crypt_drbg.h

/*
 * This file is part of the openHiTLS project.
 *
 * openHiTLS is licensed under the Mulan PSL v2.
 * You can use this software according to the terms and conditions of the Mulan PSL v2.
 * You may obtain a copy of Mulan PSL v2 at:
 *
 *     http://license.coscl.org.cn/MulanPSL2
 *
 * THIS SOFTWARE IS PROVIDED ON AN "AS IS" BASIS, WITHOUT WARRANTIES OF ANY KIND,
 * EITHER EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO NON-INFRINGEMENT,
 * MERCHANTABILITY OR FIT FOR A PARTICULAR PURPOSE.
 * See the Mulan PSL v2 for more details.
 */
 
#ifndef CRYPT_DRBG_H
#define CRYPT_DRBG_H
 
#include "hitls_build.h"
#ifdef HITLS_CRYPTO_DRBG
 
#include <stdint.h>
#include <stdbool.h>
#include "crypt_types.h"
#include "crypt_local_types.h"
#ifdef HITLS_BSL_PARAMS
#include "bsl_params.h"
#include "crypt_params_key.h"
#endif
 
#ifdef __cplusplus
extern "C" {
#endif
 
// hlcheck : health testing
// pr : prediction_resistance
 
typedef struct DrbgCtx DRBG_Ctx;
 
#define DRBG_MAX_LEN                (0x7ffffff0)
#define DRBG_MAX_REQUEST            (1 << 16)
 
#ifndef DRBG_MAX_RESEED_INTERVAL
#define DRBG_MAX_RESEED_INTERVAL    (10000)
#endif
 
/* Default reseed intervals */
# define DRBG_RESEED_INTERVAL       (1 << 8)
# define DRBG_TIME_INTERVAL         (60 * 60)   /* 1 hour */
 
#ifndef DRBG_MAX_REQUEST_SM3
#define DRBG_MAX_REQUEST_SM3   (1 << 5)
#endif
 
#ifndef DRBG_MAX_REQUEST_SM4
#define DRBG_MAX_REQUEST_SM4 (1 << 4)
#endif
 
#ifndef DRBG_RESEED_INTERVAL_GM1
#define DRBG_RESEED_INTERVAL_GM1    (1 << 20)
#endif
 
#ifndef DRBG_RESEED_TIME_GM1
#define DRBG_RESEED_TIME_GM1    (600)
#endif
 
#ifndef DRBG_RESEED_INTERVAL_GM2
#define DRBG_RESEED_INTERVAL_GM2    (1 << 10)
#endif
 
#ifndef DRBG_RESEED_TIME_GM2
#define DRBG_RESEED_TIME_GM2    (60)
#endif
 
#ifndef HITLS_CRYPTO_DRBG_GM_LEVEL
#define HITLS_CRYPTO_DRBG_GM_LEVEL 2
#endif
 
#ifndef HITLS_CRYPTO_RESEED_INTERVAL_GM
#if HITLS_CRYPTO_DRBG_GM_LEVEL == 1
#define  HITLS_CRYPTO_RESEED_INTERVAL_GM   DRBG_RESEED_INTERVAL_GM1
#else
#define  HITLS_CRYPTO_RESEED_INTERVAL_GM   DRBG_RESEED_INTERVAL_GM2
#endif
#endif
 
#ifdef HITLS_CRYPTO_ENTROPY
    #ifndef HITLS_SEED_DRBG_INIT_RAND_ALG
        #ifdef HITLS_CRYPTO_AES
            #define  HITLS_SEED_DRBG_INIT_RAND_ALG   CRYPT_RAND_AES256_CTR
        #else
            #error "HITLS_SEED_DRBG_INIT_RAND_ALG configuration error."
        #endif
    #endif
#endif
 
#ifndef HITLS_CRYPTO_DRBG_RESEED_TIME_GM
#if HITLS_CRYPTO_DRBG_GM_LEVEL == 1
#define  HITLS_CRYPTO_DRBG_RESEED_TIME_GM  DRBG_RESEED_TIME_GM1
#else
#define  HITLS_CRYPTO_DRBG_RESEED_TIME_GM  DRBG_RESEED_TIME_GM2
#endif
#endif
 
#define DRBG_HASH_MAX_MDSIZE  (64)
 
typedef struct {
    CRYPT_RAND_AlgId  drbgId;
    int32_t depId;
    uint32_t type;
} DrbgIdMap;

DRBG_Ctx *DRBG_New(void *libCtx, int32_t algId, CRYPT_RandSeedMethod *seedMethod, void *seedCtx);
 
#ifdef HITLS_BSL_PARAMS
DRBG_Ctx *DRBG_NewEx(void *libCtx, int32_t algId, BSL_Param *param);
#endif

void DRBG_Free(DRBG_Ctx *ctx);

int32_t DRBG_Instantiate(DRBG_Ctx *ctx, const uint8_t *person, uint32_t persLen);

int32_t DRBG_Reseed(DRBG_Ctx *ctx, const uint8_t *adin, uint32_t adinLen);

int32_t DRBG_Generate(DRBG_Ctx *ctx,
                      uint8_t *out, uint32_t outLen,
                      const uint8_t *adin, uint32_t adinLen, bool pr);

int32_t DRBG_GenerateBytes(DRBG_Ctx *ctx, uint8_t *out, uint32_t outLen,
    const uint8_t *adin, uint32_t adinLen);

int32_t DRBG_Uninstantiate(DRBG_Ctx *ctx);

int32_t DRBG_Ctrl(DRBG_Ctx *ctx, int32_t opt, void *val, uint32_t len);

const DrbgIdMap *DRBG_GetIdMap(CRYPT_RAND_AlgId id);
 
#ifdef __cplusplus
}
#endif
 
#endif // HITLS_CRYPTO_DRBG
 
#endif // CRYPT_DRBG_H