2 * Copyright 2020 The OpenSSL Project Authors. All Rights Reserved.
4 * Licensed under the Apache License 2.0 (the "License"). You may not use
5 * this file except in compliance with the License. You can obtain a copy
6 * in the file LICENSE in the source distribution or at
7 * https://www.openssl.org/source/license.html
11 #include <openssl/core_numbers.h>
12 #include <openssl/core_names.h>
13 #include <openssl/params.h>
14 #include "internal/param_build.h"
15 #include "crypto/ecx.h"
16 #include "prov/implementations.h"
17 #include "prov/providercommon.h"
19 static OSSL_OP_keymgmt_new_fn x25519_new_key;
20 static OSSL_OP_keymgmt_new_fn x448_new_key;
21 static OSSL_OP_keymgmt_get_params_fn x25519_get_params;
22 static OSSL_OP_keymgmt_get_params_fn x448_get_params;
23 static OSSL_OP_keymgmt_gettable_params_fn ecx_gettable_params;
24 static OSSL_OP_keymgmt_has_fn ecx_has;
25 static OSSL_OP_keymgmt_import_fn ecx_import;
26 static OSSL_OP_keymgmt_import_types_fn ecx_imexport_types;
27 static OSSL_OP_keymgmt_export_fn ecx_export;
28 static OSSL_OP_keymgmt_export_types_fn ecx_imexport_types;
30 static void *x25519_new_key(void *provctx)
32 return ecx_key_new(X25519_KEYLEN, 0);
35 static void *x448_new_key(void *provctx)
37 return ecx_key_new(X448_KEYLEN, 0);
40 static int ecx_has(void *keydata, int selection)
42 ECX_KEY *key = keydata;
43 const int ecx_selections = OSSL_KEYMGMT_SELECT_PUBLIC_KEY
44 | OSSL_KEYMGMT_SELECT_PRIVATE_KEY;
47 if ((selection & ~ecx_selections) != 0
48 || (selection & ecx_selections) == 0)
51 if ((selection & OSSL_KEYMGMT_SELECT_PUBLIC_KEY) != 0)
52 ok = ok && key->haspubkey;
54 if ((selection & OSSL_KEYMGMT_SELECT_PRIVATE_KEY) != 0)
55 ok = ok && key->privkey != NULL;
60 static int ecx_import(void *keydata, int selection, const OSSL_PARAM params[])
62 ECX_KEY *key = keydata;
63 size_t privkeylen = 0, pubkeylen;
64 const OSSL_PARAM *param_priv_key = NULL, *param_pub_key;
65 unsigned char *pubkey;
66 const int ecx_selections = OSSL_KEYMGMT_SELECT_PUBLIC_KEY
67 | OSSL_KEYMGMT_SELECT_PRIVATE_KEY;
72 if ((selection & ~ecx_selections) != 0
73 || (selection & OSSL_KEYMGMT_SELECT_PUBLIC_KEY) == 0)
76 if ((selection & OSSL_KEYMGMT_SELECT_PRIVATE_KEY) != 0)
78 OSSL_PARAM_locate_const(params, OSSL_PKEY_PARAM_PRIV_KEY);
80 OSSL_PARAM_locate_const(params, OSSL_PKEY_PARAM_PUB_KEY);
83 * If a private key is present then a public key must also be present.
84 * Alternatively we've just got a public key.
86 if (param_pub_key == NULL
87 || (param_priv_key == NULL
88 && (selection & OSSL_KEYMGMT_SELECT_PRIVATE_KEY) != 0))
91 if (param_priv_key != NULL
92 && !OSSL_PARAM_get_octet_string(param_priv_key,
93 (void **)&key->privkey, key->keylen,
98 if (!OSSL_PARAM_get_octet_string(param_pub_key,
100 sizeof(key->pubkey), &pubkeylen))
103 if (pubkeylen != key->keylen
104 || (param_priv_key != NULL && privkeylen != key->keylen))
112 static int key_to_params(ECX_KEY *key, OSSL_PARAM_BLD *tmpl)
117 if (!ossl_param_bld_push_octet_string(tmpl, OSSL_PKEY_PARAM_PUB_KEY,
118 key->pubkey, key->keylen))
121 if (key->privkey != NULL
122 && !ossl_param_bld_push_octet_string(tmpl, OSSL_PKEY_PARAM_PRIV_KEY,
123 key->privkey, key->keylen))
129 static int ecx_export(void *keydata, int selection, OSSL_CALLBACK *param_cb,
132 ECX_KEY *key = keydata;
134 OSSL_PARAM *params = NULL;
140 if ((selection & OSSL_KEYMGMT_SELECT_KEYPAIR) != 0
141 && !key_to_params(key, &tmpl))
144 ossl_param_bld_init(&tmpl);
145 params = ossl_param_bld_to_param(&tmpl);
146 if (params == NULL) {
147 ossl_param_bld_free(params);
151 ret = param_cb(params, cbarg);
152 ossl_param_bld_free(params);
156 static const OSSL_PARAM ecx_key_types[] = {
157 OSSL_PARAM_octet_string(OSSL_PKEY_PARAM_PUB_KEY, NULL, 0),
158 OSSL_PARAM_octet_string(OSSL_PKEY_PARAM_PRIV_KEY, NULL, 0),
161 static const OSSL_PARAM *ecx_imexport_types(int selection)
163 if ((selection & OSSL_KEYMGMT_SELECT_KEYPAIR) != 0)
164 return ecx_key_types;
168 static int ecx_get_params(OSSL_PARAM params[], int bits, int secbits,
173 if ((p = OSSL_PARAM_locate(params, OSSL_PKEY_PARAM_BITS)) != NULL
174 && !OSSL_PARAM_set_int(p, bits))
176 if ((p = OSSL_PARAM_locate(params, OSSL_PKEY_PARAM_SECURITY_BITS)) != NULL
177 && !OSSL_PARAM_set_int(p, secbits))
179 if ((p = OSSL_PARAM_locate(params, OSSL_PKEY_PARAM_MAX_SIZE)) != NULL
180 && !OSSL_PARAM_set_int(p, size))
185 static int x25519_get_params(void *key, OSSL_PARAM params[])
187 return ecx_get_params(params, X25519_BITS, X25519_SECURITY_BITS, X25519_KEYLEN);
190 static int x448_get_params(void *key, OSSL_PARAM params[])
192 return ecx_get_params(params, X448_BITS, X448_SECURITY_BITS, X448_KEYLEN);
195 static const OSSL_PARAM ecx_params[] = {
196 OSSL_PARAM_int(OSSL_PKEY_PARAM_BITS, NULL),
197 OSSL_PARAM_int(OSSL_PKEY_PARAM_SECURITY_BITS, NULL),
198 OSSL_PARAM_int(OSSL_PKEY_PARAM_MAX_SIZE, NULL),
202 static const OSSL_PARAM *ecx_gettable_params(void)
207 const OSSL_DISPATCH x25519_keymgmt_functions[] = {
208 { OSSL_FUNC_KEYMGMT_NEW, (void (*)(void))x25519_new_key },
209 { OSSL_FUNC_KEYMGMT_FREE, (void (*)(void))ecx_key_free },
210 { OSSL_FUNC_KEYMGMT_GET_PARAMS, (void (*) (void))x25519_get_params },
211 { OSSL_FUNC_KEYMGMT_GETTABLE_PARAMS, (void (*) (void))ecx_gettable_params },
212 { OSSL_FUNC_KEYMGMT_HAS, (void (*)(void))ecx_has },
213 { OSSL_FUNC_KEYMGMT_IMPORT, (void (*)(void))ecx_import },
214 { OSSL_FUNC_KEYMGMT_IMPORT_TYPES, (void (*)(void))ecx_imexport_types },
215 { OSSL_FUNC_KEYMGMT_EXPORT, (void (*)(void))ecx_export },
216 { OSSL_FUNC_KEYMGMT_EXPORT_TYPES, (void (*)(void))ecx_imexport_types },
220 const OSSL_DISPATCH x448_keymgmt_functions[] = {
221 { OSSL_FUNC_KEYMGMT_NEW, (void (*)(void))x448_new_key },
222 { OSSL_FUNC_KEYMGMT_FREE, (void (*)(void))ecx_key_free },
223 { OSSL_FUNC_KEYMGMT_GET_PARAMS, (void (*) (void))x448_get_params },
224 { OSSL_FUNC_KEYMGMT_GETTABLE_PARAMS, (void (*) (void))ecx_gettable_params },
225 { OSSL_FUNC_KEYMGMT_HAS, (void (*)(void))ecx_has },
226 { OSSL_FUNC_KEYMGMT_IMPORT, (void (*)(void))ecx_import },
227 { OSSL_FUNC_KEYMGMT_IMPORT_TYPES, (void (*)(void))ecx_imexport_types },
228 { OSSL_FUNC_KEYMGMT_EXPORT, (void (*)(void))ecx_export },
229 { OSSL_FUNC_KEYMGMT_EXPORT_TYPES, (void (*)(void))ecx_imexport_types },