TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls / 36fb12e7dde2a59432bd76e66d535f15ab2e5a44 / . / library / md.c
blob: 14a88ba1b3f02476ed59b46e441205bc803823c4 [file] [log] [blame]
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]1/**
Gilles Peskine2091f3a2021-02-12 23:34:01 +0100[diff] [blame]2 * \file md.c
Paul Bakker9af723c2014-05-01 13:03:14 +0200[diff] [blame]3 *
Manuel Pégourié-Gonnardb4fe3cb2015-01-22 16:11:05 +0000[diff] [blame]4 * \brief Generic message digest wrapper for mbed TLS
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]5 *
6 * \author Adriaan de Jong <dejong@fox-it.com>
7 *
Bence Szépkúti1e148272020-08-07 13:07:28 +0200[diff] [blame]8 * Copyright The Mbed TLS Contributors
Manuel Pégourié-Gonnard37ff1402015-09-04 14:21:07 +0200[diff] [blame]9 * SPDX-License-Identifier: Apache-2.0
10 *
11 * Licensed under the Apache License, Version 2.0 (the "License"); you may
12 * not use this file except in compliance with the License.
13 * You may obtain a copy of the License at
14 *
15 * http://www.apache.org/licenses/LICENSE-2.0
16 *
17 * Unless required by applicable law or agreed to in writing, software
18 * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
19 * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
20 * See the License for the specific language governing permissions and
21 * limitations under the License.
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]22 */
23
Gilles Peskinedb09ef62020-06-03 01:43:33 +0200[diff] [blame]24#include "common.h"
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]25
Manuel Pégourié-Gonnard0d415212023-02-23 13:02:13 +0100[diff] [blame]26/*
27 * Availability of functions in this module is controlled by two
28 * feature macros:
29 * - MBEDTLS_MD_C enables the whole module;
30 * - MBEDTLS_MD_LIGHT enables only functions for hashing and accessing
31 * most hash metadata (everything except string names); is it
32 * automatically set whenever MBEDTLS_MD_C is defined.
33 *
Manuel Pégourié-Gonnard1e57abd2023-02-23 20:45:26 +0100[diff] [blame]34 * In this file, functions from MD_LIGHT are at the top, MD_C at the end.
35 *
Manuel Pégourié-Gonnard0d415212023-02-23 13:02:13 +0100[diff] [blame]36 * In the future we may want to change the contract of some functions
37 * (behaviour with NULL arguments) depending on whether MD_C is defined or
38 * only MD_LIGHT. Also, the exact scope of MD_LIGHT might vary.
39 *
40 * For these reasons, we're keeping MD_LIGHT internal for now.
41 */
Manuel Pégourié-Gonnardb9b630d2023-02-16 19:07:31 +0100[diff] [blame]42#if defined(MBEDTLS_MD_LIGHT)
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]43
Manuel Pégourié-Gonnard7f809972015-03-09 17:05:11 +0000[diff] [blame]44#include "mbedtls/md.h"
Chris Jonesdaacb592021-03-09 17:03:29 +0000[diff] [blame]45#include "md_wrap.h"
Andres Amaya Garcia1f6301b2018-04-17 09:51:09 -0500[diff] [blame]46#include "mbedtls/platform_util.h"
Janos Follath24eed8d2019-11-22 13:21:35 +0000[diff] [blame]47#include "mbedtls/error.h"
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]48
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]49#include "mbedtls/md5.h"
50#include "mbedtls/ripemd160.h"
51#include "mbedtls/sha1.h"
52#include "mbedtls/sha256.h"
53#include "mbedtls/sha512.h"
54
Manuel Pégourié-Gonnard36fb12e2023-03-28 11:33:23 +0200[diff] [blame^]55#if defined(MBEDTLS_PSA_CRYPTO_C)
Gilles Peskine12612e52022-10-22 20:07:28 +0200[diff] [blame]56#include <psa/crypto.h>
Manuel Pégourié-Gonnard36fb12e2023-03-28 11:33:23 +0200[diff] [blame^]57#include "md_psa.h"
58#endif
59
60#if defined(MBEDTLS_MD_SOME_PSA)
Manuel Pégourié-Gonnard9b146392023-03-09 15:56:14 +0100[diff] [blame]61#include "psa_crypto_core.h"
Gilles Peskine12612e52022-10-22 20:07:28 +0200[diff] [blame]62#endif
63
Manuel Pégourié-Gonnarddfb3dc82015-03-25 11:49:07 +0100[diff] [blame]64#include "mbedtls/platform.h"
Manuel Pégourié-Gonnarddfb3dc82015-03-25 11:49:07 +0100[diff] [blame]65
Rich Evans00ab4702015-02-06 13:43:58 +0000[diff] [blame]66#include <string.h>
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]67
Manuel Pégourié-Gonnardbfffa902015-05-28 14:44:00 +0200[diff] [blame]68#if defined(MBEDTLS_FS_IO)
69#include <stdio.h>
Paul Bakkeraf5c85f2011-04-18 03:47:52 +0000[diff] [blame]70#endif
71
Gilles Peskine83d9e092022-10-22 18:32:43 +0200[diff] [blame]72#if defined(MBEDTLS_MD_CAN_MD5)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]73const mbedtls_md_info_t mbedtls_md5_info = {
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]74 "MD5",
Gilles Peskine2838b7b2019-07-19 16:03:39 +0200[diff] [blame]75 MBEDTLS_MD_MD5,
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]76 16,
77 64,
78};
79#endif
80
Gilles Peskine83d9e092022-10-22 18:32:43 +0200[diff] [blame]81#if defined(MBEDTLS_MD_CAN_RIPEMD160)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]82const mbedtls_md_info_t mbedtls_ripemd160_info = {
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]83 "RIPEMD160",
Gilles Peskine2838b7b2019-07-19 16:03:39 +0200[diff] [blame]84 MBEDTLS_MD_RIPEMD160,
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]85 20,
86 64,
87};
88#endif
89
Gilles Peskine83d9e092022-10-22 18:32:43 +0200[diff] [blame]90#if defined(MBEDTLS_MD_CAN_SHA1)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]91const mbedtls_md_info_t mbedtls_sha1_info = {
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]92 "SHA1",
Gilles Peskine2838b7b2019-07-19 16:03:39 +0200[diff] [blame]93 MBEDTLS_MD_SHA1,
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]94 20,
95 64,
96};
97#endif
98
Gilles Peskine83d9e092022-10-22 18:32:43 +0200[diff] [blame]99#if defined(MBEDTLS_MD_CAN_SHA224)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]100const mbedtls_md_info_t mbedtls_sha224_info = {
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]101 "SHA224",
Gilles Peskine2838b7b2019-07-19 16:03:39 +0200[diff] [blame]102 MBEDTLS_MD_SHA224,
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]103 28,
104 64,
105};
Mateusz Starzyke3c48b42021-04-19 16:46:28 +0200[diff] [blame]106#endif
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]107
Gilles Peskine83d9e092022-10-22 18:32:43 +0200[diff] [blame]108#if defined(MBEDTLS_MD_CAN_SHA256)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]109const mbedtls_md_info_t mbedtls_sha256_info = {
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]110 "SHA256",
Gilles Peskine2838b7b2019-07-19 16:03:39 +0200[diff] [blame]111 MBEDTLS_MD_SHA256,
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]112 32,
113 64,
114};
115#endif
116
Gilles Peskine83d9e092022-10-22 18:32:43 +0200[diff] [blame]117#if defined(MBEDTLS_MD_CAN_SHA384)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]118const mbedtls_md_info_t mbedtls_sha384_info = {
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]119 "SHA384",
Gilles Peskine2838b7b2019-07-19 16:03:39 +0200[diff] [blame]120 MBEDTLS_MD_SHA384,
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]121 48,
122 128,
123};
Manuel Pégourié-Gonnardd6020842019-07-17 16:28:21 +0200[diff] [blame]124#endif
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]125
Gilles Peskine83d9e092022-10-22 18:32:43 +0200[diff] [blame]126#if defined(MBEDTLS_MD_CAN_SHA512)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]127const mbedtls_md_info_t mbedtls_sha512_info = {
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]128 "SHA512",
Gilles Peskine2838b7b2019-07-19 16:03:39 +0200[diff] [blame]129 MBEDTLS_MD_SHA512,
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]130 64,
131 128,
132};
133#endif
134
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]135const mbedtls_md_info_t *mbedtls_md_info_from_type(mbedtls_md_type_t md_type)
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]136{
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]137 switch (md_type) {
Gilles Peskine83d9e092022-10-22 18:32:43 +0200[diff] [blame]138#if defined(MBEDTLS_MD_CAN_MD5)
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]139 case MBEDTLS_MD_MD5:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]140 return &mbedtls_md5_info;
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]141#endif
Gilles Peskine83d9e092022-10-22 18:32:43 +0200[diff] [blame]142#if defined(MBEDTLS_MD_CAN_RIPEMD160)
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]143 case MBEDTLS_MD_RIPEMD160:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]144 return &mbedtls_ripemd160_info;
Manuel Pégourié-Gonnarde4d47a62014-01-17 20:41:32 +0100[diff] [blame]145#endif
Gilles Peskine83d9e092022-10-22 18:32:43 +0200[diff] [blame]146#if defined(MBEDTLS_MD_CAN_SHA1)
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]147 case MBEDTLS_MD_SHA1:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]148 return &mbedtls_sha1_info;
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]149#endif
Gilles Peskine83d9e092022-10-22 18:32:43 +0200[diff] [blame]150#if defined(MBEDTLS_MD_CAN_SHA224)
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]151 case MBEDTLS_MD_SHA224:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]152 return &mbedtls_sha224_info;
Mateusz Starzyke3c48b42021-04-19 16:46:28 +0200[diff] [blame]153#endif
Gilles Peskine83d9e092022-10-22 18:32:43 +0200[diff] [blame]154#if defined(MBEDTLS_MD_CAN_SHA256)
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]155 case MBEDTLS_MD_SHA256:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]156 return &mbedtls_sha256_info;
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]157#endif
Gilles Peskine83d9e092022-10-22 18:32:43 +0200[diff] [blame]158#if defined(MBEDTLS_MD_CAN_SHA384)
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]159 case MBEDTLS_MD_SHA384:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]160 return &mbedtls_sha384_info;
Manuel Pégourié-Gonnardd6020842019-07-17 16:28:21 +0200[diff] [blame]161#endif
Gilles Peskine83d9e092022-10-22 18:32:43 +0200[diff] [blame]162#if defined(MBEDTLS_MD_CAN_SHA512)
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]163 case MBEDTLS_MD_SHA512:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]164 return &mbedtls_sha512_info;
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]165#endif
166 default:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]167 return NULL;
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]168 }
169}
170
Gilles Peskine12612e52022-10-22 20:07:28 +0200[diff] [blame]171#if defined(MBEDTLS_MD_SOME_PSA)
172static psa_algorithm_t psa_alg_of_md(const mbedtls_md_info_t *info)
173{
174 switch (info->type) {
175#if defined(MBEDTLS_MD_MD5_VIA_PSA)
176 case MBEDTLS_MD_MD5:
177 return PSA_ALG_MD5;
178#endif
179#if defined(MBEDTLS_MD_RIPEMD160_VIA_PSA)
180 case MBEDTLS_MD_RIPEMD160:
181 return PSA_ALG_RIPEMD160;
182#endif
183#if defined(MBEDTLS_MD_SHA1_VIA_PSA)
184 case MBEDTLS_MD_SHA1:
185 return PSA_ALG_SHA_1;
186#endif
187#if defined(MBEDTLS_MD_SHA224_VIA_PSA)
188 case MBEDTLS_MD_SHA224:
189 return PSA_ALG_SHA_224;
190#endif
191#if defined(MBEDTLS_MD_SHA256_VIA_PSA)
192 case MBEDTLS_MD_SHA256:
193 return PSA_ALG_SHA_256;
194#endif
195#if defined(MBEDTLS_MD_SHA384_VIA_PSA)
196 case MBEDTLS_MD_SHA384:
197 return PSA_ALG_SHA_384;
198#endif
199#if defined(MBEDTLS_MD_SHA512_VIA_PSA)
200 case MBEDTLS_MD_SHA512:
201 return PSA_ALG_SHA_512;
202#endif
203 default:
204 return PSA_ALG_NONE;
205 }
206}
207
Manuel Pégourié-Gonnardf48b1f82023-03-14 10:50:52 +0100[diff] [blame]208static int md_can_use_psa(const mbedtls_md_info_t *info)
Gilles Peskine12612e52022-10-22 20:07:28 +0200[diff] [blame]209{
Manuel Pégourié-Gonnard9b146392023-03-09 15:56:14 +0100[diff] [blame]210 psa_algorithm_t alg = psa_alg_of_md(info);
211 if (alg == PSA_ALG_NONE) {
212 return 0;
213 }
214
215 return psa_can_do_hash(alg);
Gilles Peskine12612e52022-10-22 20:07:28 +0200[diff] [blame]216}
217
218static int mbedtls_md_error_from_psa(psa_status_t status)
219{
220 switch (status) {
221 case PSA_SUCCESS:
222 return 0;
223 case PSA_ERROR_NOT_SUPPORTED:
224 return MBEDTLS_ERR_MD_FEATURE_UNAVAILABLE;
225 case PSA_ERROR_INSUFFICIENT_MEMORY:
226 return MBEDTLS_ERR_MD_ALLOC_FAILED;
227 default:
228 return MBEDTLS_ERR_PLATFORM_HW_ACCEL_FAILED;
229 }
230}
231#endif /* MBEDTLS_MD_SOME_PSA */
232
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]233void mbedtls_md_init(mbedtls_md_context_t *ctx)
Paul Bakker84bbeb52014-07-01 14:53:22 +0200[diff] [blame]234{
Manuel Pégourié-Gonnardd8ea37f2023-03-09 10:46:22 +0100[diff] [blame]235 /* Note: this sets engine (if present) to MBEDTLS_MD_ENGINE_LEGACY */
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]236 memset(ctx, 0, sizeof(mbedtls_md_context_t));
Paul Bakker84bbeb52014-07-01 14:53:22 +0200[diff] [blame]237}
238
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]239void mbedtls_md_free(mbedtls_md_context_t *ctx)
Paul Bakker84bbeb52014-07-01 14:53:22 +0200[diff] [blame]240{
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]241 if (ctx == NULL || ctx->md_info == NULL) {
Paul Bakker84bbeb52014-07-01 14:53:22 +0200[diff] [blame]242 return;
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]243 }
Paul Bakker84bbeb52014-07-01 14:53:22 +0200[diff] [blame]244
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]245 if (ctx->md_ctx != NULL) {
Gilles Peskine12612e52022-10-22 20:07:28 +0200[diff] [blame]246#if defined(MBEDTLS_MD_SOME_PSA)
Manuel Pégourié-Gonnardd8ea37f2023-03-09 10:46:22 +0100[diff] [blame]247 if (ctx->engine == MBEDTLS_MD_ENGINE_PSA) {
Gilles Peskine12612e52022-10-22 20:07:28 +0200[diff] [blame]248 psa_hash_abort(ctx->md_ctx);
249 } else
250#endif
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]251 switch (ctx->md_info->type) {
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]252#if defined(MBEDTLS_MD5_C)
253 case MBEDTLS_MD_MD5:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]254 mbedtls_md5_free(ctx->md_ctx);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]255 break;
256#endif
257#if defined(MBEDTLS_RIPEMD160_C)
258 case MBEDTLS_MD_RIPEMD160:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]259 mbedtls_ripemd160_free(ctx->md_ctx);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]260 break;
261#endif
262#if defined(MBEDTLS_SHA1_C)
263 case MBEDTLS_MD_SHA1:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]264 mbedtls_sha1_free(ctx->md_ctx);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]265 break;
266#endif
Mateusz Starzyke3c48b42021-04-19 16:46:28 +0200[diff] [blame]267#if defined(MBEDTLS_SHA224_C)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]268 case MBEDTLS_MD_SHA224:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]269 mbedtls_sha256_free(ctx->md_ctx);
Mateusz Starzyke3c48b42021-04-19 16:46:28 +0200[diff] [blame]270 break;
271#endif
272#if defined(MBEDTLS_SHA256_C)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]273 case MBEDTLS_MD_SHA256:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]274 mbedtls_sha256_free(ctx->md_ctx);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]275 break;
276#endif
Mateusz Starzyk3352a532021-04-06 14:28:22 +0200[diff] [blame]277#if defined(MBEDTLS_SHA384_C)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]278 case MBEDTLS_MD_SHA384:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]279 mbedtls_sha512_free(ctx->md_ctx);
Mateusz Starzyk3352a532021-04-06 14:28:22 +0200[diff] [blame]280 break;
Manuel Pégourié-Gonnardd6020842019-07-17 16:28:21 +0200[diff] [blame]281#endif
Mateusz Starzyk3352a532021-04-06 14:28:22 +0200[diff] [blame]282#if defined(MBEDTLS_SHA512_C)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]283 case MBEDTLS_MD_SHA512:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]284 mbedtls_sha512_free(ctx->md_ctx);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]285 break;
286#endif
287 default:
288 /* Shouldn't happen */
289 break;
290 }
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]291 mbedtls_free(ctx->md_ctx);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]292 }
Paul Bakker84bbeb52014-07-01 14:53:22 +0200[diff] [blame]293
Manuel Pégourié-Gonnard39a376a2023-03-09 17:21:40 +0100[diff] [blame]294#if defined(MBEDTLS_MD_C)
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]295 if (ctx->hmac_ctx != NULL) {
296 mbedtls_platform_zeroize(ctx->hmac_ctx,
297 2 * ctx->md_info->block_size);
298 mbedtls_free(ctx->hmac_ctx);
Manuel Pégourié-Gonnarddfb3dc82015-03-25 11:49:07 +0100[diff] [blame]299 }
Manuel Pégourié-Gonnard39a376a2023-03-09 17:21:40 +0100[diff] [blame]300#endif
Manuel Pégourié-Gonnarddfb3dc82015-03-25 11:49:07 +0100[diff] [blame]301
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]302 mbedtls_platform_zeroize(ctx, sizeof(mbedtls_md_context_t));
Paul Bakker84bbeb52014-07-01 14:53:22 +0200[diff] [blame]303}
304
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]305int mbedtls_md_clone(mbedtls_md_context_t *dst,
306 const mbedtls_md_context_t *src)
Manuel Pégourié-Gonnard052a6c92015-07-06 16:06:02 +0200[diff] [blame]307{
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]308 if (dst == NULL || dst->md_info == NULL ||
Manuel Pégourié-Gonnard052a6c92015-07-06 16:06:02 +0200[diff] [blame]309 src == NULL || src->md_info == NULL ||
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]310 dst->md_info != src->md_info) {
311 return MBEDTLS_ERR_MD_BAD_INPUT_DATA;
Manuel Pégourié-Gonnard052a6c92015-07-06 16:06:02 +0200[diff] [blame]312 }
313
Gilles Peskine12612e52022-10-22 20:07:28 +0200[diff] [blame]314#if defined(MBEDTLS_MD_SOME_PSA)
Manuel Pégourié-Gonnardd8ea37f2023-03-09 10:46:22 +0100[diff] [blame]315 if (src->engine != dst->engine) {
316 /* This can happen with src set to legacy because PSA wasn't ready
317 * yet, and dst to PSA because it became ready in the meantime.
318 * We currently don't support that case (we'd need to re-allocate
319 * md_ctx to the size of the appropriate MD context). */
320 return MBEDTLS_ERR_MD_FEATURE_UNAVAILABLE;
321 }
322
323 if (src->engine == MBEDTLS_MD_ENGINE_PSA) {
Gilles Peskine12612e52022-10-22 20:07:28 +0200[diff] [blame]324 psa_status_t status = psa_hash_clone(src->md_ctx, dst->md_ctx);
325 return mbedtls_md_error_from_psa(status);
326 }
327#endif
328
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]329 switch (src->md_info->type) {
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]330#if defined(MBEDTLS_MD5_C)
331 case MBEDTLS_MD_MD5:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]332 mbedtls_md5_clone(dst->md_ctx, src->md_ctx);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]333 break;
334#endif
335#if defined(MBEDTLS_RIPEMD160_C)
336 case MBEDTLS_MD_RIPEMD160:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]337 mbedtls_ripemd160_clone(dst->md_ctx, src->md_ctx);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]338 break;
339#endif
340#if defined(MBEDTLS_SHA1_C)
341 case MBEDTLS_MD_SHA1:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]342 mbedtls_sha1_clone(dst->md_ctx, src->md_ctx);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]343 break;
344#endif
Mateusz Starzyke3c48b42021-04-19 16:46:28 +0200[diff] [blame]345#if defined(MBEDTLS_SHA224_C)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]346 case MBEDTLS_MD_SHA224:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]347 mbedtls_sha256_clone(dst->md_ctx, src->md_ctx);
Mateusz Starzyke3c48b42021-04-19 16:46:28 +0200[diff] [blame]348 break;
349#endif
350#if defined(MBEDTLS_SHA256_C)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]351 case MBEDTLS_MD_SHA256:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]352 mbedtls_sha256_clone(dst->md_ctx, src->md_ctx);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]353 break;
354#endif
Mateusz Starzyk3352a532021-04-06 14:28:22 +0200[diff] [blame]355#if defined(MBEDTLS_SHA384_C)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]356 case MBEDTLS_MD_SHA384:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]357 mbedtls_sha512_clone(dst->md_ctx, src->md_ctx);
Mateusz Starzyk3352a532021-04-06 14:28:22 +0200[diff] [blame]358 break;
Manuel Pégourié-Gonnardd6020842019-07-17 16:28:21 +0200[diff] [blame]359#endif
Mateusz Starzyk3352a532021-04-06 14:28:22 +0200[diff] [blame]360#if defined(MBEDTLS_SHA512_C)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]361 case MBEDTLS_MD_SHA512:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]362 mbedtls_sha512_clone(dst->md_ctx, src->md_ctx);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]363 break;
364#endif
365 default:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]366 return MBEDTLS_ERR_MD_BAD_INPUT_DATA;
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]367 }
Manuel Pégourié-Gonnard052a6c92015-07-06 16:06:02 +0200[diff] [blame]368
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]369 return 0;
Manuel Pégourié-Gonnard052a6c92015-07-06 16:06:02 +0200[diff] [blame]370}
371
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]372#define ALLOC(type) \
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]373 do { \
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]374 ctx->md_ctx = mbedtls_calloc(1, sizeof(mbedtls_##type##_context)); \
375 if (ctx->md_ctx == NULL) \
376 return MBEDTLS_ERR_MD_ALLOC_FAILED; \
377 mbedtls_##type##_init(ctx->md_ctx); \
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]378 } \
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]379 while (0)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]380
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]381int mbedtls_md_setup(mbedtls_md_context_t *ctx, const mbedtls_md_info_t *md_info, int hmac)
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]382{
Thomas Daubney73cfde82023-05-30 15:34:28 +0100[diff] [blame]383#if defined(MBEDTLS_MD_C)
384 if (ctx == NULL) {
385 return MBEDTLS_ERR_MD_BAD_INPUT_DATA;
386 }
387#endif
388 if (md_info == NULL) {
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]389 return MBEDTLS_ERR_MD_BAD_INPUT_DATA;
390 }
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]391
Gilles Peskined15c7402020-08-19 12:03:11 +0200[diff] [blame]392 ctx->md_info = md_info;
393 ctx->md_ctx = NULL;
Manuel Pégourié-Gonnard39a376a2023-03-09 17:21:40 +0100[diff] [blame]394#if defined(MBEDTLS_MD_C)
Gilles Peskined15c7402020-08-19 12:03:11 +0200[diff] [blame]395 ctx->hmac_ctx = NULL;
Manuel Pégourié-Gonnard39a376a2023-03-09 17:21:40 +0100[diff] [blame]396#else
397 if (hmac != 0) {
398 return MBEDTLS_ERR_MD_BAD_INPUT_DATA;
399 }
400#endif
Gilles Peskined15c7402020-08-19 12:03:11 +0200[diff] [blame]401
Gilles Peskine12612e52022-10-22 20:07:28 +0200[diff] [blame]402#if defined(MBEDTLS_MD_SOME_PSA)
Manuel Pégourié-Gonnardf48b1f82023-03-14 10:50:52 +0100[diff] [blame]403 if (md_can_use_psa(ctx->md_info)) {
Gilles Peskine12612e52022-10-22 20:07:28 +0200[diff] [blame]404 ctx->md_ctx = mbedtls_calloc(1, sizeof(psa_hash_operation_t));
405 if (ctx->md_ctx == NULL) {
406 return MBEDTLS_ERR_MD_ALLOC_FAILED;
407 }
Manuel Pégourié-Gonnardd8ea37f2023-03-09 10:46:22 +0100[diff] [blame]408 ctx->engine = MBEDTLS_MD_ENGINE_PSA;
Gilles Peskine12612e52022-10-22 20:07:28 +0200[diff] [blame]409 } else
410#endif
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]411 switch (md_info->type) {
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]412#if defined(MBEDTLS_MD5_C)
413 case MBEDTLS_MD_MD5:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]414 ALLOC(md5);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]415 break;
416#endif
417#if defined(MBEDTLS_RIPEMD160_C)
418 case MBEDTLS_MD_RIPEMD160:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]419 ALLOC(ripemd160);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]420 break;
421#endif
422#if defined(MBEDTLS_SHA1_C)
423 case MBEDTLS_MD_SHA1:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]424 ALLOC(sha1);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]425 break;
426#endif
Mateusz Starzyke3c48b42021-04-19 16:46:28 +0200[diff] [blame]427#if defined(MBEDTLS_SHA224_C)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]428 case MBEDTLS_MD_SHA224:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]429 ALLOC(sha256);
Mateusz Starzyke3c48b42021-04-19 16:46:28 +0200[diff] [blame]430 break;
431#endif
432#if defined(MBEDTLS_SHA256_C)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]433 case MBEDTLS_MD_SHA256:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]434 ALLOC(sha256);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]435 break;
436#endif
Mateusz Starzyk3352a532021-04-06 14:28:22 +0200[diff] [blame]437#if defined(MBEDTLS_SHA384_C)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]438 case MBEDTLS_MD_SHA384:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]439 ALLOC(sha512);
Mateusz Starzyk3352a532021-04-06 14:28:22 +0200[diff] [blame]440 break;
Manuel Pégourié-Gonnardd6020842019-07-17 16:28:21 +0200[diff] [blame]441#endif
Mateusz Starzyk3352a532021-04-06 14:28:22 +0200[diff] [blame]442#if defined(MBEDTLS_SHA512_C)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]443 case MBEDTLS_MD_SHA512:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]444 ALLOC(sha512);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]445 break;
446#endif
447 default:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]448 return MBEDTLS_ERR_MD_BAD_INPUT_DATA;
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]449 }
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]450
Manuel Pégourié-Gonnard39a376a2023-03-09 17:21:40 +0100[diff] [blame]451#if defined(MBEDTLS_MD_C)
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]452 if (hmac != 0) {
453 ctx->hmac_ctx = mbedtls_calloc(2, md_info->block_size);
454 if (ctx->hmac_ctx == NULL) {
455 mbedtls_md_free(ctx);
456 return MBEDTLS_ERR_MD_ALLOC_FAILED;
Manuel Pégourié-Gonnard4063ceb2015-03-25 16:08:53 +0100[diff] [blame]457 }
Manuel Pégourié-Gonnarddfb3dc82015-03-25 11:49:07 +0100[diff] [blame]458 }
Manuel Pégourié-Gonnard39a376a2023-03-09 17:21:40 +0100[diff] [blame]459#endif
Manuel Pégourié-Gonnarddfb3dc82015-03-25 11:49:07 +0100[diff] [blame]460
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]461 return 0;
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]462}
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]463#undef ALLOC
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]464
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]465int mbedtls_md_starts(mbedtls_md_context_t *ctx)
Paul Bakker562535d2011-01-20 16:42:01 +0000[diff] [blame]466{
Thomas Daubney73cfde82023-05-30 15:34:28 +0100[diff] [blame]467#if defined(MBEDTLS_MD_C)
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]468 if (ctx == NULL || ctx->md_info == NULL) {
469 return MBEDTLS_ERR_MD_BAD_INPUT_DATA;
470 }
Thomas Daubney73cfde82023-05-30 15:34:28 +0100[diff] [blame]471#endif
Paul Bakker562535d2011-01-20 16:42:01 +0000[diff] [blame]472
Gilles Peskine12612e52022-10-22 20:07:28 +0200[diff] [blame]473#if defined(MBEDTLS_MD_SOME_PSA)
Manuel Pégourié-Gonnardd8ea37f2023-03-09 10:46:22 +0100[diff] [blame]474 if (ctx->engine == MBEDTLS_MD_ENGINE_PSA) {
475 psa_algorithm_t alg = psa_alg_of_md(ctx->md_info);
Gilles Peskine12612e52022-10-22 20:07:28 +0200[diff] [blame]476 psa_hash_abort(ctx->md_ctx);
477 psa_status_t status = psa_hash_setup(ctx->md_ctx, alg);
478 return mbedtls_md_error_from_psa(status);
479 }
480#endif
481
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]482 switch (ctx->md_info->type) {
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]483#if defined(MBEDTLS_MD5_C)
484 case MBEDTLS_MD_MD5:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]485 return mbedtls_md5_starts(ctx->md_ctx);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]486#endif
487#if defined(MBEDTLS_RIPEMD160_C)
488 case MBEDTLS_MD_RIPEMD160:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]489 return mbedtls_ripemd160_starts(ctx->md_ctx);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]490#endif
491#if defined(MBEDTLS_SHA1_C)
492 case MBEDTLS_MD_SHA1:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]493 return mbedtls_sha1_starts(ctx->md_ctx);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]494#endif
Mateusz Starzyke3c48b42021-04-19 16:46:28 +0200[diff] [blame]495#if defined(MBEDTLS_SHA224_C)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]496 case MBEDTLS_MD_SHA224:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]497 return mbedtls_sha256_starts(ctx->md_ctx, 1);
Mateusz Starzyke3c48b42021-04-19 16:46:28 +0200[diff] [blame]498#endif
499#if defined(MBEDTLS_SHA256_C)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]500 case MBEDTLS_MD_SHA256:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]501 return mbedtls_sha256_starts(ctx->md_ctx, 0);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]502#endif
Mateusz Starzyk3352a532021-04-06 14:28:22 +0200[diff] [blame]503#if defined(MBEDTLS_SHA384_C)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]504 case MBEDTLS_MD_SHA384:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]505 return mbedtls_sha512_starts(ctx->md_ctx, 1);
Manuel Pégourié-Gonnardd6020842019-07-17 16:28:21 +0200[diff] [blame]506#endif
Mateusz Starzyk3352a532021-04-06 14:28:22 +0200[diff] [blame]507#if defined(MBEDTLS_SHA512_C)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]508 case MBEDTLS_MD_SHA512:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]509 return mbedtls_sha512_starts(ctx->md_ctx, 0);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]510#endif
511 default:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]512 return MBEDTLS_ERR_MD_BAD_INPUT_DATA;
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]513 }
Paul Bakker562535d2011-01-20 16:42:01 +0000[diff] [blame]514}
515
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]516int mbedtls_md_update(mbedtls_md_context_t *ctx, const unsigned char *input, size_t ilen)
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]517{
Thomas Daubney73cfde82023-05-30 15:34:28 +0100[diff] [blame]518#if defined(MBEDTLS_MD_C)
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]519 if (ctx == NULL || ctx->md_info == NULL) {
520 return MBEDTLS_ERR_MD_BAD_INPUT_DATA;
521 }
Thomas Daubney73cfde82023-05-30 15:34:28 +0100[diff] [blame]522#endif
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]523
Gilles Peskine12612e52022-10-22 20:07:28 +0200[diff] [blame]524#if defined(MBEDTLS_MD_SOME_PSA)
Manuel Pégourié-Gonnardd8ea37f2023-03-09 10:46:22 +0100[diff] [blame]525 if (ctx->engine == MBEDTLS_MD_ENGINE_PSA) {
Gilles Peskine12612e52022-10-22 20:07:28 +0200[diff] [blame]526 psa_status_t status = psa_hash_update(ctx->md_ctx, input, ilen);
527 return mbedtls_md_error_from_psa(status);
528 }
529#endif
530
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]531 switch (ctx->md_info->type) {
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]532#if defined(MBEDTLS_MD5_C)
533 case MBEDTLS_MD_MD5:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]534 return mbedtls_md5_update(ctx->md_ctx, input, ilen);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]535#endif
536#if defined(MBEDTLS_RIPEMD160_C)
537 case MBEDTLS_MD_RIPEMD160:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]538 return mbedtls_ripemd160_update(ctx->md_ctx, input, ilen);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]539#endif
540#if defined(MBEDTLS_SHA1_C)
541 case MBEDTLS_MD_SHA1:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]542 return mbedtls_sha1_update(ctx->md_ctx, input, ilen);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]543#endif
Mateusz Starzyke3c48b42021-04-19 16:46:28 +0200[diff] [blame]544#if defined(MBEDTLS_SHA224_C)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]545 case MBEDTLS_MD_SHA224:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]546 return mbedtls_sha256_update(ctx->md_ctx, input, ilen);
Mateusz Starzyke3c48b42021-04-19 16:46:28 +0200[diff] [blame]547#endif
548#if defined(MBEDTLS_SHA256_C)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]549 case MBEDTLS_MD_SHA256:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]550 return mbedtls_sha256_update(ctx->md_ctx, input, ilen);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]551#endif
Mateusz Starzyk3352a532021-04-06 14:28:22 +0200[diff] [blame]552#if defined(MBEDTLS_SHA384_C)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]553 case MBEDTLS_MD_SHA384:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]554 return mbedtls_sha512_update(ctx->md_ctx, input, ilen);
Manuel Pégourié-Gonnardd6020842019-07-17 16:28:21 +0200[diff] [blame]555#endif
Mateusz Starzyk3352a532021-04-06 14:28:22 +0200[diff] [blame]556#if defined(MBEDTLS_SHA512_C)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]557 case MBEDTLS_MD_SHA512:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]558 return mbedtls_sha512_update(ctx->md_ctx, input, ilen);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]559#endif
560 default:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]561 return MBEDTLS_ERR_MD_BAD_INPUT_DATA;
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]562 }
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]563}
564
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]565int mbedtls_md_finish(mbedtls_md_context_t *ctx, unsigned char *output)
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]566{
Thomas Daubney73cfde82023-05-30 15:34:28 +0100[diff] [blame]567#if defined(MBEDTLS_MD_C)
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]568 if (ctx == NULL || ctx->md_info == NULL) {
569 return MBEDTLS_ERR_MD_BAD_INPUT_DATA;
570 }
Thomas Daubney73cfde82023-05-30 15:34:28 +0100[diff] [blame]571#endif
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]572
Gilles Peskine12612e52022-10-22 20:07:28 +0200[diff] [blame]573#if defined(MBEDTLS_MD_SOME_PSA)
Manuel Pégourié-Gonnardd8ea37f2023-03-09 10:46:22 +0100[diff] [blame]574 if (ctx->engine == MBEDTLS_MD_ENGINE_PSA) {
Gilles Peskine12612e52022-10-22 20:07:28 +0200[diff] [blame]575 size_t size = ctx->md_info->size;
576 psa_status_t status = psa_hash_finish(ctx->md_ctx,
577 output, size, &size);
578 return mbedtls_md_error_from_psa(status);
579 }
580#endif
581
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]582 switch (ctx->md_info->type) {
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]583#if defined(MBEDTLS_MD5_C)
584 case MBEDTLS_MD_MD5:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]585 return mbedtls_md5_finish(ctx->md_ctx, output);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]586#endif
587#if defined(MBEDTLS_RIPEMD160_C)
588 case MBEDTLS_MD_RIPEMD160:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]589 return mbedtls_ripemd160_finish(ctx->md_ctx, output);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]590#endif
591#if defined(MBEDTLS_SHA1_C)
592 case MBEDTLS_MD_SHA1:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]593 return mbedtls_sha1_finish(ctx->md_ctx, output);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]594#endif
Mateusz Starzyke3c48b42021-04-19 16:46:28 +0200[diff] [blame]595#if defined(MBEDTLS_SHA224_C)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]596 case MBEDTLS_MD_SHA224:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]597 return mbedtls_sha256_finish(ctx->md_ctx, output);
Mateusz Starzyke3c48b42021-04-19 16:46:28 +0200[diff] [blame]598#endif
599#if defined(MBEDTLS_SHA256_C)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]600 case MBEDTLS_MD_SHA256:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]601 return mbedtls_sha256_finish(ctx->md_ctx, output);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]602#endif
Mateusz Starzyk3352a532021-04-06 14:28:22 +0200[diff] [blame]603#if defined(MBEDTLS_SHA384_C)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]604 case MBEDTLS_MD_SHA384:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]605 return mbedtls_sha512_finish(ctx->md_ctx, output);
Manuel Pégourié-Gonnardd6020842019-07-17 16:28:21 +0200[diff] [blame]606#endif
Mateusz Starzyk3352a532021-04-06 14:28:22 +0200[diff] [blame]607#if defined(MBEDTLS_SHA512_C)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]608 case MBEDTLS_MD_SHA512:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]609 return mbedtls_sha512_finish(ctx->md_ctx, output);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]610#endif
611 default:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]612 return MBEDTLS_ERR_MD_BAD_INPUT_DATA;
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]613 }
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]614}
615
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]616int mbedtls_md(const mbedtls_md_info_t *md_info, const unsigned char *input, size_t ilen,
617 unsigned char *output)
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]618{
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]619 if (md_info == NULL) {
620 return MBEDTLS_ERR_MD_BAD_INPUT_DATA;
621 }
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]622
Gilles Peskine12612e52022-10-22 20:07:28 +0200[diff] [blame]623#if defined(MBEDTLS_MD_SOME_PSA)
Manuel Pégourié-Gonnardf48b1f82023-03-14 10:50:52 +0100[diff] [blame]624 if (md_can_use_psa(md_info)) {
Gilles Peskine12612e52022-10-22 20:07:28 +0200[diff] [blame]625 size_t size = md_info->size;
Manuel Pégourié-Gonnardd8ea37f2023-03-09 10:46:22 +0100[diff] [blame]626 psa_status_t status = psa_hash_compute(psa_alg_of_md(md_info),
Gilles Peskine12612e52022-10-22 20:07:28 +0200[diff] [blame]627 input, ilen,
628 output, size, &size);
629 return mbedtls_md_error_from_psa(status);
630 }
631#endif
632
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]633 switch (md_info->type) {
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]634#if defined(MBEDTLS_MD5_C)
635 case MBEDTLS_MD_MD5:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]636 return mbedtls_md5(input, ilen, output);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]637#endif
638#if defined(MBEDTLS_RIPEMD160_C)
639 case MBEDTLS_MD_RIPEMD160:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]640 return mbedtls_ripemd160(input, ilen, output);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]641#endif
642#if defined(MBEDTLS_SHA1_C)
643 case MBEDTLS_MD_SHA1:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]644 return mbedtls_sha1(input, ilen, output);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]645#endif
Mateusz Starzyke3c48b42021-04-19 16:46:28 +0200[diff] [blame]646#if defined(MBEDTLS_SHA224_C)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]647 case MBEDTLS_MD_SHA224:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]648 return mbedtls_sha256(input, ilen, output, 1);
Mateusz Starzyke3c48b42021-04-19 16:46:28 +0200[diff] [blame]649#endif
650#if defined(MBEDTLS_SHA256_C)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]651 case MBEDTLS_MD_SHA256:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]652 return mbedtls_sha256(input, ilen, output, 0);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]653#endif
Mateusz Starzyk3352a532021-04-06 14:28:22 +0200[diff] [blame]654#if defined(MBEDTLS_SHA384_C)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]655 case MBEDTLS_MD_SHA384:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]656 return mbedtls_sha512(input, ilen, output, 1);
Manuel Pégourié-Gonnardd6020842019-07-17 16:28:21 +0200[diff] [blame]657#endif
Mateusz Starzyk3352a532021-04-06 14:28:22 +0200[diff] [blame]658#if defined(MBEDTLS_SHA512_C)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]659 case MBEDTLS_MD_SHA512:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]660 return mbedtls_sha512(input, ilen, output, 0);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]661#endif
662 default:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]663 return MBEDTLS_ERR_MD_BAD_INPUT_DATA;
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]664 }
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]665}
666
Manuel Pégourié-Gonnard1e57abd2023-02-23 20:45:26 +0100[diff] [blame]667unsigned char mbedtls_md_get_size(const mbedtls_md_info_t *md_info)
668{
669 if (md_info == NULL) {
670 return 0;
671 }
672
673 return md_info->size;
674}
675
676mbedtls_md_type_t mbedtls_md_get_type(const mbedtls_md_info_t *md_info)
677{
678 if (md_info == NULL) {
679 return MBEDTLS_MD_NONE;
680 }
681
682 return md_info->type;
683}
684
Manuel Pégourié-Gonnard36fb12e2023-03-28 11:33:23 +0200[diff] [blame^]685#if defined(MBEDTLS_PSA_CRYPTO_C)
686psa_algorithm_t mbedtls_md_psa_alg_from_type(mbedtls_md_type_t md_type)
687{
688 switch (md_type) {
689#if defined(MBEDTLS_MD_CAN_MD5)
690 case MBEDTLS_MD_MD5:
691 return PSA_ALG_MD5;
692#endif
693#if defined(MBEDTLS_MD_CAN_RIPEMD160)
694 case MBEDTLS_MD_RIPEMD160:
695 return PSA_ALG_RIPEMD160;
696#endif
697#if defined(MBEDTLS_MD_CAN_SHA1)
698 case MBEDTLS_MD_SHA1:
699 return PSA_ALG_SHA_1;
700#endif
701#if defined(MBEDTLS_MD_CAN_SHA224)
702 case MBEDTLS_MD_SHA224:
703 return PSA_ALG_SHA_224;
704#endif
705#if defined(MBEDTLS_MD_CAN_SHA256)
706 case MBEDTLS_MD_SHA256:
707 return PSA_ALG_SHA_256;
708#endif
709#if defined(MBEDTLS_MD_CAN_SHA384)
710 case MBEDTLS_MD_SHA384:
711 return PSA_ALG_SHA_384;
712#endif
713#if defined(MBEDTLS_MD_CAN_SHA512)
714 case MBEDTLS_MD_SHA512:
715 return PSA_ALG_SHA_512;
716#endif
717 default:
718 return PSA_ALG_NONE;
719 }
720}
721
722mbedtls_md_type_t mbedtls_md_type_from_psa_alg(psa_algorithm_t psa_alg)
723{
724 switch (psa_alg) {
725#if defined(MBEDTLS_MD_CAN_MD5)
726 case PSA_ALG_MD5:
727 return MBEDTLS_MD_MD5;
728#endif
729#if defined(MBEDTLS_MD_CAN_RIPEMD160)
730 case PSA_ALG_RIPEMD160:
731 return MBEDTLS_MD_RIPEMD160;
732#endif
733#if defined(MBEDTLS_MD_CAN_SHA1)
734 case PSA_ALG_SHA_1:
735 return MBEDTLS_MD_SHA1;
736#endif
737#if defined(MBEDTLS_MD_CAN_SHA224)
738 case PSA_ALG_SHA_224:
739 return MBEDTLS_MD_SHA224;
740#endif
741#if defined(MBEDTLS_MD_CAN_SHA256)
742 case PSA_ALG_SHA_256:
743 return MBEDTLS_MD_SHA256;
744#endif
745#if defined(MBEDTLS_MD_CAN_SHA384)
746 case PSA_ALG_SHA_384:
747 return MBEDTLS_MD_SHA384;
748#endif
749#if defined(MBEDTLS_MD_CAN_SHA512)
750 case PSA_ALG_SHA_512:
751 return MBEDTLS_MD_SHA512;
752#endif
753 default:
754 return MBEDTLS_MD_NONE;
755 }
756}
757
758int mbedtls_md_error_from_psa(psa_status_t status)
759{
760 switch (status) {
761 case PSA_SUCCESS:
762 return 0;
763 case PSA_ERROR_NOT_SUPPORTED:
764 return MBEDTLS_ERR_MD_FEATURE_UNAVAILABLE;
765 case PSA_ERROR_INVALID_ARGUMENT:
766 return MBEDTLS_ERR_MD_BAD_INPUT_DATA;
767 case PSA_ERROR_INSUFFICIENT_MEMORY:
768 return MBEDTLS_ERR_MD_ALLOC_FAILED;
769 default:
770 return MBEDTLS_ERR_PLATFORM_HW_ACCEL_FAILED;
771 }
772}
773#endif /* MBEDTLS_PSA_CRYPTO_C */
774
775
Manuel Pégourié-Gonnard1e57abd2023-02-23 20:45:26 +0100[diff] [blame]776/************************************************************************
777 * Functions above this separator are part of MBEDTLS_MD_LIGHT, *
778 * functions below are only available when MBEDTLS_MD_C is set. *
779 ************************************************************************/
780#if defined(MBEDTLS_MD_C)
781
782/*
783 * Reminder: update profiles in x509_crt.c when adding a new hash!
784 */
785static const int supported_digests[] = {
786
Gilles Peskine83d9e092022-10-22 18:32:43 +0200[diff] [blame]787#if defined(MBEDTLS_MD_CAN_SHA512)
Manuel Pégourié-Gonnard1e57abd2023-02-23 20:45:26 +0100[diff] [blame]788 MBEDTLS_MD_SHA512,
789#endif
790
Gilles Peskine83d9e092022-10-22 18:32:43 +0200[diff] [blame]791#if defined(MBEDTLS_MD_CAN_SHA384)
Manuel Pégourié-Gonnard1e57abd2023-02-23 20:45:26 +0100[diff] [blame]792 MBEDTLS_MD_SHA384,
793#endif
794
Gilles Peskine83d9e092022-10-22 18:32:43 +0200[diff] [blame]795#if defined(MBEDTLS_MD_CAN_SHA256)
Manuel Pégourié-Gonnard1e57abd2023-02-23 20:45:26 +0100[diff] [blame]796 MBEDTLS_MD_SHA256,
797#endif
Gilles Peskine83d9e092022-10-22 18:32:43 +0200[diff] [blame]798#if defined(MBEDTLS_MD_CAN_SHA224)
Manuel Pégourié-Gonnard1e57abd2023-02-23 20:45:26 +0100[diff] [blame]799 MBEDTLS_MD_SHA224,
800#endif
801
Gilles Peskine83d9e092022-10-22 18:32:43 +0200[diff] [blame]802#if defined(MBEDTLS_MD_CAN_SHA1)
Manuel Pégourié-Gonnard1e57abd2023-02-23 20:45:26 +0100[diff] [blame]803 MBEDTLS_MD_SHA1,
804#endif
805
Gilles Peskine83d9e092022-10-22 18:32:43 +0200[diff] [blame]806#if defined(MBEDTLS_MD_CAN_RIPEMD160)
Manuel Pégourié-Gonnard1e57abd2023-02-23 20:45:26 +0100[diff] [blame]807 MBEDTLS_MD_RIPEMD160,
808#endif
809
Gilles Peskine83d9e092022-10-22 18:32:43 +0200[diff] [blame]810#if defined(MBEDTLS_MD_CAN_MD5)
Manuel Pégourié-Gonnard1e57abd2023-02-23 20:45:26 +0100[diff] [blame]811 MBEDTLS_MD_MD5,
812#endif
813
814 MBEDTLS_MD_NONE
815};
816
817const int *mbedtls_md_list(void)
818{
819 return supported_digests;
820}
821
822const mbedtls_md_info_t *mbedtls_md_info_from_string(const char *md_name)
823{
824 if (NULL == md_name) {
825 return NULL;
826 }
827
828 /* Get the appropriate digest information */
Gilles Peskine83d9e092022-10-22 18:32:43 +0200[diff] [blame]829#if defined(MBEDTLS_MD_CAN_MD5)
Manuel Pégourié-Gonnard1e57abd2023-02-23 20:45:26 +0100[diff] [blame]830 if (!strcmp("MD5", md_name)) {
831 return mbedtls_md_info_from_type(MBEDTLS_MD_MD5);
832 }
833#endif
Gilles Peskine83d9e092022-10-22 18:32:43 +0200[diff] [blame]834#if defined(MBEDTLS_MD_CAN_RIPEMD160)
Manuel Pégourié-Gonnard1e57abd2023-02-23 20:45:26 +0100[diff] [blame]835 if (!strcmp("RIPEMD160", md_name)) {
836 return mbedtls_md_info_from_type(MBEDTLS_MD_RIPEMD160);
837 }
838#endif
Gilles Peskine83d9e092022-10-22 18:32:43 +0200[diff] [blame]839#if defined(MBEDTLS_MD_CAN_SHA1)
Manuel Pégourié-Gonnard1e57abd2023-02-23 20:45:26 +0100[diff] [blame]840 if (!strcmp("SHA1", md_name) || !strcmp("SHA", md_name)) {
841 return mbedtls_md_info_from_type(MBEDTLS_MD_SHA1);
842 }
843#endif
Gilles Peskine83d9e092022-10-22 18:32:43 +0200[diff] [blame]844#if defined(MBEDTLS_MD_CAN_SHA224)
Manuel Pégourié-Gonnard1e57abd2023-02-23 20:45:26 +0100[diff] [blame]845 if (!strcmp("SHA224", md_name)) {
846 return mbedtls_md_info_from_type(MBEDTLS_MD_SHA224);
847 }
848#endif
Gilles Peskine83d9e092022-10-22 18:32:43 +0200[diff] [blame]849#if defined(MBEDTLS_MD_CAN_SHA256)
Manuel Pégourié-Gonnard1e57abd2023-02-23 20:45:26 +0100[diff] [blame]850 if (!strcmp("SHA256", md_name)) {
851 return mbedtls_md_info_from_type(MBEDTLS_MD_SHA256);
852 }
853#endif
Gilles Peskine83d9e092022-10-22 18:32:43 +0200[diff] [blame]854#if defined(MBEDTLS_MD_CAN_SHA384)
Manuel Pégourié-Gonnard1e57abd2023-02-23 20:45:26 +0100[diff] [blame]855 if (!strcmp("SHA384", md_name)) {
856 return mbedtls_md_info_from_type(MBEDTLS_MD_SHA384);
857 }
858#endif
Gilles Peskine83d9e092022-10-22 18:32:43 +0200[diff] [blame]859#if defined(MBEDTLS_MD_CAN_SHA512)
Manuel Pégourié-Gonnard1e57abd2023-02-23 20:45:26 +0100[diff] [blame]860 if (!strcmp("SHA512", md_name)) {
861 return mbedtls_md_info_from_type(MBEDTLS_MD_SHA512);
862 }
863#endif
864 return NULL;
865}
866
867const mbedtls_md_info_t *mbedtls_md_info_from_ctx(
868 const mbedtls_md_context_t *ctx)
869{
870 if (ctx == NULL) {
871 return NULL;
872 }
873
874 return ctx->MBEDTLS_PRIVATE(md_info);
875}
876
877#if defined(MBEDTLS_FS_IO)
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]878int mbedtls_md_file(const mbedtls_md_info_t *md_info, const char *path, unsigned char *output)
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]879{
Janos Follath24eed8d2019-11-22 13:21:35 +0000[diff] [blame]880 int ret = MBEDTLS_ERR_ERROR_CORRUPTION_DETECTED;
Manuel Pégourié-Gonnardbfffa902015-05-28 14:44:00 +0200[diff] [blame]881 FILE *f;
882 size_t n;
883 mbedtls_md_context_t ctx;
884 unsigned char buf[1024];
Paul Bakker9c021ad2011-06-09 15:55:11 +0000[diff] [blame]885
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]886 if (md_info == NULL) {
887 return MBEDTLS_ERR_MD_BAD_INPUT_DATA;
888 }
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]889
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]890 if ((f = fopen(path, "rb")) == NULL) {
891 return MBEDTLS_ERR_MD_FILE_IO_ERROR;
892 }
Manuel Pégourié-Gonnardbcc03082015-06-24 00:09:29 +0200[diff] [blame]893
Gilles Peskineda0913b2022-06-30 17:03:40 +0200[diff] [blame]894 /* Ensure no stdio buffering of secrets, as such buffers cannot be wiped. */
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]895 mbedtls_setbuf(f, NULL);
Gilles Peskineda0913b2022-06-30 17:03:40 +0200[diff] [blame]896
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]897 mbedtls_md_init(&ctx);
Manuel Pégourié-Gonnardbfffa902015-05-28 14:44:00 +0200[diff] [blame]898
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]899 if ((ret = mbedtls_md_setup(&ctx, md_info, 0)) != 0) {
Manuel Pégourié-Gonnardbfffa902015-05-28 14:44:00 +0200[diff] [blame]900 goto cleanup;
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]901 }
Manuel Pégourié-Gonnardbfffa902015-05-28 14:44:00 +0200[diff] [blame]902
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]903 if ((ret = mbedtls_md_starts(&ctx)) != 0) {
Andres Amaya Garcia0dd4fa02017-06-28 14:16:07 +0100[diff] [blame]904 goto cleanup;
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]905 }
Manuel Pégourié-Gonnardbfffa902015-05-28 14:44:00 +0200[diff] [blame]906
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]907 while ((n = fread(buf, 1, sizeof(buf), f)) > 0) {
908 if ((ret = mbedtls_md_update(&ctx, buf, n)) != 0) {
Andres Amaya Garcia0dd4fa02017-06-28 14:16:07 +0100[diff] [blame]909 goto cleanup;
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]910 }
911 }
Manuel Pégourié-Gonnardbfffa902015-05-28 14:44:00 +0200[diff] [blame]912
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]913 if (ferror(f) != 0) {
Manuel Pégourié-Gonnardbfffa902015-05-28 14:44:00 +0200[diff] [blame]914 ret = MBEDTLS_ERR_MD_FILE_IO_ERROR;
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]915 } else {
916 ret = mbedtls_md_finish(&ctx, output);
917 }
Manuel Pégourié-Gonnardbfffa902015-05-28 14:44:00 +0200[diff] [blame]918
919cleanup:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]920 mbedtls_platform_zeroize(buf, sizeof(buf));
921 fclose(f);
922 mbedtls_md_free(&ctx);
Paul Bakker9c021ad2011-06-09 15:55:11 +0000[diff] [blame]923
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]924 return ret;
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]925}
Manuel Pégourié-Gonnard1e57abd2023-02-23 20:45:26 +0100[diff] [blame]926#endif /* MBEDTLS_FS_IO */
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]927
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]928int mbedtls_md_hmac_starts(mbedtls_md_context_t *ctx, const unsigned char *key, size_t keylen)
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]929{
Janos Follath24eed8d2019-11-22 13:21:35 +0000[diff] [blame]930 int ret = MBEDTLS_ERR_ERROR_CORRUPTION_DETECTED;
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]931 unsigned char sum[MBEDTLS_MD_MAX_SIZE];
Manuel Pégourié-Gonnarddfb3dc82015-03-25 11:49:07 +0100[diff] [blame]932 unsigned char *ipad, *opad;
Manuel Pégourié-Gonnard8379a822015-03-24 16:48:22 +0100[diff] [blame]933
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]934 if (ctx == NULL || ctx->md_info == NULL || ctx->hmac_ctx == NULL) {
935 return MBEDTLS_ERR_MD_BAD_INPUT_DATA;
936 }
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]937
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]938 if (keylen > (size_t) ctx->md_info->block_size) {
939 if ((ret = mbedtls_md_starts(ctx)) != 0) {
Andres Amaya Garcia0dd4fa02017-06-28 14:16:07 +0100[diff] [blame]940 goto cleanup;
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]941 }
942 if ((ret = mbedtls_md_update(ctx, key, keylen)) != 0) {
Andres Amaya Garcia0dd4fa02017-06-28 14:16:07 +0100[diff] [blame]943 goto cleanup;
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]944 }
945 if ((ret = mbedtls_md_finish(ctx, sum)) != 0) {
Andres Amaya Garcia0dd4fa02017-06-28 14:16:07 +0100[diff] [blame]946 goto cleanup;
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]947 }
Manuel Pégourié-Gonnard8379a822015-03-24 16:48:22 +0100[diff] [blame]948
949 keylen = ctx->md_info->size;
950 key = sum;
951 }
952
Manuel Pégourié-Gonnarddfb3dc82015-03-25 11:49:07 +0100[diff] [blame]953 ipad = (unsigned char *) ctx->hmac_ctx;
954 opad = (unsigned char *) ctx->hmac_ctx + ctx->md_info->block_size;
955
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]956 memset(ipad, 0x36, ctx->md_info->block_size);
957 memset(opad, 0x5C, ctx->md_info->block_size);
Manuel Pégourié-Gonnard8379a822015-03-24 16:48:22 +0100[diff] [blame]958
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]959 mbedtls_xor(ipad, ipad, key, keylen);
960 mbedtls_xor(opad, opad, key, keylen);
Manuel Pégourié-Gonnard8379a822015-03-24 16:48:22 +0100[diff] [blame]961
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]962 if ((ret = mbedtls_md_starts(ctx)) != 0) {
Andres Amaya Garcia0dd4fa02017-06-28 14:16:07 +0100[diff] [blame]963 goto cleanup;
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]964 }
965 if ((ret = mbedtls_md_update(ctx, ipad,
966 ctx->md_info->block_size)) != 0) {
Andres Amaya Garcia42e5e102017-07-20 16:27:03 +0100[diff] [blame]967 goto cleanup;
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]968 }
Andres Amaya Garcia0dd4fa02017-06-28 14:16:07 +0100[diff] [blame]969
970cleanup:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]971 mbedtls_platform_zeroize(sum, sizeof(sum));
Manuel Pégourié-Gonnard8379a822015-03-24 16:48:22 +0100[diff] [blame]972
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]973 return ret;
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]974}
975
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]976int mbedtls_md_hmac_update(mbedtls_md_context_t *ctx, const unsigned char *input, size_t ilen)
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]977{
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]978 if (ctx == NULL || ctx->md_info == NULL || ctx->hmac_ctx == NULL) {
979 return MBEDTLS_ERR_MD_BAD_INPUT_DATA;
980 }
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]981
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]982 return mbedtls_md_update(ctx, input, ilen);
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]983}
984
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]985int mbedtls_md_hmac_finish(mbedtls_md_context_t *ctx, unsigned char *output)
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]986{
Janos Follath24eed8d2019-11-22 13:21:35 +0000[diff] [blame]987 int ret = MBEDTLS_ERR_ERROR_CORRUPTION_DETECTED;
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]988 unsigned char tmp[MBEDTLS_MD_MAX_SIZE];
Manuel Pégourié-Gonnarddfb3dc82015-03-25 11:49:07 +0100[diff] [blame]989 unsigned char *opad;
Manuel Pégourié-Gonnard8379a822015-03-24 16:48:22 +0100[diff] [blame]990
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]991 if (ctx == NULL || ctx->md_info == NULL || ctx->hmac_ctx == NULL) {
992 return MBEDTLS_ERR_MD_BAD_INPUT_DATA;
993 }
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]994
Manuel Pégourié-Gonnarddfb3dc82015-03-25 11:49:07 +0100[diff] [blame]995 opad = (unsigned char *) ctx->hmac_ctx + ctx->md_info->block_size;
996
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]997 if ((ret = mbedtls_md_finish(ctx, tmp)) != 0) {
998 return ret;
999 }
1000 if ((ret = mbedtls_md_starts(ctx)) != 0) {
1001 return ret;
1002 }
1003 if ((ret = mbedtls_md_update(ctx, opad,
1004 ctx->md_info->block_size)) != 0) {
1005 return ret;
1006 }
1007 if ((ret = mbedtls_md_update(ctx, tmp,
1008 ctx->md_info->size)) != 0) {
1009 return ret;
1010 }
1011 return mbedtls_md_finish(ctx, output);
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]1012}
1013
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1014int mbedtls_md_hmac_reset(mbedtls_md_context_t *ctx)
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]1015{
Janos Follath24eed8d2019-11-22 13:21:35 +0000[diff] [blame]1016 int ret = MBEDTLS_ERR_ERROR_CORRUPTION_DETECTED;
Manuel Pégourié-Gonnarddfb3dc82015-03-25 11:49:07 +0100[diff] [blame]1017 unsigned char *ipad;
1018
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1019 if (ctx == NULL || ctx->md_info == NULL || ctx->hmac_ctx == NULL) {
1020 return MBEDTLS_ERR_MD_BAD_INPUT_DATA;
1021 }
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]1022
Manuel Pégourié-Gonnarddfb3dc82015-03-25 11:49:07 +0100[diff] [blame]1023 ipad = (unsigned char *) ctx->hmac_ctx;
1024
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1025 if ((ret = mbedtls_md_starts(ctx)) != 0) {
1026 return ret;
1027 }
1028 return mbedtls_md_update(ctx, ipad, ctx->md_info->block_size);
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]1029}
1030
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1031int mbedtls_md_hmac(const mbedtls_md_info_t *md_info,
1032 const unsigned char *key, size_t keylen,
1033 const unsigned char *input, size_t ilen,
1034 unsigned char *output)
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]1035{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1036 mbedtls_md_context_t ctx;
Janos Follath24eed8d2019-11-22 13:21:35 +0000[diff] [blame]1037 int ret = MBEDTLS_ERR_ERROR_CORRUPTION_DETECTED;
Manuel Pégourié-Gonnard8379a822015-03-24 16:48:22 +0100[diff] [blame]1038
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1039 if (md_info == NULL) {
1040 return MBEDTLS_ERR_MD_BAD_INPUT_DATA;
1041 }
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]1042
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1043 mbedtls_md_init(&ctx);
Manuel Pégourié-Gonnard8379a822015-03-24 16:48:22 +0100[diff] [blame]1044
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1045 if ((ret = mbedtls_md_setup(&ctx, md_info, 1)) != 0) {
Andres Amaya Garcia0dd4fa02017-06-28 14:16:07 +0100[diff] [blame]1046 goto cleanup;
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1047 }
Manuel Pégourié-Gonnard8379a822015-03-24 16:48:22 +0100[diff] [blame]1048
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1049 if ((ret = mbedtls_md_hmac_starts(&ctx, key, keylen)) != 0) {
Andres Amaya Garcia0dd4fa02017-06-28 14:16:07 +0100[diff] [blame]1050 goto cleanup;
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1051 }
1052 if ((ret = mbedtls_md_hmac_update(&ctx, input, ilen)) != 0) {
Andres Amaya Garcia0dd4fa02017-06-28 14:16:07 +0100[diff] [blame]1053 goto cleanup;
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1054 }
1055 if ((ret = mbedtls_md_hmac_finish(&ctx, output)) != 0) {
Andres Amaya Garciaaa464ef2017-07-21 14:21:53 +0100[diff] [blame]1056 goto cleanup;
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1057 }
Manuel Pégourié-Gonnard8379a822015-03-24 16:48:22 +0100[diff] [blame]1058
Andres Amaya Garcia0dd4fa02017-06-28 14:16:07 +0100[diff] [blame]1059cleanup:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1060 mbedtls_md_free(&ctx);
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]1061
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1062 return ret;
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]1063}
1064
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1065const char *mbedtls_md_get_name(const mbedtls_md_info_t *md_info)
Manuel Pégourié-Gonnardca878db2015-03-24 12:13:30 +0100[diff] [blame]1066{
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1067 if (md_info == NULL) {
1068 return NULL;
1069 }
Manuel Pégourié-Gonnardca878db2015-03-24 12:13:30 +0100[diff] [blame]1070
1071 return md_info->name;
1072}
Manuel Pégourié-Gonnard1e57abd2023-02-23 20:45:26 +0100[diff] [blame]1073
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1074#endif /* MBEDTLS_MD_C */
Manuel Pégourié-Gonnardb9b630d2023-02-16 19:07:31 +0100[diff] [blame]1075
1076#endif /* MBEDTLS_MD_LIGHT */