MastersThesis/PQ_TIIGER_TLS/include/tls_sal.h

225 lines
6.1 KiB
C
Raw Normal View History

2024-04-15 09:53:30 +00:00
/**
* @file tls_sal.h
* @author Mike Scott
* @brief Security Abstraction Layer for TLS
*
*/
// Process input received from Server
#ifndef TLS_SAL_H
#define TLS_SAL_H
// Use MIRACL core library
#include "tls1_3.h"
/** @brief Return name of SAL provider
*
@return name of SAL provider
*/
extern char *SAL_name();
/** @brief Return supported ciphers
*
@param ciphers array of supported ciphers in preferred order
@return number of supported ciphers
*/
extern int SAL_ciphers(int *ciphers);
/** @brief Return supported groups in preferred order
*
@param groups array of supported groups
@return number of supported groups
*/
extern int SAL_groups(int *groups);
/** @brief Return supported TLS signature algorithms in preferred order
*
@param sigAlgs array of supported signature algorithms
@return number of supported groups
*/
extern int SAL_sigs(int *sigAlgs);
/** @brief Return supported TLS signature algorithms for Certificates in preferred order
*
@param sigAlgsCert array of supported signature algorithms for Certificates
@return number of supported groups
*/
extern int SAL_sigCerts(int *sigAlgsCert);
/** @brief Initialise library for use
*
@return return true if successful, else false
*/
extern bool SAL_initLib();
/** @brief finish use of library
*
*/
extern void SAL_endLib();
/** @brief return hash type asspciated with a cipher suite
*
@param cipher_suite a TLS cipher suite
@return hash function output length
*/
extern int SAL_hashType(int cipher_suite);
/** @brief return output length of hash function associated with a hash type
*
@param hash_type a TLS hash type
@return hash function output length
*/
extern int SAL_hashLen(int hash_type);
/** @brief return key length associated with a cipher suite
*
@param cipher_suite a TLS cipher suite
@return key length
*/
int SAL_aeadKeylen(int cipher_suite);
/** @brief return authentication tag length associated with a cipher suite
*
@param cipher_suite a TLS cipher suite
@return tag length
*/
int SAL_aeadTaglen(int cipher_suite);
/** @brief get a random byte
*
@return a random byte
*/
extern int SAL_randomByte();
/** @brief get a random octad
*
@param len number of random bytes
@param R octad to be filled with random bytes
*/
extern void SAL_randomOctad(int len, octad *R);
/** @brief HKDF Extract function
*
@param sha hash algorithm
@param PRK an output Key
@param SALT public input salt
@param IKM raw secret keying material
*/
extern void SAL_hkdfExtract(int sha,octad *PRK,octad *SALT,octad *IKM);
/** @brief Special HKDF Expand function (for TLS)
*
@param htype hash algorithm
@param olen is the desired length of the expanded key
@param OKM an expanded output Key
@param PRK is the fixed length input key
@param INFO is public label information
*/
extern void SAL_hkdfExpand(int htype, int olen, octad *OKM,octad *PRK, octad *INFO);
/** @brief simple HMAC function
*
@param htype hash algorithm
@param T an output tag
@param K an input key, or salt
@param M an input message
*/
extern void SAL_hmac(int htype,octad *T,octad *K,octad *M);
/** @brief simple HASH of nothing function
*
@param sha the SHA2 function output length (32,48 or 64)
@param H the output hash
*/
extern void SAL_hashNull(int sha,octad *H);
// hash functions
/** @brief Initiate Hashing context
*
@param hlen length in bytes of SHA2 hashing output
@param h a hashing context
*/
extern void SAL_hashInit(int hlen,unihash *h);
/** @brief Hash process an array of bytes
*
@param h a hashing context
@param b the byte array to be included in hash
@param len the array length
*/
extern void SAL_hashProcessArray(unihash *h,char *b,int len);
/** @brief Hash finish and output
*
@param h a hashing context
@param d the current output digest of an ongoing hashing operation
@return hash output length
*/
extern int SAL_hashOutput(unihash *h,char *d);
/** @brief AEAD encryption
*
@param send the AES key and IV
@param hdrlen the length of the header
@param hdr the header bytes
@param ptlen the plaintext length
@param pt the input plaintext and output ciphertext
@param TAG the output authentication tag
*/
extern void SAL_aeadEncrypt(crypto *send,int hdrlen,char *hdr,int ptlen,char *pt,octad *TAG);
/** @brief AEAD decryption
*
@param recv the AES key and IV
@param hdrlen the length of the header
@param hdr the header bytes
@param ctlen the ciphertext length
@param ct the input ciphertext and output plaintext
@param TAG the expected authentication tag
@return false if tag is wrong, else true
*/
extern bool SAL_aeadDecrypt(crypto *recv,int hdrlen,char *hdr,int ctlen,char *ct,octad *TAG);
/** @brief generate a public/private key pair in an approved group for a key exchange
*
@param group the cryptographic group used to generate the key pair
@param SK the output Private Key
@param PK the output Public Key
*/
extern void SAL_generateKeyPair(int group,octad *SK,octad *PK);
/** @brief generate a Diffie-Hellman shared secret
*
@param group the cryptographic group used to generate the shared secret
@param SK the input client private key
@param PK the input server public Key
@param SS the output shared secret
@return false for all zeros, else true
*/
extern bool SAL_generateSharedSecret(int group,octad *SK,octad *PK,octad *SS);
/** @brief Verify a generic TLS signature
*
@param sigAlg the signature type
@param TRANS the signed input transcript hash
@param SIG the input signature
@param PUBKEY the public key used to verify the signature
@return true if signature is valid, else false
*/
extern bool SAL_tlsSignatureVerify(int sigAlg,octad *TRANS,octad *SIG,octad *PUBKEY);
/** @brief Apply a generic TLS transcript signature
*
@param sigAlg the signature type
@param KEY the private key used to form the signature
@param TRANS the input transcript hash to be signed
@param SIG the output signature
*/
extern void SAL_tlsSignature(int sigAlg,octad *KEY,octad *TRANS,octad *SIG);
#endif