blob: ee566824318e6cc345f26e1a14da2819ef156cf6 [file] [log] [blame]
Yingdi Yu87516612015-07-10 18:03:52 -07001/* -*- Mode:C++; c-file-style:"gnu"; indent-tabs-mode:nil; -*- */
Davide Pesavento8aad3722017-09-16 20:57:28 -04002/*
Davide Pesavento794f6872017-05-15 23:33:38 -04003 * Copyright (c) 2013-2017 Regents of the University of California.
Yingdi Yu87516612015-07-10 18:03:52 -07004 *
5 * This file is part of ndn-cxx library (NDN C++ library with eXperimental eXtensions).
6 *
7 * ndn-cxx library is free software: you can redistribute it and/or modify it under the
8 * terms of the GNU Lesser General Public License as published by the Free Software
9 * Foundation, either version 3 of the License, or (at your option) any later version.
10 *
11 * ndn-cxx library is distributed in the hope that it will be useful, but WITHOUT ANY
12 * WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A
13 * PARTICULAR PURPOSE. See the GNU Lesser General Public License for more details.
14 *
15 * You should have received copies of the GNU General Public License and GNU Lesser
16 * General Public License along with ndn-cxx, e.g., in COPYING.md file. If not, see
17 * <http://www.gnu.org/licenses/>.
18 *
19 * See AUTHORS.md for complete list of ndn-cxx authors and contributors.
20 */
21
22#ifndef NDN_CXX_SECURITY_TRANSFORM_BLOCK_CIPHER_HPP
23#define NDN_CXX_SECURITY_TRANSFORM_BLOCK_CIPHER_HPP
24
25#include "transform-base.hpp"
26#include "../security-common.hpp"
27
28namespace ndn {
29namespace security {
30namespace transform {
31
32/**
33 * @brief The module to encrypt data using block cipher.
34 *
35 * The padding scheme of the block cipher is set to the default padding scheme of OpenSSl,
36 * which is PKCS padding.
37 */
38class BlockCipher : public Transform
39{
40public:
41 /**
42 * @brief Create a block cipher
43 *
44 * @param algo The block cipher algorithm (e.g., EncryptMode::AES_CBC).
45 * @param op The operation that the cipher needs to perform, e.g., CipherOperator::ENCRYPT or CipherOperator::DECRYPT
46 * @param key The pointer to the key.
47 * @param keyLen The size of the key.
48 * @param iv The pointer to the initial vector.
49 * @param ivLen The length of the initial vector.
50 */
51 BlockCipher(BlockCipherAlgorithm algo, CipherOperator op,
52 const uint8_t* key, size_t keyLen,
53 const uint8_t* iv, size_t ivLen);
54
Davide Pesavento8aad3722017-09-16 20:57:28 -040055 ~BlockCipher();
56
Yingdi Yu87516612015-07-10 18:03:52 -070057private:
58 /**
59 * @brief Read partial transformation result (if exists) from BIO
60 */
Davide Pesavento57c07df2016-12-11 18:41:45 -050061 void
Yingdi Yu87516612015-07-10 18:03:52 -070062 preTransform() final;
63
64 /**
65 * @brief Write @p data into the cipher
66 *
67 * @return number of bytes that are actually accepted
68 */
Davide Pesavento57c07df2016-12-11 18:41:45 -050069 size_t
Yingdi Yu87516612015-07-10 18:03:52 -070070 convert(const uint8_t* data, size_t dataLen) final;
71
72 /**
73 * @brief Finalize the encryption
74 */
Davide Pesavento57c07df2016-12-11 18:41:45 -050075 void
Yingdi Yu87516612015-07-10 18:03:52 -070076 finalize() final;
77
78 /**
79 * @brief Fill output buffer with the encryption result from BIO.
80 */
81 void
82 fillOutputBuffer();
83
84 /**
85 * @return true if the cipher does not have partial result.
86 */
87 bool
88 isConverterEmpty() const;
89
90private:
Yingdi Yu87516612015-07-10 18:03:52 -070091 void
92 initializeAesCbc(const uint8_t* key, size_t keyLen,
93 const uint8_t* iv, size_t ivLen,
94 CipherOperator op);
95
96private:
97 class Impl;
Davide Pesavento794f6872017-05-15 23:33:38 -040098 const unique_ptr<Impl> m_impl;
Yingdi Yu87516612015-07-10 18:03:52 -070099};
100
101unique_ptr<Transform>
102blockCipher(BlockCipherAlgorithm algo, CipherOperator op,
103 const uint8_t* key, size_t keyLen,
104 const uint8_t* iv, size_t ivLen);
105
106} // namespace transform
107} // namespace security
108} // namespace ndn
109
110#endif // NDN_CXX_SECURITY_TRANSFORM_BLOCK_CIPHER_HPP