Added ChaCha20+Poly1305 support (stand-alone, cipher suites).

[BearSSL] / src / ssl / ssl_server_minf2c.c

diff --git a/src/ssl/ssl_server_minf2c.c b/src/ssl/ssl_server_minf2c.c
new file mode 100644 (file)
index 0000000..10cc5fe
--- /dev/null
+++ b/src/ssl/ssl_server_minf2c.c
@@ -0,0 +1,85 @@
+/*
+ * Copyright (c) 2016 Thomas Pornin <pornin@bolet.org>
+ *
+ * Permission is hereby granted, free of charge, to any person obtaining 
+ * a copy of this software and associated documentation files (the
+ * "Software"), to deal in the Software without restriction, including
+ * without limitation the rights to use, copy, modify, merge, publish,
+ * distribute, sublicense, and/or sell copies of the Software, and to
+ * permit persons to whom the Software is furnished to do so, subject to
+ * the following conditions:
+ *
+ * The above copyright notice and this permission notice shall be 
+ * included in all copies or substantial portions of the Software.
+ *
+ * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, 
+ * EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+ * MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND 
+ * NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS
+ * BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN
+ * ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN
+ * CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+ * SOFTWARE.
+ */
+
+#include "inner.h"
+
+/* see bearssl_ssl.h */
+void
+br_ssl_server_init_minf2g(br_ssl_server_context *cc,
+       const br_x509_certificate *chain, size_t chain_len,
+       const br_ec_private_key *sk)
+{
+       static const uint16_t suites[] = {
+               BR_TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
+       };
+
+       /*
+        * Reset server context and set supported versions to TLS-1.2 (only).
+        */
+       br_ssl_server_zero(cc);
+       br_ssl_engine_set_versions(&cc->eng, BR_TLS12, BR_TLS12);
+
+       /*
+        * Set suites and elliptic curve implementation (for ECDHE).
+        */
+       br_ssl_engine_set_suites(&cc->eng, suites,
+               (sizeof suites) / (sizeof suites[0]));
+       br_ssl_engine_set_ec(&cc->eng, &br_ec_prime_i31);
+
+       /*
+        * Set the "server policy": handler for the certificate chain
+        * and private key operations.
+        */
+       br_ssl_server_set_single_ec(cc, chain, chain_len, sk,
+               BR_KEYTYPE_SIGN, 0, &br_ec_prime_i31, br_ecdsa_i31_sign_asn1);
+
+       /*
+        * Set supported hash functions.
+        */
+       br_ssl_engine_set_hash(&cc->eng, br_sha256_ID, &br_sha256_vtable);
+
+       /*
+        * Set the PRF implementations.
+        */
+       br_ssl_engine_set_prf_sha256(&cc->eng, &br_tls12_sha256_prf);
+
+       /*
+        * Symmetric encryption. We use the "constant-time"
+        * implementations, which are the safest.
+        *
+        * On architectures detected as "64-bit", use the 64-bit
+        * versions (aes_ct64, ghash_ctmul64).
+        */
+       br_ssl_engine_set_chacha20(&cc->eng,
+               &br_chacha20_ct_run);
+       br_ssl_engine_set_poly1305(&cc->eng,
+               &br_poly1305_ctmul_run);
+
+       /*
+        * Set the SSL record engines.
+        */
+       br_ssl_engine_set_chapol(&cc->eng,
+               &br_sslrec_in_chapol_vtable,
+               &br_sslrec_out_chapol_vtable);
+}