iv-gen: Add a generic constructor to create an IV gen from an algorithm
authorMartin Willi <martin@revosec.ch>
Tue, 31 Mar 2015 12:58:17 +0000 (14:58 +0200)
committerMartin Willi <martin@revosec.ch>
Mon, 13 Apr 2015 13:06:15 +0000 (15:06 +0200)
src/libstrongswan/Android.mk
src/libstrongswan/Makefile.am
src/libstrongswan/crypto/iv/iv_gen.c [new file with mode: 0644]
src/libstrongswan/crypto/iv/iv_gen.h

index 2a8894b..d9cc08a 100644 (file)
@@ -14,7 +14,7 @@ crypto/prfs/prf.c crypto/prfs/mac_prf.c crypto/pkcs5.c \
 crypto/rngs/rng.c crypto/prf_plus.c crypto/signers/signer.c \
 crypto/signers/mac_signer.c crypto/crypto_factory.c crypto/crypto_tester.c \
 crypto/diffie_hellman.c crypto/aead.c crypto/transform.c \
-crypto/iv/iv_gen_rand.c crypto/iv/iv_gen_seq.c \
+crypto/iv/iv_gen.c crypto/iv/iv_gen_rand.c crypto/iv/iv_gen_seq.c \
 crypto/mgf1/mgf1.c crypto/mgf1/mgf1_bitspender.c \
 credentials/credential_factory.c credentials/builder.c \
 credentials/cred_encoding.c credentials/keys/private_key.c \
index fbc7526..2521b3e 100644 (file)
@@ -12,7 +12,7 @@ crypto/prfs/prf.c crypto/prfs/mac_prf.c crypto/pkcs5.c \
 crypto/rngs/rng.c crypto/prf_plus.c crypto/signers/signer.c \
 crypto/signers/mac_signer.c crypto/crypto_factory.c crypto/crypto_tester.c \
 crypto/diffie_hellman.c crypto/aead.c crypto/transform.c \
-crypto/iv/iv_gen_rand.c crypto/iv/iv_gen_seq.c \
+crypto/iv/iv_gen.c crypto/iv/iv_gen_rand.c crypto/iv/iv_gen_seq.c \
 crypto/mgf1/mgf1.c crypto/mgf1/mgf1_bitspender.c \
 credentials/credential_factory.c credentials/builder.c \
 credentials/cred_encoding.c credentials/keys/private_key.c \
diff --git a/src/libstrongswan/crypto/iv/iv_gen.c b/src/libstrongswan/crypto/iv/iv_gen.c
new file mode 100644 (file)
index 0000000..e188432
--- /dev/null
@@ -0,0 +1,61 @@
+/*
+ * Copyright (C) 2015 Martin Willi
+ * Copyright (C) 2015 revosec AG
+ *
+ * This program is free software; you can redistribute it and/or modify it
+ * under the terms of the GNU General Public License as published by the
+ * Free Software Foundation; either version 2 of the License, or (at your
+ * option) any later version.  See <http://www.fsf.org/copyleft/gpl.txt>.
+ *
+ * This program is distributed in the hope that it will be useful, but
+ * WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY
+ * or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU General Public License
+ * for more details.
+ */
+
+#include "iv_gen.h"
+#include "iv_gen_rand.h"
+#include "iv_gen_seq.h"
+
+/**
+ * See header.
+ */
+iv_gen_t* iv_gen_create_for_alg(encryption_algorithm_t alg)
+{
+       switch (alg)
+       {
+               case ENCR_DES:
+               case ENCR_3DES:
+               case ENCR_RC5:
+               case ENCR_IDEA:
+               case ENCR_CAST:
+               case ENCR_BLOWFISH:
+               case ENCR_3IDEA:
+               case ENCR_AES_CBC:
+               case ENCR_CAMELLIA_CBC:
+               case ENCR_SERPENT_CBC:
+               case ENCR_TWOFISH_CBC:
+               case ENCR_RC2_CBC:
+                       return iv_gen_rand_create();
+               case ENCR_AES_CTR:
+               case ENCR_AES_CCM_ICV8:
+               case ENCR_AES_CCM_ICV12:
+               case ENCR_AES_CCM_ICV16:
+               case ENCR_AES_GCM_ICV8:
+               case ENCR_AES_GCM_ICV12:
+               case ENCR_AES_GCM_ICV16:
+               case ENCR_CAMELLIA_CTR:
+               case ENCR_CAMELLIA_CCM_ICV8:
+               case ENCR_CAMELLIA_CCM_ICV12:
+               case ENCR_CAMELLIA_CCM_ICV16:
+               case ENCR_NULL_AUTH_AES_GMAC:
+                       return iv_gen_seq_create();
+               case ENCR_NULL:
+               case ENCR_UNDEFINED:
+               case ENCR_DES_ECB:
+               case ENCR_DES_IV32:
+               case ENCR_DES_IV64:
+                       break;
+       }
+       return NULL;
+}
index f6bc647..81b0701 100644 (file)
@@ -58,4 +58,12 @@ struct iv_gen_t {
        void (*destroy)(iv_gen_t *this);
 };
 
+/**
+ * Select an IV generator for a given encryption algorithm.
+ *
+ * @param alg                  encryption algorithm
+ * @return                             IV generator
+ */
+iv_gen_t* iv_gen_create_for_alg(encryption_algorithm_t alg);
+
 #endif /** IV_GEN_H_ @}*/