boringssl/include/openssl/base64.h

/* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
 * All rights reserved.
 *
 * This package is an SSL implementation written
 * by Eric Young (eay@cryptsoft.com).
 * The implementation was written so as to conform with Netscapes SSL.
 *
 * This library is free for commercial and non-commercial use as long as
 * the following conditions are aheared to.  The following conditions
 * apply to all code found in this distribution, be it the RC4, RSA,
 * lhash, DES, etc., code; not just the SSL code.  The SSL documentation
 * included with this distribution is covered by the same copyright terms
 * except that the holder is Tim Hudson (tjh@cryptsoft.com).
 *
 * Copyright remains Eric Young's, and as such any Copyright notices in
 * the code are not to be removed.
 * If this package is used in a product, Eric Young should be given attribution
 * as the author of the parts of the library used.
 * This can be in the form of a textual message at program startup or
 * in documentation (online or textual) provided with the package.
 *
 * Redistribution and use in source and binary forms, with or without
 * modification, are permitted provided that the following conditions
 * are met:
 * 1. Redistributions of source code must retain the copyright
 *    notice, this list of conditions and the following disclaimer.
 * 2. Redistributions in binary form must reproduce the above copyright
 *    notice, this list of conditions and the following disclaimer in the
 *    documentation and/or other materials provided with the distribution.
 * 3. All advertising materials mentioning features or use of this software
 *    must display the following acknowledgement:
 *    "This product includes cryptographic software written by
 *     Eric Young (eay@cryptsoft.com)"
 *    The word 'cryptographic' can be left out if the rouines from the library
 *    being used are not cryptographic related :-).
 * 4. If you include any Windows specific code (or a derivative thereof) from
 *    the apps directory (application code) you must include an acknowledgement:
 *    "This product includes software written by Tim Hudson (tjh@cryptsoft.com)"
 *
 * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND
 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
 * ARE DISCLAIMED.  IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
 * SUCH DAMAGE.
 *
 * The licence and distribution terms for any publically available version or
 * derivative of this code cannot be changed.  i.e. this code cannot simply be
 * copied and put under another distribution licence
 * [including the GNU Public Licence.] */

#ifndef OPENSSL_HEADER_BASE64_H
#define OPENSSL_HEADER_BASE64_H

#include <openssl/base.h>

#if defined(__cplusplus)
extern "C" {
#endif


// base64 functions.
//
// For historical reasons, these functions have the EVP_ prefix but just do
// base64 encoding and decoding. Note that BoringSSL is a cryptography library,
// so these functions are implemented with side channel protections, at a
// performance cost. For other base64 uses, use a general-purpose base64
// implementation.


// Encoding

// EVP_EncodeBlock encodes |src_len| bytes from |src| and writes the
// result to |dst| with a trailing NUL. It returns the number of bytes
// written, not including this trailing NUL.
OPENSSL_EXPORT size_t EVP_EncodeBlock(uint8_t *dst, const uint8_t *src,
                                      size_t src_len);

// EVP_EncodedLength sets |*out_len| to the number of bytes that will be needed
// to call |EVP_EncodeBlock| on an input of length |len|. This includes the
// final NUL that |EVP_EncodeBlock| writes. It returns one on success or zero
// on error.
OPENSSL_EXPORT int EVP_EncodedLength(size_t *out_len, size_t len);


// Decoding

// EVP_DecodedLength sets |*out_len| to the maximum number of bytes that will
// be needed to call |EVP_DecodeBase64| on an input of length |len|. It returns
// one on success or zero if |len| is not a valid length for a base64-encoded
// string.
OPENSSL_EXPORT int EVP_DecodedLength(size_t *out_len, size_t len);

// EVP_DecodeBase64 decodes |in_len| bytes from base64 and writes
// |*out_len| bytes to |out|. |max_out| is the size of the output
// buffer. If it is not enough for the maximum output size, the
// operation fails. It returns one on success or zero on error.
OPENSSL_EXPORT int EVP_DecodeBase64(uint8_t *out, size_t *out_len,
                                    size_t max_out, const uint8_t *in,
                                    size_t in_len);


// Deprecated functions.
//
// OpenSSL provides a streaming base64 implementation, however its behavior is
// very specific to PEM. It is also very lenient of invalid input. Use of any of
// these functions is thus deprecated.

// EVP_ENCODE_CTX_new returns a newly-allocated |EVP_ENCODE_CTX| or NULL on
// error. The caller must release the result with |EVP_ENCODE_CTX_free|  when
// done.
OPENSSL_EXPORT EVP_ENCODE_CTX *EVP_ENCODE_CTX_new(void);

// EVP_ENCODE_CTX_free releases memory associated with |ctx|.
OPENSSL_EXPORT void EVP_ENCODE_CTX_free(EVP_ENCODE_CTX *ctx);

// EVP_EncodeInit initialises |*ctx|, which is typically stack
// allocated, for an encoding operation.
//
// NOTE: The encoding operation breaks its output with newlines every
// 64 characters of output (48 characters of input). Use
// EVP_EncodeBlock to encode raw base64.
OPENSSL_EXPORT void EVP_EncodeInit(EVP_ENCODE_CTX *ctx);

// EVP_EncodeUpdate encodes |in_len| bytes from |in| and writes an encoded
// version of them to |out| and sets |*out_len| to the number of bytes written.
// Some state may be contained in |ctx| so |EVP_EncodeFinal| must be used to
// flush it before using the encoded data.
OPENSSL_EXPORT void EVP_EncodeUpdate(EVP_ENCODE_CTX *ctx, uint8_t *out,
                                     int *out_len, const uint8_t *in,
                                     size_t in_len);

// EVP_EncodeFinal flushes any remaining output bytes from |ctx| to |out| and
// sets |*out_len| to the number of bytes written.
OPENSSL_EXPORT void EVP_EncodeFinal(EVP_ENCODE_CTX *ctx, uint8_t *out,
                                    int *out_len);

// EVP_DecodeInit initialises |*ctx|, which is typically stack allocated, for
// a decoding operation.
//
// TODO(davidben): This isn't a straight-up base64 decode either. Document
// and/or fix exactly what's going on here; maximum line length and such.
OPENSSL_EXPORT void EVP_DecodeInit(EVP_ENCODE_CTX *ctx);

// EVP_DecodeUpdate decodes |in_len| bytes from |in| and writes the decoded
// data to |out| and sets |*out_len| to the number of bytes written. Some state
// may be contained in |ctx| so |EVP_DecodeFinal| must be used to flush it
// before using the encoded data.
//
// It returns -1 on error, one if a full line of input was processed and zero
// if the line was short (i.e. it was the last line).
OPENSSL_EXPORT int EVP_DecodeUpdate(EVP_ENCODE_CTX *ctx, uint8_t *out,
                                    int *out_len, const uint8_t *in,
                                    size_t in_len);

// EVP_DecodeFinal flushes any remaining output bytes from |ctx| to |out| and
// sets |*out_len| to the number of bytes written. It returns one on success
// and minus one on error.
OPENSSL_EXPORT int EVP_DecodeFinal(EVP_ENCODE_CTX *ctx, uint8_t *out,
                                   int *out_len);

// EVP_DecodeBlock encodes |src_len| bytes from |src| and writes the result to
// |dst|. It returns the number of bytes written or -1 on error.
//
// WARNING: EVP_DecodeBlock's return value does not take padding into
// account. It also strips leading whitespace and trailing
// whitespace and minuses.
OPENSSL_EXPORT int EVP_DecodeBlock(uint8_t *dst, const uint8_t *src,
                                   size_t src_len);


struct evp_encode_ctx_st {
  // data_used indicates the number of bytes of |data| that are valid. When
  // encoding, |data| will be filled and encoded as a lump. When decoding, only
  // the first four bytes of |data| will be used.
  unsigned data_used;
  uint8_t data[48];

  // eof_seen indicates that the end of the base64 data has been seen when
  // decoding. Only whitespace can follow.
  char eof_seen;

  // error_encountered indicates that invalid base64 data was found. This will
  // cause all future calls to fail.
  char error_encountered;
};


#if defined(__cplusplus)
}  // extern C
#endif

#endif  // OPENSSL_HEADER_BASE64_H
acvp: add CMAC-AES support. Change by Dan Janni. Change-Id: I3f059e7b1a822c6f97128ca92a693499a3f7fa8f Reviewed-on: https://boringssl-review.googlesource.com/c/boringssl/+/41984 Commit-Queue: Adam Langley <agl@google.com> Reviewed-by: David Benjamin <davidben@google.com> 5 years ago			`/* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)`
			`* All rights reserved.`
			`*`
			`* This package is an SSL implementation written`
			`* by Eric Young (eay@cryptsoft.com).`
			`* The implementation was written so as to conform with Netscapes SSL.`
			`*`
			`* This library is free for commercial and non-commercial use as long as`
			`* the following conditions are aheared to. The following conditions`
			`* apply to all code found in this distribution, be it the RC4, RSA,`
			`* lhash, DES, etc., code; not just the SSL code. The SSL documentation`
			`* included with this distribution is covered by the same copyright terms`
			`* except that the holder is Tim Hudson (tjh@cryptsoft.com).`
			`*`
			`* Copyright remains Eric Young's, and as such any Copyright notices in`
			`* the code are not to be removed.`
			`* If this package is used in a product, Eric Young should be given attribution`
			`* as the author of the parts of the library used.`
			`* This can be in the form of a textual message at program startup or`
			`* in documentation (online or textual) provided with the package.`
			`*`
			`* Redistribution and use in source and binary forms, with or without`
			`* modification, are permitted provided that the following conditions`
			`* are met:`
			`* 1. Redistributions of source code must retain the copyright`
			`* notice, this list of conditions and the following disclaimer.`
			`* 2. Redistributions in binary form must reproduce the above copyright`
			`* notice, this list of conditions and the following disclaimer in the`
			`* documentation and/or other materials provided with the distribution.`
			`* 3. All advertising materials mentioning features or use of this software`
			`* must display the following acknowledgement:`
			`* "This product includes cryptographic software written by`
			`* Eric Young (eay@cryptsoft.com)"`
			`* The word 'cryptographic' can be left out if the rouines from the library`
			`* being used are not cryptographic related :-).`
			`* 4. If you include any Windows specific code (or a derivative thereof) from`
			`* the apps directory (application code) you must include an acknowledgement:`
			`* "This product includes software written by Tim Hudson (tjh@cryptsoft.com)"`
			`*`
			* THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND
			`* ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE`
			`* IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE`
			`* ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE`
			`* FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL`
			`* DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS`
			`* OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)`
			`* HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT`
			`* LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY`
			`* OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF`
			`* SUCH DAMAGE.`
			`*`
			`* The licence and distribution terms for any publically available version or`
			`* derivative of this code cannot be changed. i.e. this code cannot simply be`
			`* copied and put under another distribution licence`
			`* [including the GNU Public Licence.] */`

			`#ifndef OPENSSL_HEADER_BASE64_H`
			`#define OPENSSL_HEADER_BASE64_H`

			`#include <openssl/base.h>`

			`#if defined(__cplusplus)`
			`extern "C" {`
			`#endif`


			`// base64 functions.`
			`//`
			`// For historical reasons, these functions have the EVP_ prefix but just do`
			`// base64 encoding and decoding. Note that BoringSSL is a cryptography library,`
			`// so these functions are implemented with side channel protections, at a`
			`// performance cost. For other base64 uses, use a general-purpose base64`
			`// implementation.`


			`// Encoding`

			`// EVP_EncodeBlock encodes \|src_len\| bytes from \|src\| and writes the`
			`// result to \|dst\| with a trailing NUL. It returns the number of bytes`
			`// written, not including this trailing NUL.`
			`OPENSSL_EXPORT size_t EVP_EncodeBlock(uint8_t dst, const uint8_t src,`
			`size_t src_len);`

			`// EVP_EncodedLength sets \|*out_len\| to the number of bytes that will be needed`
			`// to call \|EVP_EncodeBlock\| on an input of length \|len\|. This includes the`
			`// final NUL that \|EVP_EncodeBlock\| writes. It returns one on success or zero`
			`// on error.`
			`OPENSSL_EXPORT int EVP_EncodedLength(size_t *out_len, size_t len);`


			`// Decoding`

			`// EVP_DecodedLength sets \|*out_len\| to the maximum number of bytes that will`
			`// be needed to call \|EVP_DecodeBase64\| on an input of length \|len\|. It returns`
			`// one on success or zero if \|len\| is not a valid length for a base64-encoded`
			`// string.`
			`OPENSSL_EXPORT int EVP_DecodedLength(size_t *out_len, size_t len);`

			`// EVP_DecodeBase64 decodes \|in_len\| bytes from base64 and writes`
			`// \|*out_len\| bytes to \|out\|. \|max_out\| is the size of the output`
			`// buffer. If it is not enough for the maximum output size, the`
			`// operation fails. It returns one on success or zero on error.`
			`OPENSSL_EXPORT int EVP_DecodeBase64(uint8_t out, size_t out_len,`
			`size_t max_out, const uint8_t *in,`
			`size_t in_len);`


			`// Deprecated functions.`
			`//`
			`// OpenSSL provides a streaming base64 implementation, however its behavior is`
			`// very specific to PEM. It is also very lenient of invalid input. Use of any of`
			`// these functions is thus deprecated.`

Add various OpenSSL compatibility functions. The non-_ex EVP_CIPHER_CTX Final functions are a bit interesting. Unlike EVP_DigestFinal(_ex), where the non-_ex version calls EVP_MD_CTX_cleanup for you, the EVP_CIPHER_CTX ones do not automatically cleanup. EVP_CipherFinal and EVP_CipherFinal_ex are identical in all releases where they exist. This appears to date to OpenSSL 0.9.7: Prior to OpenSSL 0.9.7, EVP_MD_CTX and EVP_CIPHER_CTX did not use void* data fields. Instead, they just had a union of context structures for every algorithm OpenSSL implemented. EVP_MD_CTX was truly cleanup-less. There were no EVP_MD_CTX_init or EVP_MD_CTX_cleanup functions at all. EVP_DigestInit filled things in without reference to the previous state. EVP_DigestFinal didn't cleanup because there was nothing to cleanup. EVP_CIPHER_CTX was also a union, but for some reason did include EVP_CIPHER_CTX_init and EVP_CIPHER_CTX_cleanup. EVP_CIPHER_CTX_init seemed to be optional: EVP_CipherInit with non-NULL EVP_CIPHER similarly didn't reference the previous state. EVP_CipherFinal did not call EVP_CIPHER_CTX_cleanup, but EVP_CIPHER_CTX_cleanup didn't do anything. It called an optional cleanup hook on the EVP_CIPHER, but as far as I can tell, no EVP_CIPHER implemented it. Then OpenSSL 0.9.7 introduced ENGINE. The union didn't work anymore, so EVP_MD_CTX and EVP_CIPHER_CTX contained void* with allocated type-specific data. The introduced EVP_MD_CTX_init and EVP_MD_CTX_cleanup. For (imperfect!) backwards compatibility, EVP_DigestInit and EVP_DigestFinal transparently called init/cleanup for you. EVP_DigestInit_ex and EVP_DigestFinal_ex became the more flexible versions that left init/cleanup to the caller. EVP_CIPHER_CTX got the same treatment with EVP_CipherInit/EVP_CipherInit_ex, but not EVP_CipherFinal/EVP_CipherFinal_ex. The latter did the same thing. The history seems to be that 581f1c84940d77451c2592e9fa470893f6c3c3eb introduced the Final/Final_ex split, with the former doing an auto-cleanup, then 544a2aea4ba1fad76f0802fb70d92a5a8e6ad85a undid it. Looks like the motivation is that EVP_CIPHER_CTX objects are often reused to do multiple operations with a single key. But they missed that the split functions are now unnecessary. Amusingly, OpenSSL's documentation incorrectly said that EVP_CipherFinal cleaned up after the call until it was fixed in 538860a3ce0b9fd142a7f1a62e597cccb74475d3. The fix says that some releases cleaned up, but there were, as far as I can tell, no actual releases with that behavior. I've put the new Final functions in the deprecated section, purely because there is no sense in recommending two different versions of the same function to users, and Final_ex seems to be more popular. But there isn't actually anything wrong with plain Final. Change-Id: Ic2bfda48fdcf30f292141add8c5f745348036852 Reviewed-on: https://boringssl-review.googlesource.com/c/boringssl/+/50485 Reviewed-by: Adam Langley <agl@google.com> 3 years ago			`// EVP_ENCODE_CTX_new returns a newly-allocated \|EVP_ENCODE_CTX\| or NULL on`
			`// error. The caller must release the result with \|EVP_ENCODE_CTX_free\| when`
			`// done.`
			`OPENSSL_EXPORT EVP_ENCODE_CTX *EVP_ENCODE_CTX_new(void);`

			`// EVP_ENCODE_CTX_free releases memory associated with \|ctx\|.`
			`OPENSSL_EXPORT void EVP_ENCODE_CTX_free(EVP_ENCODE_CTX *ctx);`

acvp: add CMAC-AES support. Change by Dan Janni. Change-Id: I3f059e7b1a822c6f97128ca92a693499a3f7fa8f Reviewed-on: https://boringssl-review.googlesource.com/c/boringssl/+/41984 Commit-Queue: Adam Langley <agl@google.com> Reviewed-by: David Benjamin <davidben@google.com> 5 years ago			`// EVP_EncodeInit initialises \|*ctx\|, which is typically stack`
			`// allocated, for an encoding operation.`
			`//`
			`// NOTE: The encoding operation breaks its output with newlines every`
			`// 64 characters of output (48 characters of input). Use`
			`// EVP_EncodeBlock to encode raw base64.`
			`OPENSSL_EXPORT void EVP_EncodeInit(EVP_ENCODE_CTX *ctx);`

			`// EVP_EncodeUpdate encodes \|in_len\| bytes from \|in\| and writes an encoded`
			`// version of them to \|out\| and sets \|*out_len\| to the number of bytes written.`
			`// Some state may be contained in \|ctx\| so \|EVP_EncodeFinal\| must be used to`
			`// flush it before using the encoded data.`
			`OPENSSL_EXPORT void EVP_EncodeUpdate(EVP_ENCODE_CTX ctx, uint8_t out,`
			`int out_len, const uint8_t in,`
			`size_t in_len);`

			`// EVP_EncodeFinal flushes any remaining output bytes from \|ctx\| to \|out\| and`
			`// sets \|*out_len\| to the number of bytes written.`
			`OPENSSL_EXPORT void EVP_EncodeFinal(EVP_ENCODE_CTX ctx, uint8_t out,`
			`int *out_len);`

			`// EVP_DecodeInit initialises \|*ctx\|, which is typically stack allocated, for`
			`// a decoding operation.`
			`//`
			`// TODO(davidben): This isn't a straight-up base64 decode either. Document`
			`// and/or fix exactly what's going on here; maximum line length and such.`
			`OPENSSL_EXPORT void EVP_DecodeInit(EVP_ENCODE_CTX *ctx);`

			`// EVP_DecodeUpdate decodes \|in_len\| bytes from \|in\| and writes the decoded`
			`// data to \|out\| and sets \|*out_len\| to the number of bytes written. Some state`
			`// may be contained in \|ctx\| so \|EVP_DecodeFinal\| must be used to flush it`
			`// before using the encoded data.`
			`//`
			`// It returns -1 on error, one if a full line of input was processed and zero`
			`// if the line was short (i.e. it was the last line).`
			`OPENSSL_EXPORT int EVP_DecodeUpdate(EVP_ENCODE_CTX ctx, uint8_t out,`
			`int out_len, const uint8_t in,`
			`size_t in_len);`

			`// EVP_DecodeFinal flushes any remaining output bytes from \|ctx\| to \|out\| and`
			`// sets \|*out_len\| to the number of bytes written. It returns one on success`
			`// and minus one on error.`
			`OPENSSL_EXPORT int EVP_DecodeFinal(EVP_ENCODE_CTX ctx, uint8_t out,`
			`int *out_len);`

			`// EVP_DecodeBlock encodes \|src_len\| bytes from \|src\| and writes the result to`
			`// \|dst\|. It returns the number of bytes written or -1 on error.`
			`//`
			`// WARNING: EVP_DecodeBlock's return value does not take padding into`
			`// account. It also strips leading whitespace and trailing`
			`// whitespace and minuses.`
			`OPENSSL_EXPORT int EVP_DecodeBlock(uint8_t dst, const uint8_t src,`
			`size_t src_len);`


			`struct evp_encode_ctx_st {`
			`// data_used indicates the number of bytes of \|data\| that are valid. When`
			`// encoding, \|data\| will be filled and encoded as a lump. When decoding, only`
			`// the first four bytes of \|data\| will be used.`
			`unsigned data_used;`
			`uint8_t data[48];`

			`// eof_seen indicates that the end of the base64 data has been seen when`
			`// decoding. Only whitespace can follow.`
			`char eof_seen;`

			`// error_encountered indicates that invalid base64 data was found. This will`
			`// cause all future calls to fail.`
			`char error_encountered;`
			`};`


			`#if defined(__cplusplus)`
			`} // extern C`
			`#endif`

			`#endif // OPENSSL_HEADER_BASE64_H`