2013-11-28 18:12:40 +01:00
|
|
|
/*
|
|
|
|
* Copyright (C) 2013 Freie Universität Berlin, Computer Systems & Telematics
|
|
|
|
*
|
2014-08-23 15:43:13 +02:00
|
|
|
* This file is subject to the terms and conditions of the GNU Lesser
|
|
|
|
* General Public License v2.1. See the file LICENSE in the top level
|
|
|
|
* directory for more details.
|
2013-11-28 18:12:40 +01:00
|
|
|
*/
|
|
|
|
|
|
|
|
/**
|
|
|
|
* @ingroup sys_crypto
|
|
|
|
* @{
|
|
|
|
*
|
2015-05-22 07:34:41 +02:00
|
|
|
* @file
|
2013-11-28 18:12:40 +01:00
|
|
|
* @brief Headers for the packet encryption class. They are used to encrypt single packets.
|
|
|
|
*
|
|
|
|
* @author Freie Universitaet Berlin, Computer Systems & Telematics
|
|
|
|
* @author Nicolai Schmittberger <nicolai.schmittberger@fu-berlin.de>
|
|
|
|
* @author Zakaria Kasmi <zkasmi@inf.fu-berlin.de>
|
|
|
|
* @author Mark Essien <markessien@gmail.com>
|
|
|
|
*/
|
|
|
|
|
2017-01-18 13:00:05 +01:00
|
|
|
#ifndef CRYPTO_CIPHERS_H
|
|
|
|
#define CRYPTO_CIPHERS_H
|
2013-11-28 18:12:40 +01:00
|
|
|
|
2015-04-02 08:56:18 +02:00
|
|
|
#include <stdint.h>
|
2021-04-14 22:18:59 +02:00
|
|
|
#include "kernel_defines.h"
|
2015-04-02 08:56:18 +02:00
|
|
|
|
2014-10-10 11:51:11 +02:00
|
|
|
#ifdef __cplusplus
|
|
|
|
extern "C" {
|
|
|
|
#endif
|
|
|
|
|
2013-11-28 18:12:40 +01:00
|
|
|
/* Shared header file for all cipher algorithms */
|
|
|
|
|
2021-04-14 22:18:59 +02:00
|
|
|
/** @brief the length of keys in bytes
|
|
|
|
*
|
|
|
|
* As of now AES is the only cipher which supports different key sizes.
|
|
|
|
* Here we optimize the CIPHERS_MAX_KEY_SIZE to always have the smallest possible
|
|
|
|
* value based on which AES key sizes are used.
|
|
|
|
*/
|
|
|
|
#if IS_USED(MODULE_CRYPTO_AES_256)
|
|
|
|
#define CIPHERS_MAX_KEY_SIZE 32
|
|
|
|
#elif IS_USED(MODULE_CRYPTO_AES_192)
|
|
|
|
#define CIPHERS_MAX_KEY_SIZE 24
|
|
|
|
#else
|
|
|
|
#define CIPHERS_MAX_KEY_SIZE 16
|
|
|
|
#endif
|
2015-04-02 08:56:18 +02:00
|
|
|
#define CIPHER_MAX_BLOCK_SIZE 16
|
|
|
|
|
2013-11-28 18:12:40 +01:00
|
|
|
/**
|
2015-04-02 08:56:18 +02:00
|
|
|
* Context sizes needed for the different ciphers.
|
|
|
|
* Always order by number of bytes descending!!! <br><br>
|
|
|
|
*
|
2013-11-28 18:12:40 +01:00
|
|
|
* threedes needs 24 bytes <br>
|
2015-04-02 08:56:18 +02:00
|
|
|
* aes needs CIPHERS_MAX_KEY_SIZE bytes <br>
|
2013-11-28 18:12:40 +01:00
|
|
|
*/
|
2020-03-05 12:34:03 +01:00
|
|
|
#if defined(MODULE_CRYPTO_3DES)
|
2015-04-02 08:56:18 +02:00
|
|
|
#define CIPHER_MAX_CONTEXT_SIZE 24
|
2021-04-14 22:18:59 +02:00
|
|
|
#elif IS_USED(MODULE_CRYPTO_AES_256) || IS_USED(MODULE_CRYPTO_AES_192) || \
|
|
|
|
IS_USED(MODULE_CRYPTO_AES_128)
|
2015-04-02 08:56:18 +02:00
|
|
|
#define CIPHER_MAX_CONTEXT_SIZE CIPHERS_MAX_KEY_SIZE
|
|
|
|
#else
|
2018-10-17 14:05:06 +02:00
|
|
|
/* 0 is not a possibility because 0-sized arrays are not allowed in ISO C */
|
2015-04-02 08:56:18 +02:00
|
|
|
#define CIPHER_MAX_CONTEXT_SIZE 1
|
2013-11-28 18:12:40 +01:00
|
|
|
#endif
|
2015-04-02 08:56:18 +02:00
|
|
|
|
2016-10-04 10:03:47 +02:00
|
|
|
/* return codes */
|
|
|
|
|
2015-04-02 08:56:18 +02:00
|
|
|
#define CIPHER_ERR_INVALID_KEY_SIZE -3
|
|
|
|
#define CIPHER_ERR_INVALID_LENGTH -4
|
|
|
|
#define CIPHER_ERR_ENC_FAILED -5
|
|
|
|
#define CIPHER_ERR_DEC_FAILED -6
|
2021-04-14 22:18:59 +02:00
|
|
|
/** Is returned by the cipher_init functions, if the corresponding algorithm
|
|
|
|
* has not been included in the build */
|
2016-10-04 10:03:47 +02:00
|
|
|
#define CIPHER_ERR_BAD_CONTEXT_SIZE 0
|
2019-09-14 15:47:10 +02:00
|
|
|
/** Returned by cipher_init upon successful initialization of a cipher. */
|
2016-10-04 10:03:47 +02:00
|
|
|
#define CIPHER_INIT_SUCCESS 1
|
2015-04-02 08:56:18 +02:00
|
|
|
|
|
|
|
/**
|
|
|
|
* @brief the context for cipher-operations
|
|
|
|
*/
|
|
|
|
typedef struct {
|
2021-04-14 22:18:59 +02:00
|
|
|
uint8_t key_size; /**< key size used */
|
|
|
|
uint8_t context[CIPHER_MAX_CONTEXT_SIZE]; /**< buffer for cipher operations */
|
2013-11-28 18:12:40 +01:00
|
|
|
} cipher_context_t;
|
|
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
* @brief BlockCipher-Interface for the Cipher-Algorithms
|
|
|
|
*/
|
2015-04-02 08:56:18 +02:00
|
|
|
typedef struct cipher_interface_st {
|
2021-03-30 11:30:11 +02:00
|
|
|
/** @brief Blocksize of this cipher */
|
2015-04-02 08:56:18 +02:00
|
|
|
uint8_t block_size;
|
|
|
|
|
2021-03-30 11:30:11 +02:00
|
|
|
/**
|
|
|
|
* @brief the init function.
|
|
|
|
*
|
|
|
|
* This function is responsible for checking that the given key_size is
|
|
|
|
* valid for the chosen cipher.
|
|
|
|
*/
|
2018-10-17 14:05:06 +02:00
|
|
|
int (*init)(cipher_context_t *ctx, const uint8_t *key, uint8_t key_size);
|
2015-04-02 08:56:18 +02:00
|
|
|
|
2021-03-30 11:30:11 +02:00
|
|
|
/** @brief the encrypt function */
|
2018-10-17 14:05:06 +02:00
|
|
|
int (*encrypt)(const cipher_context_t *ctx, const uint8_t *plain_block,
|
|
|
|
uint8_t *cipher_block);
|
2015-04-02 08:56:18 +02:00
|
|
|
|
2021-03-30 11:30:11 +02:00
|
|
|
/** @brief the decrypt function */
|
2018-10-17 14:05:06 +02:00
|
|
|
int (*decrypt)(const cipher_context_t *ctx, const uint8_t *cipher_block,
|
|
|
|
uint8_t *plain_block);
|
2015-04-02 08:56:18 +02:00
|
|
|
} cipher_interface_t;
|
|
|
|
|
|
|
|
|
|
|
|
typedef const cipher_interface_t *cipher_id_t;
|
|
|
|
|
2021-04-14 22:18:59 +02:00
|
|
|
/**
|
|
|
|
* @brief AES_128 cipher id
|
|
|
|
*
|
|
|
|
* @deprecated Use @ref CIPHER_AES instead. Will be removed after 2021.07
|
|
|
|
* release.
|
|
|
|
*/
|
2015-04-02 08:56:18 +02:00
|
|
|
extern const cipher_id_t CIPHER_AES_128;
|
2013-11-28 18:12:40 +01:00
|
|
|
|
2021-04-14 22:18:59 +02:00
|
|
|
/**
|
|
|
|
* @brief AES cipher id
|
|
|
|
*/
|
|
|
|
extern const cipher_id_t CIPHER_AES;
|
2013-11-28 18:12:40 +01:00
|
|
|
|
2014-12-06 11:55:28 +01:00
|
|
|
/**
|
2015-04-02 08:56:18 +02:00
|
|
|
* @brief basic struct for using block ciphers
|
|
|
|
* contains the cipher interface and the context
|
2014-12-06 11:55:28 +01:00
|
|
|
*/
|
2015-04-02 08:56:18 +02:00
|
|
|
typedef struct {
|
2018-10-17 14:05:06 +02:00
|
|
|
const cipher_interface_t *interface; /**< BlockCipher-Interface for the
|
|
|
|
Cipher-Algorithms */
|
|
|
|
cipher_context_t context; /**< The encryption context (buffer)
|
|
|
|
for the algorithm */
|
2015-04-02 08:56:18 +02:00
|
|
|
} cipher_t;
|
2013-11-28 18:12:40 +01:00
|
|
|
|
|
|
|
|
|
|
|
/**
|
2015-04-02 08:56:18 +02:00
|
|
|
* @brief Initialize new cipher state
|
|
|
|
*
|
|
|
|
* @param cipher cipher struct to init (already allocated memory)
|
|
|
|
* @param cipher_id cipher algorithm id
|
|
|
|
* @param key encryption key to use
|
|
|
|
* @param key_size length of the encryption key
|
2016-10-04 09:30:22 +02:00
|
|
|
*
|
2016-10-04 10:03:47 +02:00
|
|
|
* @return CIPHER_INIT_SUCCESS if the initialization was successful.
|
2018-10-13 23:04:23 +02:00
|
|
|
* @return CIPHER_ERR_BAD_CONTEXT_SIZE if CIPHER_MAX_CONTEXT_SIZE has not
|
|
|
|
* been defined (which means that the cipher has not been included
|
|
|
|
* in the build)
|
|
|
|
* @return The command may return CIPHER_ERR_INVALID_KEY_SIZE if the
|
|
|
|
* key size is not valid.
|
2013-11-28 18:12:40 +01:00
|
|
|
*/
|
2018-10-17 14:05:06 +02:00
|
|
|
int cipher_init(cipher_t *cipher, cipher_id_t cipher_id, const uint8_t *key,
|
2015-04-02 08:56:18 +02:00
|
|
|
uint8_t key_size);
|
|
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
* @brief Encrypt data of BLOCK_SIZE length
|
|
|
|
* *
|
|
|
|
*
|
|
|
|
* @param cipher Already initialized cipher struct
|
|
|
|
* @param input pointer to input data to encrypt
|
|
|
|
* @param output pointer to allocated memory for encrypted data. It has to
|
|
|
|
* be of size BLOCK_SIZE
|
2018-10-13 23:04:23 +02:00
|
|
|
*
|
|
|
|
* @return The result of the encrypt operation of the underlying
|
|
|
|
* cipher, which is always 1 in case of success
|
|
|
|
* @return A negative value for an error
|
2015-04-02 08:56:18 +02:00
|
|
|
*/
|
2019-10-08 15:07:28 +02:00
|
|
|
int cipher_encrypt(const cipher_t *cipher, const uint8_t *input,
|
|
|
|
uint8_t *output);
|
2015-04-02 08:56:18 +02:00
|
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
* @brief Decrypt data of BLOCK_SIZE length
|
|
|
|
* *
|
|
|
|
*
|
|
|
|
* @param cipher Already initialized cipher struct
|
|
|
|
* @param input pointer to input data (of size BLOCKS_SIZE) to decrypt
|
|
|
|
* @param output pointer to allocated memory for decrypted data. It has to
|
|
|
|
* be of size BLOCK_SIZE
|
2018-10-13 23:04:23 +02:00
|
|
|
*
|
|
|
|
* @return The result of the decrypt operation of the underlying
|
|
|
|
* cipher, which is always 1 in case of success
|
|
|
|
* @return A negative value for an error
|
2015-04-02 08:56:18 +02:00
|
|
|
*/
|
2019-10-08 15:07:28 +02:00
|
|
|
int cipher_decrypt(const cipher_t *cipher, const uint8_t *input,
|
|
|
|
uint8_t *output);
|
2015-04-02 08:56:18 +02:00
|
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
* @brief Get block size of cipher
|
|
|
|
* *
|
|
|
|
*
|
|
|
|
* @param cipher Already initialized cipher struct
|
2018-10-13 23:04:23 +02:00
|
|
|
*
|
|
|
|
* @return The cipher's block size (in bytes)
|
2015-04-02 08:56:18 +02:00
|
|
|
*/
|
2018-10-17 14:05:06 +02:00
|
|
|
int cipher_get_block_size(const cipher_t *cipher);
|
2015-04-02 08:56:18 +02:00
|
|
|
|
2013-11-28 18:12:40 +01:00
|
|
|
|
2014-10-10 11:51:11 +02:00
|
|
|
#ifdef __cplusplus
|
|
|
|
}
|
|
|
|
#endif
|
|
|
|
|
2013-11-28 18:12:40 +01:00
|
|
|
/** @} */
|
2017-01-18 13:00:05 +01:00
|
|
|
#endif /* CRYPTO_CIPHERS_H */
|