| // |
| // Determine which cryptographic library we are going to be using |
| // |
| |
| #pragma once |
| |
| #if defined(USE_MBED_TLS) |
| #if defined(USE_OPEN_SSL) || defined(USE_BCRYPT) |
| #error Only Define One Crypto Package |
| #endif |
| #elif defined(USE_BCRYPT) |
| #if defined(USE_OPENSSL) |
| #error Only Define One Crypto Package |
| #endif |
| #elif !defined(USE_OPEN_SSL) |
| #include <openssl/opensslv.h> |
| #define USE_OPEN_SSL |
| #endif |
| |
| // |
| // Define which AES GCM algorithms are being used |
| // |
| |
| #define USE_AES_GCM_128 |
| #define USE_AES_GCM_192 |
| #define USE_AES_GCM_256 |
| |
| #if defined(USE_AES_GCM_128) || defined(USE_AES_GCM_192) || \ |
| defined(USE_AES_GCM_256) |
| #define USE_AES_GCM |
| #endif |
| |
| // |
| // Define which AES CCM algorithms are being used |
| // |
| |
| #define USE_AES_CCM_16_64_128 |
| #define USE_AES_CCM_16_64_256 |
| #define USE_AES_CCM_64_64_128 |
| #define USE_AES_CCM_64_64_256 |
| #define USE_AES_CCM_16_128_128 |
| #define USE_AES_CCM_16_128_256 |
| #define USE_AES_CCM_64_128_128 |
| #define USE_AES_CCM_64_128_256 |
| |
| #define INCLUDE_AES_CCM |
| |
| // |
| // Define which HMAC-SHA algorithms are being used |
| // |
| |
| #define USE_HMAC_256_64 |
| #define USE_HMAC_256_256 |
| #define USE_HMAC_384_384 |
| #define USE_HMAC_512_512 |
| #if defined(USE_HMAC_256_64) || defined(USE_HMAC_256_256) || \ |
| defined(USE_HMAC_384_384) || defined(USE_HMAC_512_512) |
| #define USE_HMAC |
| #endif |
| |
| // |
| // Define which AES CBC-MAC algorithms are to be used |
| // |
| |
| #if !defined(USE_MBED_TLS) |
| |
| #define USE_AES_CBC_MAC_128_64 |
| #define USE_AES_CBC_MAC_128_128 |
| #define USE_AES_CBC_MAC_256_64 |
| #define USE_AES_CBC_MAC_256_128 |
| |
| #endif // !defined(USE_MBED_TLS) |
| |
| // |
| // Define which ECDH algorithms are to be used |
| // |
| |
| #if !defined(USE_MBED_TLS) |
| #define USE_ECDH_ES_HKDF_256 |
| #define USE_ECDH_ES_HKDF_512 |
| #define USE_ECDH_SS_HKDF_256 |
| #define USE_ECDH_SS_HKDF_512 |
| #if defined(USE_ECDH_ES_HKDF_256) || defined(USE_ECDH_ES_HKDF_512) || \ |
| defined(USE_ECDH_SS_HKDF_256) || defined(USE_ECDH_SS_HKDF_512) |
| #define USE_ECDH 1 |
| #define USE_HKDF_SHA2 1 |
| #endif |
| #endif // !defined(USE_MBED_TLS) |
| |
| #if !defined(USE_MBED_TLS) |
| #define USE_ECDH_ES_A128KW |
| #define USE_ECDH_ES_A192KW |
| #define USE_ECDH_ES_A256KW |
| #define USE_ECDH_SS_A128KW |
| #define USE_ECDH_SS_A192KW |
| #define USE_ECDH_SS_A256KW |
| #if defined(USE_ECDH_ES_A128KW) || defined(USE_ECDH_ES_A192KW) || \ |
| defined(USE_ECDH_ES_A256KW) || defined(USE_ECDH_SS_A128KW) || \ |
| defined(USE_ECDH_SS_A192KW) || defined(USE_ECDH_SS_A256KW) |
| #define USE_ECDH 1 |
| #define USE_HKDF_AES 1 |
| #endif |
| #endif // !defined(USE_MBED_TLS) |
| |
| // |
| // Define which Key Wrap functions are to be used |
| // |
| |
| #if !defined(USE_MBED_TLS) |
| #define USE_AES_KW_128 |
| #define USE_AES_KW_192 |
| #define USE_AES_KW_256 |
| #endif // !defined(USE_MBED_TLS) |
| |
| // |
| // Define which of the DIRECT + KDF algorithms are to be used |
| // |
| |
| #if !defined(USE_MBED_TLS) |
| #define USE_Direct_HKDF_HMAC_SHA_256 |
| #define USE_Direct_HKDF_HMAC_SHA_512 |
| #define USE_Direct_HKDF_AES_128 |
| #define USE_Direct_HKDF_AES_256 |
| #if defined(USE_Direct_HKDF_HMAC_SHA_256) || \ |
| defined(USE_Direct_HKDF_HMAC_SHA_512) |
| #define USE_HKDF_SHA2 1 |
| #endif |
| #if defined(USE_Direct_HKDF_AES_128) || defined(USE_Direct_KDF_AES_256) |
| #define USE_HKDF_AES 1 |
| #endif |
| #endif // !defined(USE_MBED_TLS) |
| |
| // |
| // Define which of the signature algorithms are to be used |
| // |
| |
| #define USE_ECDSA_SHA_256 |
| #define USE_ECDSA_SHA_384 |
| #define USE_ECDSA_SHA_512 |
| #if !defined(USE_MBED_TLS) |
| // MBEDTLS currently supports ECDH for X25519 but not EdDSA |
| #if OPENSSL_VERSION_NUMBER > 0x10100000L |
| // Requires OPEN SSL 1.1.1 to build |
| #define USE_EDDSA |
| #else |
| #define STRINGIFY(x) #x |
| #define TOSTRING(x) STRINGIFY(x) |
| #pragma message("OPENSSL VERSION IS " OPENSSL_VERSION_TEXT) |
| #endif |
| #endif // !defined (USE_MBED_TLS) |
| |
| // |
| // Define which COSE objects are included |
| // |
| |
| #ifndef INCLUDE_ENCRYPT |
| #define INCLUDE_ENCRYPT 1 |
| #endif |
| #ifndef INCLUDE_ENCRYPT0 |
| #define INCLUDE_ENCRYPT0 1 |
| #endif |
| #ifndef INCLUDE_MAC |
| #define INCLUDE_MAC 1 |
| #endif |
| #ifndef INCLUDE_MAC0 |
| #define INCLUDE_MAC0 1 |
| #endif |
| #ifndef INCLUDE_SIGN |
| #define INCLUDE_SIGN 1 |
| #endif |
| #ifndef INCLUDE_SIGN1 |
| #define INCLUDE_SIGN1 1 |
| #endif |
| #ifndef INCLUDE_COUNTERSIGNATURE |
| #define INCLUDE_COUNTERSIGNATURE 1 |
| #endif |
| #ifndef INCLUDE_COUNTERSIGNATURE1 |
| #define INCLUDE_COUNTERSIGNATURE1 0 |
| #endif |