TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls / 2d9466f1db2527d63b815e70a5bdcb5b5ae7f882 / . / library / pk.c
blob: 2519d8765a4b76f7c5a6e1255ba89a7cfd361967 [file] [log] [blame]
Manuel Pégourié-Gonnard12e0ed92013-07-04 13:31:32 +0200[diff] [blame]1/*
2 * Public Key abstraction layer
3 *
Manuel Pégourié-Gonnard6fb81872015-07-27 11:11:48 +0200[diff] [blame]4 * Copyright (C) 2006-2015, ARM Limited, All Rights Reserved
Manuel Pégourié-Gonnard37ff1402015-09-04 14:21:07 +0200[diff] [blame]5 * SPDX-License-Identifier: Apache-2.0
6 *
7 * Licensed under the Apache License, Version 2.0 (the "License"); you may
8 * not use this file except in compliance with the License.
9 * You may obtain a copy of the License at
10 *
11 * http://www.apache.org/licenses/LICENSE-2.0
12 *
13 * Unless required by applicable law or agreed to in writing, software
14 * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
15 * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
16 * See the License for the specific language governing permissions and
17 * limitations under the License.
Manuel Pégourié-Gonnard12e0ed92013-07-04 13:31:32 +0200[diff] [blame]18 *
Manuel Pégourié-Gonnardfe446432015-03-06 13:17:10 +0000[diff] [blame]19 * This file is part of mbed TLS (https://tls.mbed.org)
Manuel Pégourié-Gonnard12e0ed92013-07-04 13:31:32 +0200[diff] [blame]20 */
21
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]22#if !defined(MBEDTLS_CONFIG_FILE)
Manuel Pégourié-Gonnard7f809972015-03-09 17:05:11 +0000[diff] [blame]23#include "mbedtls/config.h"
Manuel Pégourié-Gonnardcef4ad22014-04-29 12:39:06 +0200[diff] [blame]24#else
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]25#include MBEDTLS_CONFIG_FILE
Manuel Pégourié-Gonnardcef4ad22014-04-29 12:39:06 +0200[diff] [blame]26#endif
Manuel Pégourié-Gonnard12e0ed92013-07-04 13:31:32 +0200[diff] [blame]27
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]28#if defined(MBEDTLS_PK_C)
Manuel Pégourié-Gonnard7f809972015-03-09 17:05:11 +0000[diff] [blame]29#include "mbedtls/pk.h"
Manuel Pégourié-Gonnard50518f42015-05-26 11:04:15 +0200[diff] [blame]30#include "mbedtls/pk_internal.h"
Manuel Pégourié-Gonnard12e0ed92013-07-04 13:31:32 +0200[diff] [blame]31
Andres Amaya Garcia1f6301b2018-04-17 09:51:09 -0500[diff] [blame]32#include "mbedtls/platform_util.h"
Andres AG72849872017-01-19 11:24:33 +0000[diff] [blame]33
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]34#if defined(MBEDTLS_RSA_C)
Manuel Pégourié-Gonnard7f809972015-03-09 17:05:11 +0000[diff] [blame]35#include "mbedtls/rsa.h"
Manuel Pégourié-Gonnard81c313c2013-07-09 10:35:54 +0200[diff] [blame]36#endif
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]37#if defined(MBEDTLS_ECP_C)
Manuel Pégourié-Gonnard7f809972015-03-09 17:05:11 +0000[diff] [blame]38#include "mbedtls/ecp.h"
Manuel Pégourié-Gonnard81c313c2013-07-09 10:35:54 +0200[diff] [blame]39#endif
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]40#if defined(MBEDTLS_ECDSA_C)
Manuel Pégourié-Gonnard7f809972015-03-09 17:05:11 +0000[diff] [blame]41#include "mbedtls/ecdsa.h"
Manuel Pégourié-Gonnard7c5819e2013-07-10 12:29:57 +0200[diff] [blame]42#endif
Manuel Pégourié-Gonnard81c313c2013-07-09 10:35:54 +0200[diff] [blame]43
Andres AG72849872017-01-19 11:24:33 +0000[diff] [blame]44#include <limits.h>
Andres Amaya Garcia7c02c502017-08-04 13:32:15 +0100[diff] [blame]45#include <stdint.h>
Paul Bakker34617722014-06-13 17:20:13 +0200[diff] [blame]46
Gilles Peskinee97dc602018-12-19 00:51:38 +0100[diff] [blame]47/* Parameter validation macros based on platform_util.h */
48#define PK_VALIDATE_RET( cond ) \
49 MBEDTLS_INTERNAL_VALIDATE_RET( cond, MBEDTLS_ERR_PK_BAD_INPUT_DATA )
50#define PK_VALIDATE( cond ) \
51 MBEDTLS_INTERNAL_VALIDATE( cond )
52
Manuel Pégourié-Gonnard12e0ed92013-07-04 13:31:32 +0200[diff] [blame]53/*
Manuel Pégourié-Gonnardc10f0922019-09-19 10:45:14 +0200[diff] [blame]54 * Access to members of the pk_info structure. These are meant to be replaced
55 * by zero-runtime-cost accessors when a single PK type is hardcoded.
56 *
57 * For function members, don't make a getter, but a function that directly
58 * calls the method, so that we can entirely get rid of function pointers
59 * when hardcoding a single PK - some compilers optimize better that way.
60 *
61 * Not implemented for members that are only present in builds with
62 * MBEDTLS_ECP_RESTARTABLE for now, as the main target for hardcoded is builds
63 * with MBEDTLS_USE_TINYCRYPT, which don't have MBEDTLS_ECP_RESTARTABLE.
64 */
65
66MBEDTLS_ALWAYS_INLINE static inline mbedtls_pk_type_t pk_info_type(
67 const mbedtls_pk_info_t *info )
68{
69 return( info->type );
70}
71
72MBEDTLS_ALWAYS_INLINE static inline const char * pk_info_name(
73 const mbedtls_pk_info_t *info )
74{
75 return( info->name );
76}
77
78MBEDTLS_ALWAYS_INLINE static inline size_t pk_info_get_bitlen(
79 const mbedtls_pk_info_t *info, const void *ctx )
80{
81 return( info->get_bitlen( ctx ) );
82}
83
84MBEDTLS_ALWAYS_INLINE static inline int pk_info_can_do(
85 const mbedtls_pk_info_t *info, mbedtls_pk_type_t type )
86{
87 return( info->can_do( type ) );
88}
89
90MBEDTLS_ALWAYS_INLINE static inline int pk_info_verify_func(
91 const mbedtls_pk_info_t *info, void *ctx, mbedtls_md_type_t md_alg,
92 const unsigned char *hash, size_t hash_len,
93 const unsigned char *sig, size_t sig_len )
94{
95 return( info->verify_func( ctx, md_alg, hash, hash_len, sig, sig_len ) );
96}
97
98MBEDTLS_ALWAYS_INLINE static inline int pk_info_sign_func(
99 const mbedtls_pk_info_t *info, void *ctx, mbedtls_md_type_t md_alg,
100 const unsigned char *hash, size_t hash_len,
101 unsigned char *sig, size_t *sig_len,
102 int (*f_rng)(void *, unsigned char *, size_t),
103 void *p_rng )
104{
105 return( info->sign_func( ctx, md_alg, hash, hash_len, sig, sig_len,
106 f_rng, p_rng ) );
107}
108
109MBEDTLS_ALWAYS_INLINE static inline int pk_info_decrypt_func(
110 const mbedtls_pk_info_t *info, void *ctx,
111 const unsigned char *input, size_t ilen,
112 unsigned char *output, size_t *olen, size_t osize,
113 int (*f_rng)(void *, unsigned char *, size_t),
114 void *p_rng )
115{
116 return( info->decrypt_func( ctx, input, ilen, output, olen, osize,
117 f_rng, p_rng ) );
118}
119
120MBEDTLS_ALWAYS_INLINE static inline int pk_info_encrypt_func(
121 const mbedtls_pk_info_t *info, void *ctx,
122 const unsigned char *input, size_t ilen,
123 unsigned char *output, size_t *olen, size_t osize,
124 int (*f_rng)(void *, unsigned char *, size_t),
125 void *p_rng )
126{
127 return( info->encrypt_func( ctx, input, ilen, output, olen, osize,
128 f_rng, p_rng ) );
129}
130
131MBEDTLS_ALWAYS_INLINE static inline int pk_info_check_pair_func(
132 const mbedtls_pk_info_t *info, const void *pub, const void *prv )
133{
134 return( info->check_pair_func( pub, prv ) );
135}
136
137MBEDTLS_ALWAYS_INLINE static inline void *pk_info_ctx_alloc_func(
138 const mbedtls_pk_info_t *info )
139{
140 return( info->ctx_alloc_func( ) );
141}
142
143MBEDTLS_ALWAYS_INLINE static inline void pk_info_ctx_free_func(
144 const mbedtls_pk_info_t *info, void *ctx )
145{
146 info->ctx_free_func( ctx );
147}
148
149MBEDTLS_ALWAYS_INLINE static inline void pk_info_debug_func(
150 const mbedtls_pk_info_t *info,
151 const void *ctx, mbedtls_pk_debug_item *items )
152{
153 info->debug_func( ctx, items );
154}
155
156/*
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]157 * Initialise a mbedtls_pk_context
Manuel Pégourié-Gonnard12e0ed92013-07-04 13:31:32 +0200[diff] [blame]158 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]159void mbedtls_pk_init( mbedtls_pk_context *ctx )
Manuel Pégourié-Gonnard12e0ed92013-07-04 13:31:32 +0200[diff] [blame]160{
Gilles Peskinee97dc602018-12-19 00:51:38 +0100[diff] [blame]161 PK_VALIDATE( ctx != NULL );
Manuel Pégourié-Gonnard12e0ed92013-07-04 13:31:32 +0200[diff] [blame]162
Manuel Pégourié-Gonnard3fb5c5e2013-08-14 18:26:41 +0200[diff] [blame]163 ctx->pk_info = NULL;
164 ctx->pk_ctx = NULL;
Manuel Pégourié-Gonnard12e0ed92013-07-04 13:31:32 +0200[diff] [blame]165}
166
167/*
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]168 * Free (the components of) a mbedtls_pk_context
Manuel Pégourié-Gonnard12e0ed92013-07-04 13:31:32 +0200[diff] [blame]169 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]170void mbedtls_pk_free( mbedtls_pk_context *ctx )
Manuel Pégourié-Gonnard12e0ed92013-07-04 13:31:32 +0200[diff] [blame]171{
irwir2239a862018-06-12 18:25:09 +0300[diff] [blame]172 if( ctx == NULL )
Manuel Pégourié-Gonnard12e0ed92013-07-04 13:31:32 +0200[diff] [blame]173 return;
174
irwir2239a862018-06-12 18:25:09 +0300[diff] [blame]175 if ( ctx->pk_info != NULL )
Manuel Pégourié-Gonnardc10f0922019-09-19 10:45:14 +0200[diff] [blame]176 pk_info_ctx_free_func( ctx->pk_info, ctx->pk_ctx );
Manuel Pégourié-Gonnard1f73a652013-07-09 10:26:41 +0200[diff] [blame]177
Andres Amaya Garcia1f6301b2018-04-17 09:51:09 -0500[diff] [blame]178 mbedtls_platform_zeroize( ctx, sizeof( mbedtls_pk_context ) );
Manuel Pégourié-Gonnard765db072013-08-14 15:00:27 +0200[diff] [blame]179}
180
Manuel Pégourié-Gonnardaaa98142017-08-18 17:30:37 +0200[diff] [blame]181#if defined(MBEDTLS_ECDSA_C) && defined(MBEDTLS_ECP_RESTARTABLE)
Manuel Pégourié-Gonnard15d7df22017-08-17 14:33:31 +0200[diff] [blame]182/*
183 * Initialize a restart context
184 */
185void mbedtls_pk_restart_init( mbedtls_pk_restart_ctx *ctx )
186{
Gilles Peskinee97dc602018-12-19 00:51:38 +0100[diff] [blame]187 PK_VALIDATE( ctx != NULL );
Manuel Pégourié-Gonnard0bbc66c2017-08-18 16:22:06 +0200[diff] [blame]188 ctx->pk_info = NULL;
189 ctx->rs_ctx = NULL;
Manuel Pégourié-Gonnard15d7df22017-08-17 14:33:31 +0200[diff] [blame]190}
191
192/*
193 * Free the components of a restart context
194 */
195void mbedtls_pk_restart_free( mbedtls_pk_restart_ctx *ctx )
196{
Gilles Peskine1f19fa62018-12-19 14:18:39 +0100[diff] [blame]197 if( ctx == NULL || ctx->pk_info == NULL ||
Manuel Pégourié-Gonnard0bbc66c2017-08-18 16:22:06 +0200[diff] [blame]198 ctx->pk_info->rs_free_func == NULL )
199 {
Manuel Pégourié-Gonnard15d7df22017-08-17 14:33:31 +0200[diff] [blame]200 return;
Manuel Pégourié-Gonnard0bbc66c2017-08-18 16:22:06 +0200[diff] [blame]201 }
Manuel Pégourié-Gonnard15d7df22017-08-17 14:33:31 +0200[diff] [blame]202
Manuel Pégourié-Gonnard0bbc66c2017-08-18 16:22:06 +0200[diff] [blame]203 ctx->pk_info->rs_free_func( ctx->rs_ctx );
204
205 ctx->pk_info = NULL;
206 ctx->rs_ctx = NULL;
Manuel Pégourié-Gonnard15d7df22017-08-17 14:33:31 +0200[diff] [blame]207}
Manuel Pégourié-Gonnardaaa98142017-08-18 17:30:37 +0200[diff] [blame]208#endif /* MBEDTLS_ECDSA_C && MBEDTLS_ECP_RESTARTABLE */
Manuel Pégourié-Gonnard15d7df22017-08-17 14:33:31 +0200[diff] [blame]209
Manuel Pégourié-Gonnard765db072013-08-14 15:00:27 +0200[diff] [blame]210/*
211 * Get pk_info structure from type
212 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]213const mbedtls_pk_info_t * mbedtls_pk_info_from_type( mbedtls_pk_type_t pk_type )
Manuel Pégourié-Gonnard765db072013-08-14 15:00:27 +0200[diff] [blame]214{
215 switch( pk_type ) {
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]216#if defined(MBEDTLS_RSA_C)
217 case MBEDTLS_PK_RSA:
218 return( &mbedtls_rsa_info );
Manuel Pégourié-Gonnard765db072013-08-14 15:00:27 +0200[diff] [blame]219#endif
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]220#if defined(MBEDTLS_ECP_C)
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]221 case MBEDTLS_PK_ECKEY_DH:
222 return( &mbedtls_eckeydh_info );
Manuel Pégourié-Gonnard765db072013-08-14 15:00:27 +0200[diff] [blame]223#endif
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]224#if defined(MBEDTLS_ECDSA_C)
225 case MBEDTLS_PK_ECDSA:
226 return( &mbedtls_ecdsa_info );
Manuel Pégourié-Gonnard765db072013-08-14 15:00:27 +0200[diff] [blame]227#endif
Hanno Beckeradf11e12019-08-21 13:03:44 +0100[diff] [blame]228#if defined(MBEDTLS_USE_TINYCRYPT)
229 case MBEDTLS_PK_ECKEY:
230 return( &mbedtls_uecc_eckey_info );
231#else /* MBEDTLS_USE_TINYCRYPT */
232#if defined(MBEDTLS_ECP_C)
233 case MBEDTLS_PK_ECKEY:
234 return( &mbedtls_eckey_info );
235#endif
Jarno Lamsa42b83db2019-04-16 16:48:22 +0300[diff] [blame]236#endif /* MBEDTLS_USE_TINYCRYPT */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]237 /* MBEDTLS_PK_RSA_ALT omitted on purpose */
Manuel Pégourié-Gonnard765db072013-08-14 15:00:27 +0200[diff] [blame]238 default:
Paul Bakkerd8bb8262014-06-17 14:06:49 +0200[diff] [blame]239 return( NULL );
Manuel Pégourié-Gonnard765db072013-08-14 15:00:27 +0200[diff] [blame]240 }
Manuel Pégourié-Gonnard12e0ed92013-07-04 13:31:32 +0200[diff] [blame]241}
242
243/*
Manuel Pégourié-Gonnardab466942013-08-15 11:30:27 +0200[diff] [blame]244 * Initialise context
Manuel Pégourié-Gonnard12e0ed92013-07-04 13:31:32 +0200[diff] [blame]245 */
Manuel Pégourié-Gonnardd9e6a3a2015-05-14 19:41:36 +0200[diff] [blame]246int mbedtls_pk_setup( mbedtls_pk_context *ctx, const mbedtls_pk_info_t *info )
Manuel Pégourié-Gonnard12e0ed92013-07-04 13:31:32 +0200[diff] [blame]247{
Gilles Peskinee97dc602018-12-19 00:51:38 +0100[diff] [blame]248 PK_VALIDATE_RET( ctx != NULL );
249 if( info == NULL || ctx->pk_info != NULL )
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]250 return( MBEDTLS_ERR_PK_BAD_INPUT_DATA );
Manuel Pégourié-Gonnard12e0ed92013-07-04 13:31:32 +0200[diff] [blame]251
Manuel Pégourié-Gonnardc10f0922019-09-19 10:45:14 +0200[diff] [blame]252 if( ( ctx->pk_ctx = pk_info_ctx_alloc_func( info ) ) == NULL )
Manuel Pégourié-Gonnard6a8ca332015-05-28 09:33:39 +0200[diff] [blame]253 return( MBEDTLS_ERR_PK_ALLOC_FAILED );
Manuel Pégourié-Gonnard12e0ed92013-07-04 13:31:32 +0200[diff] [blame]254
Manuel Pégourié-Gonnard3fb5c5e2013-08-14 18:26:41 +0200[diff] [blame]255 ctx->pk_info = info;
Manuel Pégourié-Gonnard12e0ed92013-07-04 13:31:32 +0200[diff] [blame]256
257 return( 0 );
258}
Manuel Pégourié-Gonnardb3d91872013-08-14 15:56:19 +0200[diff] [blame]259
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]260#if defined(MBEDTLS_PK_RSA_ALT_SUPPORT)
Manuel Pégourié-Gonnardb4fae572014-01-20 11:22:25 +0100[diff] [blame]261/*
Manuel Pégourié-Gonnard12c1ff02013-08-21 12:28:31 +0200[diff] [blame]262 * Initialize an RSA-alt context
263 */
Manuel Pégourié-Gonnardd9e6a3a2015-05-14 19:41:36 +0200[diff] [blame]264int mbedtls_pk_setup_rsa_alt( mbedtls_pk_context *ctx, void * key,
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]265 mbedtls_pk_rsa_alt_decrypt_func decrypt_func,
266 mbedtls_pk_rsa_alt_sign_func sign_func,
267 mbedtls_pk_rsa_alt_key_len_func key_len_func )
Manuel Pégourié-Gonnard12c1ff02013-08-21 12:28:31 +0200[diff] [blame]268{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]269 mbedtls_rsa_alt_context *rsa_alt;
270 const mbedtls_pk_info_t *info = &mbedtls_rsa_alt_info;
Manuel Pégourié-Gonnard12c1ff02013-08-21 12:28:31 +0200[diff] [blame]271
Gilles Peskinee97dc602018-12-19 00:51:38 +0100[diff] [blame]272 PK_VALIDATE_RET( ctx != NULL );
273 if( ctx->pk_info != NULL )
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]274 return( MBEDTLS_ERR_PK_BAD_INPUT_DATA );
Manuel Pégourié-Gonnard12c1ff02013-08-21 12:28:31 +0200[diff] [blame]275
276 if( ( ctx->pk_ctx = info->ctx_alloc_func() ) == NULL )
Manuel Pégourié-Gonnard6a8ca332015-05-28 09:33:39 +0200[diff] [blame]277 return( MBEDTLS_ERR_PK_ALLOC_FAILED );
Manuel Pégourié-Gonnard12c1ff02013-08-21 12:28:31 +0200[diff] [blame]278
279 ctx->pk_info = info;
280
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]281 rsa_alt = (mbedtls_rsa_alt_context *) ctx->pk_ctx;
Manuel Pégourié-Gonnard12c1ff02013-08-21 12:28:31 +0200[diff] [blame]282
283 rsa_alt->key = key;
284 rsa_alt->decrypt_func = decrypt_func;
285 rsa_alt->sign_func = sign_func;
286 rsa_alt->key_len_func = key_len_func;
287
288 return( 0 );
289}
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]290#endif /* MBEDTLS_PK_RSA_ALT_SUPPORT */
Manuel Pégourié-Gonnard12c1ff02013-08-21 12:28:31 +0200[diff] [blame]291
292/*
Manuel Pégourié-Gonnardb3d91872013-08-14 15:56:19 +0200[diff] [blame]293 * Tell if a PK can do the operations of the given type
294 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]295int mbedtls_pk_can_do( const mbedtls_pk_context *ctx, mbedtls_pk_type_t type )
Manuel Pégourié-Gonnardb3d91872013-08-14 15:56:19 +0200[diff] [blame]296{
Gilles Peskine6af45ec2018-12-19 17:52:05 +0100[diff] [blame]297 /* A context with null pk_info is not set up yet and can't do anything.
298 * For backward compatibility, also accept NULL instead of a context
299 * pointer. */
Manuel Pégourié-Gonnard3fb5c5e2013-08-14 18:26:41 +0200[diff] [blame]300 if( ctx == NULL || ctx->pk_info == NULL )
Manuel Pégourié-Gonnardb3d91872013-08-14 15:56:19 +0200[diff] [blame]301 return( 0 );
302
Manuel Pégourié-Gonnardc10f0922019-09-19 10:45:14 +0200[diff] [blame]303 return( pk_info_can_do( ctx->pk_info, type ) );
Manuel Pégourié-Gonnardb3d91872013-08-14 15:56:19 +0200[diff] [blame]304}
305
306/*
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]307 * Helper for mbedtls_pk_sign and mbedtls_pk_verify
Manuel Pégourié-Gonnardbfe32ef2013-08-22 14:55:30 +0200[diff] [blame]308 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]309static inline int pk_hashlen_helper( mbedtls_md_type_t md_alg, size_t *hash_len )
Manuel Pégourié-Gonnardbfe32ef2013-08-22 14:55:30 +0200[diff] [blame]310{
Hanno Beckera5cedbc2019-07-17 11:21:02 +0100[diff] [blame]311 mbedtls_md_handle_t md_info;
Manuel Pégourié-Gonnardbfe32ef2013-08-22 14:55:30 +0200[diff] [blame]312
313 if( *hash_len != 0 )
314 return( 0 );
315
Hanno Beckera5cedbc2019-07-17 11:21:02 +0100[diff] [blame]316 if( ( md_info = mbedtls_md_info_from_type( md_alg ) ) ==
317 MBEDTLS_MD_INVALID_HANDLE )
318 {
Manuel Pégourié-Gonnardbfe32ef2013-08-22 14:55:30 +0200[diff] [blame]319 return( -1 );
Hanno Beckera5cedbc2019-07-17 11:21:02 +0100[diff] [blame]320 }
Manuel Pégourié-Gonnardbfe32ef2013-08-22 14:55:30 +0200[diff] [blame]321
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]322 *hash_len = mbedtls_md_get_size( md_info );
Manuel Pégourié-Gonnardbfe32ef2013-08-22 14:55:30 +0200[diff] [blame]323 return( 0 );
324}
325
Manuel Pégourié-Gonnardaaa98142017-08-18 17:30:37 +0200[diff] [blame]326#if defined(MBEDTLS_ECDSA_C) && defined(MBEDTLS_ECP_RESTARTABLE)
Manuel Pégourié-Gonnard0bbc66c2017-08-18 16:22:06 +0200[diff] [blame]327/*
328 * Helper to set up a restart context if needed
329 */
330static int pk_restart_setup( mbedtls_pk_restart_ctx *ctx,
Manuel Pégourié-Gonnardee68cff2018-10-15 15:27:49 +0200[diff] [blame]331 const mbedtls_pk_info_t *info )
Manuel Pégourié-Gonnard0bbc66c2017-08-18 16:22:06 +0200[diff] [blame]332{
Manuel Pégourié-Gonnardc8c12b62018-07-02 13:09:39 +0200[diff] [blame]333 /* Don't do anything if already set up or invalid */
334 if( ctx == NULL || ctx->pk_info != NULL )
Manuel Pégourié-Gonnard0bbc66c2017-08-18 16:22:06 +0200[diff] [blame]335 return( 0 );
336
337 /* Should never happen when we're called */
338 if( info->rs_alloc_func == NULL || info->rs_free_func == NULL )
339 return( MBEDTLS_ERR_PK_BAD_INPUT_DATA );
340
341 if( ( ctx->rs_ctx = info->rs_alloc_func() ) == NULL )
342 return( MBEDTLS_ERR_PK_ALLOC_FAILED );
343
344 ctx->pk_info = info;
345
346 return( 0 );
347}
Manuel Pégourié-Gonnardaaa98142017-08-18 17:30:37 +0200[diff] [blame]348#endif /* MBEDTLS_ECDSA_C && MBEDTLS_ECP_RESTARTABLE */
Manuel Pégourié-Gonnard0bbc66c2017-08-18 16:22:06 +0200[diff] [blame]349
Manuel Pégourié-Gonnardbfe32ef2013-08-22 14:55:30 +0200[diff] [blame]350/*
Manuel Pégourié-Gonnard82cb27b2017-05-03 10:59:45 +0200[diff] [blame]351 * Verify a signature (restartable)
Manuel Pégourié-Gonnardb3d91872013-08-14 15:56:19 +0200[diff] [blame]352 */
Manuel Pégourié-Gonnard82cb27b2017-05-03 10:59:45 +0200[diff] [blame]353int mbedtls_pk_verify_restartable( mbedtls_pk_context *ctx,
354 mbedtls_md_type_t md_alg,
Manuel Pégourié-Gonnardf73da022013-08-17 14:36:32 +0200[diff] [blame]355 const unsigned char *hash, size_t hash_len,
Manuel Pégourié-Gonnard82cb27b2017-05-03 10:59:45 +0200[diff] [blame]356 const unsigned char *sig, size_t sig_len,
Manuel Pégourié-Gonnard15d7df22017-08-17 14:33:31 +0200[diff] [blame]357 mbedtls_pk_restart_ctx *rs_ctx )
Manuel Pégourié-Gonnardb3d91872013-08-14 15:56:19 +0200[diff] [blame]358{
Gilles Peskinee97dc602018-12-19 00:51:38 +0100[diff] [blame]359 PK_VALIDATE_RET( ctx != NULL );
Gilles Peskineee3cfec2018-12-19 17:10:02 +0100[diff] [blame]360 PK_VALIDATE_RET( ( md_alg == MBEDTLS_MD_NONE && hash_len == 0 ) ||
361 hash != NULL );
Gilles Peskinee97dc602018-12-19 00:51:38 +0100[diff] [blame]362 PK_VALIDATE_RET( sig != NULL );
363
364 if( ctx->pk_info == NULL ||
Manuel Pégourié-Gonnardbfe32ef2013-08-22 14:55:30 +0200[diff] [blame]365 pk_hashlen_helper( md_alg, &hash_len ) != 0 )
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]366 return( MBEDTLS_ERR_PK_BAD_INPUT_DATA );
Manuel Pégourié-Gonnardb3d91872013-08-14 15:56:19 +0200[diff] [blame]367
Manuel Pégourié-Gonnardaaa98142017-08-18 17:30:37 +0200[diff] [blame]368#if defined(MBEDTLS_ECDSA_C) && defined(MBEDTLS_ECP_RESTARTABLE)
Manuel Pégourié-Gonnardd55f7762017-08-18 17:40:15 +0200[diff] [blame]369 /* optimization: use non-restartable version if restart disabled */
370 if( rs_ctx != NULL &&
Manuel Pégourié-Gonnardb843b152018-10-16 10:41:31 +0200[diff] [blame]371 mbedtls_ecp_restart_is_enabled() &&
Manuel Pégourié-Gonnardd55f7762017-08-18 17:40:15 +0200[diff] [blame]372 ctx->pk_info->verify_rs_func != NULL )
Manuel Pégourié-Gonnard1f596062017-05-09 10:42:40 +0200[diff] [blame]373 {
Manuel Pégourié-Gonnard0bbc66c2017-08-18 16:22:06 +0200[diff] [blame]374 int ret;
375
376 if( ( ret = pk_restart_setup( rs_ctx, ctx->pk_info ) ) != 0 )
377 return( ret );
378
379 ret = ctx->pk_info->verify_rs_func( ctx->pk_ctx,
380 md_alg, hash, hash_len, sig, sig_len, rs_ctx->rs_ctx );
381
382 if( ret != MBEDTLS_ERR_ECP_IN_PROGRESS )
383 mbedtls_pk_restart_free( rs_ctx );
384
385 return( ret );
Manuel Pégourié-Gonnard1f596062017-05-09 10:42:40 +0200[diff] [blame]386 }
Manuel Pégourié-Gonnardaaa98142017-08-18 17:30:37 +0200[diff] [blame]387#else /* MBEDTLS_ECDSA_C && MBEDTLS_ECP_RESTARTABLE */
Manuel Pégourié-Gonnard1f596062017-05-09 10:42:40 +0200[diff] [blame]388 (void) rs_ctx;
Manuel Pégourié-Gonnardaaa98142017-08-18 17:30:37 +0200[diff] [blame]389#endif /* MBEDTLS_ECDSA_C && MBEDTLS_ECP_RESTARTABLE */
Manuel Pégourié-Gonnard1f596062017-05-09 10:42:40 +0200[diff] [blame]390
Manuel Pégourié-Gonnardfff80f82013-08-17 15:20:06 +0200[diff] [blame]391 if( ctx->pk_info->verify_func == NULL )
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]392 return( MBEDTLS_ERR_PK_TYPE_MISMATCH );
Manuel Pégourié-Gonnardfff80f82013-08-17 15:20:06 +0200[diff] [blame]393
Manuel Pégourié-Gonnardc10f0922019-09-19 10:45:14 +0200[diff] [blame]394 return( pk_info_verify_func( ctx->pk_info, ctx->pk_ctx, md_alg, hash, hash_len,
Manuel Pégourié-Gonnardf73da022013-08-17 14:36:32 +0200[diff] [blame]395 sig, sig_len ) );
Manuel Pégourié-Gonnardb3d91872013-08-14 15:56:19 +0200[diff] [blame]396}
397
398/*
Manuel Pégourié-Gonnard82cb27b2017-05-03 10:59:45 +0200[diff] [blame]399 * Verify a signature
400 */
401int mbedtls_pk_verify( mbedtls_pk_context *ctx, mbedtls_md_type_t md_alg,
402 const unsigned char *hash, size_t hash_len,
403 const unsigned char *sig, size_t sig_len )
404{
405 return( mbedtls_pk_verify_restartable( ctx, md_alg, hash, hash_len,
406 sig, sig_len, NULL ) );
407}
408
409/*
Manuel Pégourié-Gonnard20422e92014-06-05 13:41:44 +0200[diff] [blame]410 * Verify a signature with options
411 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]412int mbedtls_pk_verify_ext( mbedtls_pk_type_t type, const void *options,
413 mbedtls_pk_context *ctx, mbedtls_md_type_t md_alg,
Manuel Pégourié-Gonnard20422e92014-06-05 13:41:44 +0200[diff] [blame]414 const unsigned char *hash, size_t hash_len,
415 const unsigned char *sig, size_t sig_len )
416{
Gilles Peskinee97dc602018-12-19 00:51:38 +0100[diff] [blame]417 PK_VALIDATE_RET( ctx != NULL );
Gilles Peskineee3cfec2018-12-19 17:10:02 +0100[diff] [blame]418 PK_VALIDATE_RET( ( md_alg == MBEDTLS_MD_NONE && hash_len == 0 ) ||
419 hash != NULL );
Gilles Peskinee97dc602018-12-19 00:51:38 +0100[diff] [blame]420 PK_VALIDATE_RET( sig != NULL );
421
422 if( ctx->pk_info == NULL )
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]423 return( MBEDTLS_ERR_PK_BAD_INPUT_DATA );
Manuel Pégourié-Gonnard20422e92014-06-05 13:41:44 +0200[diff] [blame]424
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]425 if( ! mbedtls_pk_can_do( ctx, type ) )
426 return( MBEDTLS_ERR_PK_TYPE_MISMATCH );
Manuel Pégourié-Gonnard20422e92014-06-05 13:41:44 +0200[diff] [blame]427
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]428 if( type == MBEDTLS_PK_RSASSA_PSS )
Manuel Pégourié-Gonnard20422e92014-06-05 13:41:44 +0200[diff] [blame]429 {
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]430#if defined(MBEDTLS_RSA_C) && defined(MBEDTLS_PKCS1_V21)
Manuel Pégourié-Gonnard20422e92014-06-05 13:41:44 +0200[diff] [blame]431 int ret;
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]432 const mbedtls_pk_rsassa_pss_options *pss_opts;
Manuel Pégourié-Gonnard20422e92014-06-05 13:41:44 +0200[diff] [blame]433
Andres Amaya Garcia7c02c502017-08-04 13:32:15 +0100[diff] [blame]434#if SIZE_MAX > UINT_MAX
Andres AG72849872017-01-19 11:24:33 +0000[diff] [blame]435 if( md_alg == MBEDTLS_MD_NONE && UINT_MAX < hash_len )
436 return( MBEDTLS_ERR_PK_BAD_INPUT_DATA );
Andres Amaya Garcia7c02c502017-08-04 13:32:15 +0100[diff] [blame]437#endif /* SIZE_MAX > UINT_MAX */
Andres AG72849872017-01-19 11:24:33 +0000[diff] [blame]438
Manuel Pégourié-Gonnard20422e92014-06-05 13:41:44 +0200[diff] [blame]439 if( options == NULL )
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]440 return( MBEDTLS_ERR_PK_BAD_INPUT_DATA );
Manuel Pégourié-Gonnard20422e92014-06-05 13:41:44 +0200[diff] [blame]441
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]442 pss_opts = (const mbedtls_pk_rsassa_pss_options *) options;
Manuel Pégourié-Gonnard20422e92014-06-05 13:41:44 +0200[diff] [blame]443
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]444 if( sig_len < mbedtls_pk_get_len( ctx ) )
445 return( MBEDTLS_ERR_RSA_VERIFY_FAILED );
Manuel Pégourié-Gonnard20422e92014-06-05 13:41:44 +0200[diff] [blame]446
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]447 ret = mbedtls_rsa_rsassa_pss_verify_ext( mbedtls_pk_rsa( *ctx ),
448 NULL, NULL, MBEDTLS_RSA_PUBLIC,
Sander Niemeijeref5087d2014-08-16 12:45:52 +0200[diff] [blame]449 md_alg, (unsigned int) hash_len, hash,
Manuel Pégourié-Gonnard20422e92014-06-05 13:41:44 +0200[diff] [blame]450 pss_opts->mgf1_hash_id,
451 pss_opts->expected_salt_len,
452 sig );
453 if( ret != 0 )
454 return( ret );
455
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]456 if( sig_len > mbedtls_pk_get_len( ctx ) )
457 return( MBEDTLS_ERR_PK_SIG_LEN_MISMATCH );
Manuel Pégourié-Gonnard20422e92014-06-05 13:41:44 +0200[diff] [blame]458
459 return( 0 );
460#else
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]461 return( MBEDTLS_ERR_PK_FEATURE_UNAVAILABLE );
Andres AG72849872017-01-19 11:24:33 +0000[diff] [blame]462#endif /* MBEDTLS_RSA_C && MBEDTLS_PKCS1_V21 */
Manuel Pégourié-Gonnard20422e92014-06-05 13:41:44 +0200[diff] [blame]463 }
464
465 /* General case: no options */
466 if( options != NULL )
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]467 return( MBEDTLS_ERR_PK_BAD_INPUT_DATA );
Manuel Pégourié-Gonnard20422e92014-06-05 13:41:44 +0200[diff] [blame]468
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]469 return( mbedtls_pk_verify( ctx, md_alg, hash, hash_len, sig, sig_len ) );
Manuel Pégourié-Gonnard20422e92014-06-05 13:41:44 +0200[diff] [blame]470}
471
472/*
Manuel Pégourié-Gonnard82cb27b2017-05-03 10:59:45 +0200[diff] [blame]473 * Make a signature (restartable)
Manuel Pégourié-Gonnard8df27692013-08-21 10:34:38 +0200[diff] [blame]474 */
Manuel Pégourié-Gonnard82cb27b2017-05-03 10:59:45 +0200[diff] [blame]475int mbedtls_pk_sign_restartable( mbedtls_pk_context *ctx,
476 mbedtls_md_type_t md_alg,
Manuel Pégourié-Gonnard8df27692013-08-21 10:34:38 +0200[diff] [blame]477 const unsigned char *hash, size_t hash_len,
478 unsigned char *sig, size_t *sig_len,
Manuel Pégourié-Gonnard82cb27b2017-05-03 10:59:45 +0200[diff] [blame]479 int (*f_rng)(void *, unsigned char *, size_t), void *p_rng,
Manuel Pégourié-Gonnard15d7df22017-08-17 14:33:31 +0200[diff] [blame]480 mbedtls_pk_restart_ctx *rs_ctx )
Manuel Pégourié-Gonnard8df27692013-08-21 10:34:38 +0200[diff] [blame]481{
Gilles Peskinee97dc602018-12-19 00:51:38 +0100[diff] [blame]482 PK_VALIDATE_RET( ctx != NULL );
Gilles Peskineee3cfec2018-12-19 17:10:02 +0100[diff] [blame]483 PK_VALIDATE_RET( ( md_alg == MBEDTLS_MD_NONE && hash_len == 0 ) ||
484 hash != NULL );
Gilles Peskinee97dc602018-12-19 00:51:38 +0100[diff] [blame]485 PK_VALIDATE_RET( sig != NULL );
486
487 if( ctx->pk_info == NULL ||
Manuel Pégourié-Gonnardbfe32ef2013-08-22 14:55:30 +0200[diff] [blame]488 pk_hashlen_helper( md_alg, &hash_len ) != 0 )
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]489 return( MBEDTLS_ERR_PK_BAD_INPUT_DATA );
Manuel Pégourié-Gonnard8df27692013-08-21 10:34:38 +0200[diff] [blame]490
Manuel Pégourié-Gonnardaaa98142017-08-18 17:30:37 +0200[diff] [blame]491#if defined(MBEDTLS_ECDSA_C) && defined(MBEDTLS_ECP_RESTARTABLE)
Manuel Pégourié-Gonnardd55f7762017-08-18 17:40:15 +0200[diff] [blame]492 /* optimization: use non-restartable version if restart disabled */
493 if( rs_ctx != NULL &&
Manuel Pégourié-Gonnardb843b152018-10-16 10:41:31 +0200[diff] [blame]494 mbedtls_ecp_restart_is_enabled() &&
Manuel Pégourié-Gonnardd55f7762017-08-18 17:40:15 +0200[diff] [blame]495 ctx->pk_info->sign_rs_func != NULL )
Manuel Pégourié-Gonnard1f596062017-05-09 10:42:40 +0200[diff] [blame]496 {
Manuel Pégourié-Gonnard0bbc66c2017-08-18 16:22:06 +0200[diff] [blame]497 int ret;
498
499 if( ( ret = pk_restart_setup( rs_ctx, ctx->pk_info ) ) != 0 )
500 return( ret );
501
502 ret = ctx->pk_info->sign_rs_func( ctx->pk_ctx, md_alg,
503 hash, hash_len, sig, sig_len, f_rng, p_rng, rs_ctx->rs_ctx );
504
505 if( ret != MBEDTLS_ERR_ECP_IN_PROGRESS )
506 mbedtls_pk_restart_free( rs_ctx );
507
508 return( ret );
Manuel Pégourié-Gonnard1f596062017-05-09 10:42:40 +0200[diff] [blame]509 }
Manuel Pégourié-Gonnardaaa98142017-08-18 17:30:37 +0200[diff] [blame]510#else /* MBEDTLS_ECDSA_C && MBEDTLS_ECP_RESTARTABLE */
Manuel Pégourié-Gonnard1f596062017-05-09 10:42:40 +0200[diff] [blame]511 (void) rs_ctx;
Manuel Pégourié-Gonnardaaa98142017-08-18 17:30:37 +0200[diff] [blame]512#endif /* MBEDTLS_ECDSA_C && MBEDTLS_ECP_RESTARTABLE */
Manuel Pégourié-Gonnard1f596062017-05-09 10:42:40 +0200[diff] [blame]513
Manuel Pégourié-Gonnard8df27692013-08-21 10:34:38 +0200[diff] [blame]514 if( ctx->pk_info->sign_func == NULL )
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]515 return( MBEDTLS_ERR_PK_TYPE_MISMATCH );
Manuel Pégourié-Gonnard8df27692013-08-21 10:34:38 +0200[diff] [blame]516
Manuel Pégourié-Gonnardc10f0922019-09-19 10:45:14 +0200[diff] [blame]517 return( pk_info_sign_func( ctx->pk_info, ctx->pk_ctx, md_alg, hash, hash_len,
Manuel Pégourié-Gonnard8df27692013-08-21 10:34:38 +0200[diff] [blame]518 sig, sig_len, f_rng, p_rng ) );
519}
520
521/*
Manuel Pégourié-Gonnard82cb27b2017-05-03 10:59:45 +0200[diff] [blame]522 * Make a signature
523 */
524int mbedtls_pk_sign( mbedtls_pk_context *ctx, mbedtls_md_type_t md_alg,
525 const unsigned char *hash, size_t hash_len,
526 unsigned char *sig, size_t *sig_len,
527 int (*f_rng)(void *, unsigned char *, size_t), void *p_rng )
528{
529 return( mbedtls_pk_sign_restartable( ctx, md_alg, hash, hash_len,
530 sig, sig_len, f_rng, p_rng, NULL ) );
531}
532
533/*
Manuel Pégourié-Gonnarda2d3f222013-08-21 11:51:08 +0200[diff] [blame]534 * Decrypt message
535 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]536int mbedtls_pk_decrypt( mbedtls_pk_context *ctx,
Manuel Pégourié-Gonnarda2d3f222013-08-21 11:51:08 +0200[diff] [blame]537 const unsigned char *input, size_t ilen,
538 unsigned char *output, size_t *olen, size_t osize,
539 int (*f_rng)(void *, unsigned char *, size_t), void *p_rng )
540{
Gilles Peskinee97dc602018-12-19 00:51:38 +0100[diff] [blame]541 PK_VALIDATE_RET( ctx != NULL );
542 PK_VALIDATE_RET( input != NULL || ilen == 0 );
543 PK_VALIDATE_RET( output != NULL || osize == 0 );
544 PK_VALIDATE_RET( olen != NULL );
545
546 if( ctx->pk_info == NULL )
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]547 return( MBEDTLS_ERR_PK_BAD_INPUT_DATA );
Manuel Pégourié-Gonnarda2d3f222013-08-21 11:51:08 +0200[diff] [blame]548
549 if( ctx->pk_info->decrypt_func == NULL )
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]550 return( MBEDTLS_ERR_PK_TYPE_MISMATCH );
Manuel Pégourié-Gonnarda2d3f222013-08-21 11:51:08 +0200[diff] [blame]551
Manuel Pégourié-Gonnardc10f0922019-09-19 10:45:14 +0200[diff] [blame]552 return( pk_info_decrypt_func( ctx->pk_info, ctx->pk_ctx, input, ilen,
Manuel Pégourié-Gonnarda2d3f222013-08-21 11:51:08 +0200[diff] [blame]553 output, olen, osize, f_rng, p_rng ) );
554}
555
556/*
557 * Encrypt message
558 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]559int mbedtls_pk_encrypt( mbedtls_pk_context *ctx,
Manuel Pégourié-Gonnarda2d3f222013-08-21 11:51:08 +0200[diff] [blame]560 const unsigned char *input, size_t ilen,
561 unsigned char *output, size_t *olen, size_t osize,
562 int (*f_rng)(void *, unsigned char *, size_t), void *p_rng )
563{
Gilles Peskinee97dc602018-12-19 00:51:38 +0100[diff] [blame]564 PK_VALIDATE_RET( ctx != NULL );
565 PK_VALIDATE_RET( input != NULL || ilen == 0 );
566 PK_VALIDATE_RET( output != NULL || osize == 0 );
567 PK_VALIDATE_RET( olen != NULL );
568
569 if( ctx->pk_info == NULL )
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]570 return( MBEDTLS_ERR_PK_BAD_INPUT_DATA );
Manuel Pégourié-Gonnarda2d3f222013-08-21 11:51:08 +0200[diff] [blame]571
572 if( ctx->pk_info->encrypt_func == NULL )
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]573 return( MBEDTLS_ERR_PK_TYPE_MISMATCH );
Manuel Pégourié-Gonnarda2d3f222013-08-21 11:51:08 +0200[diff] [blame]574
Manuel Pégourié-Gonnardc10f0922019-09-19 10:45:14 +0200[diff] [blame]575 return( pk_info_encrypt_func( ctx->pk_info, ctx->pk_ctx, input, ilen,
Manuel Pégourié-Gonnarda2d3f222013-08-21 11:51:08 +0200[diff] [blame]576 output, olen, osize, f_rng, p_rng ) );
577}
578
579/*
Manuel Pégourié-Gonnard70bdadf2014-11-06 16:51:20 +0100[diff] [blame]580 * Check public-private key pair
581 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]582int mbedtls_pk_check_pair( const mbedtls_pk_context *pub, const mbedtls_pk_context *prv )
Manuel Pégourié-Gonnard70bdadf2014-11-06 16:51:20 +0100[diff] [blame]583{
Gilles Peskinee97dc602018-12-19 00:51:38 +0100[diff] [blame]584 PK_VALIDATE_RET( pub != NULL );
585 PK_VALIDATE_RET( prv != NULL );
586
Manuel Pégourié-Gonnard2d9466f2019-09-19 10:45:14 +0200[diff] [blame^]587 if( pub->pk_info == NULL || prv->pk_info == NULL )
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]588 return( MBEDTLS_ERR_PK_BAD_INPUT_DATA );
Manuel Pégourié-Gonnard70bdadf2014-11-06 16:51:20 +0100[diff] [blame]589
Manuel Pégourié-Gonnard2d9466f2019-09-19 10:45:14 +0200[diff] [blame^]590#if defined(MBEDTLS_PK_RSA_ALT_SUPPORT)
Manuel Pégourié-Gonnardc10f0922019-09-19 10:45:14 +0200[diff] [blame]591 if( pk_info_type( prv->pk_info ) == MBEDTLS_PK_RSA_ALT )
Manuel Pégourié-Gonnard70bdadf2014-11-06 16:51:20 +0100[diff] [blame]592 {
Manuel Pégourié-Gonnardc10f0922019-09-19 10:45:14 +0200[diff] [blame]593 if( pk_info_type( pub->pk_info ) != MBEDTLS_PK_RSA )
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]594 return( MBEDTLS_ERR_PK_TYPE_MISMATCH );
Manuel Pégourié-Gonnarda1efcb02014-11-08 17:08:08 +0100[diff] [blame]595 }
596 else
Manuel Pégourié-Gonnard2d9466f2019-09-19 10:45:14 +0200[diff] [blame^]597#endif /* MBEDTLS_PK_RSA_ALT_SUPPORT */
Manuel Pégourié-Gonnarda1efcb02014-11-08 17:08:08 +0100[diff] [blame]598 {
599 if( pub->pk_info != prv->pk_info )
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]600 return( MBEDTLS_ERR_PK_TYPE_MISMATCH );
Manuel Pégourié-Gonnard70bdadf2014-11-06 16:51:20 +0100[diff] [blame]601 }
602
Manuel Pégourié-Gonnard2d9466f2019-09-19 10:45:14 +0200[diff] [blame^]603 if( prv->pk_info->check_pair_func == NULL )
604 return( MBEDTLS_ERR_PK_BAD_INPUT_DATA );
605
Manuel Pégourié-Gonnardc10f0922019-09-19 10:45:14 +0200[diff] [blame]606 return( pk_info_check_pair_func( prv->pk_info, pub->pk_ctx, prv->pk_ctx ) );
Manuel Pégourié-Gonnard70bdadf2014-11-06 16:51:20 +0100[diff] [blame]607}
608
609/*
Manuel Pégourié-Gonnardb3d91872013-08-14 15:56:19 +0200[diff] [blame]610 * Get key size in bits
611 */
Manuel Pégourié-Gonnard097c7bb2015-06-18 16:43:38 +0200[diff] [blame]612size_t mbedtls_pk_get_bitlen( const mbedtls_pk_context *ctx )
Manuel Pégourié-Gonnardb3d91872013-08-14 15:56:19 +0200[diff] [blame]613{
Gilles Peskine6af45ec2018-12-19 17:52:05 +0100[diff] [blame]614 /* For backward compatibility, accept NULL or a context that
615 * isn't set up yet, and return a fake value that should be safe. */
Manuel Pégourié-Gonnard3fb5c5e2013-08-14 18:26:41 +0200[diff] [blame]616 if( ctx == NULL || ctx->pk_info == NULL )
Manuel Pégourié-Gonnardb3d91872013-08-14 15:56:19 +0200[diff] [blame]617 return( 0 );
618
Manuel Pégourié-Gonnardc10f0922019-09-19 10:45:14 +0200[diff] [blame]619 return( pk_info_get_bitlen( ctx->pk_info, ctx->pk_ctx ) );
Manuel Pégourié-Gonnardb3d91872013-08-14 15:56:19 +0200[diff] [blame]620}
Manuel Pégourié-Gonnardc6ac8872013-08-14 18:04:18 +0200[diff] [blame]621
622/*
623 * Export debug information
624 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]625int mbedtls_pk_debug( const mbedtls_pk_context *ctx, mbedtls_pk_debug_item *items )
Manuel Pégourié-Gonnardc6ac8872013-08-14 18:04:18 +0200[diff] [blame]626{
Gilles Peskinee97dc602018-12-19 00:51:38 +0100[diff] [blame]627 PK_VALIDATE_RET( ctx != NULL );
628 if( ctx->pk_info == NULL )
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]629 return( MBEDTLS_ERR_PK_BAD_INPUT_DATA );
Manuel Pégourié-Gonnardc6ac8872013-08-14 18:04:18 +0200[diff] [blame]630
Manuel Pégourié-Gonnard01488752014-04-03 22:09:18 +0200[diff] [blame]631 if( ctx->pk_info->debug_func == NULL )
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]632 return( MBEDTLS_ERR_PK_TYPE_MISMATCH );
Manuel Pégourié-Gonnard01488752014-04-03 22:09:18 +0200[diff] [blame]633
Manuel Pégourié-Gonnardc10f0922019-09-19 10:45:14 +0200[diff] [blame]634 pk_info_debug_func( ctx->pk_info, ctx->pk_ctx, items );
Manuel Pégourié-Gonnardc6ac8872013-08-14 18:04:18 +0200[diff] [blame]635 return( 0 );
636}
Manuel Pégourié-Gonnard3fb5c5e2013-08-14 18:26:41 +0200[diff] [blame]637
638/*
639 * Access the PK type name
640 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]641const char *mbedtls_pk_get_name( const mbedtls_pk_context *ctx )
Manuel Pégourié-Gonnard3fb5c5e2013-08-14 18:26:41 +0200[diff] [blame]642{
643 if( ctx == NULL || ctx->pk_info == NULL )
644 return( "invalid PK" );
645
Manuel Pégourié-Gonnardc10f0922019-09-19 10:45:14 +0200[diff] [blame]646 return( pk_info_name( ctx->pk_info ) );
Manuel Pégourié-Gonnard3fb5c5e2013-08-14 18:26:41 +0200[diff] [blame]647}
Manuel Pégourié-Gonnardc40b4c32013-08-22 13:29:31 +0200[diff] [blame]648
Manuel Pégourié-Gonnard8053da42013-09-11 22:28:30 +0200[diff] [blame]649/*
650 * Access the PK type
651 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]652mbedtls_pk_type_t mbedtls_pk_get_type( const mbedtls_pk_context *ctx )
Manuel Pégourié-Gonnard8053da42013-09-11 22:28:30 +0200[diff] [blame]653{
654 if( ctx == NULL || ctx->pk_info == NULL )
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]655 return( MBEDTLS_PK_NONE );
Manuel Pégourié-Gonnard8053da42013-09-11 22:28:30 +0200[diff] [blame]656
Manuel Pégourié-Gonnardc10f0922019-09-19 10:45:14 +0200[diff] [blame]657 return( pk_info_type( ctx->pk_info ) );
Manuel Pégourié-Gonnard8053da42013-09-11 22:28:30 +0200[diff] [blame]658}
659
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]660#endif /* MBEDTLS_PK_C */