commit 76fa16cab32b14a4d09f8a9e324e5770bc1eb91c
author Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com> Fri Nov 10 12:02:53 2023 +0100
committer Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com> Fri Nov 10 12:14:53 2023 +0100
tree 87ac396bfb6ab5c4aaaef0b95a00d153caa651cc
parent 3e0884fc5344e14351e42054a612bba11266679b

block_cipher: add encrypt()

Test data copied from existing test suites.

Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>

library/block_cipher.c

diff --git a/library/block_cipher.c b/library/block_cipher.c
index 2146c6c..1118d3a 100644
--- a/library/block_cipher.c
+++ b/library/block_cipher.c
@@ -87,4 +87,30 @@
             return MBEDTLS_ERR_CIPHER_INVALID_CONTEXT;
     }
 }
+
+int mbedtls_block_cipher_encrypt(mbedtls_block_cipher_context_t *ctx,
+                                 const unsigned char input[16],
+                                 unsigned char output[16])
+{
+    switch (ctx->id) {
+#if defined(MBEDTLS_AES_C)
+        case MBEDTLS_BLOCK_CIPHER_ID_AES:
+            return mbedtls_aes_crypt_ecb(&ctx->ctx.aes, MBEDTLS_AES_ENCRYPT,
+                                         input, output);
+#endif
+#if defined(MBEDTLS_ARIA_C)
+        case MBEDTLS_BLOCK_CIPHER_ID_ARIA:
+            return mbedtls_aria_crypt_ecb(&ctx->ctx.aria, input, output);
+#endif
+#if defined(MBEDTLS_CAMELLIA_C)
+        case MBEDTLS_BLOCK_CIPHER_ID_CAMELLIA:
+            return mbedtls_camellia_crypt_ecb(&ctx->ctx.camellia,
+                                              MBEDTLS_CAMELLIA_ENCRYPT,
+                                              input, output);
+#endif
+        default:
+            return MBEDTLS_ERR_CIPHER_INVALID_CONTEXT;
+    }
+}
+
 #endif /* MBEDTLS_BLOCK_CIPHER_C */

library/block_cipher_internal.h

diff --git a/library/block_cipher_internal.h b/library/block_cipher_internal.h
index 47326fa..c57338b 100644
--- a/library/block_cipher_internal.h
+++ b/library/block_cipher_internal.h
@@ -67,6 +67,24 @@
 int mbedtls_block_cipher_setkey(mbedtls_block_cipher_context_t *ctx,
                                 const unsigned char *key,
                                 unsigned key_bitlen);
+
+/**
+ * \brief           Encrypt one block (16 bytes) with the configured key.
+ *
+ * \param ctx       The context holding the key.
+ * \param input     The buffer holding the input block. Must be 16 bytes.
+ * \param output    The buffer to which the output block will be written.
+ *                  Must be writable and 16 bytes long.
+ *                  This must either not overlap with \p input, or be equal.
+ *
+ * \retval          \c 0 on success.
+ * \retval          #MBEDTLS_ERR_CIPHER_INVALID_CONTEXT if the context was not
+ *                  properly set up before calling this function.
+ * \retval          Another negative value if encryption failed.
+ */
+int mbedtls_block_cipher_encrypt(mbedtls_block_cipher_context_t *ctx,
+                                 const unsigned char input[16],
+                                 unsigned char output[16]);
 /**
  * \brief           Clear the context.
  *