Paul Bakker8123e9d2011-01-06 15:37:30 +0000[diff] [blame]1784};
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1785#endif /* MBEDTLS_CIPHER_MODE_CBC */
1786#endif /* MBEDTLS_DES_C */
Paul Bakker8123e9d2011-01-06 15:37:30 +0000[diff] [blame]1787
Daniel Kingbd920622016-05-15 19:56:20 -0300[diff] [blame]1788#if defined(MBEDTLS_CHACHA20_C)
1789
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1790static int chacha20_setkey_wrap(void *ctx, const unsigned char *key,
1791 unsigned int key_bitlen)
Daniel Kingbd920622016-05-15 19:56:20 -0300[diff] [blame]1792{
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1793 if (key_bitlen != 256U) {
1794 return MBEDTLS_ERR_CIPHER_BAD_INPUT_DATA;
1795 }
Daniel Kingbd920622016-05-15 19:56:20 -0300[diff] [blame]1796
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1797 if (0 != mbedtls_chacha20_setkey((mbedtls_chacha20_context *) ctx, key)) {
1798 return MBEDTLS_ERR_CIPHER_BAD_INPUT_DATA;
1799 }
Daniel Kingbd920622016-05-15 19:56:20 -0300[diff] [blame]1800
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1801 return 0;
Daniel Kingbd920622016-05-15 19:56:20 -0300[diff] [blame]1802}
1803
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1804static int chacha20_stream_wrap(void *ctx, size_t length,
1805 const unsigned char *input,
1806 unsigned char *output)
Manuel Pégourié-Gonnard32902e62018-05-10 12:30:19 +0200[diff] [blame]1807{
Janos Follath24eed8d2019-11-22 13:21:35 +0000[diff] [blame]1808 int ret = MBEDTLS_ERR_ERROR_CORRUPTION_DETECTED;
Manuel Pégourié-Gonnard32902e62018-05-10 12:30:19 +0200[diff] [blame]1809
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1810 ret = mbedtls_chacha20_update(ctx, length, input, output);
1811 if (ret == MBEDTLS_ERR_CHACHA20_BAD_INPUT_DATA) {
1812 return MBEDTLS_ERR_CIPHER_BAD_INPUT_DATA;
1813 }
Manuel Pégourié-Gonnard32902e62018-05-10 12:30:19 +0200[diff] [blame]1814
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1815 return ret;
Manuel Pégourié-Gonnard32902e62018-05-10 12:30:19 +0200[diff] [blame]1816}
1817
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1818static void *chacha20_ctx_alloc(void)
Daniel Kingbd920622016-05-15 19:56:20 -0300[diff] [blame]1819{
1820 mbedtls_chacha20_context *ctx;
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1821 ctx = mbedtls_calloc(1, sizeof(mbedtls_chacha20_context));
Daniel Kingbd920622016-05-15 19:56:20 -0300[diff] [blame]1822
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1823 if (ctx == NULL) {
1824 return NULL;
1825 }
Daniel Kingbd920622016-05-15 19:56:20 -0300[diff] [blame]1826
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1827 mbedtls_chacha20_init(ctx);
Daniel Kingbd920622016-05-15 19:56:20 -0300[diff] [blame]1828
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1829 return ctx;
Daniel Kingbd920622016-05-15 19:56:20 -0300[diff] [blame]1830}
1831
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1832static void chacha20_ctx_free(void *ctx)
Daniel Kingbd920622016-05-15 19:56:20 -0300[diff] [blame]1833{
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1834 mbedtls_chacha20_free((mbedtls_chacha20_context *) ctx);
1835 mbedtls_free(ctx);
Daniel Kingbd920622016-05-15 19:56:20 -0300[diff] [blame]1836}
1837
1838static const mbedtls_cipher_base_t chacha20_base_info = {
1839 MBEDTLS_CIPHER_ID_CHACHA20,
1840 NULL,
1841#if defined(MBEDTLS_CIPHER_MODE_CBC)
1842 NULL,
1843#endif
1844#if defined(MBEDTLS_CIPHER_MODE_CFB)
1845 NULL,
1846#endif
Manuel Pégourié-Gonnarda18034a2018-06-19 11:30:32 +0200[diff] [blame]1847#if defined(MBEDTLS_CIPHER_MODE_OFB)
1848 NULL,
1849#endif
Daniel Kingbd920622016-05-15 19:56:20 -0300[diff] [blame]1850#if defined(MBEDTLS_CIPHER_MODE_CTR)
1851 NULL,
1852#endif
Manuel Pégourié-Gonnarda18034a2018-06-19 11:30:32 +0200[diff] [blame]1853#if defined(MBEDTLS_CIPHER_MODE_XTS)
1854 NULL,
1855#endif
Daniel Kingbd920622016-05-15 19:56:20 -0300[diff] [blame]1856#if defined(MBEDTLS_CIPHER_MODE_STREAM)
Manuel Pégourié-Gonnard32902e62018-05-10 12:30:19 +0200[diff] [blame]1857 chacha20_stream_wrap,
Daniel Kingbd920622016-05-15 19:56:20 -0300[diff] [blame]1858#endif
1859 chacha20_setkey_wrap,
1860 chacha20_setkey_wrap,
1861 chacha20_ctx_alloc,
1862 chacha20_ctx_free
1863};
1864static const mbedtls_cipher_info_t chacha20_info = {
Dave Rodgman3319ae92023-06-24 10:55:04 +0100[diff] [blame]1865 "CHACHA20",
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1866 1,
1867 12 >> MBEDTLS_IV_SIZE_SHIFT,
Dave Rodgman6c6c8422023-06-24 11:14:34 +0100[diff] [blame]1868 256 >> MBEDTLS_KEY_BITLEN_SHIFT,
Dave Rodgmand30eed42023-06-24 18:35:42 +0100[diff] [blame^]1869 MBEDTLS_MODE_STREAM,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1870 MBEDTLS_CIPHER_CHACHA20,
Daniel Kingbd920622016-05-15 19:56:20 -0300[diff] [blame]1871 0,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1872 MBEDTLS_CIPHER_BASE_INDEX_CHACHA20_BASE
Daniel Kingbd920622016-05-15 19:56:20 -0300[diff] [blame]1873};
1874#endif /* MBEDTLS_CHACHA20_C */
1875
Manuel Pégourié-Gonnarddca3a5d2018-05-07 10:43:27 +0200[diff] [blame]1876#if defined(MBEDTLS_CHACHAPOLY_C)
Daniel King8fe47012016-05-17 20:33:28 -0300[diff] [blame]1877
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1878static int chachapoly_setkey_wrap(void *ctx,
1879 const unsigned char *key,
1880 unsigned int key_bitlen)
Daniel King8fe47012016-05-17 20:33:28 -0300[diff] [blame]1881{
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1882 if (key_bitlen != 256U) {
1883 return MBEDTLS_ERR_CIPHER_BAD_INPUT_DATA;
1884 }
Daniel King8fe47012016-05-17 20:33:28 -0300[diff] [blame]1885
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1886 if (0 != mbedtls_chachapoly_setkey((mbedtls_chachapoly_context *) ctx, key)) {
1887 return MBEDTLS_ERR_CIPHER_BAD_INPUT_DATA;
1888 }
Daniel King8fe47012016-05-17 20:33:28 -0300[diff] [blame]1889
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1890 return 0;
Daniel King8fe47012016-05-17 20:33:28 -0300[diff] [blame]1891}
1892
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1893static void *chachapoly_ctx_alloc(void)
Daniel King8fe47012016-05-17 20:33:28 -0300[diff] [blame]1894{
Manuel Pégourié-Gonnarddca3a5d2018-05-07 10:43:27 +0200[diff] [blame]1895 mbedtls_chachapoly_context *ctx;
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1896 ctx = mbedtls_calloc(1, sizeof(mbedtls_chachapoly_context));
Daniel King8fe47012016-05-17 20:33:28 -0300[diff] [blame]1897
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1898 if (ctx == NULL) {
1899 return NULL;
1900 }
Daniel King8fe47012016-05-17 20:33:28 -0300[diff] [blame]1901
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1902 mbedtls_chachapoly_init(ctx);
Daniel King8fe47012016-05-17 20:33:28 -0300[diff] [blame]1903
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1904 return ctx;
Daniel King8fe47012016-05-17 20:33:28 -0300[diff] [blame]1905}
1906
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1907static void chachapoly_ctx_free(void *ctx)
Daniel King8fe47012016-05-17 20:33:28 -0300[diff] [blame]1908{
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1909 mbedtls_chachapoly_free((mbedtls_chachapoly_context *) ctx);
1910 mbedtls_free(ctx);
Daniel King8fe47012016-05-17 20:33:28 -0300[diff] [blame]1911}
1912
Manuel Pégourié-Gonnarddca3a5d2018-05-07 10:43:27 +0200[diff] [blame]1913static const mbedtls_cipher_base_t chachapoly_base_info = {
Daniel King8fe47012016-05-17 20:33:28 -0300[diff] [blame]1914 MBEDTLS_CIPHER_ID_CHACHA20,
1915 NULL,
1916#if defined(MBEDTLS_CIPHER_MODE_CBC)
1917 NULL,
1918#endif
1919#if defined(MBEDTLS_CIPHER_MODE_CFB)
1920 NULL,
1921#endif
Manuel Pégourié-Gonnarda18034a2018-06-19 11:30:32 +0200[diff] [blame]1922#if defined(MBEDTLS_CIPHER_MODE_OFB)
1923 NULL,
1924#endif
Daniel King8fe47012016-05-17 20:33:28 -0300[diff] [blame]1925#if defined(MBEDTLS_CIPHER_MODE_CTR)
1926 NULL,
1927#endif
Manuel Pégourié-Gonnarda18034a2018-06-19 11:30:32 +0200[diff] [blame]1928#if defined(MBEDTLS_CIPHER_MODE_XTS)
1929 NULL,
1930#endif
Daniel King8fe47012016-05-17 20:33:28 -0300[diff] [blame]1931#if defined(MBEDTLS_CIPHER_MODE_STREAM)
1932 NULL,
1933#endif
Manuel Pégourié-Gonnarddca3a5d2018-05-07 10:43:27 +0200[diff] [blame]1934 chachapoly_setkey_wrap,
1935 chachapoly_setkey_wrap,
1936 chachapoly_ctx_alloc,
1937 chachapoly_ctx_free
Daniel King8fe47012016-05-17 20:33:28 -0300[diff] [blame]1938};
Manuel Pégourié-Gonnarddca3a5d2018-05-07 10:43:27 +0200[diff] [blame]1939static const mbedtls_cipher_info_t chachapoly_info = {
Dave Rodgman3319ae92023-06-24 10:55:04 +0100[diff] [blame]1940 "CHACHA20-POLY1305",
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1941 1,
1942 12 >> MBEDTLS_IV_SIZE_SHIFT,
Dave Rodgman6c6c8422023-06-24 11:14:34 +0100[diff] [blame]1943 256 >> MBEDTLS_KEY_BITLEN_SHIFT,
Dave Rodgmand30eed42023-06-24 18:35:42 +0100[diff] [blame^]1944 MBEDTLS_MODE_CHACHAPOLY,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1945 MBEDTLS_CIPHER_CHACHA20_POLY1305,
Daniel King8fe47012016-05-17 20:33:28 -0300[diff] [blame]1946 0,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]1947 MBEDTLS_CIPHER_BASE_INDEX_CHACHAPOLY_BASE
Daniel King8fe47012016-05-17 20:33:28 -0300[diff] [blame]1948};
Manuel Pégourié-Gonnarddca3a5d2018-05-07 10:43:27 +0200[diff] [blame]1949#endif /* MBEDTLS_CHACHAPOLY_C */
Daniel King8fe47012016-05-17 20:33:28 -0300[diff] [blame]1950
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1951#if defined(MBEDTLS_CIPHER_NULL_CIPHER)
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1952static int null_crypt_stream(void *ctx, size_t length,
1953 const unsigned char *input,
1954 unsigned char *output)
Manuel Pégourié-Gonnardb5e85882013-08-28 16:36:14 +0200[diff] [blame]1955{
1956 ((void) ctx);
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1957 memmove(output, input, length);
1958 return 0;
Manuel Pégourié-Gonnardb5e85882013-08-28 16:36:14 +0200[diff] [blame]1959}
1960
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1961static int null_setkey(void *ctx, const unsigned char *key,
1962 unsigned int key_bitlen)
Manuel Pégourié-Gonnardb5e85882013-08-28 16:36:14 +0200[diff] [blame]1963{
1964 ((void) ctx);
1965 ((void) key);
Manuel Pégourié-Gonnard898e0aa2015-06-18 15:28:12 +0200[diff] [blame]1966 ((void) key_bitlen);
Manuel Pégourié-Gonnardb5e85882013-08-28 16:36:14 +0200[diff] [blame]1967
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1968 return 0;
Manuel Pégourié-Gonnardb5e85882013-08-28 16:36:14 +0200[diff] [blame]1969}
1970
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1971static void *null_ctx_alloc(void)
Paul Bakkerfab5c822012-02-06 16:45:10 +0000[diff] [blame]1972{
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1973 return (void *) 1;
Paul Bakkerfab5c822012-02-06 16:45:10 +0000[diff] [blame]1974}
1975
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1976static void null_ctx_free(void *ctx)
Paul Bakkerfab5c822012-02-06 16:45:10 +0000[diff] [blame]1977{
1978 ((void) ctx);
1979}
1980
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1981static const mbedtls_cipher_base_t null_base_info = {
1982 MBEDTLS_CIPHER_ID_NULL,
Paul Bakkerfab5c822012-02-06 16:45:10 +0000[diff] [blame]1983 NULL,
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1984#if defined(MBEDTLS_CIPHER_MODE_CBC)
Paul Bakkerfab5c822012-02-06 16:45:10 +0000[diff] [blame]1985 NULL,
Manuel Pégourié-Gonnardb8ca7232014-12-02 10:09:10 +0100[diff] [blame]1986#endif
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1987#if defined(MBEDTLS_CIPHER_MODE_CFB)
Paul Bakkerfab5c822012-02-06 16:45:10 +0000[diff] [blame]1988 NULL,
Manuel Pégourié-Gonnardb8ca7232014-12-02 10:09:10 +0100[diff] [blame]1989#endif
Simon Butcher4844bf22018-06-11 15:21:05 +0100[diff] [blame]1990#if defined(MBEDTLS_CIPHER_MODE_OFB)
1991 NULL,
1992#endif
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1993#if defined(MBEDTLS_CIPHER_MODE_CTR)
Paul Bakker5e0efa72013-09-08 23:04:04 +0200[diff] [blame]1994 NULL,
Manuel Pégourié-Gonnardb8ca7232014-12-02 10:09:10 +0100[diff] [blame]1995#endif
Jaeden Ameroc6539902018-04-30 17:17:41 +0100[diff] [blame]1996#if defined(MBEDTLS_CIPHER_MODE_XTS)
1997 NULL,
1998#endif
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1999#if defined(MBEDTLS_CIPHER_MODE_STREAM)
Manuel Pégourié-Gonnardb5e85882013-08-28 16:36:14 +0200[diff] [blame]2000 null_crypt_stream,
Manuel Pégourié-Gonnardb8ca7232014-12-02 10:09:10 +0100[diff] [blame]2001#endif
Manuel Pégourié-Gonnardb5e85882013-08-28 16:36:14 +0200[diff] [blame]2002 null_setkey,
2003 null_setkey,
Paul Bakkerfab5c822012-02-06 16:45:10 +0000[diff] [blame]2004 null_ctx_alloc,
2005 null_ctx_free
2006};
2007
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]2008static const mbedtls_cipher_info_t null_cipher_info = {
Dave Rodgman3319ae92023-06-24 10:55:04 +0100[diff] [blame]2009 "NULL",
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]2010 1,
2011 0 >> MBEDTLS_IV_SIZE_SHIFT,
Dave Rodgman6c6c8422023-06-24 11:14:34 +0100[diff] [blame]2012 0 >> MBEDTLS_KEY_BITLEN_SHIFT,
Dave Rodgmand30eed42023-06-24 18:35:42 +0100[diff] [blame^]2013 MBEDTLS_MODE_STREAM,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]2014 MBEDTLS_CIPHER_NULL,
Manuel Pégourié-Gonnarda235b5b2013-09-03 13:25:52 +0200[diff] [blame]2015 0,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]2016 MBEDTLS_CIPHER_BASE_INDEX_NULL_BASE
Paul Bakkerfab5c822012-02-06 16:45:10 +0000[diff] [blame]2017};
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]2018#endif /* defined(MBEDTLS_CIPHER_NULL_CIPHER) */
Paul Bakkerfab5c822012-02-06 16:45:10 +0000[diff] [blame]2019
Jack Lloydffdf2882019-03-07 17:00:32 -0500[diff] [blame]2020#if defined(MBEDTLS_NIST_KW_C)
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]2021static void *kw_ctx_alloc(void)
Jack Lloydffdf2882019-03-07 17:00:32 -0500[diff] [blame]2022{
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]2023 void *ctx = mbedtls_calloc(1, sizeof(mbedtls_nist_kw_context));
Jack Lloydffdf2882019-03-07 17:00:32 -0500[diff] [blame]2024
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]2025 if (ctx != NULL) {
2026 mbedtls_nist_kw_init((mbedtls_nist_kw_context *) ctx);
2027 }
Jack Lloydffdf2882019-03-07 17:00:32 -0500[diff] [blame]2028
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]2029 return ctx;
Jack Lloydffdf2882019-03-07 17:00:32 -0500[diff] [blame]2030}
2031
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]2032static void kw_ctx_free(void *ctx)
Jack Lloydffdf2882019-03-07 17:00:32 -0500[diff] [blame]2033{
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]2034 mbedtls_nist_kw_free(ctx);
2035 mbedtls_free(ctx);
Jack Lloydffdf2882019-03-07 17:00:32 -0500[diff] [blame]2036}
2037
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]2038static int kw_aes_setkey_wrap(void *ctx, const unsigned char *key,
2039 unsigned int key_bitlen)
Jack Lloydffdf2882019-03-07 17:00:32 -0500[diff] [blame]2040{
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]2041 return mbedtls_nist_kw_setkey((mbedtls_nist_kw_context *) ctx,
2042 MBEDTLS_CIPHER_ID_AES, key, key_bitlen, 1);
Jack Lloydffdf2882019-03-07 17:00:32 -0500[diff] [blame]2043}
2044
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]2045static int kw_aes_setkey_unwrap(void *ctx, const unsigned char *key,
2046 unsigned int key_bitlen)
Jack Lloydffdf2882019-03-07 17:00:32 -0500[diff] [blame]2047{
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]2048 return mbedtls_nist_kw_setkey((mbedtls_nist_kw_context *) ctx,
2049 MBEDTLS_CIPHER_ID_AES, key, key_bitlen, 0);
Jack Lloydffdf2882019-03-07 17:00:32 -0500[diff] [blame]2050}
2051
2052static const mbedtls_cipher_base_t kw_aes_info = {
2053 MBEDTLS_CIPHER_ID_AES,
2054 NULL,
2055#if defined(MBEDTLS_CIPHER_MODE_CBC)
2056 NULL,
2057#endif
2058#if defined(MBEDTLS_CIPHER_MODE_CFB)
2059 NULL,
2060#endif
2061#if defined(MBEDTLS_CIPHER_MODE_OFB)
2062 NULL,
2063#endif
2064#if defined(MBEDTLS_CIPHER_MODE_CTR)
2065 NULL,
2066#endif
2067#if defined(MBEDTLS_CIPHER_MODE_XTS)
2068 NULL,
2069#endif
2070#if defined(MBEDTLS_CIPHER_MODE_STREAM)
2071 NULL,
2072#endif
2073 kw_aes_setkey_wrap,
2074 kw_aes_setkey_unwrap,
2075 kw_ctx_alloc,
2076 kw_ctx_free,
2077};
2078
2079static const mbedtls_cipher_info_t aes_128_nist_kw_info = {
Dave Rodgman3319ae92023-06-24 10:55:04 +0100[diff] [blame]2080 "AES-128-KW",
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]2081 16,
2082 0 >> MBEDTLS_IV_SIZE_SHIFT,
Dave Rodgman6c6c8422023-06-24 11:14:34 +0100[diff] [blame]2083 128 >> MBEDTLS_KEY_BITLEN_SHIFT,
Dave Rodgmand30eed42023-06-24 18:35:42 +0100[diff] [blame^]2084 MBEDTLS_MODE_KW,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]2085 MBEDTLS_CIPHER_AES_128_KW,
Jack Lloydffdf2882019-03-07 17:00:32 -0500[diff] [blame]2086 0,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]2087 MBEDTLS_CIPHER_BASE_INDEX_KW_AES
Jack Lloydffdf2882019-03-07 17:00:32 -0500[diff] [blame]2088};
2089
2090static const mbedtls_cipher_info_t aes_192_nist_kw_info = {
Dave Rodgman3319ae92023-06-24 10:55:04 +0100[diff] [blame]2091 "AES-192-KW",
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]2092 16,
2093 0 >> MBEDTLS_IV_SIZE_SHIFT,
Dave Rodgman6c6c8422023-06-24 11:14:34 +0100[diff] [blame]2094 192 >> MBEDTLS_KEY_BITLEN_SHIFT,
Dave Rodgmand30eed42023-06-24 18:35:42 +0100[diff] [blame^]2095 MBEDTLS_MODE_KW,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]2096 MBEDTLS_CIPHER_AES_192_KW,
Jack Lloydffdf2882019-03-07 17:00:32 -0500[diff] [blame]2097 0,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]2098 MBEDTLS_CIPHER_BASE_INDEX_KW_AES
Jack Lloydffdf2882019-03-07 17:00:32 -0500[diff] [blame]2099};
2100
2101static const mbedtls_cipher_info_t aes_256_nist_kw_info = {
Dave Rodgman3319ae92023-06-24 10:55:04 +0100[diff] [blame]2102 "AES-256-KW",
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]2103 16,
2104 0 >> MBEDTLS_IV_SIZE_SHIFT,
Dave Rodgman6c6c8422023-06-24 11:14:34 +0100[diff] [blame]2105 256 >> MBEDTLS_KEY_BITLEN_SHIFT,
Dave Rodgmand30eed42023-06-24 18:35:42 +0100[diff] [blame^]2106 MBEDTLS_MODE_KW,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]2107 MBEDTLS_CIPHER_AES_256_KW,
Jack Lloydffdf2882019-03-07 17:00:32 -0500[diff] [blame]2108 0,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]2109 MBEDTLS_CIPHER_BASE_INDEX_KW_AES
Jack Lloydffdf2882019-03-07 17:00:32 -0500[diff] [blame]2110};
2111
2112static const mbedtls_cipher_info_t aes_128_nist_kwp_info = {
Dave Rodgman3319ae92023-06-24 10:55:04 +0100[diff] [blame]2113 "AES-128-KWP",
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]2114 16,
2115 0 >> MBEDTLS_IV_SIZE_SHIFT,
Dave Rodgman6c6c8422023-06-24 11:14:34 +0100[diff] [blame]2116 128 >> MBEDTLS_KEY_BITLEN_SHIFT,
Dave Rodgmand30eed42023-06-24 18:35:42 +0100[diff] [blame^]2117 MBEDTLS_MODE_KWP,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]2118 MBEDTLS_CIPHER_AES_128_KWP,
Jack Lloydffdf2882019-03-07 17:00:32 -0500[diff] [blame]2119 0,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]2120 MBEDTLS_CIPHER_BASE_INDEX_KW_AES
Jack Lloydffdf2882019-03-07 17:00:32 -0500[diff] [blame]2121};
2122
2123static const mbedtls_cipher_info_t aes_192_nist_kwp_info = {
Dave Rodgman3319ae92023-06-24 10:55:04 +0100[diff] [blame]2124 "AES-192-KWP",
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]2125 16,
2126 0 >> MBEDTLS_IV_SIZE_SHIFT,
Dave Rodgman6c6c8422023-06-24 11:14:34 +0100[diff] [blame]2127 192 >> MBEDTLS_KEY_BITLEN_SHIFT,
Dave Rodgmand30eed42023-06-24 18:35:42 +0100[diff] [blame^]2128 MBEDTLS_MODE_KWP,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]2129 MBEDTLS_CIPHER_AES_192_KWP,
Jack Lloydffdf2882019-03-07 17:00:32 -0500[diff] [blame]2130 0,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]2131 MBEDTLS_CIPHER_BASE_INDEX_KW_AES
Jack Lloydffdf2882019-03-07 17:00:32 -0500[diff] [blame]2132};
2133
2134static const mbedtls_cipher_info_t aes_256_nist_kwp_info = {
Dave Rodgman3319ae92023-06-24 10:55:04 +0100[diff] [blame]2135 "AES-256-KWP",
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]2136 16,
2137 0 >> MBEDTLS_IV_SIZE_SHIFT,
Dave Rodgman6c6c8422023-06-24 11:14:34 +0100[diff] [blame]2138 256 >> MBEDTLS_KEY_BITLEN_SHIFT,
Dave Rodgmand30eed42023-06-24 18:35:42 +0100[diff] [blame^]2139 MBEDTLS_MODE_KWP,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]2140 MBEDTLS_CIPHER_AES_256_KWP,
Jack Lloydffdf2882019-03-07 17:00:32 -0500[diff] [blame]2141 0,
Dave Rodgman92cf6e52023-06-24 18:06:45 +0100[diff] [blame]2142 MBEDTLS_CIPHER_BASE_INDEX_KW_AES
Jack Lloydffdf2882019-03-07 17:00:32 -0500[diff] [blame]2143};
2144#endif /* MBEDTLS_NIST_KW_C */
2145
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]2146const mbedtls_cipher_definition_t mbedtls_cipher_definitions[] =
Manuel Pégourié-Gonnarddace82f2013-09-18 15:12:07 +0200[diff] [blame]2147{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]2148#if defined(MBEDTLS_AES_C)
2149 { MBEDTLS_CIPHER_AES_128_ECB, &aes_128_ecb_info },
2150 { MBEDTLS_CIPHER_AES_192_ECB, &aes_192_ecb_info },
2151 { MBEDTLS_CIPHER_AES_256_ECB, &aes_256_ecb_info },
2152#if defined(MBEDTLS_CIPHER_MODE_CBC)
2153 { MBEDTLS_CIPHER_AES_128_CBC, &aes_128_cbc_info },
2154 { MBEDTLS_CIPHER_AES_192_CBC, &aes_192_cbc_info },
2155 { MBEDTLS_CIPHER_AES_256_CBC, &aes_256_cbc_info },
Manuel Pégourié-Gonnarddace82f2013-09-18 15:12:07 +0200[diff] [blame]2156#endif
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]2157#if defined(MBEDTLS_CIPHER_MODE_CFB)
2158 { MBEDTLS_CIPHER_AES_128_CFB128, &aes_128_cfb128_info },
2159 { MBEDTLS_CIPHER_AES_192_CFB128, &aes_192_cfb128_info },
2160 { MBEDTLS_CIPHER_AES_256_CFB128, &aes_256_cfb128_info },
Manuel Pégourié-Gonnarddace82f2013-09-18 15:12:07 +0200[diff] [blame]2161#endif
Simon Butcher8c0fd1e2018-04-22 22:58:07 +0100[diff] [blame]2162#if defined(MBEDTLS_CIPHER_MODE_OFB)
2163 { MBEDTLS_CIPHER_AES_128_OFB, &aes_128_ofb_info },
2164 { MBEDTLS_CIPHER_AES_192_OFB, &aes_192_ofb_info },
2165 { MBEDTLS_CIPHER_AES_256_OFB, &aes_256_ofb_info },
2166#endif
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]2167#if defined(MBEDTLS_CIPHER_MODE_CTR)
2168 { MBEDTLS_CIPHER_AES_128_CTR, &aes_128_ctr_info },
2169 { MBEDTLS_CIPHER_AES_192_CTR, &aes_192_ctr_info },
2170 { MBEDTLS_CIPHER_AES_256_CTR, &aes_256_ctr_info },
Manuel Pégourié-Gonnarddace82f2013-09-18 15:12:07 +0200[diff] [blame]2171#endif
Jaeden Ameroc6539902018-04-30 17:17:41 +0100[diff] [blame]2172#if defined(MBEDTLS_CIPHER_MODE_XTS)
2173 { MBEDTLS_CIPHER_AES_128_XTS, &aes_128_xts_info },
2174 { MBEDTLS_CIPHER_AES_256_XTS, &aes_256_xts_info },
2175#endif
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]2176#if defined(MBEDTLS_GCM_C)
2177 { MBEDTLS_CIPHER_AES_128_GCM, &aes_128_gcm_info },
2178 { MBEDTLS_CIPHER_AES_192_GCM, &aes_192_gcm_info },
2179 { MBEDTLS_CIPHER_AES_256_GCM, &aes_256_gcm_info },
Manuel Pégourié-Gonnarddace82f2013-09-18 15:12:07 +0200[diff] [blame]2180#endif
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]2181#if defined(MBEDTLS_CCM_C)
2182 { MBEDTLS_CIPHER_AES_128_CCM, &aes_128_ccm_info },
2183 { MBEDTLS_CIPHER_AES_192_CCM, &aes_192_ccm_info },
2184 { MBEDTLS_CIPHER_AES_256_CCM, &aes_256_ccm_info },
Mateusz Starzyk4cb97392021-10-27 10:42:31 +0200[diff] [blame]2185 { MBEDTLS_CIPHER_AES_128_CCM_STAR_NO_TAG, &aes_128_ccm_star_no_tag_info },
2186 { MBEDTLS_CIPHER_AES_192_CCM_STAR_NO_TAG, &aes_192_ccm_star_no_tag_info },
2187 { MBEDTLS_CIPHER_AES_256_CCM_STAR_NO_TAG, &aes_256_ccm_star_no_tag_info },
Manuel Pégourié-Gonnard41936952014-05-13 13:18:17 +0200[diff] [blame]2188#endif
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]2189#endif /* MBEDTLS_AES_C */
Manuel Pégourié-Gonnarddace82f2013-09-18 15:12:07 +0200[diff] [blame]2190
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]2191#if defined(MBEDTLS_CAMELLIA_C)
2192 { MBEDTLS_CIPHER_CAMELLIA_128_ECB, &camellia_128_ecb_info },
2193 { MBEDTLS_CIPHER_CAMELLIA_192_ECB, &camellia_192_ecb_info },
2194 { MBEDTLS_CIPHER_CAMELLIA_256_ECB, &camellia_256_ecb_info },
2195#if defined(MBEDTLS_CIPHER_MODE_CBC)
2196 { MBEDTLS_CIPHER_CAMELLIA_128_CBC, &camellia_128_cbc_info },
2197 { MBEDTLS_CIPHER_CAMELLIA_192_CBC, &camellia_192_cbc_info },
2198 { MBEDTLS_CIPHER_CAMELLIA_256_CBC, &camellia_256_cbc_info },
Manuel Pégourié-Gonnarddace82f2013-09-18 15:12:07 +0200[diff] [blame]2199#endif
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]2200#if defined(MBEDTLS_CIPHER_MODE_CFB)
2201 { MBEDTLS_CIPHER_CAMELLIA_128_CFB128, &camellia_128_cfb128_info },
2202 { MBEDTLS_CIPHER_CAMELLIA_192_CFB128, &camellia_192_cfb128_info },
2203 { MBEDTLS_CIPHER_CAMELLIA_256_CFB128, &camellia_256_cfb128_info },
Manuel Pégourié-Gonnarddace82f2013-09-18 15:12:07 +0200[diff] [blame]2204#endif
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]2205#if defined(MBEDTLS_CIPHER_MODE_CTR)
2206 { MBEDTLS_CIPHER_CAMELLIA_128_CTR, &camellia_128_ctr_info },
2207 { MBEDTLS_CIPHER_CAMELLIA_192_CTR, &camellia_192_ctr_info },
2208 { MBEDTLS_CIPHER_CAMELLIA_256_CTR, &camellia_256_ctr_info },
Manuel Pégourié-Gonnarddace82f2013-09-18 15:12:07 +0200[diff] [blame]2209#endif
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]2210#if defined(MBEDTLS_GCM_C)
2211 { MBEDTLS_CIPHER_CAMELLIA_128_GCM, &camellia_128_gcm_info },
2212 { MBEDTLS_CIPHER_CAMELLIA_192_GCM, &camellia_192_gcm_info },
2213 { MBEDTLS_CIPHER_CAMELLIA_256_GCM, &camellia_256_gcm_info },
Manuel Pégourié-Gonnard87181d12013-10-24 14:02:40 +0200[diff] [blame]2214#endif
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]2215#if defined(MBEDTLS_CCM_C)
2216 { MBEDTLS_CIPHER_CAMELLIA_128_CCM, &camellia_128_ccm_info },
2217 { MBEDTLS_CIPHER_CAMELLIA_192_CCM, &camellia_192_ccm_info },
2218 { MBEDTLS_CIPHER_CAMELLIA_256_CCM, &camellia_256_ccm_info },
Mateusz Starzyk4cb97392021-10-27 10:42:31 +0200[diff] [blame]2219 { MBEDTLS_CIPHER_CAMELLIA_128_CCM_STAR_NO_TAG, &camellia_128_ccm_star_no_tag_info },
2220 { MBEDTLS_CIPHER_CAMELLIA_192_CCM_STAR_NO_TAG, &camellia_192_ccm_star_no_tag_info },
2221 { MBEDTLS_CIPHER_CAMELLIA_256_CCM_STAR_NO_TAG, &camellia_256_ccm_star_no_tag_info },
Manuel Pégourié-Gonnard41936952014-05-13 13:18:17 +0200[diff] [blame]2222#endif
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]2223#endif /* MBEDTLS_CAMELLIA_C */
Manuel Pégourié-Gonnarddace82f2013-09-18 15:12:07 +0200[diff] [blame]2224
Markku-Juhani O. Saarinenc06e1012017-12-07 11:51:13 +0000[diff] [blame]2225#if defined(MBEDTLS_ARIA_C)
2226 { MBEDTLS_CIPHER_ARIA_128_ECB, &aria_128_ecb_info },
2227 { MBEDTLS_CIPHER_ARIA_192_ECB, &aria_192_ecb_info },
2228 { MBEDTLS_CIPHER_ARIA_256_ECB, &aria_256_ecb_info },
2229#if defined(MBEDTLS_CIPHER_MODE_CBC)
2230 { MBEDTLS_CIPHER_ARIA_128_CBC, &aria_128_cbc_info },
2231 { MBEDTLS_CIPHER_ARIA_192_CBC, &aria_192_cbc_info },
2232 { MBEDTLS_CIPHER_ARIA_256_CBC, &aria_256_cbc_info },
2233#endif
2234#if defined(MBEDTLS_CIPHER_MODE_CFB)
2235 { MBEDTLS_CIPHER_ARIA_128_CFB128, &aria_128_cfb128_info },
2236 { MBEDTLS_CIPHER_ARIA_192_CFB128, &aria_192_cfb128_info },
2237 { MBEDTLS_CIPHER_ARIA_256_CFB128, &aria_256_cfb128_info },
2238#endif
2239#if defined(MBEDTLS_CIPHER_MODE_CTR)
2240 { MBEDTLS_CIPHER_ARIA_128_CTR, &aria_128_ctr_info },
2241 { MBEDTLS_CIPHER_ARIA_192_CTR, &aria_192_ctr_info },
2242 { MBEDTLS_CIPHER_ARIA_256_CTR, &aria_256_ctr_info },
2243#endif
2244#if defined(MBEDTLS_GCM_C)
2245 { MBEDTLS_CIPHER_ARIA_128_GCM, &aria_128_gcm_info },
2246 { MBEDTLS_CIPHER_ARIA_192_GCM, &aria_192_gcm_info },
2247 { MBEDTLS_CIPHER_ARIA_256_GCM, &aria_256_gcm_info },
2248#endif
2249#if defined(MBEDTLS_CCM_C)
2250 { MBEDTLS_CIPHER_ARIA_128_CCM, &aria_128_ccm_info },
2251 { MBEDTLS_CIPHER_ARIA_192_CCM, &aria_192_ccm_info },
2252 { MBEDTLS_CIPHER_ARIA_256_CCM, &aria_256_ccm_info },
Mateusz Starzyk4cb97392021-10-27 10:42:31 +0200[diff] [blame]2253 { MBEDTLS_CIPHER_ARIA_128_CCM_STAR_NO_TAG, &aria_128_ccm_star_no_tag_info },
2254 { MBEDTLS_CIPHER_ARIA_192_CCM_STAR_NO_TAG, &aria_192_ccm_star_no_tag_info },
2255 { MBEDTLS_CIPHER_ARIA_256_CCM_STAR_NO_TAG, &aria_256_ccm_star_no_tag_info },
Markku-Juhani O. Saarinenc06e1012017-12-07 11:51:13 +0000[diff] [blame]2256#endif
2257#endif /* MBEDTLS_ARIA_C */
2258
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]2259#if defined(MBEDTLS_DES_C)
2260 { MBEDTLS_CIPHER_DES_ECB, &des_ecb_info },
2261 { MBEDTLS_CIPHER_DES_EDE_ECB, &des_ede_ecb_info },
2262 { MBEDTLS_CIPHER_DES_EDE3_ECB, &des_ede3_ecb_info },
2263#if defined(MBEDTLS_CIPHER_MODE_CBC)
2264 { MBEDTLS_CIPHER_DES_CBC, &des_cbc_info },
2265 { MBEDTLS_CIPHER_DES_EDE_CBC, &des_ede_cbc_info },
2266 { MBEDTLS_CIPHER_DES_EDE3_CBC, &des_ede3_cbc_info },
Manuel Pégourié-Gonnarddace82f2013-09-18 15:12:07 +0200[diff] [blame]2267#endif
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]2268#endif /* MBEDTLS_DES_C */
Manuel Pégourié-Gonnarddace82f2013-09-18 15:12:07 +0200[diff] [blame]2269
Daniel Kingbd920622016-05-15 19:56:20 -0300[diff] [blame]2270#if defined(MBEDTLS_CHACHA20_C)
2271 { MBEDTLS_CIPHER_CHACHA20, &chacha20_info },
2272#endif
2273
Manuel Pégourié-Gonnarddca3a5d2018-05-07 10:43:27 +0200[diff] [blame]2274#if defined(MBEDTLS_CHACHAPOLY_C)
2275 { MBEDTLS_CIPHER_CHACHA20_POLY1305, &chachapoly_info },
Daniel King8fe47012016-05-17 20:33:28 -0300[diff] [blame]2276#endif
2277
Jack Lloydffdf2882019-03-07 17:00:32 -0500[diff] [blame]2278#if defined(MBEDTLS_NIST_KW_C)
2279 { MBEDTLS_CIPHER_AES_128_KW, &aes_128_nist_kw_info },
2280 { MBEDTLS_CIPHER_AES_192_KW, &aes_192_nist_kw_info },
2281 { MBEDTLS_CIPHER_AES_256_KW, &aes_256_nist_kw_info },
2282 { MBEDTLS_CIPHER_AES_128_KWP, &aes_128_nist_kwp_info },
2283 { MBEDTLS_CIPHER_AES_192_KWP, &aes_192_nist_kwp_info },
2284 { MBEDTLS_CIPHER_AES_256_KWP, &aes_256_nist_kwp_info },
2285#endif
2286
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]2287#if defined(MBEDTLS_CIPHER_NULL_CIPHER)
2288 { MBEDTLS_CIPHER_NULL, &null_cipher_info },
2289#endif /* MBEDTLS_CIPHER_NULL_CIPHER */
Manuel Pégourié-Gonnarddace82f2013-09-18 15:12:07 +0200[diff] [blame]2290
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]2291 { MBEDTLS_CIPHER_NONE, NULL }
Manuel Pégourié-Gonnarddace82f2013-09-18 15:12:07 +0200[diff] [blame]2292};
2293
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]2294#define NUM_CIPHERS (sizeof(mbedtls_cipher_definitions) / \
2295 sizeof(mbedtls_cipher_definitions[0]))
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]2296int mbedtls_cipher_supported[NUM_CIPHERS];
Manuel Pégourié-Gonnarddace82f2013-09-18 15:12:07 +0200[diff] [blame]2297
Dave Rodgman3b46b772023-06-24 13:25:06 +0100[diff] [blame]2298const mbedtls_cipher_base_t *mbedtls_cipher_base_lookup_table[] = {
Dave Rodgmande3de772023-06-24 12:51:06 +0100[diff] [blame]2299#if defined(MBEDTLS_AES_C)
2300 &aes_info,
2301#else
2302 NULL,
2303#endif
2304#if defined(MBEDTLS_ARIA_C)
2305 &aria_info,
2306#else
2307 NULL,
2308#endif
2309#if defined(MBEDTLS_CAMELLIA_C)
2310 &camellia_info,
2311#else
2312 NULL,
2313#endif
Dave Rodgman77049b82023-06-24 14:39:47 +0100[diff] [blame]2314#if defined(MBEDTLS_CCM_C) && defined(MBEDTLS_AES_C)
Dave Rodgmande3de772023-06-24 12:51:06 +0100[diff] [blame]2315 &ccm_aes_info,
2316#else
2317 NULL,
2318#endif
Dave Rodgman77049b82023-06-24 14:39:47 +0100[diff] [blame]2319#if defined(MBEDTLS_CCM_C) && defined(MBEDTLS_ARIA_C)
Dave Rodgmande3de772023-06-24 12:51:06 +0100[diff] [blame]2320 &ccm_aria_info,
2321#else
2322 NULL,
2323#endif
Dave Rodgman77049b82023-06-24 14:39:47 +0100[diff] [blame]2324#if defined(MBEDTLS_CCM_C) && defined(MBEDTLS_CAMELLIA_C)
Dave Rodgmande3de772023-06-24 12:51:06 +0100[diff] [blame]2325 &ccm_camellia_info,
2326#else
2327 NULL,
2328#endif
2329#if defined(MBEDTLS_CHACHA20_C)
2330 &chacha20_base_info,
2331#else
2332 NULL,
2333#endif
2334#if defined(MBEDTLS_CHACHAPOLY_C)
2335 &chachapoly_base_info,
2336#else
2337 NULL,
2338#endif
2339#if defined(MBEDTLS_DES_C)
2340 &des_ede3_info,
2341#else
2342 NULL,
2343#endif
2344#if defined(MBEDTLS_DES_C)
2345 &des_ede_info,
2346#else
2347 NULL,
2348#endif
2349#if defined(MBEDTLS_DES_C)
2350 &des_info,
2351#else
2352 NULL,
2353#endif
Dave Rodgman77049b82023-06-24 14:39:47 +0100[diff] [blame]2354#if defined(MBEDTLS_GCM_C) && defined(MBEDTLS_AES_C)
Dave Rodgmande3de772023-06-24 12:51:06 +0100[diff] [blame]2355 &gcm_aes_info,
2356#else
2357 NULL,
2358#endif
Dave Rodgman77049b82023-06-24 14:39:47 +0100[diff] [blame]2359#if defined(MBEDTLS_GCM_C) && defined(MBEDTLS_ARIA_C)
Dave Rodgmande3de772023-06-24 12:51:06 +0100[diff] [blame]2360 &gcm_aria_info,
2361#else
2362 NULL,
2363#endif
Dave Rodgman77049b82023-06-24 14:39:47 +0100[diff] [blame]2364#if defined(MBEDTLS_GCM_C) && defined(MBEDTLS_CAMELLIA_C)
Dave Rodgmande3de772023-06-24 12:51:06 +0100[diff] [blame]2365 &gcm_camellia_info,
2366#else
2367 NULL,
2368#endif
2369#if defined(MBEDTLS_NIST_KW_C)
2370 &kw_aes_info,
2371#else
2372 NULL,
2373#endif
2374#if defined(MBEDTLS_CIPHER_NULL_CIPHER)
2375 &null_base_info,
2376#else
2377 NULL,
2378#endif
Dave Rodgman77049b82023-06-24 14:39:47 +0100[diff] [blame]2379#if defined(MBEDTLS_CIPHER_MODE_XTS) && defined(MBEDTLS_AES_C)
Dave Rodgmande3de772023-06-24 12:51:06 +0100[diff] [blame]2380 &xts_aes_info,
2381#else
2382 NULL,
2383#endif
2384};
2385
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]2386#endif /* MBEDTLS_CIPHER_C */