78 #ifndef MBEDTLS_CTR_DRBG_H
79 #define MBEDTLS_CTR_DRBG_H
81 #if !defined(MBEDTLS_CONFIG_FILE)
84 #include MBEDTLS_CONFIG_FILE
89 #if defined(MBEDTLS_THREADING_C)
93 #define MBEDTLS_ERR_CTR_DRBG_ENTROPY_SOURCE_FAILED -0x0034
94 #define MBEDTLS_ERR_CTR_DRBG_REQUEST_TOO_BIG -0x0036
95 #define MBEDTLS_ERR_CTR_DRBG_INPUT_TOO_BIG -0x0038
96 #define MBEDTLS_ERR_CTR_DRBG_FILE_IO_ERROR -0x003A
98 #define MBEDTLS_CTR_DRBG_BLOCKSIZE 16
99 #define MBEDTLS_CTR_DRBG_KEYSIZE 32
100 #define MBEDTLS_CTR_DRBG_KEYBITS ( MBEDTLS_CTR_DRBG_KEYSIZE * 8 )
101 #define MBEDTLS_CTR_DRBG_SEEDLEN ( MBEDTLS_CTR_DRBG_KEYSIZE + MBEDTLS_CTR_DRBG_BLOCKSIZE )
116 #if !defined(MBEDTLS_CTR_DRBG_ENTROPY_LEN)
117 #if defined(MBEDTLS_SHA512_C) && !defined(MBEDTLS_ENTROPY_FORCE_SHA256)
121 #define MBEDTLS_CTR_DRBG_ENTROPY_LEN 48
132 #define MBEDTLS_CTR_DRBG_ENTROPY_LEN 32
136 #if !defined(MBEDTLS_CTR_DRBG_RESEED_INTERVAL)
137 #define MBEDTLS_CTR_DRBG_RESEED_INTERVAL 10000
141 #if !defined(MBEDTLS_CTR_DRBG_MAX_INPUT)
142 #define MBEDTLS_CTR_DRBG_MAX_INPUT 256
146 #if !defined(MBEDTLS_CTR_DRBG_MAX_REQUEST)
147 #define MBEDTLS_CTR_DRBG_MAX_REQUEST 1024
151 #if !defined(MBEDTLS_CTR_DRBG_MAX_SEED_INPUT)
152 #define MBEDTLS_CTR_DRBG_MAX_SEED_INPUT 384
158 #define MBEDTLS_CTR_DRBG_PR_OFF 0
160 #define MBEDTLS_CTR_DRBG_PR_ON 1
172 unsigned char counter[16];
187 int (*f_entropy)(
void *,
unsigned char *, size_t);
192 #if defined(MBEDTLS_THREADING_C)
241 #if MBEDTLS_CTR_DRBG_ENTROPY_LEN < MBEDTLS_CTR_DRBG_KEYSIZE * 3 / 2
277 int (*f_entropy)(
void *,
unsigned char *,
size_t),
279 const unsigned char *custom,
353 const unsigned char *additional,
size_t len );
371 const unsigned char *additional,
392 const unsigned char *additional,
422 unsigned char *output,
size_t output_len,
423 const unsigned char *additional,
size_t add_len );
442 unsigned char *output,
size_t output_len );
444 #if defined(MBEDTLS_FS_IO)
484 int (*)(
void *,
unsigned char *,
size_t),
void *,
485 const unsigned char *,
size_t,
size_t );
The CTR_DRBG context structure.
void mbedtls_ctr_drbg_free(mbedtls_ctr_drbg_context *ctx)
This function clears CTR_CRBG context data.
void mbedtls_ctr_drbg_update(mbedtls_ctr_drbg_context *ctx, const unsigned char *additional, size_t add_len)
This function updates the state of the CTR_DRBG context.
int mbedtls_ctr_drbg_seed_entropy_len(mbedtls_ctr_drbg_context *, int(*)(void *, unsigned char *, size_t), void *, const unsigned char *, size_t, size_t)
int prediction_resistance
void mbedtls_ctr_drbg_init(mbedtls_ctr_drbg_context *ctx)
This function initializes the CTR_DRBG context, and prepares it for mbedtls_ctr_drbg_seed() or mbedtl...
mbedtls_threading_mutex_t mutex
Configuration options (set of defines)
int mbedtls_ctr_drbg_random(void *p_rng, unsigned char *output, size_t output_len)
This function uses CTR_DRBG to generate random data.
int mbedtls_ctr_drbg_write_seed_file(mbedtls_ctr_drbg_context *ctx, const char *path)
This function writes a seed file.
void mbedtls_ctr_drbg_set_reseed_interval(mbedtls_ctr_drbg_context *ctx, int interval)
This function sets the reseed interval.
void mbedtls_ctr_drbg_set_prediction_resistance(mbedtls_ctr_drbg_context *ctx, int resistance)
This function turns prediction resistance on or off. The default value is off.
int mbedtls_ctr_drbg_reseed(mbedtls_ctr_drbg_context *ctx, const unsigned char *additional, size_t len)
This function reseeds the CTR_DRBG context, that is extracts data from the entropy source...
Threading abstraction layer.
int mbedtls_ctr_drbg_update_seed_file(mbedtls_ctr_drbg_context *ctx, const char *path)
This function reads and updates a seed file. The seed is added to this instance.
int mbedtls_ctr_drbg_random_with_add(void *p_rng, unsigned char *output, size_t output_len, const unsigned char *additional, size_t add_len)
This function updates a CTR_DRBG instance with additional data and uses it to generate random data...
int mbedtls_ctr_drbg_update_ret(mbedtls_ctr_drbg_context *ctx, const unsigned char *additional, size_t add_len)
This function updates the state of the CTR_DRBG context.
void mbedtls_ctr_drbg_set_entropy_len(mbedtls_ctr_drbg_context *ctx, size_t len)
This function sets the amount of entropy grabbed on each seed or reseed.
The Advanced Encryption Standard (AES) specifies a FIPS-approved cryptographic algorithm that can be ...
int mbedtls_ctr_drbg_seed(mbedtls_ctr_drbg_context *ctx, int(*f_entropy)(void *, unsigned char *, size_t), void *p_entropy, const unsigned char *custom, size_t len)
This function seeds and sets up the CTR_DRBG entropy source for future reseeds.
int mbedtls_ctr_drbg_self_test(int verbose)
The CTR_DRBG checkup routine.
mbedtls_aes_context aes_ctx
The AES context-type definition.