2013-08-12 17:06:05 +02:00
|
|
|
/*
|
|
|
|
* Public Key abstraction layer: wrapper functions
|
|
|
|
*
|
|
|
|
* Copyright (C) 2006-2013, Brainspark B.V.
|
|
|
|
*
|
|
|
|
* This file is part of PolarSSL (http://www.polarssl.org)
|
|
|
|
* Lead Maintainer: Paul Bakker <polarssl_maintainer at polarssl.org>
|
|
|
|
*
|
|
|
|
* All rights reserved.
|
|
|
|
*
|
|
|
|
* This program is free software; you can redistribute it and/or modify
|
|
|
|
* it under the terms of the GNU General Public License as published by
|
|
|
|
* the Free Software Foundation; either version 2 of the License, or
|
|
|
|
* (at your option) any later version.
|
|
|
|
*
|
|
|
|
* This program is distributed in the hope that it will be useful,
|
|
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
|
|
* GNU General Public License for more details.
|
|
|
|
*
|
|
|
|
* You should have received a copy of the GNU General Public License along
|
|
|
|
* with this program; if not, write to the Free Software Foundation, Inc.,
|
|
|
|
* 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
|
|
|
|
*/
|
|
|
|
|
|
|
|
#include "polarssl/config.h"
|
|
|
|
|
|
|
|
#include "polarssl/pk_wrap.h"
|
|
|
|
|
|
|
|
#if defined(POLARSSL_RSA_C)
|
|
|
|
#include "polarssl/rsa.h"
|
|
|
|
#endif
|
|
|
|
|
|
|
|
#if defined(POLARSSL_ECP_C)
|
|
|
|
#include "polarssl/ecp.h"
|
|
|
|
#endif
|
|
|
|
|
|
|
|
#if defined(POLARSSL_ECDSA_C)
|
|
|
|
#include "polarssl/ecdsa.h"
|
|
|
|
#endif
|
|
|
|
|
2013-08-14 15:00:27 +02:00
|
|
|
#if defined(POLARSSL_MEMORY_C)
|
|
|
|
#include "polarssl/memory.h"
|
|
|
|
#else
|
|
|
|
#include <stdlib.h>
|
|
|
|
#define polarssl_malloc malloc
|
|
|
|
#define polarssl_free free
|
|
|
|
#endif
|
|
|
|
|
2013-08-12 17:06:05 +02:00
|
|
|
#if defined(POLARSSL_RSA_C)
|
2013-08-12 18:41:18 +02:00
|
|
|
static int rsa_can_do( pk_type_t type )
|
|
|
|
{
|
|
|
|
return( type == POLARSSL_PK_RSA );
|
|
|
|
}
|
|
|
|
|
2013-08-14 15:56:19 +02:00
|
|
|
static size_t rsa_get_size( const void * ctx )
|
2013-08-12 19:45:32 +02:00
|
|
|
{
|
2013-08-14 15:56:19 +02:00
|
|
|
return( 8 * ((rsa_context *) ctx)->len );
|
2013-08-12 19:45:32 +02:00
|
|
|
}
|
|
|
|
|
2013-08-17 14:36:32 +02:00
|
|
|
static int rsa_verify_wrap( void *ctx, md_type_t md_alg,
|
|
|
|
const unsigned char *hash, size_t hash_len,
|
2013-08-12 17:06:05 +02:00
|
|
|
const unsigned char *sig, size_t sig_len )
|
|
|
|
{
|
2013-08-14 20:20:41 +02:00
|
|
|
if( sig_len != ((rsa_context *) ctx)->len )
|
|
|
|
return( POLARSSL_ERR_RSA_VERIFY_FAILED );
|
2013-08-12 17:06:05 +02:00
|
|
|
|
|
|
|
return( rsa_pkcs1_verify( (rsa_context *) ctx,
|
2013-08-17 14:36:32 +02:00
|
|
|
RSA_PUBLIC, md_alg, hash_len, hash, sig ) );
|
2013-08-12 17:06:05 +02:00
|
|
|
}
|
|
|
|
|
2013-08-14 15:00:27 +02:00
|
|
|
static void *rsa_alloc_wrap( void )
|
|
|
|
{
|
|
|
|
void *ctx = polarssl_malloc( sizeof( rsa_context ) );
|
|
|
|
|
|
|
|
if( ctx != NULL )
|
|
|
|
rsa_init( (rsa_context *) ctx, 0, 0 );
|
|
|
|
|
|
|
|
return ctx;
|
|
|
|
}
|
|
|
|
|
|
|
|
static void rsa_free_wrap( void *ctx )
|
|
|
|
{
|
|
|
|
rsa_free( (rsa_context *) ctx );
|
|
|
|
polarssl_free( ctx );
|
|
|
|
}
|
|
|
|
|
2013-08-14 18:04:18 +02:00
|
|
|
static void rsa_debug( const void *ctx, pk_debug_item *items )
|
|
|
|
{
|
|
|
|
items->type = POLARSSL_PK_DEBUG_MPI;
|
|
|
|
items->name = "rsa.N";
|
|
|
|
items->value = &( ((rsa_context *) ctx)->N );
|
|
|
|
|
|
|
|
items++;
|
|
|
|
|
|
|
|
items->type = POLARSSL_PK_DEBUG_MPI;
|
|
|
|
items->name = "rsa.E";
|
|
|
|
items->value = &( ((rsa_context *) ctx)->E );
|
|
|
|
}
|
|
|
|
|
2013-08-12 17:06:05 +02:00
|
|
|
const pk_info_t rsa_info = {
|
|
|
|
POLARSSL_PK_RSA,
|
2013-08-12 19:45:32 +02:00
|
|
|
"RSA",
|
|
|
|
rsa_get_size,
|
2013-08-12 18:41:18 +02:00
|
|
|
rsa_can_do,
|
2013-08-12 17:06:05 +02:00
|
|
|
rsa_verify_wrap,
|
2013-08-14 15:00:27 +02:00
|
|
|
rsa_alloc_wrap,
|
|
|
|
rsa_free_wrap,
|
2013-08-14 18:04:18 +02:00
|
|
|
rsa_debug,
|
2013-08-12 17:06:05 +02:00
|
|
|
};
|
|
|
|
#endif /* POLARSSL_RSA_C */
|
|
|
|
|
|
|
|
#if defined(POLARSSL_ECP_C)
|
2013-08-12 18:51:26 +02:00
|
|
|
/*
|
|
|
|
* Generic EC key
|
|
|
|
*/
|
2013-08-12 18:41:18 +02:00
|
|
|
static int eckey_can_do( pk_type_t type )
|
|
|
|
{
|
|
|
|
return( type == POLARSSL_PK_ECKEY ||
|
|
|
|
type == POLARSSL_PK_ECKEY_DH ||
|
|
|
|
type == POLARSSL_PK_ECDSA );
|
|
|
|
}
|
|
|
|
|
2013-08-14 15:56:19 +02:00
|
|
|
static size_t eckey_get_size( const void *ctx )
|
2013-08-12 19:45:32 +02:00
|
|
|
{
|
|
|
|
return( ((ecp_keypair *) ctx)->grp.pbits );
|
|
|
|
}
|
|
|
|
|
2013-08-14 18:16:50 +02:00
|
|
|
#if defined(POLARSSL_ECDSA_C)
|
|
|
|
/* Forward declaration */
|
2013-08-17 14:36:32 +02:00
|
|
|
static int ecdsa_verify_wrap( void *ctx, md_type_t md_alg,
|
|
|
|
const unsigned char *hash, size_t hash_len,
|
2013-08-14 18:16:50 +02:00
|
|
|
const unsigned char *sig, size_t sig_len );
|
|
|
|
#endif
|
|
|
|
|
2013-08-17 14:36:32 +02:00
|
|
|
static int eckey_verify_wrap( void *ctx, md_type_t md_alg,
|
|
|
|
const unsigned char *hash, size_t hash_len,
|
2013-08-12 17:06:05 +02:00
|
|
|
const unsigned char *sig, size_t sig_len )
|
|
|
|
{
|
|
|
|
#if !defined(POLARSSL_ECDSA_C)
|
|
|
|
((void) ctx);
|
2013-08-17 14:36:32 +02:00
|
|
|
((void) md_alg);
|
2013-08-12 17:06:05 +02:00
|
|
|
((void) hash);
|
2013-08-17 14:36:32 +02:00
|
|
|
((void) hash_len);
|
2013-08-12 17:06:05 +02:00
|
|
|
((void) sig);
|
|
|
|
((void) sig_len);
|
|
|
|
|
|
|
|
return( POLARSSL_ERR_PK_TYPE_MISMATCH );
|
|
|
|
#else
|
|
|
|
int ret;
|
|
|
|
ecdsa_context ecdsa;
|
|
|
|
|
|
|
|
ecdsa_init( &ecdsa );
|
|
|
|
|
|
|
|
ret = ecdsa_from_keypair( &ecdsa, ctx ) ||
|
2013-08-17 14:36:32 +02:00
|
|
|
ecdsa_verify_wrap( &ecdsa, md_alg, hash, hash_len, sig, sig_len );
|
2013-08-12 17:06:05 +02:00
|
|
|
|
|
|
|
ecdsa_free( &ecdsa );
|
|
|
|
|
|
|
|
return( ret );
|
|
|
|
#endif /* POLARSSL_ECDSA_C */
|
|
|
|
}
|
|
|
|
|
2013-08-14 15:00:27 +02:00
|
|
|
static void *eckey_alloc_wrap( void )
|
|
|
|
{
|
|
|
|
void *ctx = polarssl_malloc( sizeof( ecp_keypair ) );
|
|
|
|
|
|
|
|
if( ctx != NULL )
|
|
|
|
ecp_keypair_init( ctx );
|
|
|
|
|
|
|
|
return( ctx );
|
|
|
|
}
|
|
|
|
|
|
|
|
static void eckey_free_wrap( void *ctx )
|
|
|
|
{
|
|
|
|
ecp_keypair_free( (ecp_keypair *) ctx );
|
|
|
|
polarssl_free( ctx );
|
|
|
|
}
|
|
|
|
|
2013-08-14 18:04:18 +02:00
|
|
|
static void eckey_debug( const void *ctx, pk_debug_item *items )
|
|
|
|
{
|
|
|
|
items->type = POLARSSL_PK_DEBUG_ECP;
|
|
|
|
items->name = "eckey.Q";
|
|
|
|
items->value = &( ((ecp_keypair *) ctx)->Q );
|
|
|
|
}
|
|
|
|
|
2013-08-12 17:06:05 +02:00
|
|
|
const pk_info_t eckey_info = {
|
|
|
|
POLARSSL_PK_ECKEY,
|
2013-08-12 19:45:32 +02:00
|
|
|
"EC",
|
|
|
|
eckey_get_size,
|
2013-08-12 18:41:18 +02:00
|
|
|
eckey_can_do,
|
2013-08-12 17:06:05 +02:00
|
|
|
eckey_verify_wrap,
|
2013-08-14 15:00:27 +02:00
|
|
|
eckey_alloc_wrap,
|
|
|
|
eckey_free_wrap,
|
2013-08-14 18:04:18 +02:00
|
|
|
eckey_debug,
|
2013-08-12 17:06:05 +02:00
|
|
|
};
|
2013-08-12 18:51:26 +02:00
|
|
|
|
|
|
|
/*
|
|
|
|
* EC key resticted to ECDH
|
|
|
|
*/
|
|
|
|
static int eckeydh_can_do( pk_type_t type )
|
|
|
|
{
|
|
|
|
return( type == POLARSSL_PK_ECKEY ||
|
|
|
|
type == POLARSSL_PK_ECKEY_DH );
|
|
|
|
}
|
|
|
|
|
2013-08-17 14:36:32 +02:00
|
|
|
static int eckeydh_verify_wrap( void *ctx, md_type_t md_alg,
|
|
|
|
const unsigned char *hash, size_t hash_len,
|
2013-08-12 18:51:26 +02:00
|
|
|
const unsigned char *sig, size_t sig_len )
|
|
|
|
{
|
|
|
|
((void) ctx);
|
2013-08-17 14:36:32 +02:00
|
|
|
((void) md_alg);
|
2013-08-12 18:51:26 +02:00
|
|
|
((void) hash);
|
2013-08-17 14:36:32 +02:00
|
|
|
((void) hash_len);
|
2013-08-12 18:51:26 +02:00
|
|
|
((void) sig);
|
|
|
|
((void) sig_len);
|
|
|
|
|
|
|
|
return( POLARSSL_ERR_PK_TYPE_MISMATCH );
|
|
|
|
}
|
|
|
|
|
|
|
|
const pk_info_t eckeydh_info = {
|
|
|
|
POLARSSL_PK_ECKEY_DH,
|
2013-08-12 19:45:32 +02:00
|
|
|
"EC_DH",
|
|
|
|
eckey_get_size, /* Same underlying key structure */
|
2013-08-12 18:51:26 +02:00
|
|
|
eckeydh_can_do,
|
|
|
|
eckeydh_verify_wrap,
|
2013-08-14 15:00:27 +02:00
|
|
|
eckey_alloc_wrap, /* Same underlying key structure */
|
|
|
|
eckey_free_wrap, /* Same underlying key structure */
|
2013-08-14 18:16:50 +02:00
|
|
|
eckey_debug, /* Same underlying key structure */
|
2013-08-12 18:51:26 +02:00
|
|
|
};
|
2013-08-12 17:06:05 +02:00
|
|
|
#endif /* POLARSSL_ECP_C */
|
2013-08-14 18:16:50 +02:00
|
|
|
|
|
|
|
#if defined(POLARSSL_ECDSA_C)
|
|
|
|
static int ecdsa_can_do( pk_type_t type )
|
|
|
|
{
|
|
|
|
return( type == POLARSSL_PK_ECDSA );
|
|
|
|
}
|
|
|
|
|
2013-08-17 14:36:32 +02:00
|
|
|
static int ecdsa_verify_wrap( void *ctx, md_type_t md_alg,
|
|
|
|
const unsigned char *hash, size_t hash_len,
|
2013-08-14 18:16:50 +02:00
|
|
|
const unsigned char *sig, size_t sig_len )
|
|
|
|
{
|
2013-08-17 14:36:32 +02:00
|
|
|
((void) md_alg);
|
|
|
|
|
2013-08-14 18:16:50 +02:00
|
|
|
return( ecdsa_read_signature( (ecdsa_context *) ctx,
|
2013-08-17 14:36:32 +02:00
|
|
|
hash, hash_len, sig, sig_len ) );
|
2013-08-14 18:16:50 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
static void *ecdsa_alloc_wrap( void )
|
|
|
|
{
|
|
|
|
void *ctx = polarssl_malloc( sizeof( ecdsa_context ) );
|
|
|
|
|
|
|
|
if( ctx != NULL )
|
|
|
|
ecdsa_init( (ecdsa_context *) ctx );
|
|
|
|
|
|
|
|
return( ctx );
|
|
|
|
}
|
|
|
|
|
|
|
|
static void ecdsa_free_wrap( void *ctx )
|
|
|
|
{
|
|
|
|
ecdsa_free( (ecdsa_context *) ctx );
|
|
|
|
polarssl_free( ctx );
|
|
|
|
}
|
|
|
|
|
|
|
|
const pk_info_t ecdsa_info = {
|
|
|
|
POLARSSL_PK_ECDSA,
|
|
|
|
"ECDSA",
|
|
|
|
eckey_get_size, /* Compatible key structures */
|
|
|
|
ecdsa_can_do,
|
|
|
|
ecdsa_verify_wrap,
|
|
|
|
ecdsa_alloc_wrap,
|
|
|
|
ecdsa_free_wrap,
|
|
|
|
eckey_debug, /* Compatible key structures */
|
|
|
|
};
|
|
|
|
#endif /* POLARSSL_ECDSA_C */
|