Header for the implementation of an example default security context (RFC 9173). More...
#include <qcbor/qcbor_encode.h>#include <qcbor/qcbor_spiffy_decode.h>#include <stdio.h>#include <sys/types.h>#include <time.h>#include <BPSecLib_Private.h>#include <CryptoInterface.h>#include "DefaultSecContext.h"#include "DefaultSecContext_Private.h"#include "rfc9173.h"
Include dependency graph for BIB_HMAC_SHA2.c:Functions | |
| bool | BSLX_BIB_Validate (BSL_LibCtx_t *lib, const BSL_BundleRef_t *bundle, const BSL_SecOper_t *sec_oper) |
| bool | BSLX_BCB_Validate (BSL_LibCtx_t *lib, const BSL_BundleRef_t *bundle, const BSL_SecOper_t *sec_oper) |
| size_t | BSLX_Bytestr_GetCapacity (void) |
| BSL_Data_t | BSLX_Bytestr_AsData (BSLX_Bytestr_t *self) |
| static ssize_t | map_rfc9173_sha_variant_to_crypto (size_t rfc9173_sha_variant) |
| Provides the mapping from the security-context-specific ID defined in RFC9173 to the local ID of the SHA variant used by the crypto engine (OpenSSL). | |
| int | BSLX_BIB_InitFromSecOper (BSLX_BIB_t *self, const BSL_SecOper_t *sec_oper) |
| Populate the BIB parameters convenience struct from the security operation struct. | |
| int | BSLX_BIB_GenIPPT (BSLX_BIB_t *self, BSL_Data_t ippt_space) |
| Computes the Integrity-Protected Plaintext (IPPT) for a canonical bundle block (non-primary) | |
| int | BSLX_BIB_GenHMAC (BSLX_BIB_t *self, BSL_Data_t ippt_data) |
Performs the actual HMAC over the given IPPT, placing the result in hmac_result. | |
| int | BSLX_BIB_Execute (BSL_LibCtx_t *lib, const BSL_BundleRef_t *bundle, const BSL_SecOper_t *sec_oper, BSL_SecOutcome_t *sec_outcome) |
Detailed Description
Header for the implementation of an example default security context (RFC 9173).
Note the prefix "xdefsc" means "Example Default Security Context".
Function Documentation
◆ BSLX_BIB_GenHMAC()
| int BSLX_BIB_GenHMAC | ( | BSLX_BIB_t * | self, |
| BSL_Data_t | ippt_data | ||
| ) |
Performs the actual HMAC over the given IPPT, placing the result in hmac_result.
Returns the number of bytes written into hmac_result. Negative indicates error. NOTE: This does NOT resize the result, the caller must do so.
References BSL_AuthCtx_Deinit(), BSL_AuthCtx_DigestBuffer(), BSL_AuthCtx_Finalize(), BSL_AuthCtx_Init(), BSL_ERR_SECURITY_CONTEXT_AUTH_FAILED, BSL_LOG_ERR, BSLX_BIB_t::key_id, BSL_Data_t::len, and BSL_Data_t::ptr.
◆ BSLX_BIB_InitFromSecOper()
| int BSLX_BIB_InitFromSecOper | ( | BSLX_BIB_t * | self, |
| const BSL_SecOper_t * | sec_oper | ||
| ) |
Populate the BIB parameters convenience struct from the security operation struct.
TODO: move to common function.
References BSL_ERR_PROPERTY_CHECK_FAILED, BSL_LOG_DEBUG, BSL_LOG_WARNING, BSL_SecOper_CountParams(), BSL_SecOper_GetParamAt(), BSL_SecParam_GetAsBytestr(), BSL_SecParam_GetAsUInt64(), BSL_SecParam_GetId(), BSL_SecParam_IsInt64(), BSL_SECPARAM_TYPE_INT_FIXED_KEY, BSL_SECPARAM_TYPE_KEY_ID, BSL_SUCCESS, BSLX_BIB_t::key_id, BSL_Data_t::len, map_rfc9173_sha_variant_to_crypto(), and BSL_Data_t::ptr.
