Import BSDDB 4.7.25 (as of svn r89086)
This commit is contained in:
Zachary Ware
85
dbinc/crypto.h
Normal file
85
dbinc/crypto.h
Normal file
@@ -0,0 +1,85 @@
|
||||
/*-
|
||||
* See the file LICENSE for redistribution information.
|
||||
*
|
||||
* Copyright (c) 1996,2008 Oracle. All rights reserved.
|
||||
*
|
||||
* $Id: crypto.h 63573 2008-05-23 21:43:21Z trent.nelson $
|
||||
*/
|
||||
|
||||
#ifndef _DB_CRYPTO_H_
|
||||
#define _DB_CRYPTO_H_
|
||||
|
||||
#if defined(__cplusplus)
|
||||
extern "C" {
|
||||
#endif
|
||||
|
||||
/*
|
||||
* !!!
|
||||
* These are the internal representations of the algorithm flags.
|
||||
* They are used in both the DB_CIPHER structure and the CIPHER
|
||||
* structure so we can tell if users specified both passwd and alg
|
||||
* correctly.
|
||||
*
|
||||
* CIPHER_ANY is used when an app joins an existing env but doesn't
|
||||
* know the algorithm originally used. This is only valid in the
|
||||
* DB_CIPHER structure until we open and can set the alg.
|
||||
*/
|
||||
/*
|
||||
* We store the algorithm in an 8-bit field on the meta-page. So we
|
||||
* use a numeric value, not bit fields.
|
||||
* now we are limited to 8 algorithms before we cannot use bits and
|
||||
* need numeric values. That should be plenty. It is okay for the
|
||||
* CIPHER_ANY flag to go beyond that since that is never stored on disk.
|
||||
*/
|
||||
|
||||
/*
|
||||
* This structure is per-process, not in shared memory.
|
||||
*/
|
||||
struct __db_cipher {
|
||||
u_int (*adj_size) __P((size_t));
|
||||
int (*close) __P((ENV *, void *));
|
||||
int (*decrypt) __P((ENV *, void *, void *, u_int8_t *, size_t));
|
||||
int (*encrypt) __P((ENV *, void *, void *, u_int8_t *, size_t));
|
||||
int (*init) __P((ENV *, DB_CIPHER *));
|
||||
|
||||
u_int8_t mac_key[DB_MAC_KEY]; /* MAC key. */
|
||||
void *data; /* Algorithm-specific information */
|
||||
|
||||
#define CIPHER_AES 1 /* AES algorithm */
|
||||
u_int8_t alg; /* Algorithm used - See above */
|
||||
u_int8_t spare[3]; /* Spares */
|
||||
|
||||
#define CIPHER_ANY 0x00000001 /* Only for DB_CIPHER */
|
||||
u_int32_t flags; /* Other flags */
|
||||
};
|
||||
|
||||
#ifdef HAVE_CRYPTO
|
||||
|
||||
#include "crypto/rijndael/rijndael-api-fst.h"
|
||||
|
||||
/*
|
||||
* Shared ciphering structure
|
||||
* No mutex needed because all information is read-only after creation.
|
||||
*/
|
||||
typedef struct __cipher {
|
||||
roff_t passwd; /* Offset to shared passwd */
|
||||
size_t passwd_len; /* Length of passwd */
|
||||
u_int32_t flags; /* Algorithm used - see above */
|
||||
} CIPHER;
|
||||
|
||||
#define DB_AES_KEYLEN 128 /* AES key length */
|
||||
#define DB_AES_CHUNK 16 /* AES byte unit size */
|
||||
|
||||
typedef struct __aes_cipher {
|
||||
keyInstance decrypt_ki; /* Decryption key instance */
|
||||
keyInstance encrypt_ki; /* Encryption key instance */
|
||||
u_int32_t flags; /* AES-specific flags */
|
||||
} AES_CIPHER;
|
||||
|
||||
#include "dbinc_auto/crypto_ext.h"
|
||||
#endif /* HAVE_CRYPTO */
|
||||
|
||||
#if defined(__cplusplus)
|
||||
}
|
||||
#endif
|
||||
#endif /* !_DB_CRYPTO_H_ */
|
||||
Reference in New Issue
Block a user