doc/crypto_8h_source.html

/**

 * @file crypto.h

 * @brief General definitions for cryptographic algorithms

 *

 * @section License

 *

 * SPDX-License-Identifier: GPL-2.0-or-later

 *

 * Copyright (C) 2010-2019 Oryx Embedded SARL. All rights reserved.

 *

 * This file is part of CycloneCrypto Open.

 *

 * This program is free software; you can redistribute it and/or

 * modify it under the terms of the GNU General Public License

 * as published by the Free Software Foundation; either version 2

 * of the License, or (at your option) any later version.

 *

 * This program is distributed in the hope that it will be useful,

 * but WITHOUT ANY WARRANTY; without even the implied warranty of

 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the

 * GNU General Public License for more details.

 *

 * You should have received a copy of the GNU General Public License

 * along with this program; if not, write to the Free Software Foundation,

 * Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301, USA.

 *

 * @author Oryx Embedded SARL (www.oryx-embedded.com)

 * @version 1.9.6

 **/


#ifndef _CRYPTO_H

#define _CRYPTO_H


//Dependencies

#include "os_port.h"

#include "crypto_config.h"

#include "crypto_legacy.h"

#include "cpu_endian.h"

#include "error.h"


/*

 * CycloneCrypto Open is licensed under GPL version 2. In particular:

 *

 * - If you link your program to CycloneCrypto Open, the result is a derivative

 *   work that can only be distributed under the same GPL license terms.

 *

 * - If additions or changes to CycloneCrypto Open are made, the result is a

 *   derivative work that can only be distributed under the same license terms.

 *

 * - The GPL license requires that you make the source code available to

 *   whoever you make the binary available to.

 *

 * - If you sell or distribute a hardware product that runs CycloneCrypto Open,

 *   the GPL license requires you to provide public and full access to all

 *   source code on a nondiscriminatory basis.

 *

 * If you fully understand and accept the terms of the GPL license, then edit

 * the os_port_config.h header and add the following directive:

 *

 * #define GPL_LICENSE_TERMS_ACCEPTED

 */


#ifndef GPL_LICENSE_TERMS_ACCEPTED

   #error Before compiling CycloneCrypto Open, you must accept the terms of the GPL license

#endif


//Version string

#define CYCLONE_CRYPTO_VERSION_STRING "1.9.6"

//Major version

#define CYCLONE_CRYPTO_MAJOR_VERSION 1

//Minor version

#define CYCLONE_CRYPTO_MINOR_VERSION 9

//Revision number

#define CYCLONE_CRYPTO_REV_NUMBER 6


//Multiple precision integer support

#ifndef MPI_SUPPORT

   #define MPI_SUPPORT ENABLED

#elif (MPI_SUPPORT != ENABLED && MPI_SUPPORT != DISABLED)

   #error MPI_SUPPORT parameter is not valid

#endif


//Assembly optimizations for time-critical routines

#ifndef MPI_ASM_SUPPORT

   #define MPI_ASM_SUPPORT DISABLED

#elif (MPI_ASM_SUPPORT != ENABLED && MPI_ASM_SUPPORT != DISABLED)

   #error MPI_ASM_SUPPORT parameter is not valid

#endif


//Base64 encoding support

#ifndef BASE64_SUPPORT

   #define BASE64_SUPPORT ENABLED

#elif (BASE64_SUPPORT != ENABLED && BASE64_SUPPORT != DISABLED)

   #error BASE64_SUPPORT parameter is not valid

#endif


//Base64url encoding support

#ifndef BASE64URL_SUPPORT

   #define BASE64URL_SUPPORT ENABLED

#elif (BASE64URL_SUPPORT != ENABLED && BASE64URL_SUPPORT != DISABLED)

   #error BASE64URL_SUPPORT parameter is not valid

#endif


//Radix64 encoding support

#ifndef RADIX64_SUPPORT

   #define RADIX64_SUPPORT ENABLED

#elif (RADIX64_SUPPORT != ENABLED && RADIX64_SUPPORT != DISABLED)

   #error RADIX64_SUPPORT parameter is not valid

#endif


//MD2 hash support

#ifndef MD2_SUPPORT

   #define MD2_SUPPORT ENABLED

#elif (MD2_SUPPORT != ENABLED && MD2_SUPPORT != DISABLED)

   #error MD2_SUPPORT parameter is not valid

#endif


//MD4 hash support

#ifndef MD4_SUPPORT

   #define MD4_SUPPORT ENABLED

#elif (MD4_SUPPORT != ENABLED && MD4_SUPPORT != DISABLED)

   #error MD4_SUPPORT parameter is not valid

#endif


//MD5 hash support

#ifndef MD5_SUPPORT

   #define MD5_SUPPORT ENABLED

#elif (MD5_SUPPORT != ENABLED && MD5_SUPPORT != DISABLED)

   #error MD5_SUPPORT parameter is not valid

#endif


//RIPEMD-128 hash support

#ifndef RIPEMD128_SUPPORT

   #define RIPEMD128_SUPPORT ENABLED

#elif (RIPEMD128_SUPPORT != ENABLED && RIPEMD128_SUPPORT != DISABLED)

   #error RIPEMD128_SUPPORT parameter is not valid

#endif


//RIPEMD-160 hash support

#ifndef RIPEMD160_SUPPORT

   #define RIPEMD160_SUPPORT ENABLED

#elif (RIPEMD160_SUPPORT != ENABLED && RIPEMD160_SUPPORT != DISABLED)

   #error RIPEMD160_SUPPORT parameter is not valid

#endif


//SHA-1 hash support

#ifndef SHA1_SUPPORT

   #define SHA1_SUPPORT ENABLED

#elif (SHA1_SUPPORT != ENABLED && SHA1_SUPPORT != DISABLED)

   #error SHA1_SUPPORT parameter is not valid

#endif


//SHA-224 hash support

#ifndef SHA224_SUPPORT

   #define SHA224_SUPPORT ENABLED

#elif (SHA224_SUPPORT != ENABLED && SHA224_SUPPORT != DISABLED)

   #error SHA224_SUPPORT parameter is not valid

#endif


//SHA-256 hash support

#ifndef SHA256_SUPPORT

   #define SHA256_SUPPORT ENABLED

#elif (SHA256_SUPPORT != ENABLED && SHA256_SUPPORT != DISABLED)

   #error SHA256_SUPPORT parameter is not valid

#endif


//SHA-384 hash support

#ifndef SHA384_SUPPORT

   #define SHA384_SUPPORT ENABLED

#elif (SHA384_SUPPORT != ENABLED && SHA384_SUPPORT != DISABLED)

   #error SHA384_SUPPORT parameter is not valid

#endif


//SHA-512 hash support

#ifndef SHA512_SUPPORT

   #define SHA512_SUPPORT ENABLED

#elif (SHA512_SUPPORT != ENABLED && SHA512_SUPPORT != DISABLED)

   #error SHA512_SUPPORT parameter is not valid

#endif


//SHA-512/224 hash support

#ifndef SHA512_224_SUPPORT

   #define SHA512_224_SUPPORT ENABLED

#elif (SHA512_224_SUPPORT != ENABLED && SHA512_224_SUPPORT != DISABLED)

   #error SHA512_224_SUPPORT parameter is not valid

#endif


//SHA-512/256 hash support

#ifndef SHA512_256_SUPPORT

   #define SHA512_256_SUPPORT ENABLED

#elif (SHA512_256_SUPPORT != ENABLED && SHA512_256_SUPPORT != DISABLED)

   #error SHA512_256_SUPPORT parameter is not valid

#endif


//SHA3-224 hash support

#ifndef SHA3_224_SUPPORT

   #define SHA3_224_SUPPORT DISABLED

#elif (SHA3_224_SUPPORT != ENABLED && SHA3_224_SUPPORT != DISABLED)

   #error SHA3_224_SUPPORT parameter is not valid

#endif


//SHA3-256 hash support

#ifndef SHA3_256_SUPPORT

   #define SHA3_256_SUPPORT DISABLED

#elif (SHA3_256_SUPPORT != ENABLED && SHA3_256_SUPPORT != DISABLED)

   #error SHA3_256_SUPPORT parameter is not valid

#endif


//SHA3-384 hash support

#ifndef SHA3_384_SUPPORT

   #define SHA3_384_SUPPORT DISABLED

#elif (SHA3_384_SUPPORT != ENABLED && SHA3_384_SUPPORT != DISABLED)

   #error SHA3_384_SUPPORT parameter is not valid

#endif


//SHA3-512 hash support

#ifndef SHA3_512_SUPPORT

   #define SHA3_512_SUPPORT DISABLED

#elif (SHA3_512_SUPPORT != ENABLED && SHA3_512_SUPPORT != DISABLED)

   #error SHA3_512_SUPPORT parameter is not valid

#endif


//SHAKE128 support

#ifndef SHAKE128_SUPPORT

   #define SHAKE128_SUPPORT DISABLED

#elif (SHAKE128_SUPPORT != ENABLED && SHAKE128_SUPPORT != DISABLED)

   #error SHAKE128_SUPPORT parameter is not valid

#endif


//SHAKE256 support

#ifndef SHAKE256_SUPPORT

   #define SHAKE256_SUPPORT DISABLED

#elif (SHAKE256_SUPPORT != ENABLED && SHAKE256_SUPPORT != DISABLED)

   #error SHAKE256_SUPPORT parameter is not valid

#endif


//Keccak support

#ifndef KECCAK_SUPPORT

   #define KECCAK_SUPPORT DISABLED

#elif (KECCAK_SUPPORT != ENABLED && KECCAK_SUPPORT != DISABLED)

   #error KECCAK_SUPPORT parameter is not valid

#endif


//BLAKE2b support

#ifndef BLAKE2B_SUPPORT

   #define BLAKE2B_SUPPORT DISABLED

#elif (BLAKE2B_SUPPORT != ENABLED && BLAKE2B_SUPPORT != DISABLED)

   #error BLAKE2B_SUPPORT parameter is not valid

#endif


//BLAKE2b-160 hash support

#ifndef BLAKE2B160_SUPPORT

   #define BLAKE2B160_SUPPORT DISABLED

#elif (BLAKE2B160_SUPPORT != ENABLED && BLAKE2B160_SUPPORT != DISABLED)

   #error BLAKE2B160_SUPPORT parameter is not valid

#endif


//BLAKE2b-256 hash support

#ifndef BLAKE2B256_SUPPORT

   #define BLAKE2B256_SUPPORT DISABLED

#elif (BLAKE2B256_SUPPORT != ENABLED && BLAKE2B256_SUPPORT != DISABLED)

   #error BLAKE2B256_SUPPORT parameter is not valid

#endif


//BLAKE2b-384 hash support

#ifndef BLAKE2B384_SUPPORT

   #define BLAKE2B384_SUPPORT DISABLED

#elif (BLAKE2B384_SUPPORT != ENABLED && BLAKE2B384_SUPPORT != DISABLED)

   #error BLAKE2B384_SUPPORT parameter is not valid

#endif


//BLAKE2b-512 hash support

#ifndef BLAKE2B512_SUPPORT

   #define BLAKE2B512_SUPPORT DISABLED

#elif (BLAKE2B512_SUPPORT != ENABLED && BLAKE2B512_SUPPORT != DISABLED)

   #error BLAKE2B512_SUPPORT parameter is not valid

#endif


//BLAKE2s support

#ifndef BLAKE2S_SUPPORT

   #define BLAKE2S_SUPPORT DISABLED

#elif (BLAKE2S_SUPPORT != ENABLED && BLAKE2S_SUPPORT != DISABLED)

   #error BLAKE2S_SUPPORT parameter is not valid

#endif


//BLAKE2s-128 hash support

#ifndef BLAKE2S128_SUPPORT

   #define BLAKE2S128_SUPPORT DISABLED

#elif (BLAKE2S128_SUPPORT != ENABLED && BLAKE2S128_SUPPORT != DISABLED)

   #error BLAKE2S128_SUPPORT parameter is not valid

#endif


//BLAKE2s-160 hash support

#ifndef BLAKE2S160_SUPPORT

   #define BLAKE2S160_SUPPORT DISABLED

#elif (BLAKE2S160_SUPPORT != ENABLED && BLAKE2S160_SUPPORT != DISABLED)

   #error BLAKE2S160_SUPPORT parameter is not valid

#endif


//BLAKE2s-224 hash support

#ifndef BLAKE2S224_SUPPORT

   #define BLAKE2S224_SUPPORT DISABLED

#elif (BLAKE2S224_SUPPORT != ENABLED && BLAKE2S224_SUPPORT != DISABLED)

   #error BLAKE2S224_SUPPORT parameter is not valid

#endif


//BLAKE2s-256 hash support

#ifndef BLAKE2S256_SUPPORT

   #define BLAKE2S256_SUPPORT DISABLED

#elif (BLAKE2S256_SUPPORT != ENABLED && BLAKE2S256_SUPPORT != DISABLED)

   #error BLAKE2S256_SUPPORT parameter is not valid

#endif


//Tiger hash support

#ifndef TIGER_SUPPORT

   #define TIGER_SUPPORT ENABLED

#elif (TIGER_SUPPORT != ENABLED && TIGER_SUPPORT != DISABLED)

   #error TIGER_SUPPORT parameter is not valid

#endif


//Whirlpool hash support

#ifndef WHIRLPOOL_SUPPORT

   #define WHIRLPOOL_SUPPORT ENABLED

#elif (WHIRLPOOL_SUPPORT != ENABLED && WHIRLPOOL_SUPPORT != DISABLED)

   #error WHIRLPOOL_SUPPORT parameter is not valid

#endif


//CMAC support

#ifndef CMAC_SUPPORT

   #define CMAC_SUPPORT DISABLED

#elif (CMAC_SUPPORT != ENABLED && CMAC_SUPPORT != DISABLED)

   #error CMAC_SUPPORT parameter is not valid

#endif


//HMAC support

#ifndef HMAC_SUPPORT

   #define HMAC_SUPPORT ENABLED

#elif (HMAC_SUPPORT != ENABLED && HMAC_SUPPORT != DISABLED)

   #error HMAC_SUPPORT parameter is not valid

#endif


//GMAC support

#ifndef GMAC_SUPPORT

   #define GMAC_SUPPORT DISABLED

#elif (GMAC_SUPPORT != ENABLED && GMAC_SUPPORT != DISABLED)

   #error GMAC_SUPPORT parameter is not valid

#endif


//RC2 encryption support

#ifndef RC2_SUPPORT

   #define RC2_SUPPORT DISABLED

#elif (RC2_SUPPORT != ENABLED && RC2_SUPPORT != DISABLED)

   #error RC2_SUPPORT parameter is not valid

#endif


//RC4 encryption support

#ifndef RC4_SUPPORT

   #define RC4_SUPPORT ENABLED

#elif (RC4_SUPPORT != ENABLED && RC4_SUPPORT != DISABLED)

   #error RC4_SUPPORT parameter is not valid

#endif


//RC6 encryption support

#ifndef RC6_SUPPORT

   #define RC6_SUPPORT ENABLED

#elif (RC6_SUPPORT != ENABLED && RC6_SUPPORT != DISABLED)

   #error RC6_SUPPORT parameter is not valid

#endif


//IDEA encryption support

#ifndef IDEA_SUPPORT

   #define IDEA_SUPPORT ENABLED

#elif (IDEA_SUPPORT != ENABLED && IDEA_SUPPORT != DISABLED)

   #error IDEA_SUPPORT parameter is not valid

#endif


//DES encryption support

#ifndef DES_SUPPORT

   #define DES_SUPPORT ENABLED

#elif (DES_SUPPORT != ENABLED && DES_SUPPORT != DISABLED)

   #error DES_SUPPORT parameter is not valid

#endif


//Triple DES encryption support

#ifndef DES3_SUPPORT

   #define DES3_SUPPORT ENABLED

#elif (DES3_SUPPORT != ENABLED && DES3_SUPPORT != DISABLED)

   #error DES3_SUPPORT parameter is not valid

#endif


//AES encryption support

#ifndef AES_SUPPORT

   #define AES_SUPPORT ENABLED

#elif (AES_SUPPORT != ENABLED && AES_SUPPORT != DISABLED)

   #error AES_SUPPORT parameter is not valid

#endif


//Blowfish encryption support

#ifndef BLOWFISH_SUPPORT

   #define BLOWFISH_SUPPORT DISABLED

#elif (BLOWFISH_SUPPORT != ENABLED && BLOWFISH_SUPPORT != DISABLED)

   #error BLOWFISH_SUPPORT parameter is not valid

#endif


//Camellia encryption support

#ifndef CAMELLIA_SUPPORT

   #define CAMELLIA_SUPPORT ENABLED

#elif (CAMELLIA_SUPPORT != ENABLED && CAMELLIA_SUPPORT != DISABLED)

   #error CAMELLIA_SUPPORT parameter is not valid

#endif


//SEED encryption support

#ifndef SEED_SUPPORT

   #define SEED_SUPPORT ENABLED

#elif (SEED_SUPPORT != ENABLED && SEED_SUPPORT != DISABLED)

   #error SEED_SUPPORT parameter is not valid

#endif


//ARIA encryption support

#ifndef ARIA_SUPPORT

   #define ARIA_SUPPORT ENABLED

#elif (ARIA_SUPPORT != ENABLED && ARIA_SUPPORT != DISABLED)

   #error ARIA_SUPPORT parameter is not valid

#endif


//PRESENT encryption support

#ifndef PRESENT_SUPPORT

   #define PRESENT_SUPPORT DISABLED

#elif (PRESENT_SUPPORT != ENABLED && PRESENT_SUPPORT != DISABLED)

   #error PRESENT_SUPPORT parameter is not valid

#endif


//ECB mode support

#ifndef ECB_SUPPORT

   #define ECB_SUPPORT ENABLED

#elif (ECB_SUPPORT != ENABLED && ECB_SUPPORT != DISABLED)

   #error ECB_SUPPORT parameter is not valid

#endif


//CBC mode support

#ifndef CBC_SUPPORT

   #define CBC_SUPPORT ENABLED

#elif (CBC_SUPPORT != ENABLED && CBC_SUPPORT != DISABLED)

   #error CBC_SUPPORT parameter is not valid

#endif


//CFB mode support

#ifndef CFB_SUPPORT

   #define CFB_SUPPORT ENABLED

#elif (CFB_SUPPORT != ENABLED && CFB_SUPPORT != DISABLED)

   #error CFB_SUPPORT parameter is not valid

#endif


//OFB mode support

#ifndef OFB_SUPPORT

   #define OFB_SUPPORT ENABLED

#elif (OFB_SUPPORT != ENABLED && OFB_SUPPORT != DISABLED)

   #error OFB_SUPPORT parameter is not valid

#endif


//CTR mode support

#ifndef CTR_SUPPORT

   #define CTR_SUPPORT ENABLED

#elif (CTR_SUPPORT != ENABLED && CTR_SUPPORT != DISABLED)

   #error CTR_SUPPORT parameter is not valid

#endif


//XTS mode support

#ifndef XTS_SUPPORT

   #define XTS_SUPPORT ENABLED

#elif (XTS_SUPPORT != ENABLED && XTS_SUPPORT != DISABLED)

   #error XTS_SUPPORT parameter is not valid

#endif


//CCM mode support

#ifndef CCM_SUPPORT

   #define CCM_SUPPORT ENABLED

#elif (CCM_SUPPORT != ENABLED && CCM_SUPPORT != DISABLED)

   #error CCM_SUPPORT parameter is not valid

#endif


//GCM mode support

#ifndef GCM_SUPPORT

   #define GCM_SUPPORT ENABLED

#elif (GCM_SUPPORT != ENABLED && GCM_SUPPORT != DISABLED)

   #error GCM_SUPPORT parameter is not valid

#endif


//Salsa20 support

#ifndef SALSA20_SUPPORT

   #define SALSA20_SUPPORT DISABLED

#elif (SALSA20_SUPPORT != ENABLED && SALSA20_SUPPORT != DISABLED)

   #error SALSA20_SUPPORT parameter is not valid

#endif


//Chacha support

#ifndef CHACHA_SUPPORT

   #define CHACHA_SUPPORT DISABLED

#elif (CHACHA_SUPPORT != ENABLED && CHACHA_SUPPORT != DISABLED)

   #error CHACHA_SUPPORT parameter is not valid

#endif


//Poly1305 support

#ifndef POLY1305_SUPPORT

   #define POLY1305_SUPPORT DISABLED

#elif (POLY1305_SUPPORT != ENABLED && POLY1305_SUPPORT != DISABLED)

   #error POLY1305_SUPPORT parameter is not valid

#endif


//Chacha20Poly1305 support

#ifndef CHACHA20_POLY1305_SUPPORT

   #define CHACHA20_POLY1305_SUPPORT DISABLED

#elif (CHACHA20_POLY1305_SUPPORT != ENABLED && CHACHA20_POLY1305_SUPPORT != DISABLED)

   #error CHACHA20_POLY1305_SUPPORT parameter is not valid

#endif


//Diffie-Hellman support

#ifndef DH_SUPPORT

   #define DH_SUPPORT ENABLED

#elif (DH_SUPPORT != ENABLED && DH_SUPPORT != DISABLED)

   #error DH_SUPPORT parameter is not valid

#endif


//RSA support

#ifndef RSA_SUPPORT

   #define RSA_SUPPORT ENABLED

#elif (RSA_SUPPORT != ENABLED && RSA_SUPPORT != DISABLED)

   #error RSA_SUPPORT parameter is not valid

#endif


//DSA support

#ifndef DSA_SUPPORT

   #define DSA_SUPPORT ENABLED

#elif (DSA_SUPPORT != ENABLED && DSA_SUPPORT != DISABLED)

   #error DSA_SUPPORT parameter is not valid

#endif


//Elliptic curve cryptography support

#ifndef EC_SUPPORT

   #define EC_SUPPORT ENABLED

#elif (EC_SUPPORT != ENABLED && EC_SUPPORT != DISABLED)

   #error EC_SUPPORT parameter is not valid

#endif


//ECDH support

#ifndef ECDH_SUPPORT

   #define ECDH_SUPPORT ENABLED

#elif (ECDH_SUPPORT != ENABLED && ECDH_SUPPORT != DISABLED)

   #error ECDH_SUPPORT parameter is not valid

#endif


//ECDSA support

#ifndef ECDSA_SUPPORT

   #define ECDSA_SUPPORT ENABLED

#elif (ECDSA_SUPPORT != ENABLED && ECDSA_SUPPORT != DISABLED)

   #error ECDSA_SUPPORT parameter is not valid

#endif


//HKDF support

#ifndef HKDF_SUPPORT

   #define HKDF_SUPPORT DISABLED

#elif (HKDF_SUPPORT != ENABLED && HKDF_SUPPORT != DISABLED)

   #error HKDF_SUPPORT parameter is not valid

#endif


//PKCS #5 support

#ifndef PKCS5_SUPPORT

   #define PKCS5_SUPPORT ENABLED

#elif (PKCS5_SUPPORT != ENABLED && PKCS5_SUPPORT != DISABLED)

   #error PKCS5_SUPPORT parameter is not valid

#endif


//bcrypt support

#ifndef BCRYPT_SUPPORT

   #define BCRYPT_SUPPORT ENABLED

#elif (BCRYPT_SUPPORT != ENABLED && BCRYPT_SUPPORT != DISABLED)

   #error BCRYPT_SUPPORT parameter is not valid

#endif


//scrypt support

#ifndef SCRYPT_SUPPORT

   #define SCRYPT_SUPPORT ENABLED

#elif (SCRYPT_SUPPORT != ENABLED && SCRYPT_SUPPORT != DISABLED)

   #error SCRYPT_SUPPORT parameter is not valid

#endif


//Yarrow PRNG support

#ifndef YARROW_SUPPORT

   #define YARROW_SUPPORT ENABLED

#elif (YARROW_SUPPORT != ENABLED && YARROW_SUPPORT != DISABLED)

   #error YARROW_SUPPORT parameter is not valid

#endif


//Object identifier support

#ifndef OID_SUPPORT

   #define OID_SUPPORT ENABLED

#elif (OID_SUPPORT != ENABLED && OID_SUPPORT != DISABLED)

   #error OID_SUPPORT parameter is not valid

#endif


//ASN.1 syntax support

#ifndef ASN1_SUPPORT

   #define ASN1_SUPPORT ENABLED

#elif (ASN1_SUPPORT != ENABLED && ASN1_SUPPORT != DISABLED)

   #error ASN1_SUPPORT parameter is not valid

#endif


//PEM file support

#ifndef PEM_SUPPORT

   #define PEM_SUPPORT ENABLED

#elif (PEM_SUPPORT != ENABLED && PEM_SUPPORT != DISABLED)

   #error PEM_SUPPORT parameter is not valid

#endif


//X.509 certificate support

#ifndef X509_SUPPORT

   #define X509_SUPPORT ENABLED

#elif (X509_SUPPORT != ENABLED && X509_SUPPORT != DISABLED)

   #error X509_SUPPORT parameter is not valid

#endif


//Allocate memory block

#ifndef cryptoAllocMem

   #define cryptoAllocMem(size) osAllocMem(size)

#endif


//Deallocate memory block

#ifndef cryptoFreeMem

   #define cryptoFreeMem(p) osFreeMem(p)

#endif


//Fill block of memory

#ifndef cryptoMemset

   #include <string.h>

   #define cryptoMemset(p, value, length) (void) memset(p, value, length)

#endif


//Copy block of memory

#ifndef cryptoMemcpy

   #include <string.h>

   #define cryptoMemcpy(dest, src, length) (void) memcpy(dest, src, length)

#endif


//Move block of memory

#ifndef cryptoMemmove

   #include <string.h>

   #define cryptoMemmove(dest, src, length) (void) memmove(dest, src, length)

#endif


//Compare two blocks of memory

#ifndef cryptoMemcmp

   #include <string.h>

   #define cryptoMemcmp(p1, p2, length) memcmp(p1, p2, length)

#endif


//Get string length

#ifndef cryptoStrlen

   #include <string.h>

   #define cryptoStrlen(s) strlen(s)

#endif


//Copy string

#ifndef cryptoStrcpy

   #include <string.h>

   #define cryptoStrcpy(s1, s2) (void) strcpy(s1, s2)

#endif


//Copy characters from string

#ifndef cryptoStrncpy

   #include <string.h>

   #define cryptoStrncpy(s1, s2, length) (void) strncpy(s1, s2, length)

#endif


//Format string

#ifndef cryptoSprintf

   #include <stdio.h>

   #define cryptoSprintf(dest, format, ...) sprintf(dest, format, __VA_ARGS__)

#endif


//Convert string to unsigned long integer

#ifndef cryptoStrtoul

   #include <stdlib.h>

   #define cryptoStrtoul(s, endptr, base) strtoul(s, endptr, base)

#endif


//Convert a character to lowercase

#ifndef cryptoTolower

   #include <ctype.h>

   #define cryptoTolower(c) tolower((uint8_t) (c))

#endif


//Check if a character is a decimal digit

#ifndef cryptoIsdigit

   #include <ctype.h>

   #define cryptoIsdigit(c) isdigit((uint8_t) (c))

#endif


//Maximum context size (hash algorithms)

#if (SHA3_512_SUPPORT == ENABLED)

   #define MAX_HASH_CONTEXT_SIZE sizeof(Sha3_512Context)

#elif (SHA3_384_SUPPORT == ENABLED)

   #define MAX_HASH_CONTEXT_SIZE sizeof(Sha3_384Context)

#elif (SHA3_256_SUPPORT == ENABLED)

   #define MAX_HASH_CONTEXT_SIZE sizeof(Sha3_256Context)

#elif (SHA3_224_SUPPORT == ENABLED)

   #define MAX_HASH_CONTEXT_SIZE sizeof(Sha3_224Context)

#elif (WHIRLPOOL_SUPPORT == ENABLED)

   #define MAX_HASH_CONTEXT_SIZE sizeof(WhirlpoolContext)

#elif (BLAKE2B512_SUPPORT == ENABLED)

   #define MAX_HASH_CONTEXT_SIZE sizeof(Blake2b512Context)

#elif (BLAKE2B384_SUPPORT == ENABLED)

   #define MAX_HASH_CONTEXT_SIZE sizeof(Blake2b384Context)

#elif (BLAKE2B256_SUPPORT == ENABLED)

   #define MAX_HASH_CONTEXT_SIZE sizeof(Blake2b256Context)

#elif (BLAKE2B160_SUPPORT == ENABLED)

   #define MAX_HASH_CONTEXT_SIZE sizeof(Blake2b160Context)

#elif (SHA512_SUPPORT == ENABLED)

   #define MAX_HASH_CONTEXT_SIZE sizeof(Sha512Context)

#elif (SHA384_SUPPORT == ENABLED)

   #define MAX_HASH_CONTEXT_SIZE sizeof(Sha384Context)

#elif (SHA512_256_SUPPORT == ENABLED)

   #define MAX_HASH_CONTEXT_SIZE sizeof(Sha512_256Context)

#elif (SHA512_224_SUPPORT == ENABLED)

   #define MAX_HASH_CONTEXT_SIZE sizeof(Sha512_224Context)

#elif (BLAKE2S256_SUPPORT == ENABLED)

   #define MAX_HASH_CONTEXT_SIZE sizeof(Blake2s256Context)

#elif (BLAKE2S224_SUPPORT == ENABLED)

   #define MAX_HASH_CONTEXT_SIZE sizeof(Blake2s224Context)

#elif (BLAKE2S160_SUPPORT == ENABLED)

   #define MAX_HASH_CONTEXT_SIZE sizeof(Blake2s160Context)

#elif (BLAKE2S128_SUPPORT == ENABLED)

   #define MAX_HASH_CONTEXT_SIZE sizeof(Blake2s128Context)

#elif (SHA256_SUPPORT == ENABLED)

   #define MAX_HASH_CONTEXT_SIZE sizeof(Sha256Context)

#elif (SHA224_SUPPORT == ENABLED)

   #define MAX_HASH_CONTEXT_SIZE sizeof(Sha224Context)

#elif (TIGER_SUPPORT == ENABLED)

   #define MAX_HASH_CONTEXT_SIZE sizeof(TigerContext)

#elif (SHA1_SUPPORT == ENABLED)

   #define MAX_HASH_CONTEXT_SIZE sizeof(Sha1Context)

#elif (RIPEMD160_SUPPORT == ENABLED)

   #define MAX_HASH_CONTEXT_SIZE sizeof(Ripemd160Context)

#elif (RIPEMD128_SUPPORT == ENABLED)

   #define MAX_HASH_CONTEXT_SIZE sizeof(Ripemd128Context)

#elif (MD5_SUPPORT == ENABLED)

   #define MAX_HASH_CONTEXT_SIZE sizeof(Md5Context)

#elif (MD4_SUPPORT == ENABLED)

   #define MAX_HASH_CONTEXT_SIZE sizeof(Md4Context)

#elif (MD2_SUPPORT == ENABLED)

   #define MAX_HASH_CONTEXT_SIZE sizeof(Md2Context)

#endif


//Maximum block size (hash algorithms)

#if (SHA3_224_SUPPORT == ENABLED)

   #define MAX_HASH_BLOCK_SIZE SHA3_224_BLOCK_SIZE

#elif (SHA3_256_SUPPORT == ENABLED)

   #define MAX_HASH_BLOCK_SIZE SHA3_256_BLOCK_SIZE

#elif (BLAKE2B512_SUPPORT == ENABLED)

   #define MAX_HASH_BLOCK_SIZE BLAKE2B512_BLOCK_SIZE

#elif (BLAKE2B384_SUPPORT == ENABLED)

   #define MAX_HASH_BLOCK_SIZE BLAKE2B384_BLOCK_SIZE

#elif (BLAKE2B256_SUPPORT == ENABLED)

   #define MAX_HASH_BLOCK_SIZE BLAKE2B256_BLOCK_SIZE

#elif (BLAKE2B160_SUPPORT == ENABLED)

   #define MAX_HASH_BLOCK_SIZE BLAKE2B160_BLOCK_SIZE

#elif (SHA512_SUPPORT == ENABLED)

   #define MAX_HASH_BLOCK_SIZE SHA512_BLOCK_SIZE

#elif (SHA384_SUPPORT == ENABLED)

   #define MAX_HASH_BLOCK_SIZE SHA384_BLOCK_SIZE

#elif (SHA512_256_SUPPORT == ENABLED)

   #define MAX_HASH_BLOCK_SIZE SHA512_256_BLOCK_SIZE

#elif (SHA512_224_SUPPORT == ENABLED)

   #define MAX_HASH_BLOCK_SIZE SHA512_224_BLOCK_SIZE

#elif (SHA3_384_SUPPORT == ENABLED)

   #define MAX_HASH_BLOCK_SIZE SHA3_384_BLOCK_SIZE

#elif (SHA3_512_SUPPORT == ENABLED)

   #define MAX_HASH_BLOCK_SIZE SHA3_512_BLOCK_SIZE

#elif (BLAKE2S256_SUPPORT == ENABLED)

   #define MAX_HASH_BLOCK_SIZE BLAKE2S256_BLOCK_SIZE

#elif (BLAKE2S224_SUPPORT == ENABLED)

   #define MAX_HASH_BLOCK_SIZE BLAKE2S224_BLOCK_SIZE

#elif (BLAKE2S160_SUPPORT == ENABLED)

   #define MAX_HASH_BLOCK_SIZE BLAKE2S160_BLOCK_SIZE

#elif (BLAKE2S128_SUPPORT == ENABLED)

   #define MAX_HASH_BLOCK_SIZE BLAKE2S128_BLOCK_SIZE

#elif (SHA256_SUPPORT == ENABLED)

   #define MAX_HASH_BLOCK_SIZE SHA256_BLOCK_SIZE

#elif (SHA224_SUPPORT == ENABLED)

   #define MAX_HASH_BLOCK_SIZE SHA224_BLOCK_SIZE

#elif (SHA1_SUPPORT == ENABLED)

   #define MAX_HASH_BLOCK_SIZE SHA1_BLOCK_SIZE

#elif (WHIRLPOOL_SUPPORT == ENABLED)

   #define MAX_HASH_BLOCK_SIZE WHIRLPOOL_BLOCK_SIZE

#elif (TIGER_SUPPORT == ENABLED)

   #define MAX_HASH_BLOCK_SIZE TIGER_BLOCK_SIZE

#elif (RIPEMD160_SUPPORT == ENABLED)

   #define MAX_HASH_BLOCK_SIZE RIPEMD160_BLOCK_SIZE

#elif (RIPEMD128_SUPPORT == ENABLED)

   #define MAX_HASH_BLOCK_SIZE RIPEMD128_BLOCK_SIZE

#elif (MD5_SUPPORT == ENABLED)

   #define MAX_HASH_BLOCK_SIZE MD5_BLOCK_SIZE

#elif (MD4_SUPPORT == ENABLED)

   #define MAX_HASH_BLOCK_SIZE MD4_BLOCK_SIZE

#elif (MD2_SUPPORT == ENABLED)

   #define MAX_HASH_BLOCK_SIZE MD2_BLOCK_SIZE

#endif


//Maximum digest size (hash algorithms)

#if (WHIRLPOOL_SUPPORT == ENABLED)

   #define MAX_HASH_DIGEST_SIZE WHIRLPOOL_DIGEST_SIZE

#elif (BLAKE2B512_SUPPORT == ENABLED)

   #define MAX_HASH_DIGEST_SIZE BLAKE2B512_DIGEST_SIZE

#elif (SHA3_512_SUPPORT == ENABLED)

   #define MAX_HASH_DIGEST_SIZE SHA3_512_DIGEST_SIZE

#elif (SHA512_SUPPORT == ENABLED)

   #define MAX_HASH_DIGEST_SIZE SHA512_DIGEST_SIZE

#elif (BLAKE2B384_SUPPORT == ENABLED)

   #define MAX_HASH_DIGEST_SIZE BLAKE2B384_DIGEST_SIZE

#elif (SHA3_384_SUPPORT == ENABLED)

   #define MAX_HASH_DIGEST_SIZE SHA3_384_DIGEST_SIZE

#elif (SHA384_SUPPORT == ENABLED)

   #define MAX_HASH_DIGEST_SIZE SHA384_DIGEST_SIZE

#elif (BLAKE2B256_SUPPORT == ENABLED)

   #define MAX_HASH_DIGEST_SIZE BLAKE2B256_DIGEST_SIZE

#elif (BLAKE2S256_SUPPORT == ENABLED)

   #define MAX_HASH_DIGEST_SIZE BLAKE2S256_DIGEST_SIZE

#elif (SHA3_256_SUPPORT == ENABLED)

   #define MAX_HASH_DIGEST_SIZE SHA3_256_DIGEST_SIZE

#elif (SHA512_256_SUPPORT == ENABLED)

   #define MAX_HASH_DIGEST_SIZE SHA512_256_DIGEST_SIZE

#elif (SHA256_SUPPORT == ENABLED)

   #define MAX_HASH_DIGEST_SIZE SHA256_DIGEST_SIZE

#elif (BLAKE2S224_SUPPORT == ENABLED)

   #define MAX_HASH_DIGEST_SIZE BLAKE2S224_DIGEST_SIZE

#elif (SHA3_224_SUPPORT == ENABLED)

   #define MAX_HASH_DIGEST_SIZE SHA3_224_DIGEST_SIZE

#elif (SHA512_224_SUPPORT == ENABLED)

   #define MAX_HASH_DIGEST_SIZE SHA512_224_DIGEST_SIZE

#elif (SHA224_SUPPORT == ENABLED)

   #define MAX_HASH_DIGEST_SIZE SHA224_DIGEST_SIZE

#elif (TIGER_SUPPORT == ENABLED)

   #define MAX_HASH_DIGEST_SIZE TIGER_DIGEST_SIZE

#elif (BLAKE2B160_SUPPORT == ENABLED)

   #define MAX_HASH_DIGEST_SIZE BLAKE2B160_DIGEST_SIZE

#elif (BLAKE2S160_SUPPORT == ENABLED)

   #define MAX_HASH_DIGEST_SIZE BLAKE2S160_DIGEST_SIZE

#elif (SHA1_SUPPORT == ENABLED)

   #define MAX_HASH_DIGEST_SIZE SHA1_DIGEST_SIZE

#elif (RIPEMD160_SUPPORT == ENABLED)

   #define MAX_HASH_DIGEST_SIZE RIPEMD160_DIGEST_SIZE

#elif (BLAKE2S128_SUPPORT == ENABLED)

   #define MAX_HASH_DIGEST_SIZE BLAKE2S128_DIGEST_SIZE

#elif (RIPEMD128_SUPPORT == ENABLED)

   #define MAX_HASH_DIGEST_SIZE RIPEMD128_DIGEST_SIZE

#elif (MD5_SUPPORT == ENABLED)

   #define MAX_HASH_DIGEST_SIZE MD5_DIGEST_SIZE

#elif (MD4_SUPPORT == ENABLED)

   #define MAX_HASH_DIGEST_SIZE MD4_DIGEST_SIZE

#elif (MD2_SUPPORT == ENABLED)

   #define MAX_HASH_DIGEST_SIZE MD2_DIGEST_SIZE

#endif


//Maximum context size (block cipher algorithms)

#if (BLOWFISH_SUPPORT == ENABLED)

   #define MAX_CIPHER_CONTEXT_SIZE sizeof(BlowfishContext)

#elif (ARIA_SUPPORT == ENABLED)

   #define MAX_CIPHER_CONTEXT_SIZE sizeof(AriaContext)

#elif (AES_SUPPORT == ENABLED)

   #define MAX_CIPHER_CONTEXT_SIZE sizeof(AesContext)

#elif (DES3_SUPPORT == ENABLED)

   #define MAX_CIPHER_CONTEXT_SIZE sizeof(Des3Context)

#elif (CAMELLIA_SUPPORT == ENABLED)

   #define MAX_CIPHER_CONTEXT_SIZE sizeof(CamelliaContext)

#elif (PRESENT_SUPPORT == ENABLED)

   #define MAX_CIPHER_CONTEXT_SIZE sizeof(PresentContext)

#elif (RC6_SUPPORT == ENABLED)

   #define MAX_CIPHER_CONTEXT_SIZE sizeof(Rc6Context)

#elif (IDEA_SUPPORT == ENABLED)

   #define MAX_CIPHER_CONTEXT_SIZE sizeof(IdeaContext)

#elif (DES_SUPPORT == ENABLED)

   #define MAX_CIPHER_CONTEXT_SIZE sizeof(DesContext)

#elif (SEED_SUPPORT == ENABLED)

   #define MAX_CIPHER_CONTEXT_SIZE sizeof(SeedContext)

#elif (RC2_SUPPORT == ENABLED)

   #define MAX_CIPHER_CONTEXT_SIZE sizeof(Rc2Context)

#endif


//Maximum block size (block cipher algorithms)

#if (CAMELLIA_SUPPORT == ENABLED)

   #define MAX_CIPHER_BLOCK_SIZE CAMELLIA_BLOCK_SIZE

#elif (AES_SUPPORT == ENABLED)

   #define MAX_CIPHER_BLOCK_SIZE AES_BLOCK_SIZE

#elif (ARIA_SUPPORT == ENABLED)

   #define MAX_CIPHER_BLOCK_SIZE ARIA_BLOCK_SIZE

#elif (SEED_SUPPORT == ENABLED)

   #define MAX_CIPHER_BLOCK_SIZE SEED_BLOCK_SIZE

#elif (RC6_SUPPORT == ENABLED)

   #define MAX_CIPHER_BLOCK_SIZE RC6_BLOCK_SIZE

#elif (DES3_SUPPORT == ENABLED)

   #define MAX_CIPHER_BLOCK_SIZE DES3_BLOCK_SIZE

#elif (DES_SUPPORT == ENABLED)

   #define MAX_CIPHER_BLOCK_SIZE DES_BLOCK_SIZE

#elif (IDEA_SUPPORT == ENABLED)

   #define MAX_CIPHER_BLOCK_SIZE IDEA_BLOCK_SIZE

#elif (BLOWFISH_SUPPORT == ENABLED)

   #define MAX_CIPHER_BLOCK_SIZE BLOWFISH_BLOCK_SIZE

#elif (PRESENT_SUPPORT == ENABLED)

   #define MAX_CIPHER_BLOCK_SIZE PRESENT_BLOCK_SIZE

#elif (RC2_SUPPORT == ENABLED)

   #define MAX_CIPHER_BLOCK_SIZE RC2_BLOCK_SIZE

#endif


//Rotate left operation

#define ROL8(a, n) (((a) << (n)) | ((a) >> (8 - (n))))

#define ROL16(a, n) (((a) << (n)) | ((a) >> (16 - (n))))

#define ROL32(a, n) (((a) << (n)) | ((a) >> (32 - (n))))

#define ROL64(a, n) (((a) << (n)) | ((a) >> (64 - (n))))


//Rotate right operation

#define ROR8(a, n) (((a) >> (n)) | ((a) << (8 - (n))))

#define ROR16(a, n) (((a) >> (n)) | ((a) << (16 - (n))))

#define ROR32(a, n) (((a) >> (n)) | ((a) << (32 - (n))))

#define ROR64(a, n) (((a) >> (n)) | ((a) << (64 - (n))))


//Shift left operation

#define SHL8(a, n) ((a) << (n))

#define SHL16(a, n) ((a) << (n))

#define SHL32(a, n) ((a) << (n))

#define SHL64(a, n) ((a) << (n))


//Shift right operation

#define SHR8(a, n) ((a) >> (n))

#define SHR16(a, n) ((a) >> (n))

#define SHR32(a, n) ((a) >> (n))

#define SHR64(a, n) ((a) >> (n))


//Micellaneous macros

#define _U8(x) ((uint8_t) (x))

#define _U16(x) ((uint16_t) (x))

#define _U32(x) ((uint32_t) (x))

#define _U64(x) ((uint64_t) (x))


//Test if a 8-bit integer is zero

#define CRYPTO_TEST_Z_8(a) \

   _U8((_U8((_U8(a) | (~_U8(a) + 1U))) >> 7U) ^ 1U)


//Test if a 8-bit integer is nonzero

#define CRYPTO_TEST_NZ_8(a) \

   _U8(_U8((_U8(a) | (~_U8(a) + 1U))) >> 7U)


//Test if two 8-bit integers are equal

#define CRYPTO_TEST_EQ_8(a, b) \

   _U8((_U8(((_U8(a) ^ _U8(b)) | (~(_U8(a) ^ _U8(b)) + 1U))) >> 7U) ^ 1U)


//Test if two 8-bit integers are not equal

#define CRYPTO_TEST_NEQ_8(a, b) \

   _U8(_U8(((_U8(a) ^ _U8(b)) | (~(_U8(a) ^ _U8(b)) + 1U))) >> 7U)


//Test if a 8-bit integer is lower than another 8-bit integer

#define CRYPTO_TEST_LT_8(a, b) \

   _U8(_U8((((_U8(a) - _U8(b)) ^ _U8(b)) | (_U8(a) ^ _U8(b))) ^ _U8(a)) >> 7U)


//Test if a 8-bit integer is lower or equal than another 8-bit integer

#define CRYPTO_TEST_LTE_8(a, b) \

   _U8((_U8((((_U8(b) - _U8(a)) ^ _U8(a)) | (_U8(a) ^ _U8(b))) ^ _U8(b)) >> 7U) ^ 1U)


//Test if a 8-bit integer is greater than another 8-bit integer

#define CRYPTO_TEST_GT_8(a, b) \

   _U8(_U8((((_U8(b) - _U8(a)) ^ _U8(a)) | (_U8(a) ^ _U8(b))) ^ _U8(b)) >> 7U)


//Test if a 8-bit integer is greater or equal than another 8-bit integer

#define CRYPTO_TEST_GTE_8(a, b) \

   _U8((_U8((((_U8(a) - _U8(b)) ^ _U8(b)) | (_U8(a) ^ _U8(b))) ^ _U8(a)) >> 7U) ^ 1U)


//Select between two 8-bit integers

#define CRYPTO_SELECT_8(a, b, c) \

   _U8((_U8(a) & (_U8(c) - 1U)) | (_U8(b) & ~(_U8(c) - 1U)))


//Test if a 16-bit integer is zero

#define CRYPTO_TEST_Z_16(a) \

   _U16((_U16((_U16(a) | (~_U16(a) + 1U))) >> 15U) ^ 1U)


//Test if a 16-bit integer is nonzero

#define CRYPTO_TEST_NZ_16(a) \

   _U16(_U16((_U16(a) | (~_U16(a) + 1U))) >> 15U)


//Test if two 16-bit integers are equal

#define CRYPTO_TEST_EQ_16(a, b) \

   _U16((_U16(((_U16(a) ^ _U16(b)) | (~(_U16(a) ^ _U16(b)) + 1U))) >> 15U) ^ 1U)


//Test if two 16-bit integers are not equal

#define CRYPTO_TEST_NEQ_16(a, b) \

   _U16(_U16(((_U16(a) ^ _U16(b)) | (~(_U16(a) ^ _U16(b)) + 1U))) >> 15U)


//Test if a 16-bit integer is lower than another 16-bit integer

#define CRYPTO_TEST_LT_16(a, b) \

   _U16(_U16((((_U16(a) - _U16(b)) ^ _U16(b)) | (_U16(a) ^ _U16(b))) ^ _U16(a)) >> 15U)


//Test if a 16-bit integer is lower or equal than another 16-bit integer

#define CRYPTO_TEST_LTE_16(a, b) \

   _U16((_U16((((_U16(b) - _U16(a)) ^ _U16(a)) | (_U16(a) ^ _U16(b))) ^ _U16(b)) >> 15U) ^ 1U)


//Test if a 16-bit integer is greater than another 16-bit integer

#define CRYPTO_TEST_GT_16(a, b) \

   _U16(_U16((((_U16(b) - _U16(a)) ^ _U16(a)) | (_U16(a) ^ _U16(b))) ^ _U16(b)) >> 15U)


//Test if a 16-bit integer is greater or equal than another 16-bit integer

#define CRYPTO_TEST_GTE_16(a, b) \

   _U16((_U16((((_U16(a) - _U16(b)) ^ _U16(b)) | (_U16(a) ^ _U16(b))) ^ _U16(a)) >> 15U) ^ 1U)


//Select between two 16-bit integers

#define CRYPTO_SELECT_16(a, b, c) \

   _U16((_U16(a) & (_U16(c) - 1U)) | (_U16(b) & ~(_U16(c) - 1U)))


//Test if a 32-bit integer is zero

#define CRYPTO_TEST_Z_32(a) \

   _U32((_U32((_U32(a) | (~_U32(a) + 1U))) >> 31U) ^ 1U)


//Test if a 32-bit integer is nonzero

#define CRYPTO_TEST_NZ_32(a) \

   _U32(_U32((_U32(a) | (~_U32(a) + 1U))) >> 31U)


//Test if two 32-bit integers are equal

#define CRYPTO_TEST_EQ_32(a, b) \

   _U32((_U32(((_U32(a) ^ _U32(b)) | (~(_U32(a) ^ _U32(b)) + 1U))) >> 31U) ^ 1U)


//Test if two 32-bit integers are not equal

#define CRYPTO_TEST_NEQ_32(a, b) \

   _U32(_U32(((_U32(a) ^ _U32(b)) | (~(_U32(a) ^ _U32(b)) + 1U))) >> 31U)


//Test if a 32-bit integer is lower than another 32-bit integer

#define CRYPTO_TEST_LT_32(a, b) \

   _U32(_U32((((_U32(a) - _U32(b)) ^ _U32(b)) | (_U32(a) ^ _U32(b))) ^ _U32(a)) >> 31U)


//Test if a 32-bit integer is lower or equal than another 32-bit integer

#define CRYPTO_TEST_LTE_32(a, b) \

   _U32((_U32((((_U32(b) - _U32(a)) ^ _U32(a)) | (_U32(a) ^ _U32(b))) ^ _U32(b)) >> 31U) ^ 1U)


//Test if a 32-bit integer is greater than another 32-bit integer

#define CRYPTO_TEST_GT_32(a, b) \

   _U32(_U32((((_U32(b) - _U32(a)) ^ _U32(a)) | (_U32(a) ^ _U32(b))) ^ _U32(b)) >> 31U)


//Test if a 32-bit integer is greater or equal than another 32-bit integer

#define CRYPTO_TEST_GTE_32(a, b) \

   _U32((_U32((((_U32(a) - _U32(b)) ^ _U32(b)) | (_U32(a) ^ _U32(b))) ^ _U32(a)) >> 31U) ^ 1U)


//Select between two 32-bit integers

#define CRYPTO_SELECT_32(a, b, c) \

   _U32((_U32(a) & (_U32(c) - 1U)) | (_U32(b) & ~(_U32(c) - 1U)))


//Select between two 64-bit integers

#define CRYPTO_SELECT_64(a, b, c) \

   _U64((_U64(a) & (_U64(c) - 1U)) | (_U64(b) & ~(_U64(c) - 1U)))


//C++ guard

#ifdef __cplusplus

extern "C" {

#endif


/**

 * @brief Encryption algorithm type

 **/


typedef enum

{

   CIPHER_ALGO_TYPE_STREAM = 0,

   CIPHER_ALGO_TYPE_BLOCK  = 1

} CipherAlgoType;


/**

 * @brief Cipher operation modes

 **/


typedef enum

{

   CIPHER_MODE_NULL              = 0,

   CIPHER_MODE_STREAM            = 1,

   CIPHER_MODE_ECB               = 2,

   CIPHER_MODE_CBC               = 3,

   CIPHER_MODE_CFB               = 4,

   CIPHER_MODE_OFB               = 5,

   CIPHER_MODE_CTR               = 6,

   CIPHER_MODE_CCM               = 7,

   CIPHER_MODE_GCM               = 8,

   CIPHER_MODE_CHACHA20_POLY1305 = 9,

} CipherMode;


//Common API for hash algorithms

typedef error_t (*HashAlgoCompute)(const void *data, size_t length, uint8_t *digest);

typedef void (*HashAlgoInit)(void *context);

typedef void (*HashAlgoUpdate)(void *context, const void *data, size_t length);

typedef void (*HashAlgoFinal)(void *context, uint8_t *digest);

typedef void (*HashAlgoFinalRaw)(void *context, uint8_t *digest);


//Common API for encryption algorithms

typedef error_t (*CipherAlgoInit)(void *context, const uint8_t *key, size_t keyLen);

typedef void (*CipherAlgoEncryptStream)(void *context, const uint8_t *input, uint8_t *output, size_t length);

typedef void (*CipherAlgoDecryptStream)(void *context, const uint8_t *input, uint8_t *output, size_t length);

typedef void (*CipherAlgoEncryptBlock)(void *context, const uint8_t *input, uint8_t *output);

typedef void (*CipherAlgoDecryptBlock)(void *context, const uint8_t *input, uint8_t *output);


//Common API for pseudo-random number generators

typedef error_t (*PrngAlgoInit)(void *context);

typedef void (*PrngAlgoRelease)(void *context);

typedef error_t (*PrngAlgoSeed)(void *context, const uint8_t *input, size_t length);

typedef error_t (*PrngAlgoAddEntropy)(void *context, uint_t source, const uint8_t *input, size_t length, size_t entropy);

typedef error_t (*PrngAlgoRead)(void *context, uint8_t *output, size_t length);


/**

 * @brief Generic hash algorithm context

 **/


typedef struct

{

   uint8_t digest[1];

} HashContext;


/**

 * @brief Common interface for hash algorithms

 **/


typedef struct

{

   const char_t *name;

   const uint8_t *oid;

   size_t oidSize;

   size_t contextSize;

   size_t blockSize;

   size_t digestSize;

   size_t minPadSize;

   bool_t bigEndian;

   HashAlgoCompute compute;

   HashAlgoInit init;

   HashAlgoUpdate update;

   HashAlgoFinal final;

   HashAlgoFinalRaw finalRaw;

} HashAlgo;


/**

 * @brief Common interface for encryption algorithms

 **/


typedef struct

{

   const char_t *name;

   size_t contextSize;

   CipherAlgoType type;

   size_t blockSize;

   CipherAlgoInit init;

   CipherAlgoEncryptStream encryptStream;

   CipherAlgoDecryptStream decryptStream;

   CipherAlgoEncryptBlock encryptBlock;

   CipherAlgoDecryptBlock decryptBlock;

} CipherAlgo;


/**

 * @brief Common interface for pseudo-random number generators

 **/


typedef struct

{

   const char_t *name;

   size_t contextSize;

   PrngAlgoInit init;

   PrngAlgoRelease release;

   PrngAlgoSeed seed;

   PrngAlgoAddEntropy addEntropy;

   PrngAlgoRead read;

} PrngAlgo;


//C++ guard

#ifdef __cplusplus

}

#endif


#endif