[thirdparty/openssl.git] / providers / common / include / prov / provider_util.h

/*
 * Copyright 2019-2020 The OpenSSL Project Authors. All Rights Reserved.
 *
 * Licensed under the Apache License 2.0 (the "License").  You may not use
 * this file except in compliance with the License.  You can obtain a copy
 * in the file LICENSE in the source distribution or at
 * https://www.openssl.org/source/license.html
 */

#include <openssl/provider.h>
#include <openssl/engine.h>

typedef struct {
    /*
     * References to the underlying cipher implementation.  |cipher| caches
     * the cipher, always.  |alloc_cipher| only holds a reference to an
     * explicitly fetched cipher.
     */
    const EVP_CIPHER *cipher;   /* cipher */
    EVP_CIPHER *alloc_cipher;   /* fetched cipher */

    /* Conditions for legacy EVP_CIPHER uses */
    ENGINE *engine;             /* cipher engine */
} PROV_CIPHER;

typedef struct {
    /*
     * References to the underlying digest implementation.  |md| caches
     * the digest, always.  |alloc_md| only holds a reference to an explicitly
     * fetched digest.
     */
    const EVP_MD *md;           /* digest */
    EVP_MD *alloc_md;           /* fetched digest */

    /* Conditions for legacy EVP_MD uses */
    ENGINE *engine;             /* digest engine */
} PROV_DIGEST;

/* Cipher functions */
/*
 * Load a cipher from the specified parameters with the specified context.
 * The params "properties", "engine" and "cipher" are used to determine the
 * implementation used.  If a provider cannot be found, it falls back to trying
 * non-provider based implementations.
 */
int ossl_prov_cipher_load_from_params(PROV_CIPHER *pc,
                                      const OSSL_PARAM params[],
                                      OSSL_LIB_CTX *ctx);

/* Reset the PROV_CIPHER fields and free any allocated cipher reference */
void ossl_prov_cipher_reset(PROV_CIPHER *pc);

/* Clone a PROV_CIPHER structure into a second */
int ossl_prov_cipher_copy(PROV_CIPHER *dst, const PROV_CIPHER *src);

/* Query the cipher and associated engine (if any) */
const EVP_CIPHER *ossl_prov_cipher_cipher(const PROV_CIPHER *pc);
ENGINE *ossl_prov_cipher_engine(const PROV_CIPHER *pc);

/* Digest functions */

/*
 * Fetch a digest from the specified libctx using the provided mdname and
 * propquery. Store the result in the PROV_DIGEST and return the fetched md.
 */
const EVP_MD *ossl_prov_digest_fetch(PROV_DIGEST *pd, OSSL_LIB_CTX *libctx,
                                     const char *mdname, const char *propquery);

/*
 * Load a digest from the specified parameters with the specified context.
 * The params "properties", "engine" and "digest" are used to determine the
 * implementation used.  If a provider cannot be found, it falls back to trying
 * non-provider based implementations.
 */
int ossl_prov_digest_load_from_params(PROV_DIGEST *pd,
                                      const OSSL_PARAM params[],
                                      OSSL_LIB_CTX *ctx);

/* Reset the PROV_DIGEST fields and free any allocated digest reference */
void ossl_prov_digest_reset(PROV_DIGEST *pd);

/* Clone a PROV_DIGEST structure into a second */
int ossl_prov_digest_copy(PROV_DIGEST *dst, const PROV_DIGEST *src);

/* Query the digest and associated engine (if any) */
const EVP_MD *ossl_prov_digest_md(const PROV_DIGEST *pd);
ENGINE *ossl_prov_digest_engine(const PROV_DIGEST *pd);


/*
 * Set the various parameters on an EVP_MAC_CTX from the supplied arguments.
 * If any of the supplied ciphername/mdname etc are NULL then the values
 * from the supplied params (if non NULL) are used instead.
 */
int ossl_prov_set_macctx(EVP_MAC_CTX *macctx,
                         const OSSL_PARAM params[],
                         const char *ciphername,
                         const char *mdname,
                         const char *engine,
                         const char *properties,
                         const unsigned char *key,
                         size_t keylen);

/* MAC functions */
/*
 * Load an EVP_MAC_CTX* from the specified parameters with the specified
 * library context.
 * The params "mac" and "properties" are used to determine the implementation
 * used, and the parameters "digest", "cipher", "engine" and "properties" are
 * passed to the MAC via the created MAC context if they are given.
 * If there is already a created MAC context, it will be replaced if the "mac"
 * parameter is found, otherwise it will simply be used as is, and passed the
 * parameters to pilfer as it sees fit.
 *
 * As an option, a MAC name may be explicitly given, and if it is, the "mac"
 * parameter will be ignored.
 * Similarly, as an option, a cipher name or a digest name may be explicitly
 * given, and if any of them is, the "digest" and "cipher" parameters are
 * ignored.
 */
int ossl_prov_macctx_load_from_params(EVP_MAC_CTX **macctx,
                                      const OSSL_PARAM params[],
                                      const char *macname,
                                      const char *ciphername,
                                      const char *mdname,
                                      OSSL_LIB_CTX *ctx);

typedef struct ag_capable_st {
    OSSL_ALGORITHM alg;
    int (*capable)(void);
} OSSL_ALGORITHM_CAPABLE;

/*
 * Dynamically select algorithms by calling a capable() method.
 * If this method is NULL or the method returns 1 then the algorithm is added.
 */
void ossl_prov_cache_exported_algorithms(const OSSL_ALGORITHM_CAPABLE *in,
                                         OSSL_ALGORITHM *out);
Commit	Line	Data
2f17cc49	1	/*
33388b44	2	* Copyright 2019-2020 The OpenSSL Project Authors. All Rights Reserved.
2f17cc49 P	3	*
	4	* Licensed under the Apache License 2.0 (the "License"). You may not use
	5	* this file except in compliance with the License. You can obtain a copy
	6	* in the file LICENSE in the source distribution or at
	7	* https://www.openssl.org/source/license.html
	8	*/
	9
	10	#include <openssl/provider.h>
	11	#include <openssl/engine.h>
	12
	13	typedef struct {
	14	/*
	15	* References to the underlying cipher implementation. \|cipher\| caches
	16	* the cipher, always. \|alloc_cipher\| only holds a reference to an
	17	* explicitly fetched cipher.
	18	*/
	19	const EVP_CIPHER cipher; / cipher */
	20	EVP_CIPHER alloc_cipher; / fetched cipher */
	21
	22	/* Conditions for legacy EVP_CIPHER uses */
	23	ENGINE engine; / cipher engine */
	24	} PROV_CIPHER;
	25
	26	typedef struct {
	27	/*
	28	* References to the underlying digest implementation. \|md\| caches
	29	* the digest, always. \|alloc_md\| only holds a reference to an explicitly
	30	* fetched digest.
	31	*/
	32	const EVP_MD md; / digest */
	33	EVP_MD alloc_md; / fetched digest */
	34
	35	/* Conditions for legacy EVP_MD uses */
	36	ENGINE engine; / digest engine */
	37	} PROV_DIGEST;
	38
	39	/* Cipher functions */
	40	/*
	41	* Load a cipher from the specified parameters with the specified context.
	42	* The params "properties", "engine" and "cipher" are used to determine the
	43	* implementation used. If a provider cannot be found, it falls back to trying
	44	* non-provider based implementations.
	45	*/
7cfa1717	46	int ossl_prov_cipher_load_from_params(PROV_CIPHER *pc,
2f17cc49	47	const OSSL_PARAM params[],
b4250010	48	OSSL_LIB_CTX *ctx);
2f17cc49 P	49
2f17cc49 P	50	/* Reset the PROV_CIPHER fields and free any allocated cipher reference */
7cfa1717	51	void ossl_prov_cipher_reset(PROV_CIPHER *pc);
2f17cc49 P	52
	53	/* Clone a PROV_CIPHER structure into a second */
	54	int ossl_prov_cipher_copy(PROV_CIPHER dst, const PROV_CIPHER src);
	55
	56	/* Query the cipher and associated engine (if any) */
7cfa1717 RL	57	const EVP_CIPHER ossl_prov_cipher_cipher(const PROV_CIPHER pc);
7cfa1717 RL	58	ENGINE ossl_prov_cipher_engine(const PROV_CIPHER pc);
2f17cc49 P	59
2f17cc49 P	60	/* Digest functions */
ce64d3ee MC	61
	62	/*
	63	* Fetch a digest from the specified libctx using the provided mdname and
	64	* propquery. Store the result in the PROV_DIGEST and return the fetched md.
	65	*/
b4250010	66	const EVP_MD ossl_prov_digest_fetch(PROV_DIGEST pd, OSSL_LIB_CTX *libctx,
ce64d3ee MC	67	const char mdname, const char propquery);
ce64d3ee MC	68
2f17cc49 P	69	/*
	70	* Load a digest from the specified parameters with the specified context.
	71	* The params "properties", "engine" and "digest" are used to determine the
	72	* implementation used. If a provider cannot be found, it falls back to trying
	73	* non-provider based implementations.
	74	*/
	75	int ossl_prov_digest_load_from_params(PROV_DIGEST *pd,
	76	const OSSL_PARAM params[],
b4250010	77	OSSL_LIB_CTX *ctx);
2f17cc49 P	78
	79	/* Reset the PROV_DIGEST fields and free any allocated digest reference */
	80	void ossl_prov_digest_reset(PROV_DIGEST *pd);
	81
	82	/* Clone a PROV_DIGEST structure into a second */
	83	int ossl_prov_digest_copy(PROV_DIGEST dst, const PROV_DIGEST src);
	84
	85	/* Query the digest and associated engine (if any) */
	86	const EVP_MD ossl_prov_digest_md(const PROV_DIGEST pd);
	87	ENGINE ossl_prov_digest_engine(const PROV_DIGEST pd);
4e8b8e47	88
2ef9a7ac MC	89
	90	/*
	91	* Set the various parameters on an EVP_MAC_CTX from the supplied arguments.
	92	* If any of the supplied ciphername/mdname etc are NULL then the values
	93	* from the supplied params (if non NULL) are used instead.
	94	*/
	95	int ossl_prov_set_macctx(EVP_MAC_CTX *macctx,
	96	const OSSL_PARAM params[],
	97	const char *ciphername,
	98	const char *mdname,
	99	const char *engine,
	100	const char *properties,
	101	const unsigned char *key,
	102	size_t keylen);
	103
4e8b8e47 RL	104	/* MAC functions */
	105	/*
	106	* Load an EVP_MAC_CTX* from the specified parameters with the specified
	107	* library context.
	108	* The params "mac" and "properties" are used to determine the implementation
	109	* used, and the parameters "digest", "cipher", "engine" and "properties" are
	110	* passed to the MAC via the created MAC context if they are given.
	111	* If there is already a created MAC context, it will be replaced if the "mac"
	112	* parameter is found, otherwise it will simply be used as is, and passed the
	113	* parameters to pilfer as it sees fit.
	114	*
	115	* As an option, a MAC name may be explicitly given, and if it is, the "mac"
	116	* parameter will be ignored.
	117	* Similarly, as an option, a cipher name or a digest name may be explicitly
	118	* given, and if any of them is, the "digest" and "cipher" parameters are
	119	* ignored.
	120	*/
	121	int ossl_prov_macctx_load_from_params(EVP_MAC_CTX **macctx,
	122	const OSSL_PARAM params[],
	123	const char *macname,
	124	const char *ciphername,
	125	const char *mdname,
b4250010	126	OSSL_LIB_CTX *ctx);
0d2bfe52 SL	127
	128	typedef struct ag_capable_st {
	129	OSSL_ALGORITHM alg;
	130	int (*capable)(void);
	131	} OSSL_ALGORITHM_CAPABLE;
	132
	133	/*
	134	* Dynamically select algorithms by calling a capable() method.
	135	* If this method is NULL or the method returns 1 then the algorithm is added.
	136	*/
	137	void ossl_prov_cache_exported_algorithms(const OSSL_ALGORITHM_CAPABLE *in,
	138	OSSL_ALGORITHM *out);