feedc0de/wolfssl
1
0
Fork 0
forked from wolfSSL/wolfssl
Code Pull Requests Activity
Files
2b2509c56cf2ded6b7e5e1a062b30bc5cab541f5
wolfssl/wolfssl/wolfcrypt/aes.h

598 lines
20 KiB
C
Raw Normal View History

name change progress
2014-12-17 09:58:11 -07:00
/* aes.h
*
update copyright to 2023
2022-12-30 17:12:11 -07:00
* Copyright (C) 2006-2023 wolfSSL Inc.
name change progress
2014-12-17 09:58:11 -07:00
*
prepare for release v3.9.0
2016-03-17 16:02:13 -06:00
* This file is part of wolfSSL.
name change progress
2014-12-17 09:58:11 -07:00
*
header files for aes, arc4, camellia, chacha, dh, and dsa
2014-12-18 11:44:48 -07:00
* wolfSSL is free software; you can redistribute it and/or modify
name change progress
2014-12-17 09:58:11 -07:00
* it under the terms of the GNU General Public License as published by
* the Free Software Foundation; either version 2 of the License, or
* (at your option) any later version.
*
header files for aes, arc4, camellia, chacha, dh, and dsa
2014-12-18 11:44:48 -07:00
* wolfSSL is distributed in the hope that it will be useful,
name change progress
2014-12-17 09:58:11 -07:00
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
* GNU General Public License for more details.
*
* You should have received a copy of the GNU General Public License
* along with this program; if not, write to the Free Software
prepare for release v3.9.0
2016-03-17 16:02:13 -06:00
* Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1335, USA
name change progress
2014-12-17 09:58:11 -07:00
*/
Moved doxygen API comments in to a seperate directory
2017-12-29 10:45:37 -07:00
/*!
\file wolfssl/wolfcrypt/aes.h
*/
DO-178 changes
2020-07-09 15:13:01 -07:00
/*
Moved doxygen API comments in to a seperate directory
2017-12-29 10:45:37 -07:00
DO-178 changes
2020-07-09 15:13:01 -07:00
DESCRIPTION
This library provides the interfaces to the Advanced Encryption Standard (AES)
for encrypting and decrypting data. AES is the standard known for a symmetric
block cipher mechanism that uses n-bit binary string parameter key with 128-bits,
192-bits, and 256-bits of key sizes.
prepare for release v3.9.0
2016-03-17 16:02:13 -06:00
DO-178 changes
2020-07-09 15:13:01 -07:00
*/
name change progress
2014-12-17 09:58:11 -07:00
#ifndef WOLF_CRYPT_AES_H
#define WOLF_CRYPT_AES_H
header files for aes, arc4, camellia, chacha, dh, and dsa
2014-12-18 11:44:48 -07:00
#include <wolfssl/wolfcrypt/types.h>
SM2/SM3/SM4: Chinese cipher support Add support for: - SM2 elliptic curve and SM2 sign/verify - SM3 digest - SM4 cipher with modes ECB/CBC/CTR/GCM/CCM Add APIs for SM3 and SM4. Add SM2 sign and verify APIs. Add support for SM3 in wc_Hash and wc_Hmac API. Add support for SM3 and SM4 through EVP layer. Add support for SM2-SM3 certificates. Support key ID and name hash being with SHA-1/256 or SM3. Add support for TLS 1.3 cipher suites: TLS-SM4-GCM-SM3, TLS-SM4-CCM-SM3 Add support for TLS 1.2 SM cipher suite: ECDHE-ECDSA-SM4-CBC-SM3 Add support for SM3 in wc_PRF_TLS. Add SM2-SM3 certificates and keys. Generated with GmSSL-3.0.0 and OpenSSL.
2023-02-10 11:48:59 +10:00
#if !defined(NO_AES) || defined(WOLFSSL_SM4)
typedef struct Gcm {
ALIGN16 byte H[16];
#ifdef OPENSSL_EXTRA
word32 aadH[4]; /* additional authenticated data GHASH */
word32 aadLen; /* additional authenticated data len */
#endif
#ifdef GCM_TABLE
/* key-based fast multiplication table. */
ALIGN16 byte M0[256][16];
#elif defined(GCM_TABLE_4BIT)
#if defined(BIG_ENDIAN_ORDER) || defined(WC_16BIT_CPU)
ALIGN16 byte M0[16][16];
#else
ALIGN16 byte M0[32][16];
#endif
#endif /* GCM_TABLE */
} Gcm;
WOLFSSL_LOCAL void GenerateM0(Gcm* gcm);
#ifdef WOLFSSL_ARMASM
WOLFSSL_LOCAL void GMULT(byte* X, byte* Y);
#endif
WOLFSSL_LOCAL void GHASH(Gcm* gcm, const byte* a, word32 aSz, const byte* c,
word32 cSz, byte* s, word32 sSz);
#endif
fix github issue #20, allow user to use settings.h at app level as well for building wolfssl. verified types.h (which includes settings.h) or settings.h is included b4 definition checks at wolfssl and wolcrypt header levels
2015-02-26 12:29:15 -08:00
#ifndef NO_AES
FIPS Update 1. Moved the rest of the FIPS algorithms to FIPSv2. 2. Updated the fips-check and autogen scripts. 3. Updated the automake include for the crypto files. 4. Updated the example server to use the wolfSSL API and wolfSSL-based OpenSSL compatibility layer. 5. Added error code for the SHA-3 KAT. 6. Updated an test case in the API test for AES-GCM encrypt that is now considered a success case, but the FIPS mode was still treating as a failure.
2018-02-01 11:02:35 -08:00
#if defined(HAVE_FIPS) && \
defined(HAVE_FIPS_VERSION) && (HAVE_FIPS_VERSION >= 2)
#include <wolfssl/wolfcrypt/fips.h>
#endif /* HAVE_FIPS_VERSION >= 2 */
* Added support for STM32L4 AES hardware crypto. * Added reference PK callbacks functions for ECC sign, verify and shared secret used by TLS in `wolfcrypt/src/port/st/stsafe.c`. * Fix for wolfcrypt_test to not require args to be provided. * Fix for wolfCrypt `ecc_test_buffers` to poperly init ecc_key (resolves devId issue). * Fix for STM32 AES CBC Decrypt with CubeMX, which was not capturing the first input block for next IV. * Refactor to combine STM32 hardware init code.
2018-07-30 13:58:19 -07:00
#ifndef WC_NO_RNG
#include <wolfssl/wolfcrypt/random.h>
#endif
#ifdef STM32_CRYPTO
#include <wolfssl/wolfcrypt/port/st/stm32.h>
#endif
debugging on name change
2015-01-01 07:33:07 -07:00
Added support for NXP DCP (i.MX-RT series)
2020-09-18 11:46:08 +02:00
#ifdef WOLFSSL_IMXRT_DCP
#include "fsl_dcp.h"
#endif
FIPS Revalidation 1. Added new AES-GCM Encrypt API for FIPS where the IV is generated internally. 2. Fix the AES-NI guard flags so it can be used when FIPS enabled.
2018-02-05 13:50:30 -08:00
Xilinx port
2017-06-07 11:37:21 -06:00
#ifdef WOLFSSL_XILINX_CRYPT
Integrate Xilinx Versal * add Versal specific glue The same structure of an "XSecure client" is used throughout the API's, therefor define it once and re-use in all clients. * integrate Versal AES-GCM engine * integrate Versal SHA3-384 engine * add versal support to tests - There's no intermediate-hash API for Versal. * add specific test with large AAD Test only with `n*16 byte` wide chunks of AAD, so it gets processed in the hardware engine. * add specific test with misaligned AES-GCM arguments * integrate Versal RSA engine * disable failing RSA test-case when Xilinx Crypto is enabled * introduce define `WOLFSSL_XILINX_CRYPT_VERSAL` * integrate Versal TRNG engine * allow using Versal TRNG w/o wolfcrypt DRBG Versal TRNG already provides a HRNG mode which does the same as the wolfcrypt DRBG implementation. * add support for user-supplied nonce to Versal TRNG * add `wc_XsecureErrorToString()` to map PLM error codes to messages. * integrate Versal EcDSA engine * update tests to work with Versal EcDSA If deterministic K is enabled, the tests failed here since the Versal EcDSA engine doesn't support the SECP256R1 curve yet. * Xilinx crypto engines like aligned memory very much Make this a default choice, not via the user configuration. * add Xilinx-specific `WOLFSSL_MSG()` equivalent `WOLFSSL_XIL_MSG()` does the same as `WOLFSSL_MSG()` besides waiting for 1 second before printing to stdout, since the PLM maybe prints to same and outputs would be mixed up. This waiting can be disabled by defining `WOLFSSL_XIL_MSG_NO_SLEEP`. * add option to enable DPA CounterMeasures in AES-GCM crypto engine * add "command mode" to Xilinx bare-metal example * update Xilinx default user settings * add script to execute benchmarks * add scripts to create graphics * add Vitis 2022.1 example projects Signed-off-by: Steffen Jaeckel <jaeckel-floss@eyet-services.de>
2022-05-20 14:28:39 +02:00
#ifdef WOLFSSL_XILINX_CRYPT_VERSAL
#include <wolfssl/wolfcrypt/port/xilinx/xil-versal-glue.h>
#include <xsecure_aesclient.h>
#define WOLFSSL_XILINX_AES_KEY_SRC XSECURE_AES_USER_KEY_0
#else /* versal */
#include <xsecure_aes.h>
Generic changes * fix compilation warning * adjust SHA3-384 test error-codes The way the codes were constructed before, they were not unique. * unify code Instead of having `ifdef`'s in the code, define our own wrapper around the keysource as required. * add CMake option for help-text in wolfCrypt tests * expose test `main()` as `wolfcrypt_test_main()` * Don't overwrite previously set errors * add FreeRTOS support for Xilinx demo * move `fp_reverse` from `tfm.c` to `wolfmath.c` and rename to `mp_reverse`. Signed-off-by: Steffen Jaeckel <jaeckel-floss@eyet-services.de>
2022-05-04 16:12:59 +02:00
#define WOLFSSL_XILINX_AES_KEY_SRC XSECURE_CSU_AES_KEY_SRC_KUP
Integrate Xilinx Versal * add Versal specific glue The same structure of an "XSecure client" is used throughout the API's, therefor define it once and re-use in all clients. * integrate Versal AES-GCM engine * integrate Versal SHA3-384 engine * add versal support to tests - There's no intermediate-hash API for Versal. * add specific test with large AAD Test only with `n*16 byte` wide chunks of AAD, so it gets processed in the hardware engine. * add specific test with misaligned AES-GCM arguments * integrate Versal RSA engine * disable failing RSA test-case when Xilinx Crypto is enabled * introduce define `WOLFSSL_XILINX_CRYPT_VERSAL` * integrate Versal TRNG engine * allow using Versal TRNG w/o wolfcrypt DRBG Versal TRNG already provides a HRNG mode which does the same as the wolfcrypt DRBG implementation. * add support for user-supplied nonce to Versal TRNG * add `wc_XsecureErrorToString()` to map PLM error codes to messages. * integrate Versal EcDSA engine * update tests to work with Versal EcDSA If deterministic K is enabled, the tests failed here since the Versal EcDSA engine doesn't support the SECP256R1 curve yet. * Xilinx crypto engines like aligned memory very much Make this a default choice, not via the user configuration. * add Xilinx-specific `WOLFSSL_MSG()` equivalent `WOLFSSL_XIL_MSG()` does the same as `WOLFSSL_MSG()` besides waiting for 1 second before printing to stdout, since the PLM maybe prints to same and outputs would be mixed up. This waiting can be disabled by defining `WOLFSSL_XIL_MSG_NO_SLEEP`. * add option to enable DPA CounterMeasures in AES-GCM crypto engine * add "command mode" to Xilinx bare-metal example * update Xilinx default user settings * add script to execute benchmarks * add scripts to create graphics * add Vitis 2022.1 example projects Signed-off-by: Steffen Jaeckel <jaeckel-floss@eyet-services.de>
2022-05-20 14:28:39 +02:00
#endif /* !versal */
Generic changes * fix compilation warning * adjust SHA3-384 test error-codes The way the codes were constructed before, they were not unique. * unify code Instead of having `ifdef`'s in the code, define our own wrapper around the keysource as required. * add CMake option for help-text in wolfCrypt tests * expose test `main()` as `wolfcrypt_test_main()` * Don't overwrite previously set errors * add FreeRTOS support for Xilinx demo * move `fp_reverse` from `tfm.c` to `wolfmath.c` and rename to `mp_reverse`. Signed-off-by: Steffen Jaeckel <jaeckel-floss@eyet-services.de>
2022-05-04 16:12:59 +02:00
#endif /* WOLFSSL_XILINX_CRYPT */
#if defined(WOLFSSL_XILINX_CRYPT) || defined(WOLFSSL_AFALG_XILINX_AES)
#if !defined(WOLFSSL_XILINX_AES_KEY_SRC)
#define WOLFSSL_XILINX_AES_KEY_SRC 0
#endif /* !defined(WOLFSSL_XILINX_AES_KEY_SRC) */
#endif /* all Xilinx crypto */
Xilinx port
2017-06-07 11:37:21 -06:00
SE050 port with support for RNG, SHA, AES, ECC (sign/verify/shared secret) and ED25519
2021-08-20 12:59:41 -06:00
#ifdef WOLFSSL_SE050
#include <wolfssl/wolfcrypt/port/nxp/se050_port.h>
#endif
af_alg sha3 addition hardware acceleration with RSA add AES-GCM hardware acceleration refactor setting RSA IV flag check and set AF_ALG flags fix for default AF_ALG use set buffer alignment with Xilinx RSA macro guard after rebase use ALIGN64 clean up test cases
2018-08-24 10:24:53 -06:00
#if defined(WOLFSSL_AFALG) || defined(WOLFSSL_AFALG_XILINX_AES)
inital AES-CBC with af_alg progress on AES-GCM with AF_ALG and add SHA256 add aes-gcm test cases and finish logic of aes-gcm with AF_ALG formating of tabs and white space add files to dist adding ecb and ctr mode with af_alg make length of buffers for ctr be AES_BLOCK_SIZE formating and add support for sha256 copy/gethash sanity checks on arguments cast return values and valgrind tests make it easier to use sha256 with af_alg remove hard tabs add endif for after rebase
2018-07-18 17:26:25 -06:00
/* included for struct msghdr */
af_alg sha3 addition hardware acceleration with RSA add AES-GCM hardware acceleration refactor setting RSA IV flag check and set AF_ALG flags fix for default AF_ALG use set buffer alignment with Xilinx RSA macro guard after rebase use ALIGN64 clean up test cases
2018-08-24 10:24:53 -06:00
#include <wolfssl/wolfcrypt/port/af_alg/wc_afalg.h>
inital AES-CBC with af_alg progress on AES-GCM with AF_ALG and add SHA256 add aes-gcm test cases and finish logic of aes-gcm with AF_ALG formating of tabs and white space add files to dist adding ecb and ctr mode with af_alg make length of buffers for ctr be AES_BLOCK_SIZE formating and add support for sha256 copy/gethash sanity checks on arguments cast return values and valgrind tests make it easier to use sha256 with af_alg remove hard tabs add endif for after rebase
2018-07-18 17:26:25 -06:00
#endif
KCAPI: add support for using libkcapi for crypto (Linux Kernel) RSA, DH and ECC not testable as no Linux Kernel driver to use. ECC implementation is customer specific.
2021-08-19 11:25:59 +10:00
#if defined(WOLFSSL_KCAPI_AES)
#include <wolfssl/wolfcrypt/port/kcapi/wc_kcapi.h>
#endif
crypto only sha256 cryptodev formating and refactoring update configure for devcrypto add AES algorithms to cyrptodev port increase structure size for compatibility AES with cryptodev add wc_devcrypto.h to install path
2018-08-17 09:46:16 -06:00
#if defined(WOLFSSL_DEVCRYPTO_AES) || defined(WOLFSSL_DEVCRYPTO_CBC)
#include <wolfssl/wolfcrypt/port/devcrypto/wc_devcrypto.h>
#endif
SiLbs: SHA and AES-{GCM,CBC} hardware acceleration using se_manager
2020-11-06 12:20:03 -08:00
#ifdef WOLFSSL_SILABS_SE_ACCEL
#include <wolfssl/wolfcrypt/port/silabs/silabs_aes.h>
#endif
Test Fixes 1. AesGcmEncrypt_ex requires the RNG, remove function if RNG disabled. 2. Fix a couple function name changes in the example server. 3. Removed the old FIPS wrapping added to dh.h, was redundant. 4. Move include of random.h in the aes.h file. 5. Fix where ecc.c was being left out of old FIPS builds. 6. Exclude the AES-GCM internal IV test case when building without the RNG. 7. Fix api test where AES-GCM Encrypt was called with a too-long IV in old FIPS mode. Non-FIPS and new FIPS are allowed longer IVs.
2018-03-06 16:45:44 -08:00
#if defined(HAVE_AESGCM) && !defined(WC_NO_RNG)
#include <wolfssl/wolfcrypt/random.h>
#endif
psa: support AES
2021-12-22 17:41:01 +01:00
#if defined(WOLFSSL_HAVE_PSA) && !defined(WOLFSSL_PSA_NO_AES)
#include <psa/crypto.h>
#endif
Added CryptoCell-310 support - SHA-256 - AES CBC - CryptoCell 310 RNG - RSA sign/verify and RSA key gen - RSA encrypt/decrypt, decrypt inline - ECC sign/verify/shared secret - ECC key import/export and key gen pairs - Hardware RNG and RTC of nRF52840 for benchmark timing source - readme doc
2019-03-27 20:44:38 -07:00
#if defined(WOLFSSL_CRYPTOCELL)
#include <wolfssl/wolfcrypt/port/arm/cryptoCell.h>
#endif
name change progress
2014-12-17 09:58:11 -07:00
Renesas TSIP Support merged from private repo removed unneccessary #include make line as 80 characters added simple tls server Disable TLS-linked API use when being SERVER SIDE, still use certificate verify API Added utility tools, generate signature arrays etc added vars to store tsip hmac keys fix build failure when disabling dc_printf
2019-08-19 17:32:22 +09:00
#if defined(WOLFSSL_RENESAS_TSIP_TLS) && \
defined(WOLFSSL_RENESAS_TSIP_TLS_AES_CRYPT)
Added multi thread use case Improve not to use forward declaration struct definition - include ssl.h rather than forward declaration struct to resolve struct name - to include ssl.h, it needs to avoid cyclic reference for crypt structure. therefore, Sha and Aes definitions are moved to another header file
2022-05-27 13:53:25 +09:00
#include <wolfssl/wolfcrypt/port/Renesas/renesas_tsip_types.h>
Renesas TSIP Support merged from private repo removed unneccessary #include make line as 80 characters added simple tls server Disable TLS-linked API use when being SERVER SIDE, still use certificate verify API Added utility tools, generate signature arrays etc added vars to store tsip hmac keys fix build failure when disabling dc_printf
2019-08-19 17:32:22 +09:00
#endif
Support for Analog Devices MAXQ1080 and MAXQ1065
2022-09-21 03:21:33 -04:00
#ifdef WOLFSSL_MAXQ10XX_CRYPTO
#include <wolfssl/wolfcrypt/port/maxim/maxq10xx.h>
#endif
name change progress
2014-12-17 09:58:11 -07:00
#ifdef __cplusplus
extern "C" {
#endif
Fix header definitions when running CAVP self test
2020-01-14 21:13:52 +01:00
#ifndef WOLFSSL_AES_KEY_SIZE_ENUM
#define WOLFSSL_AES_KEY_SIZE_ENUM
Fix for Windows FIPS build in current master. Resolves issue with missing DES/AES key size enums.
2018-04-10 19:59:11 -07:00
/* these are required for FIPS and non-FIPS */
FIPS Update 1. Moved the rest of the FIPS algorithms to FIPSv2. 2. Updated the fips-check and autogen scripts. 3. Updated the automake include for the crypto files. 4. Updated the example server to use the wolfSSL API and wolfSSL-based OpenSSL compatibility layer. 5. Added error code for the SHA-3 KAT. 6. Updated an test case in the API test for AES-GCM encrypt that is now considered a success case, but the FIPS mode was still treating as a failure.
2018-02-01 11:02:35 -08:00
enum {
Fix for Windows FIPS build in current master. Resolves issue with missing DES/AES key size enums.
2018-04-10 19:59:11 -07:00
AES_128_KEY_SIZE = 16, /* for 128 bit */
AES_192_KEY_SIZE = 24, /* for 192 bit */
AES_256_KEY_SIZE = 32, /* for 256 bit */
fix "comma at end of enumerator list" warnings in wolfcrypt for C89 compatibility, mostly by just snipping out unneeded comma, but several using WOLF_ENUM_DUMMY_LAST_ELEMENT() to preserve gated enum values as-is.
2023-04-14 13:48:03 -05:00
AES_IV_SIZE = 16 /* always block size */
Fix for Windows FIPS build in current master. Resolves issue with missing DES/AES key size enums.
2018-04-10 19:59:11 -07:00
};
Fix header definitions when running CAVP self test
2020-01-14 21:13:52 +01:00
#endif
Fix for Windows FIPS build in current master. Resolves issue with missing DES/AES key size enums.
2018-04-10 19:59:11 -07:00
FIPS Update 1. Moved the rest of the FIPS algorithms to FIPSv2. 2. Updated the fips-check and autogen scripts. 3. Updated the automake include for the crypto files. 4. Updated the example server to use the wolfSSL API and wolfSSL-based OpenSSL compatibility layer. 5. Added error code for the SHA-3 KAT. 6. Updated an test case in the API test for AES-GCM encrypt that is now considered a success case, but the FIPS mode was still treating as a failure.
2018-02-01 11:02:35 -08:00
/* avoid redefinition of structs */
#if !defined(HAVE_FIPS) || \
(defined(HAVE_FIPS_VERSION) && (HAVE_FIPS_VERSION >= 2))
Added asynchronous wolfCrypt RSA, TLS client and Cavium Nitrox V support. Asynchronous wolfSSL client support for "DoServerKeyExchange", "SendClientKeyExchange", "SendCertificateVerify" and "DoCertificateVerify". Fixes for async DTLS. Refactor of the wolf event and async handling for use in wolfCrypt. Refactor of the async device support so its hardware agnostic. Added Cavium Nitrox V support (Nitrox tested using SDK v0.2 CNN55XX-SDK with new configure "--with-cavium-v=/dir" option). Moved Nitrox specific functions to new port file "port/cavium/cavium_nitrox.c". RSA refactor to handle async with states. RSA optimization for using dpraw for private key decode. Use double linked list in wolf event for faster/cleaner code. Use typedef for wolf event flag. Cleanup of the async error codes. wolfCrypt test and benchmark support for async RSA. Asynchronous mode enabled using "./configure --enable-asynccrypt". If no async hardware is defined then the internal async simulator (WOLFSSL_ASYNC_CRYPT_TEST) is used. Note: Using async mode requires async.c/h files from wolfSSL. If interested in using asynchronous mode please send email to info@wolfssl.com.
2016-08-15 13:59:41 -06:00
#ifdef WOLFSSL_ASYNC_CRYPT
#include <wolfssl/wolfcrypt/async.h>
#endif
change of some header file macros
2015-01-05 14:59:48 -07:00
enum {
Fixes for build failures. Added new `WC_MAX_SYM_KEY_SIZE` macro for helping determine max key size. Added enum for unique cipher types. Added `CHACHA_MAX_KEY_SZ` for ChaCha.
2018-04-03 08:50:26 -07:00
AES_ENC_TYPE = WC_CIPHER_AES, /* cipher unique type */
change of some header file macros
2015-01-05 14:59:48 -07:00
AES_ENCRYPTION = 0,
AES_DECRYPTION = 1,
Improvements to EncryptedInfo. Added build option `WOLFSSL_ENCRYPTED_KEYS` to indicate support for EncryptedInfo. Improvements to `wc_PBKDF1` to support more hash types and the non-standard extra data option.
2018-03-30 10:30:45 -07:00
Fixes for build failures. Added new `WC_MAX_SYM_KEY_SIZE` macro for helping determine max key size. Added enum for unique cipher types. Added `CHACHA_MAX_KEY_SZ` for ChaCha.
2018-04-03 08:50:26 -07:00
AES_BLOCK_SIZE = 16,
Fix for Windows FIPS build in current master. Resolves issue with missing DES/AES key size enums.
2018-04-10 19:59:11 -07:00
KEYWRAP_BLOCK_SIZE = 8,
Added support for the STM32L4 with AES/SHA hardware acceleration. Fixed a few minor compiler warnings with mis-matched enum types.
2018-06-27 19:37:21 -07:00
GCM_NONCE_MAX_SZ = 16, /* wolfCrypt's maximum nonce size allowed. */
Restrict AES-GCM IV minimum size to 96-bits for newer FIPS builds.
2021-03-04 09:09:08 -08:00
GCM_NONCE_MID_SZ = 12, /* The default nonce size for AES-GCM. */
Added support for the STM32L4 with AES/SHA hardware acceleration. Fixed a few minor compiler warnings with mis-matched enum types.
2018-06-27 19:37:21 -07:00
GCM_NONCE_MIN_SZ = 8, /* wolfCrypt's minimum nonce size allowed. */
CCM_NONCE_MIN_SZ = 7,
CCM_NONCE_MAX_SZ = 13,
CTR_SZ = 4,
Support for PKCS#11 Support for RSA, ECDSA and AES-GCM operations.
2018-09-12 08:56:59 +10:00
AES_IV_FIXED_SZ = 4,
add AES-OFB mode
2020-01-21 15:51:12 -08:00
#ifdef WOLFSSL_AES_CFB
AES_CFB_MODE = 1,
#endif
#ifdef WOLFSSL_AES_OFB
AES_OFB_MODE = 2,
#endif
Adding EVP_aes_###_xts tests (not complete)
2020-01-28 21:46:04 -06:00
#ifdef WOLFSSL_AES_XTS
AES_XTS_MODE = 3,
#endif
Support for PKCS#11 Support for RSA, ECDSA and AES-GCM operations.
2018-09-12 08:56:59 +10:00
Improve logic around private key id/label. Adds `WOLF_PRIVATE_KEY_ID`.
2022-03-17 14:12:13 -07:00
#ifdef WOLF_PRIVATE_KEY_ID
PKCS #11: implement identifying keys by label
2020-10-23 13:57:46 +10:00
AES_MAX_ID_LEN = 32,
AES_MAX_LABEL_LEN = 32,
Support for PKCS#11 Support for RSA, ECDSA and AES-GCM operations.
2018-09-12 08:56:59 +10:00
#endif
fix "comma at end of enumerator list" warnings in wolfcrypt for C89 compatibility, mostly by just snipping out unneeded comma, but several using WOLF_ENUM_DUMMY_LAST_ELEMENT() to preserve gated enum values as-is.
2023-04-14 13:48:03 -05:00
WOLF_ENUM_DUMMY_LAST_ELEMENT(AES)
change of some header file macros
2015-01-05 14:59:48 -07:00
};
macro guards for re-defines
2019-09-09 19:24:45 -06:00
struct Aes {
change of some header file macros
2015-01-05 14:59:48 -07:00
/* AESNI needs key first, rounds 2nd, not sure why yet */
ALIGN16 word32 key[60];
word32 rounds;
Intel QuickAssist (QAT) support and async enhancements/fixes: * Adds ./configure "--with-intelqa=../QAT1.6”, port files, memory management and README.md (see wolfcrypt/src/port/intel/). * Added Intel QAT support for RSA public/private (CRT/non-CRT), AES CBC/GCM, ECDH/ECDSA, DH, DES3, SHA, SHA224, SHA256, SHA384, SHA512, MD5 and HMAC. * wolfSSL async enabled all client and server: PKI, Encrypt/Decrypt, Hashing/HMAC and Certificate Sign/Verify. * wolfSSL async support in functions: Encrypt, Decrypt, VerifyMAC, BuildMessage, ConfirmSignature, DoCertificate, ParseCertRelative, and MakeSignature. * wolfCrypt test and benchmark async support added for all HW acceleration. * wolfCrypt benchmark multi-threading support. * Added QuickAssist memory overrides for XMALLOC, XFREE and XREALLOC. XREALLOC determines if existing pointer needs reallocated for NUMA. * Refactor to make sure “heap” is available for async dev init. * Added async support for all examples for connect, accept, read and write. * Added new WC_BIGINT (in wolfmath.c) for async hardware support. * Added async simulator tests for DES3 CBC, AES CBC/GCM. * Added QAT standalone build for unit testing. * Added int return code to SHA and MD5 functions. * Refactor of the async stack variable handling, so async operations have generic args buffer area and cleanup function pointer. * Combined duplicate code for async push/pop handling. * Refactor internal.c to add AllocKey / FreeKey. * Refactor of hash init/free in TLS to use InitHashes and FreeHashes. * Refactor of the async event->context to use WOLF_EVENT_TYPE_ASYNC_WOLFSSL for WOLFSSL* and WOLF_EVENT_TYPE_ASYNC_WOLFCRYPT for WC_ASYNC_DEV*. * Suppress error message for WC_PENDING_E. * Implemented "wolfSSL_EVP_MD_CTX_init" to do memset. * Cleanup of the openssl compat CTX sizes when async is enabled. * Cleanup of AES, DES3, DH, SHA, MD5, DES3, DH, HMAC, MD5 for consistency and readability. * Cleanup of the OPAQUE_LEN. * Cleanup to use ENCRYPT_LEN instead of sizeof(ssl->arrays.preMasterSecret). * Changed ssl->arrays.preMasterSecret to use XMALLOC (accelerates HW operations) * Reduce verbosity with debug enabled for "GetMyVersion", "wolfSSL Using RSA OAEP padding" and "wolfSSL Using RSA PKCSV15 padding". * Updated RSA un-padding error message so its different than one above it for better debugging. * Added QAT async enables for each algorithm. * Refactor of the async init to use _ex. * Added WC_ASYNC_THRESH_NONE to allow bypass of the async thresholds for testing. * Reformatted the benchmark results: PKI: "RSA 2048 private HW 18522 ops took 1.003 sec, avg 0.054 ms, 18467.763 ops/sec" Crypto/Hashing: SHA-256 SW 350 megs took 1.009 seconds, 346.946 MB/s Cycles per byte = 9.87 * Added min execution time for all benchmarks. * Moved wc_*GetHash and wc_*RestorePos to appropriate files so use of isCopy flag is local. * Fix for ECC sign status sometimes being invalid due to uninitialized ECC digest in benchmark. * Added new DECLARE_VAR/FREE_VAR and DECLARE_ARRAY/FREE_ARRAY macros for helping setup test/benchmark variables to accelerate async. * Added NO_SW_BENCH option to only run HW bench. * Added support for PRNG to use hardware SHA256 if _wc devId provided. * Fix to prevent curve tests from running against wrong curve sizes. Changed wc_ecc_set_curve to match on exact size. * Added the wc_*GetHash calls to the wolfCrypt tests. * Added async hardware start/stop to wolfSSL init/cleanup. * Refactor to add wc_*Copy for hashing context (for async), which replaces wc_*RestorePos. * Fixes for building with TI hashing (including: SHA224, missing new API’s and building with dummy build for non hw testing). Note: We need to add build test for this `./configure CFLAGS="-DWOLFSSL_TI_HASH -DTI_DUMMY_BUILD”`. * Added arg checks on wc_*GetHash and wc_*Copy. * Cleanup of the BuildMD5, BuildSHA, BuildMD5_CertVerify and BuildSHA_CertVerify functions. * Added new ./configure --enable-asyncthreads, to allow enable/disable of the async threading support. If --enable-asynccrypt set this will be enabled by default if pthread is supported. Allows multi-threaded benchmarks with async simulator. * Added checks for all hashing to verify valid ->buffLen. * Fix for SHA512 scan-build warning about un-initialized “W_X”. * Fix for valgrind un-initialized use of buffer in AllocDer (der->buffer) and BuildTlsFinished handshake_hash. * Refactor of the benchmarking to use common function for start, check and finish of the stats. * Fixed issue with ECC cache loading in multi-threading. * Fix bug with AESNI not aligned code that assumes XMALLOC is 16-byte aligned. * Added new WC_ASYNC_NO_… options to allow disabling of individual async algorithms. New defines are: WC_ASYNC_NO_CRYPT, WC_ASYNC_NO_PKI and WC_ASYNC_NO_HASH. Additionally each algorithm has a WC_ASYNC_NO_[ALGO] define. * Added “wolfSSL_GetAllocators” API and fixed the wolfCrypt memcb_test so it restores callback pointers after test is complete (fixes issue with using custom allocators and test breaking it).
2017-04-07 15:46:32 -07:00
int keylen;
change of some header file macros
2015-01-05 14:59:48 -07:00
ALIGN16 word32 reg[AES_BLOCK_SIZE / sizeof(word32)]; /* for CBC mode */
ALIGN16 word32 tmp[AES_BLOCK_SIZE / sizeof(word32)]; /* same */
FIPS Revalidation 1. Add new APIs for AES-GCM so it can manage the IV per SP 800-38D. 2. Add new APIs for AES-CCM so it can manage the IV, similar to the behavior in AES-GCM. 3. Add new APIs for GMAC that use the new AES-GCM APIs.
2018-03-15 17:05:30 -07:00
#if defined(HAVE_AESGCM) || defined(HAVE_AESCCM)
word32 invokeCtr[2];
word32 nonceSz;
#endif
change of some header file macros
2015-01-05 14:59:48 -07:00
#ifdef HAVE_AESGCM
SM2/SM3/SM4: Chinese cipher support Add support for: - SM2 elliptic curve and SM2 sign/verify - SM3 digest - SM4 cipher with modes ECB/CBC/CTR/GCM/CCM Add APIs for SM3 and SM4. Add SM2 sign and verify APIs. Add support for SM3 in wc_Hash and wc_Hmac API. Add support for SM3 and SM4 through EVP layer. Add support for SM2-SM3 certificates. Support key ID and name hash being with SHA-1/256 or SM3. Add support for TLS 1.3 cipher suites: TLS-SM4-GCM-SM3, TLS-SM4-CCM-SM3 Add support for TLS 1.2 SM cipher suite: ECDHE-ECDSA-SM4-CBC-SM3 Add support for SM3 in wc_PRF_TLS. Add SM2-SM3 certificates and keys. Generated with GmSSL-3.0.0 and OpenSSL.
2023-02-10 11:48:59 +10:00
Gcm gcm;
OpenSSL compatible APIs: ASN1_STRING_type EVP_aes_128_gcm EVP_CIPHER_CTX_ctrl EVP_PKEY_sign EVP_PKEY_sign_init RSA_print RSA_NO_PADDING RSA_PKCS1_PSS_PADDING
2019-08-08 12:44:22 -07:00
SE050 port with support for RNG, SHA, AES, ECC (sign/verify/shared secret) and ED25519
2021-08-20 12:59:41 -06:00
#ifdef WOLFSSL_SE050
sss_symmetric_t aes_ctx; /* used as the function context */
int ctxInitDone;
SE050 expansion: add RSA support, allow for larger key IDs, get/set key ID from ecc_key/RsaKey, fixes for SE050 hashing, remove XREALLOC dependency, API to store/get binary object, API to erase object, test.c compatibility
2022-10-19 10:10:48 -06:00
word32 keyId;
byte keyIdSet;
byte useSWCrypt; /* Use SW crypt instead of SE050, before SCP03 auth */
SE050 port with support for RNG, SHA, AES, ECC (sign/verify/shared secret) and ED25519
2021-08-20 12:59:41 -06:00
#endif
Synchronous Cavium OCTEON Support for Sniffer 1. Add configure option for sync IntelQA that uses the crypto callback API. 2. Make a synchonous copy of the quickassist files. 3. Tie in the crypto device to the sniffer. 4. When making a sniffer build, define static DH enabled. 5. The readme files in the Cavium were being added to the distro optionally, changed to always add the readme files. 6. Added an include of the cavium_octeon header in the wc_ports.c. 7. Updated the Cavium OCTEON callback for AES-GCM. 8. Add the global tag to the list of crypto callback function pointers. 9. Add an accessor to the OCTEON crypto callback module to return the device ID of the OCTEON device. 10. Add a new version of ssl_SetWatchKeyCallback which takes an additional parameter of a device ID. This ID is used to set up the wolfSSL_CTXs in the sniffer session trackers. 11. Update the benchmark to use sync OCTEON and QAT.
2019-10-04 11:21:56 -07:00
#ifdef HAVE_CAVIUM_OCTEON_SYNC
word32 y0;
#endif
change of some header file macros
2015-01-05 14:59:48 -07:00
#endif /* HAVE_AESGCM */
more macro guards with CAAM builds
2022-07-22 16:19:55 -07:00
#ifdef WOLFSSL_CAAM
int blackKey; /* black key / hsm key id */
#endif
change of some header file macros
2015-01-05 14:59:48 -07:00
#ifdef WOLFSSL_AESNI
byte use_aesni;
#endif /* WOLFSSL_AESNI */
Refactor and rename of cryptodev to cryptocb. Refactor API names from `wc_CryptoDev` to use `wc_CryptoCb`. Backwards compatibility is retained for anyone using old `WOLF_CRYPTO_DEV` name. Added comment about fall-through case when CryptoCb return `NOT_COMPILED_IN`.
2019-01-17 11:01:14 -08:00
#ifdef WOLF_CRYPTO_CB
Fixes and improvements to the new Crypto callback code for AES and Hashing.
2019-01-09 17:39:05 -08:00
int devId;
Fix for TLS HMAC constant timing to ensure final is called for dummy operations. Added devCtx to AES for CryptoCb.
2019-02-06 13:32:10 -08:00
void* devCtx;
Support for PKCS#11 Support for RSA, ECDSA and AES-GCM operations.
2018-09-12 08:56:59 +10:00
#endif
Improve logic around private key id/label. Adds `WOLF_PRIVATE_KEY_ID`.
2022-03-17 14:12:13 -07:00
#ifdef WOLF_PRIVATE_KEY_ID
Support for PKCS#11 Support for RSA, ECDSA and AES-GCM operations.
2018-09-12 08:56:59 +10:00
byte id[AES_MAX_ID_LEN];
int idLen;
PKCS #11: implement identifying keys by label
2020-10-23 13:57:46 +10:00
char label[AES_MAX_LABEL_LEN];
int labelLen;
Support for PKCS#11 Support for RSA, ECDSA and AES-GCM operations.
2018-09-12 08:56:59 +10:00
#endif
Fixes for building with ` ./configure --enable-asynccrypt --enable-all CFLAGS="-DWC_ASYNC_NO_CRYPT"`
2019-10-22 09:35:26 -07:00
#ifdef WOLFSSL_ASYNC_CRYPT
Intel QuickAssist (QAT) support and async enhancements/fixes: * Adds ./configure "--with-intelqa=../QAT1.6”, port files, memory management and README.md (see wolfcrypt/src/port/intel/). * Added Intel QAT support for RSA public/private (CRT/non-CRT), AES CBC/GCM, ECDH/ECDSA, DH, DES3, SHA, SHA224, SHA256, SHA384, SHA512, MD5 and HMAC. * wolfSSL async enabled all client and server: PKI, Encrypt/Decrypt, Hashing/HMAC and Certificate Sign/Verify. * wolfSSL async support in functions: Encrypt, Decrypt, VerifyMAC, BuildMessage, ConfirmSignature, DoCertificate, ParseCertRelative, and MakeSignature. * wolfCrypt test and benchmark async support added for all HW acceleration. * wolfCrypt benchmark multi-threading support. * Added QuickAssist memory overrides for XMALLOC, XFREE and XREALLOC. XREALLOC determines if existing pointer needs reallocated for NUMA. * Refactor to make sure “heap” is available for async dev init. * Added async support for all examples for connect, accept, read and write. * Added new WC_BIGINT (in wolfmath.c) for async hardware support. * Added async simulator tests for DES3 CBC, AES CBC/GCM. * Added QAT standalone build for unit testing. * Added int return code to SHA and MD5 functions. * Refactor of the async stack variable handling, so async operations have generic args buffer area and cleanup function pointer. * Combined duplicate code for async push/pop handling. * Refactor internal.c to add AllocKey / FreeKey. * Refactor of hash init/free in TLS to use InitHashes and FreeHashes. * Refactor of the async event->context to use WOLF_EVENT_TYPE_ASYNC_WOLFSSL for WOLFSSL* and WOLF_EVENT_TYPE_ASYNC_WOLFCRYPT for WC_ASYNC_DEV*. * Suppress error message for WC_PENDING_E. * Implemented "wolfSSL_EVP_MD_CTX_init" to do memset. * Cleanup of the openssl compat CTX sizes when async is enabled. * Cleanup of AES, DES3, DH, SHA, MD5, DES3, DH, HMAC, MD5 for consistency and readability. * Cleanup of the OPAQUE_LEN. * Cleanup to use ENCRYPT_LEN instead of sizeof(ssl->arrays.preMasterSecret). * Changed ssl->arrays.preMasterSecret to use XMALLOC (accelerates HW operations) * Reduce verbosity with debug enabled for "GetMyVersion", "wolfSSL Using RSA OAEP padding" and "wolfSSL Using RSA PKCSV15 padding". * Updated RSA un-padding error message so its different than one above it for better debugging. * Added QAT async enables for each algorithm. * Refactor of the async init to use _ex. * Added WC_ASYNC_THRESH_NONE to allow bypass of the async thresholds for testing. * Reformatted the benchmark results: PKI: "RSA 2048 private HW 18522 ops took 1.003 sec, avg 0.054 ms, 18467.763 ops/sec" Crypto/Hashing: SHA-256 SW 350 megs took 1.009 seconds, 346.946 MB/s Cycles per byte = 9.87 * Added min execution time for all benchmarks. * Moved wc_*GetHash and wc_*RestorePos to appropriate files so use of isCopy flag is local. * Fix for ECC sign status sometimes being invalid due to uninitialized ECC digest in benchmark. * Added new DECLARE_VAR/FREE_VAR and DECLARE_ARRAY/FREE_ARRAY macros for helping setup test/benchmark variables to accelerate async. * Added NO_SW_BENCH option to only run HW bench. * Added support for PRNG to use hardware SHA256 if _wc devId provided. * Fix to prevent curve tests from running against wrong curve sizes. Changed wc_ecc_set_curve to match on exact size. * Added the wc_*GetHash calls to the wolfCrypt tests. * Added async hardware start/stop to wolfSSL init/cleanup. * Refactor to add wc_*Copy for hashing context (for async), which replaces wc_*RestorePos. * Fixes for building with TI hashing (including: SHA224, missing new API’s and building with dummy build for non hw testing). Note: We need to add build test for this `./configure CFLAGS="-DWOLFSSL_TI_HASH -DTI_DUMMY_BUILD”`. * Added arg checks on wc_*GetHash and wc_*Copy. * Cleanup of the BuildMD5, BuildSHA, BuildMD5_CertVerify and BuildSHA_CertVerify functions. * Added new ./configure --enable-asyncthreads, to allow enable/disable of the async threading support. If --enable-asynccrypt set this will be enabled by default if pthread is supported. Allows multi-threaded benchmarks with async simulator. * Added checks for all hashing to verify valid ->buffLen. * Fix for SHA512 scan-build warning about un-initialized “W_X”. * Fix for valgrind un-initialized use of buffer in AllocDer (der->buffer) and BuildTlsFinished handshake_hash. * Refactor of the benchmarking to use common function for start, check and finish of the stats. * Fixed issue with ECC cache loading in multi-threading. * Fix bug with AESNI not aligned code that assumes XMALLOC is 16-byte aligned. * Added new WC_ASYNC_NO_… options to allow disabling of individual async algorithms. New defines are: WC_ASYNC_NO_CRYPT, WC_ASYNC_NO_PKI and WC_ASYNC_NO_HASH. Additionally each algorithm has a WC_ASYNC_NO_[ALGO] define. * Added “wolfSSL_GetAllocators” API and fixed the wolfCrypt memcb_test so it restores callback pointers after test is complete (fixes issue with using custom allocators and test breaking it).
2017-04-07 15:46:32 -07:00
WC_ASYNC_DEV asyncDev;
Added asynchronous wolfCrypt RSA, TLS client and Cavium Nitrox V support. Asynchronous wolfSSL client support for "DoServerKeyExchange", "SendClientKeyExchange", "SendCertificateVerify" and "DoCertificateVerify". Fixes for async DTLS. Refactor of the wolf event and async handling for use in wolfCrypt. Refactor of the async device support so its hardware agnostic. Added Cavium Nitrox V support (Nitrox tested using SDK v0.2 CNN55XX-SDK with new configure "--with-cavium-v=/dir" option). Moved Nitrox specific functions to new port file "port/cavium/cavium_nitrox.c". RSA refactor to handle async with states. RSA optimization for using dpraw for private key decode. Use double linked list in wolf event for faster/cleaner code. Use typedef for wolf event flag. Cleanup of the async error codes. wolfCrypt test and benchmark support for async RSA. Asynchronous mode enabled using "./configure --enable-asynccrypt". If no async hardware is defined then the internal async simulator (WOLFSSL_ASYNC_CRYPT_TEST) is used. Note: Using async mode requires async.c/h files from wolfSSL. If interested in using asynchronous mode please send email to info@wolfssl.com.
2016-08-15 13:59:41 -06:00
#endif /* WOLFSSL_ASYNC_CRYPT */
add AES-OFB mode
2020-01-21 15:51:12 -08:00
#if defined(WOLFSSL_AES_COUNTER) || defined(WOLFSSL_AES_CFB) || \
Adding EVP_aes_###_xts tests (not complete)
2020-01-28 21:46:04 -06:00
defined(WOLFSSL_AES_OFB) || defined(WOLFSSL_AES_XTS)
Spelling fixes in comments and error strings (ALGO_ID_E, ASN_TIME_E and WOLFSSL_ERROR function).
2016-01-29 16:13:09 -08:00
word32 left; /* unused bytes left from last call */
change of some header file macros
2015-01-05 14:59:48 -07:00
#endif
Xilinx port
2017-06-07 11:37:21 -06:00
#ifdef WOLFSSL_XILINX_CRYPT
Integrate Xilinx Versal * add Versal specific glue The same structure of an "XSecure client" is used throughout the API's, therefor define it once and re-use in all clients. * integrate Versal AES-GCM engine * integrate Versal SHA3-384 engine * add versal support to tests - There's no intermediate-hash API for Versal. * add specific test with large AAD Test only with `n*16 byte` wide chunks of AAD, so it gets processed in the hardware engine. * add specific test with misaligned AES-GCM arguments * integrate Versal RSA engine * disable failing RSA test-case when Xilinx Crypto is enabled * introduce define `WOLFSSL_XILINX_CRYPT_VERSAL` * integrate Versal TRNG engine * allow using Versal TRNG w/o wolfcrypt DRBG Versal TRNG already provides a HRNG mode which does the same as the wolfcrypt DRBG implementation. * add support for user-supplied nonce to Versal TRNG * add `wc_XsecureErrorToString()` to map PLM error codes to messages. * integrate Versal EcDSA engine * update tests to work with Versal EcDSA If deterministic K is enabled, the tests failed here since the Versal EcDSA engine doesn't support the SECP256R1 curve yet. * Xilinx crypto engines like aligned memory very much Make this a default choice, not via the user configuration. * add Xilinx-specific `WOLFSSL_MSG()` equivalent `WOLFSSL_XIL_MSG()` does the same as `WOLFSSL_MSG()` besides waiting for 1 second before printing to stdout, since the PLM maybe prints to same and outputs would be mixed up. This waiting can be disabled by defining `WOLFSSL_XIL_MSG_NO_SLEEP`. * add option to enable DPA CounterMeasures in AES-GCM crypto engine * add "command mode" to Xilinx bare-metal example * update Xilinx default user settings * add script to execute benchmarks * add scripts to create graphics * add Vitis 2022.1 example projects Signed-off-by: Steffen Jaeckel <jaeckel-floss@eyet-services.de>
2022-05-20 14:28:39 +02:00
#ifdef WOLFSSL_XILINX_CRYPT_VERSAL
wc_Xsecure xSec;
XSecure_AesKeySize xKeySize;
int aadStyle;
byte keyInit[WOLFSSL_XSECURE_AES_KEY_SIZE] ALIGN64;
#else
Xilinx port
2017-06-07 11:37:21 -06:00
XSecure_Aes xilAes;
XCsuDma dma;
Integrate Xilinx Versal * add Versal specific glue The same structure of an "XSecure client" is used throughout the API's, therefor define it once and re-use in all clients. * integrate Versal AES-GCM engine * integrate Versal SHA3-384 engine * add versal support to tests - There's no intermediate-hash API for Versal. * add specific test with large AAD Test only with `n*16 byte` wide chunks of AAD, so it gets processed in the hardware engine. * add specific test with misaligned AES-GCM arguments * integrate Versal RSA engine * disable failing RSA test-case when Xilinx Crypto is enabled * introduce define `WOLFSSL_XILINX_CRYPT_VERSAL` * integrate Versal TRNG engine * allow using Versal TRNG w/o wolfcrypt DRBG Versal TRNG already provides a HRNG mode which does the same as the wolfcrypt DRBG implementation. * add support for user-supplied nonce to Versal TRNG * add `wc_XsecureErrorToString()` to map PLM error codes to messages. * integrate Versal EcDSA engine * update tests to work with Versal EcDSA If deterministic K is enabled, the tests failed here since the Versal EcDSA engine doesn't support the SECP256R1 curve yet. * Xilinx crypto engines like aligned memory very much Make this a default choice, not via the user configuration. * add Xilinx-specific `WOLFSSL_MSG()` equivalent `WOLFSSL_XIL_MSG()` does the same as `WOLFSSL_MSG()` besides waiting for 1 second before printing to stdout, since the PLM maybe prints to same and outputs would be mixed up. This waiting can be disabled by defining `WOLFSSL_XIL_MSG_NO_SLEEP`. * add option to enable DPA CounterMeasures in AES-GCM crypto engine * add "command mode" to Xilinx bare-metal example * update Xilinx default user settings * add script to execute benchmarks * add scripts to create graphics * add Vitis 2022.1 example projects Signed-off-by: Steffen Jaeckel <jaeckel-floss@eyet-services.de>
2022-05-20 14:28:39 +02:00
word32 keyInit[8];
#endif
Xilinx port
2017-06-07 11:37:21 -06:00
word32 kup;
inital AES-CBC with af_alg progress on AES-GCM with AF_ALG and add SHA256 add aes-gcm test cases and finish logic of aes-gcm with AF_ALG formating of tabs and white space add files to dist adding ecb and ctr mode with af_alg make length of buffers for ctr be AES_BLOCK_SIZE formating and add support for sha256 copy/gethash sanity checks on arguments cast return values and valgrind tests make it easier to use sha256 with af_alg remove hard tabs add endif for after rebase
2018-07-18 17:26:25 -06:00
#endif
af_alg sha3 addition hardware acceleration with RSA add AES-GCM hardware acceleration refactor setting RSA IV flag check and set AF_ALG flags fix for default AF_ALG use set buffer alignment with Xilinx RSA macro guard after rebase use ALIGN64 clean up test cases
2018-08-24 10:24:53 -06:00
#if defined(WOLFSSL_AFALG) || defined(WOLFSSL_AFALG_XILINX_AES)
inital AES-CBC with af_alg progress on AES-GCM with AF_ALG and add SHA256 add aes-gcm test cases and finish logic of aes-gcm with AF_ALG formating of tabs and white space add files to dist adding ecb and ctr mode with af_alg make length of buffers for ctr be AES_BLOCK_SIZE formating and add support for sha256 copy/gethash sanity checks on arguments cast return values and valgrind tests make it easier to use sha256 with af_alg remove hard tabs add endif for after rebase
2018-07-18 17:26:25 -06:00
int alFd; /* server socket to bind to */
int rdFd; /* socket to read from */
struct msghdr msg;
int dir; /* flag for encrpyt or decrypt */
af_alg sha3 addition hardware acceleration with RSA add AES-GCM hardware acceleration refactor setting RSA IV flag check and set AF_ALG flags fix for default AF_ALG use set buffer alignment with Xilinx RSA macro guard after rebase use ALIGN64 clean up test cases
2018-08-24 10:24:53 -06:00
#ifdef WOLFSSL_AFALG_XILINX_AES
word32 msgBuf[CMSG_SPACE(4) + CMSG_SPACE(sizeof(struct af_alg_iv) +
GCM_NONCE_MID_SZ)];
#endif
crypto only sha256 cryptodev formating and refactoring update configure for devcrypto add AES algorithms to cyrptodev port increase structure size for compatibility AES with cryptodev add wc_devcrypto.h to install path
2018-08-17 09:46:16 -06:00
#endif
KCAPI: add support for using libkcapi for crypto (Linux Kernel) RSA, DH and ECC not testable as no Linux Kernel driver to use. ECC implementation is customer specific.
2021-08-19 11:25:59 +10:00
#if defined(WOLFSSL_KCAPI_AES)
struct kcapi_handle* handle;
int init;
#endif
Fix for TLS HMAC constant timing to ensure final is called for dummy operations. Added devCtx to AES for CryptoCb.
2019-02-06 13:32:10 -08:00
#if defined(WOLF_CRYPTO_CB) || (defined(WOLFSSL_DEVCRYPTO) && \
Various fixes for asynchronous mode: * Fix for AES CBC issue with IV (QAT only). * Fix for test cases with QAT. * Remove poorly placed debug for AES CFB.
2019-10-14 15:39:46 -07:00
(defined(WOLFSSL_DEVCRYPTO_AES) || defined(WOLFSSL_DEVCRYPTO_CBC))) || \
KCAPI: add support for using libkcapi for crypto (Linux Kernel) RSA, DH and ECC not testable as no Linux Kernel driver to use. ECC implementation is customer specific.
2021-08-19 11:25:59 +10:00
(defined(WOLFSSL_ASYNC_CRYPT) && defined(WC_ASYNC_ENABLE_AES)) || \
defined(WOLFSSL_KCAPI_AES)
Fix for TLS HMAC constant timing to ensure final is called for dummy operations. Added devCtx to AES for CryptoCb.
2019-02-06 13:32:10 -08:00
word32 devKey[AES_MAX_KEY_SIZE/WOLFSSL_BIT_SIZE/sizeof(word32)]; /* raw key */
Sync Octeon Sniffer Added back some changes from a dropped commit. 1. The Octeon README should be a stub. 2. Changed the license notice in the octeon sync files back to GPLv2. 3. Added a flag to Aes that needed a build guard around it. 4. Replaced the disable for sniffer session stats.
2019-10-14 16:55:24 -07:00
#ifdef HAVE_CAVIUM_OCTEON_SYNC
Synchronous Cavium OCTEON Support for Sniffer 1. Fixes for AES-GCM.
2019-10-07 17:33:51 -07:00
int keySet;
Fix for TLS HMAC constant timing to ensure final is called for dummy operations. Added devCtx to AES for CryptoCb.
2019-02-06 13:32:10 -08:00
#endif
#endif
minor adjustments and add README
2018-09-20 15:59:29 -06:00
#if defined(WOLFSSL_DEVCRYPTO) && \
(defined(WOLFSSL_DEVCRYPTO_AES) || defined(WOLFSSL_DEVCRYPTO_CBC))
crypto only sha256 cryptodev formating and refactoring update configure for devcrypto add AES algorithms to cyrptodev port increase structure size for compatibility AES with cryptodev add wc_devcrypto.h to install path
2018-08-17 09:46:16 -06:00
WC_CRYPTODEV ctx;
Added CryptoCell-310 support - SHA-256 - AES CBC - CryptoCell 310 RNG - RSA sign/verify and RSA key gen - RSA encrypt/decrypt, decrypt inline - ECC sign/verify/shared secret - ECC key import/export and key gen pairs - Hardware RNG and RTC of nRF52840 for benchmark timing source - readme doc
2019-03-27 20:44:38 -07:00
#endif
#if defined(WOLFSSL_CRYPTOCELL)
aes_context_t ctx;
Renesas TSIP Support merged from private repo removed unneccessary #include make line as 80 characters added simple tls server Disable TLS-linked API use when being SERVER SIDE, still use certificate verify API Added utility tools, generate signature arrays etc added vars to store tsip hmac keys fix build failure when disabling dc_printf
2019-08-19 17:32:22 +09:00
#endif
#if defined(WOLFSSL_RENESAS_TSIP_TLS) && \
defined(WOLFSSL_RENESAS_TSIP_TLS_AES_CRYPT)
TSIP_AES_CTX ctx;
Added support for NXP DCP (i.MX-RT series)
2020-09-18 11:46:08 +02:00
#endif
Add SCE RSA Crypt Only feature - RSA SSA 1024/2048 Sign/verify - RSA ES 1024/2048 Enc/Dec - Unit test for these RSA operation
2023-04-14 06:10:35 +09:00
#if defined(WOLFSSL_RENESAS_SCEPROTECT) ||\
defined(WOLFSSL_RENESAS_SCEPROTECT_CRYPTONLY)
support Renesas RA SCE protect mode on RA6M4 evaluation board
2021-10-30 20:21:21 +09:00
SCE_AES_CTX ctx;
#endif
Added support for NXP DCP (i.MX-RT series)
2020-09-18 11:46:08 +02:00
#if defined(WOLFSSL_IMXRT_DCP)
dcp_handle_t handle;
SiLbs: SHA and AES-{GCM,CBC} hardware acceleration using se_manager
2020-11-06 12:20:03 -08:00
#endif
#if defined(WOLFSSL_SILABS_SE_ACCEL)
silabs_aes_t ctx;
psa: support AES
2021-12-22 17:41:01 +01:00
#endif
Support for Analog Devices MAXQ1080 and MAXQ1065
2022-09-21 03:21:33 -04:00
#ifdef WOLFSSL_MAXQ10XX_CRYPTO
maxq_aes_t maxq_ctx;
#endif
psa: support AES
2021-12-22 17:41:01 +01:00
#if defined(WOLFSSL_HAVE_PSA) && !defined(WOLFSSL_PSA_NO_AES)
psa_key_id_t key_id;
psa_cipher_operation_t psa_ctx;
int ctx_initialized;
int key_need_importing;
add AES-XTS mode --enable-xts
2017-08-30 17:50:15 -06:00
#endif
big endian testing and packing Aes struct
2017-09-01 15:32:55 -06:00
void* heap; /* memory hint to use */
AES GCM: implement streaming Updated EVP layer to use streaming API when enabled. Assembly for x64 updated to include streaming.
2021-03-04 16:01:45 +10:00
#ifdef WOLFSSL_AESGCM_STREAM
fixup
2021-03-17 11:31:03 +10:00
#if !defined(WOLFSSL_SMALL_STACK) || defined(WOLFSSL_AESNI)
ALIGN16 byte streamData[5 * AES_BLOCK_SIZE];
#else
byte* streamData;
#endif
AES GCM: implement streaming Updated EVP layer to use streaming API when enabled. Assembly for x64 updated to include streaming.
2021-03-04 16:01:45 +10:00
word32 aSz;
word32 cSz;
byte over;
byte aOver;
byte cOver;
byte gcmKeySet:1;
byte nonceSet:1;
byte ctrSet:1;
#endif
macro guards for re-defines
2019-09-09 19:24:45 -06:00
};
#ifndef WC_AES_TYPE_DEFINED
typedef struct Aes Aes;
#define WC_AES_TYPE_DEFINED
#endif
change of some header file macros
2015-01-05 14:59:48 -07:00
add XtsAes structure and change XTS-AES API
2017-09-08 16:00:33 -06:00
#ifdef WOLFSSL_AES_XTS
typedef struct XtsAes {
Aes aes;
Aes tweak;
} XtsAes;
#endif
change of some header file macros
2015-01-05 14:59:48 -07:00
#ifdef HAVE_AESGCM
typedef struct Gmac {
Aes aes;
} Gmac;
#endif /* HAVE_AESGCM */
debugging on name change
2015-01-01 07:33:07 -07:00
#endif /* HAVE_FIPS */
Intel QuickAssist (QAT) support and async enhancements/fixes: * Adds ./configure "--with-intelqa=../QAT1.6”, port files, memory management and README.md (see wolfcrypt/src/port/intel/). * Added Intel QAT support for RSA public/private (CRT/non-CRT), AES CBC/GCM, ECDH/ECDSA, DH, DES3, SHA, SHA224, SHA256, SHA384, SHA512, MD5 and HMAC. * wolfSSL async enabled all client and server: PKI, Encrypt/Decrypt, Hashing/HMAC and Certificate Sign/Verify. * wolfSSL async support in functions: Encrypt, Decrypt, VerifyMAC, BuildMessage, ConfirmSignature, DoCertificate, ParseCertRelative, and MakeSignature. * wolfCrypt test and benchmark async support added for all HW acceleration. * wolfCrypt benchmark multi-threading support. * Added QuickAssist memory overrides for XMALLOC, XFREE and XREALLOC. XREALLOC determines if existing pointer needs reallocated for NUMA. * Refactor to make sure “heap” is available for async dev init. * Added async support for all examples for connect, accept, read and write. * Added new WC_BIGINT (in wolfmath.c) for async hardware support. * Added async simulator tests for DES3 CBC, AES CBC/GCM. * Added QAT standalone build for unit testing. * Added int return code to SHA and MD5 functions. * Refactor of the async stack variable handling, so async operations have generic args buffer area and cleanup function pointer. * Combined duplicate code for async push/pop handling. * Refactor internal.c to add AllocKey / FreeKey. * Refactor of hash init/free in TLS to use InitHashes and FreeHashes. * Refactor of the async event->context to use WOLF_EVENT_TYPE_ASYNC_WOLFSSL for WOLFSSL* and WOLF_EVENT_TYPE_ASYNC_WOLFCRYPT for WC_ASYNC_DEV*. * Suppress error message for WC_PENDING_E. * Implemented "wolfSSL_EVP_MD_CTX_init" to do memset. * Cleanup of the openssl compat CTX sizes when async is enabled. * Cleanup of AES, DES3, DH, SHA, MD5, DES3, DH, HMAC, MD5 for consistency and readability. * Cleanup of the OPAQUE_LEN. * Cleanup to use ENCRYPT_LEN instead of sizeof(ssl->arrays.preMasterSecret). * Changed ssl->arrays.preMasterSecret to use XMALLOC (accelerates HW operations) * Reduce verbosity with debug enabled for "GetMyVersion", "wolfSSL Using RSA OAEP padding" and "wolfSSL Using RSA PKCSV15 padding". * Updated RSA un-padding error message so its different than one above it for better debugging. * Added QAT async enables for each algorithm. * Refactor of the async init to use _ex. * Added WC_ASYNC_THRESH_NONE to allow bypass of the async thresholds for testing. * Reformatted the benchmark results: PKI: "RSA 2048 private HW 18522 ops took 1.003 sec, avg 0.054 ms, 18467.763 ops/sec" Crypto/Hashing: SHA-256 SW 350 megs took 1.009 seconds, 346.946 MB/s Cycles per byte = 9.87 * Added min execution time for all benchmarks. * Moved wc_*GetHash and wc_*RestorePos to appropriate files so use of isCopy flag is local. * Fix for ECC sign status sometimes being invalid due to uninitialized ECC digest in benchmark. * Added new DECLARE_VAR/FREE_VAR and DECLARE_ARRAY/FREE_ARRAY macros for helping setup test/benchmark variables to accelerate async. * Added NO_SW_BENCH option to only run HW bench. * Added support for PRNG to use hardware SHA256 if _wc devId provided. * Fix to prevent curve tests from running against wrong curve sizes. Changed wc_ecc_set_curve to match on exact size. * Added the wc_*GetHash calls to the wolfCrypt tests. * Added async hardware start/stop to wolfSSL init/cleanup. * Refactor to add wc_*Copy for hashing context (for async), which replaces wc_*RestorePos. * Fixes for building with TI hashing (including: SHA224, missing new API’s and building with dummy build for non hw testing). Note: We need to add build test for this `./configure CFLAGS="-DWOLFSSL_TI_HASH -DTI_DUMMY_BUILD”`. * Added arg checks on wc_*GetHash and wc_*Copy. * Cleanup of the BuildMD5, BuildSHA, BuildMD5_CertVerify and BuildSHA_CertVerify functions. * Added new ./configure --enable-asyncthreads, to allow enable/disable of the async threading support. If --enable-asynccrypt set this will be enabled by default if pthread is supported. Allows multi-threaded benchmarks with async simulator. * Added checks for all hashing to verify valid ->buffLen. * Fix for SHA512 scan-build warning about un-initialized “W_X”. * Fix for valgrind un-initialized use of buffer in AllocDer (der->buffer) and BuildTlsFinished handshake_hash. * Refactor of the benchmarking to use common function for start, check and finish of the stats. * Fixed issue with ECC cache loading in multi-threading. * Fix bug with AESNI not aligned code that assumes XMALLOC is 16-byte aligned. * Added new WC_ASYNC_NO_… options to allow disabling of individual async algorithms. New defines are: WC_ASYNC_NO_CRYPT, WC_ASYNC_NO_PKI and WC_ASYNC_NO_HASH. Additionally each algorithm has a WC_ASYNC_NO_[ALGO] define. * Added “wolfSSL_GetAllocators” API and fixed the wolfCrypt memcb_test so it restores callback pointers after test is complete (fixes issue with using custom allocators and test breaking it).
2017-04-07 15:46:32 -07:00
/* Authenticate cipher function prototypes */
typedef int (*wc_AesAuthEncryptFunc)(Aes* aes, byte* out,
const byte* in, word32 sz,
const byte* iv, word32 ivSz,
byte* authTag, word32 authTagSz,
const byte* authIn, word32 authInSz);
typedef int (*wc_AesAuthDecryptFunc)(Aes* aes, byte* out,
const byte* in, word32 sz,
const byte* iv, word32 ivSz,
const byte* authTag, word32 authTagSz,
const byte* authIn, word32 authInSz);
/* AES-CBC */
Add support for OpenSSH ssh-keygen tools refactor existing code
2015-07-22 14:18:07 +02:00
WOLFSSL_API int wc_AesSetKey(Aes* aes, const byte* key, word32 len,
const byte* iv, int dir);
WOLFSSL_API int wc_AesSetIV(Aes* aes, const byte* iv);
compile out aescbc function declarations when off
2018-11-15 14:08:40 -07:00
#ifdef HAVE_AES_CBC
Add support for OpenSSH ssh-keygen tools refactor existing code
2015-07-22 14:18:07 +02:00
WOLFSSL_API int wc_AesCbcEncrypt(Aes* aes, byte* out,
const byte* in, word32 sz);
WOLFSSL_API int wc_AesCbcDecrypt(Aes* aes, byte* out,
const byte* in, word32 sz);
compile out aescbc function declarations when off
2018-11-15 14:08:40 -07:00
#endif
add EVP_Cipher with EVP_aes_256_ecb()
2016-10-13 22:10:50 +09:00
add --enable-aescfb, add comments, include of stdio with snprintf
2018-01-12 11:05:43 -07:00
#ifdef WOLFSSL_AES_CFB
add CFB mode for AES
2017-03-03 13:20:46 -07:00
WOLFSSL_API int wc_AesCfbEncrypt(Aes* aes, byte* out,
const byte* in, word32 sz);
initial cfb1/cfb8 support added
2020-01-29 09:59:51 -07:00
WOLFSSL_API int wc_AesCfb1Encrypt(Aes* aes, byte* out,
const byte* in, word32 sz);
WOLFSSL_API int wc_AesCfb8Encrypt(Aes* aes, byte* out,
const byte* in, word32 sz);
add CFB mode for AES
2017-03-03 13:20:46 -07:00
#ifdef HAVE_AES_DECRYPT
WOLFSSL_API int wc_AesCfbDecrypt(Aes* aes, byte* out,
const byte* in, word32 sz);
initial cfb1/cfb8 support added
2020-01-29 09:59:51 -07:00
WOLFSSL_API int wc_AesCfb1Decrypt(Aes* aes, byte* out,
const byte* in, word32 sz);
WOLFSSL_API int wc_AesCfb8Decrypt(Aes* aes, byte* out,
const byte* in, word32 sz);
add CFB mode for AES
2017-03-03 13:20:46 -07:00
#endif /* HAVE_AES_DECRYPT */
add --enable-aescfb, add comments, include of stdio with snprintf
2018-01-12 11:05:43 -07:00
#endif /* WOLFSSL_AES_CFB */
add CFB mode for AES
2017-03-03 13:20:46 -07:00
add AES-OFB mode
2020-01-21 15:51:12 -08:00
#ifdef WOLFSSL_AES_OFB
WOLFSSL_API int wc_AesOfbEncrypt(Aes* aes, byte* out,
const byte* in, word32 sz);
#ifdef HAVE_AES_DECRYPT
WOLFSSL_API int wc_AesOfbDecrypt(Aes* aes, byte* out,
const byte* in, word32 sz);
#endif /* HAVE_AES_DECRYPT */
#endif /* WOLFSSL_AES_OFB */
add EVP_Cipher with EVP_aes_256_ecb()
2016-10-13 22:10:50 +09:00
#ifdef HAVE_AES_ECB
WOLFSSL_API int wc_AesEcbEncrypt(Aes* aes, byte* out,
const byte* in, word32 sz);
WOLFSSL_API int wc_AesEcbDecrypt(Aes* aes, byte* out,
const byte* in, word32 sz);
#endif
change of some header file macros
2015-01-05 14:59:48 -07:00
name change progress
2014-12-17 09:58:11 -07:00
/* AES-CTR */
wolfcrypt api testwolfcrypt update
2014-12-29 14:35:46 -07:00
#ifdef WOLFSSL_AES_COUNTER
Aes unit test functions.
2017-05-22 22:10:49 -06:00
WOLFSSL_API int wc_AesCtrEncrypt(Aes* aes, byte* out,
Add support for OpenSSH ssh-keygen tools refactor existing code
2015-07-22 14:18:07 +02:00
const byte* in, word32 sz);
name change progress
2014-12-17 09:58:11 -07:00
#endif
/* AES-DIRECT */
wolfcrypt api testwolfcrypt update
2014-12-29 14:35:46 -07:00
#if defined(WOLFSSL_AES_DIRECT)
AES: harmonize wc_Aes{Encrypt,Decrypt} and wc_Aes{Encrypt,Decrypt}Direct implementations to return int; add return values to all static void functions in aes.c that can fail; add WARN_UNUSED_RESULT to all static functions in aes.c with return values; implement missing error percolation around AES block cipher implementations; bump FIPS version for v5-ready and v5-dev to 5.3 (v5-RC12 is 5.2).
2022-01-21 14:48:12 -06:00
#if defined(HAVE_FIPS) && \
(!defined(HAVE_FIPS_VERSION) || (HAVE_FIPS_VERSION < 2))
header files for aes, arc4, camellia, chacha, dh, and dsa
2014-12-18 11:44:48 -07:00
WOLFSSL_API void wc_AesEncryptDirect(Aes* aes, byte* out, const byte* in);
WOLFSSL_API void wc_AesDecryptDirect(Aes* aes, byte* out, const byte* in);
AES: harmonize wc_Aes{Encrypt,Decrypt} and wc_Aes{Encrypt,Decrypt}Direct implementations to return int; add return values to all static void functions in aes.c that can fail; add WARN_UNUSED_RESULT to all static functions in aes.c with return values; implement missing error percolation around AES block cipher implementations; bump FIPS version for v5-ready and v5-dev to 5.3 (v5-RC12 is 5.2).
2022-01-21 14:48:12 -06:00
WOLFSSL_API int wc_AesSetKeyDirect(Aes* aes, const byte* key, word32 len,
name change progress
2014-12-17 09:58:11 -07:00
const byte* iv, int dir);
AES: harmonize wc_Aes{Encrypt,Decrypt} and wc_Aes{Encrypt,Decrypt}Direct implementations to return int; add return values to all static void functions in aes.c that can fail; add WARN_UNUSED_RESULT to all static functions in aes.c with return values; implement missing error percolation around AES block cipher implementations; bump FIPS version for v5-ready and v5-dev to 5.3 (v5-RC12 is 5.2).
2022-01-21 14:48:12 -06:00
#elif defined(BUILDING_WOLFSSL)
AES: fix linebreaks in newly overlong lines in aes.c and aes.h; add missing return code in armv8-aes.c wc_AesDecryptDirect(); add missing RESTORE_VECTOR_REGISTERS() in software wc_AesXtsEncrypt() (all pursuant to peer review in #4785 from Sean).
2022-01-24 12:32:25 -06:00
WOLFSSL_API WARN_UNUSED_RESULT int wc_AesEncryptDirect(Aes* aes, byte* out,
const byte* in);
WOLFSSL_API WARN_UNUSED_RESULT int wc_AesDecryptDirect(Aes* aes, byte* out,
const byte* in);
WOLFSSL_API WARN_UNUSED_RESULT int wc_AesSetKeyDirect(Aes* aes,
const byte* key,
word32 len,
AES: harmonize wc_Aes{Encrypt,Decrypt} and wc_Aes{Encrypt,Decrypt}Direct implementations to return int; add return values to all static void functions in aes.c that can fail; add WARN_UNUSED_RESULT to all static functions in aes.c with return values; implement missing error percolation around AES block cipher implementations; bump FIPS version for v5-ready and v5-dev to 5.3 (v5-RC12 is 5.2).
2022-01-21 14:48:12 -06:00
const byte* iv, int dir);
#else
WOLFSSL_API int wc_AesEncryptDirect(Aes* aes, byte* out, const byte* in);
WOLFSSL_API int wc_AesDecryptDirect(Aes* aes, byte* out, const byte* in);
WOLFSSL_API int wc_AesSetKeyDirect(Aes* aes, const byte* key, word32 len,
const byte* iv, int dir);
#endif
name change progress
2014-12-17 09:58:11 -07:00
#endif
FIPS Revalidation 1. Add new APIs for AES-GCM so it can manage the IV per SP 800-38D. 2. Add new APIs for AES-CCM so it can manage the IV, similar to the behavior in AES-GCM. 3. Add new APIs for GMAC that use the new AES-GCM APIs.
2018-03-15 17:05:30 -07:00
name change progress
2014-12-17 09:58:11 -07:00
#ifdef HAVE_AESGCM
Xilinx port
2017-06-07 11:37:21 -06:00
#ifdef WOLFSSL_XILINX_CRYPT
WOLFSSL_API int wc_AesGcmSetKey_ex(Aes* aes, const byte* key, word32 len,
word32 kup);
af_alg sha3 addition hardware acceleration with RSA add AES-GCM hardware acceleration refactor setting RSA IV flag check and set AF_ALG flags fix for default AF_ALG use set buffer alignment with Xilinx RSA macro guard after rebase use ALIGN64 clean up test cases
2018-08-24 10:24:53 -06:00
#elif defined(WOLFSSL_AFALG_XILINX_AES)
WOLFSSL_LOCAL int wc_AesGcmSetKey_ex(Aes* aes, const byte* key, word32 len,
word32 kup);
Xilinx port
2017-06-07 11:37:21 -06:00
#endif
header files for aes, arc4, camellia, chacha, dh, and dsa
2014-12-18 11:44:48 -07:00
WOLFSSL_API int wc_AesGcmSetKey(Aes* aes, const byte* key, word32 len);
Add support for OpenSSH ssh-keygen tools refactor existing code
2015-07-22 14:18:07 +02:00
WOLFSSL_API int wc_AesGcmEncrypt(Aes* aes, byte* out,
const byte* in, word32 sz,
const byte* iv, word32 ivSz,
byte* authTag, word32 authTagSz,
const byte* authIn, word32 authInSz);
WOLFSSL_API int wc_AesGcmDecrypt(Aes* aes, byte* out,
const byte* in, word32 sz,
const byte* iv, word32 ivSz,
const byte* authTag, word32 authTagSz,
const byte* authIn, word32 authInSz);
AES GCM: implement streaming Updated EVP layer to use streaming API when enabled. Assembly for x64 updated to include streaming.
2021-03-04 16:01:45 +10:00
#ifdef WOLFSSL_AESGCM_STREAM
WOLFSSL_API int wc_AesGcmInit(Aes* aes, const byte* key, word32 len,
const byte* iv, word32 ivSz);
fixup
2021-03-17 11:31:03 +10:00
WOLFSSL_API int wc_AesGcmEncryptInit(Aes* aes, const byte* key, word32 len,
const byte* iv, word32 ivSz);
AES GCM: implement streaming Updated EVP layer to use streaming API when enabled. Assembly for x64 updated to include streaming.
2021-03-04 16:01:45 +10:00
WOLFSSL_API int wc_AesGcmEncryptInit_ex(Aes* aes, const byte* key, word32 len,
byte* ivOut, word32 ivOutSz);
WOLFSSL_API int wc_AesGcmEncryptUpdate(Aes* aes, byte* out, const byte* in,
word32 sz, const byte* authIn, word32 authInSz);
WOLFSSL_API int wc_AesGcmEncryptFinal(Aes* aes, byte* authTag,
word32 authTagSz);
fixup
2021-03-17 11:31:03 +10:00
WOLFSSL_API int wc_AesGcmDecryptInit(Aes* aes, const byte* key, word32 len,
const byte* iv, word32 ivSz);
AES GCM: implement streaming Updated EVP layer to use streaming API when enabled. Assembly for x64 updated to include streaming.
2021-03-04 16:01:45 +10:00
WOLFSSL_API int wc_AesGcmDecryptUpdate(Aes* aes, byte* out, const byte* in,
word32 sz, const byte* authIn, word32 authInSz);
WOLFSSL_API int wc_AesGcmDecryptFinal(Aes* aes, const byte* authTag,
word32 authTagSz);
#endif
name change progress
2014-12-17 09:58:11 -07:00
Test Fixes 1. AesGcmEncrypt_ex requires the RNG, remove function if RNG disabled. 2. Fix a couple function name changes in the example server. 3. Removed the old FIPS wrapping added to dh.h, was redundant. 4. Move include of random.h in the aes.h file. 5. Fix where ecc.c was being left out of old FIPS builds. 6. Exclude the AES-GCM internal IV test case when building without the RNG. 7. Fix api test where AES-GCM Encrypt was called with a too-long IV in old FIPS mode. Non-FIPS and new FIPS are allowed longer IVs.
2018-03-06 16:45:44 -08:00
#ifndef WC_NO_RNG
FIPS Revalidation 1. Bug fixes to AES-GCM. Separated out the internal and external IV set functions.
2018-03-20 13:40:44 -07:00
WOLFSSL_API int wc_AesGcmSetExtIV(Aes* aes, const byte* iv, word32 ivSz);
WOLFSSL_API int wc_AesGcmSetIV(Aes* aes, word32 ivSz,
FIPS Revalidation 1. Add new APIs for AES-GCM so it can manage the IV per SP 800-38D. 2. Add new APIs for AES-CCM so it can manage the IV, similar to the behavior in AES-GCM. 3. Add new APIs for GMAC that use the new AES-GCM APIs.
2018-03-15 17:05:30 -07:00
const byte* ivFixed, word32 ivFixedSz,
WC_RNG* rng);
FIPS Revalidation 1. Added new AES-GCM Encrypt API for FIPS where the IV is generated internally. 2. Fix the AES-NI guard flags so it can be used when FIPS enabled.
2018-02-05 13:50:30 -08:00
WOLFSSL_API int wc_AesGcmEncrypt_ex(Aes* aes, byte* out,
FIPS Revalidation 1. Add new APIs for AES-GCM so it can manage the IV per SP 800-38D. 2. Add new APIs for AES-CCM so it can manage the IV, similar to the behavior in AES-GCM. 3. Add new APIs for GMAC that use the new AES-GCM APIs.
2018-03-15 17:05:30 -07:00
const byte* in, word32 sz,
byte* ivOut, word32 ivOutSz,
byte* authTag, word32 authTagSz,
const byte* authIn, word32 authInSz);
Test Fixes 1. AesGcmEncrypt_ex requires the RNG, remove function if RNG disabled. 2. Fix a couple function name changes in the example server. 3. Removed the old FIPS wrapping added to dh.h, was redundant. 4. Move include of random.h in the aes.h file. 5. Fix where ecc.c was being left out of old FIPS builds. 6. Exclude the AES-GCM internal IV test case when building without the RNG. 7. Fix api test where AES-GCM Encrypt was called with a too-long IV in old FIPS mode. Non-FIPS and new FIPS are allowed longer IVs.
2018-03-06 16:45:44 -08:00
#endif /* WC_NO_RNG */
FIPS Revalidation 1. Added new AES-GCM Encrypt API for FIPS where the IV is generated internally. 2. Fix the AES-NI guard flags so it can be used when FIPS enabled.
2018-02-05 13:50:30 -08:00
header files for aes, arc4, camellia, chacha, dh, and dsa
2014-12-18 11:44:48 -07:00
WOLFSSL_API int wc_GmacSetKey(Gmac* gmac, const byte* key, word32 len);
WOLFSSL_API int wc_GmacUpdate(Gmac* gmac, const byte* iv, word32 ivSz,
Add support for OpenSSH ssh-keygen tools refactor existing code
2015-07-22 14:18:07 +02:00
const byte* authIn, word32 authInSz,
byte* authTag, word32 authTagSz);
FIPS Revalidation 1. Add new APIs for AES-GCM so it can manage the IV per SP 800-38D. 2. Add new APIs for AES-CCM so it can manage the IV, similar to the behavior in AES-GCM. 3. Add new APIs for GMAC that use the new AES-GCM APIs.
2018-03-15 17:05:30 -07:00
#ifndef WC_NO_RNG
WOLFSSL_API int wc_Gmac(const byte* key, word32 keySz, byte* iv, word32 ivSz,
const byte* authIn, word32 authInSz,
byte* authTag, word32 authTagSz, WC_RNG* rng);
WOLFSSL_API int wc_GmacVerify(const byte* key, word32 keySz,
const byte* iv, word32 ivSz,
const byte* authIn, word32 authInSz,
const byte* authTag, word32 authTagSz);
#endif /* WC_NO_RNG */
name change progress
2014-12-17 09:58:11 -07:00
#endif /* HAVE_AESGCM */
#ifdef HAVE_AESCCM
move AES-CCM tag check into a local function
2020-04-28 14:46:06 -06:00
WOLFSSL_LOCAL int wc_AesCcmCheckTagSize(int sz);
static analysis : Fix warnings with wc_AesCcmSetKey
2016-10-12 10:02:53 -06:00
WOLFSSL_API int wc_AesCcmSetKey(Aes* aes, const byte* key, word32 keySz);
return value on AES CCM encrypt
2015-10-02 11:40:47 -06:00
WOLFSSL_API int wc_AesCcmEncrypt(Aes* aes, byte* out,
Add support for OpenSSH ssh-keygen tools refactor existing code
2015-07-22 14:18:07 +02:00
const byte* in, word32 inSz,
const byte* nonce, word32 nonceSz,
byte* authTag, word32 authTagSz,
const byte* authIn, word32 authInSz);
WOLFSSL_API int wc_AesCcmDecrypt(Aes* aes, byte* out,
const byte* in, word32 inSz,
const byte* nonce, word32 nonceSz,
const byte* authTag, word32 authTagSz,
const byte* authIn, word32 authInSz);
FIPS Revalidation 1. Add new APIs for AES-GCM so it can manage the IV per SP 800-38D. 2. Add new APIs for AES-CCM so it can manage the IV, similar to the behavior in AES-GCM. 3. Add new APIs for GMAC that use the new AES-GCM APIs.
2018-03-15 17:05:30 -07:00
WOLFSSL_API int wc_AesCcmSetNonce(Aes* aes,
const byte* nonce, word32 nonceSz);
WOLFSSL_API int wc_AesCcmEncrypt_ex(Aes* aes, byte* out,
const byte* in, word32 sz,
byte* ivOut, word32 ivOutSz,
byte* authTag, word32 authTagSz,
const byte* authIn, word32 authInSz);
name change progress
2014-12-17 09:58:11 -07:00
#endif /* HAVE_AESCCM */
add AES key wrap support, RFC 3394
2016-12-05 15:38:42 -07:00
#ifdef HAVE_AES_KEYWRAP
WOLFSSL_API int wc_AesKeyWrap(const byte* key, word32 keySz,
const byte* in, word32 inSz,
byte* out, word32 outSz,
const byte* iv);
Implement `AES_wrap_key` and `AES_unwrap_key` Add `wc_AesKeyWrap_ex` and `wc_AesKeyUnWrap_ex` API to accept an `Aes` object to use for the AES operations
2021-02-25 20:01:51 +01:00
WOLFSSL_API int wc_AesKeyWrap_ex(Aes *aes,
const byte* in, word32 inSz,
byte* out, word32 outSz,
const byte* iv);
add AES key wrap support, RFC 3394
2016-12-05 15:38:42 -07:00
WOLFSSL_API int wc_AesKeyUnWrap(const byte* key, word32 keySz,
const byte* in, word32 inSz,
byte* out, word32 outSz,
const byte* iv);
Implement `AES_wrap_key` and `AES_unwrap_key` Add `wc_AesKeyWrap_ex` and `wc_AesKeyUnWrap_ex` API to accept an `Aes` object to use for the AES operations
2021-02-25 20:01:51 +01:00
WOLFSSL_API int wc_AesKeyUnWrap_ex(Aes *aes,
const byte* in, word32 inSz,
byte* out, word32 outSz,
const byte* iv);
add AES key wrap support, RFC 3394
2016-12-05 15:38:42 -07:00
#endif /* HAVE_AES_KEYWRAP */
name change progress
2014-12-17 09:58:11 -07:00
add AES-XTS mode --enable-xts
2017-08-30 17:50:15 -06:00
#ifdef WOLFSSL_AES_XTS
add comments for AES-XTS functions to aes.h
2017-08-30 13:51:17 -06:00
add XtsAes structure and change XTS-AES API
2017-09-08 16:00:33 -06:00
WOLFSSL_API int wc_AesXtsSetKey(XtsAes* aes, const byte* key,
add comments for AES-XTS functions to aes.h
2017-08-30 13:51:17 -06:00
word32 len, int dir, void* heap, int devId);
add XtsAes structure and change XTS-AES API
2017-09-08 16:00:33 -06:00
WOLFSSL_API int wc_AesXtsEncryptSector(XtsAes* aes, byte* out,
add comments for AES-XTS functions to aes.h
2017-08-30 13:51:17 -06:00
const byte* in, word32 sz, word64 sector);
add XtsAes structure and change XTS-AES API
2017-09-08 16:00:33 -06:00
WOLFSSL_API int wc_AesXtsDecryptSector(XtsAes* aes, byte* out,
add comments for AES-XTS functions to aes.h
2017-08-30 13:51:17 -06:00
const byte* in, word32 sz, word64 sector);
add XtsAes structure and change XTS-AES API
2017-09-08 16:00:33 -06:00
WOLFSSL_API int wc_AesXtsEncrypt(XtsAes* aes, byte* out,
add comments for AES-XTS functions to aes.h
2017-08-30 13:51:17 -06:00
const byte* in, word32 sz, const byte* i, word32 iSz);
add XtsAes structure and change XTS-AES API
2017-09-08 16:00:33 -06:00
WOLFSSL_API int wc_AesXtsDecrypt(XtsAes* aes, byte* out,
add AES-XTS mode --enable-xts
2017-08-30 17:50:15 -06:00
const byte* in, word32 sz, const byte* i, word32 iSz);
add XtsAes structure and change XTS-AES API
2017-09-08 16:00:33 -06:00
WOLFSSL_API int wc_AesXtsFree(XtsAes* aes);
add AES-XTS mode --enable-xts
2017-08-30 17:50:15 -06:00
#endif
Fixes to include path for NXP ksdk_port. Fixes for time USER/OVERRIDES so their #ifdef's are checked first. Fix to initialize LTC via new "ksdk_port_init" function. Cleanup of the ksdk_port.c for formatting, macros, statics and line length. Cleanup of the AES code for key size. Cleanup of the wolfCrypt sha.c for readability. Added support for the KSDK bare metal drivers to the IDE Rowley CrossWorks example. Updated the settings.h to allow for overrides in Freescale section. Updated README with info for using LTC.
2016-06-15 14:34:59 -07:00
WOLFSSL_API int wc_AesGetKeySize(Aes* aes, word32* keySize);
Support for PKCS#11 Support for RSA, ECDSA and AES-GCM operations.
2018-09-12 08:56:59 +10:00
WOLFSSL_API int wc_AesInit(Aes* aes, void* heap, int devId);
Improve logic around private key id/label. Adds `WOLF_PRIVATE_KEY_ID`.
2022-03-17 14:12:13 -07:00
#ifdef WOLF_PRIVATE_KEY_ID
Support for PKCS#11 Support for RSA, ECDSA and AES-GCM operations.
2018-09-12 08:56:59 +10:00
WOLFSSL_API int wc_AesInit_Id(Aes* aes, unsigned char* id, int len, void* heap,
int devId);
PKCS#11: Label fixes and add support for checking private key Check private key matches the public key passed in. Need to use a new API to pass in the token to use to perform PKCS #11 operations with.
2020-11-02 17:13:10 +10:00
WOLFSSL_API int wc_AesInit_Label(Aes* aes, const char* label, void* heap,
int devId);
Support for PKCS#11 Support for RSA, ECDSA and AES-GCM operations.
2018-09-12 08:56:59 +10:00
#endif
WOLFSSL_API void wc_AesFree(Aes* aes);
name change progress
2014-12-17 09:58:11 -07:00
Add AES-SIV (RFC 5297). This commit adds functions to encrypt and decrypt data using AES in SIV mode, as described in RFC 5297. This was added in the process of porting chrony to wolfSSL. chrony is an NTP implementation that can use NTS (network time security), which requires AES-SIV.
2022-01-14 16:52:03 -08:00
#ifdef WOLFSSL_AES_SIV
WOLFSSL_API
int wc_AesSivEncrypt(const byte* key, word32 keySz, const byte* assoc,
word32 assocSz, const byte* nonce, word32 nonceSz,
const byte* in, word32 inSz, byte* siv, byte* out);
WOLFSSL_API
int wc_AesSivDecrypt(const byte* key, word32 keySz, const byte* assoc,
word32 assocSz, const byte* nonce, word32 nonceSz,
const byte* in, word32 inSz, byte* siv, byte* out);
#endif
name change progress
2014-12-17 09:58:11 -07:00
#ifdef __cplusplus
} /* extern "C" */
#endif
#endif /* NO_AES */
fix github issue #20, allow user to use settings.h at app level as well for building wolfssl. verified types.h (which includes settings.h) or settings.h is included b4 definition checks at wolfssl and wolcrypt header levels
2015-02-26 12:29:15 -08:00
#endif /* WOLF_CRYPT_AES_H */
Copy Permalink