lws-genrsa.h

Go to the documentation of this file.

/*
 * libwebsockets - small server side websockets and web server implementation
 *
 * Copyright (C) 2010 - 2019 Andy Green <andy@warmcat.com>
 *
 * Permission is hereby granted, free of charge, to any person obtaining a copy
 * of this software and associated documentation files (the "Software"), to
 * deal in the Software without restriction, including without limitation the
 * rights to use, copy, modify, merge, publish, distribute, sublicense, and/or
 * sell copies of the Software, and to permit persons to whom the Software is
 * furnished to do so, subject to the following conditions:
 *
 * The above copyright notice and this permission notice shall be included in
 * all copies or substantial portions of the Software.
 *
 * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
 * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
 * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
 * AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
 * LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING
 * FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS
 * IN THE SOFTWARE.
 */

 
/* include/libwebsockets/lws-jwk.h must be included before this */
 
enum enum_genrsa_mode {
        LGRSAM_PKCS1_1_5,
        LGRSAM_PKCS1_OAEP_PSS,
 
        LGRSAM_COUNT
};
 
struct lws_genrsa_ctx {
#if defined(LWS_WITH_MBEDTLS)
#if !defined(LWS_HAVE_MBEDTLS_V4)
        mbedtls_rsa_context *ctx;
#else
        psa_key_id_t key_id;
#endif
#elif defined(LWS_WITH_SCHANNEL)
        struct {
                void *hAlg;
                void *hKey;
        } u;
#elif defined(LWS_WITH_GNUTLS)
        gnutls_privkey_t priv;
        gnutls_pubkey_t pub;
#elif defined(LWS_WITH_BEARSSL)
        br_rsa_public_key pub;
        br_rsa_private_key priv;
        void *kbuf_priv;
        void *kbuf_pub;
#else
        BIGNUM *bn[LWS_GENCRYPTO_RSA_KEYEL_COUNT];
        EVP_PKEY_CTX *ctx;
        RSA *rsa;
#endif
        struct lws_context *context;
        enum enum_genrsa_mode mode;
};

LWS_VISIBLE LWS_EXTERN int
lws_genrsa_create(struct lws_genrsa_ctx *ctx,
                  const struct lws_gencrypto_keyelem *el,
                  struct lws_context *context, enum enum_genrsa_mode mode,
                  enum lws_genhash_types oaep_hashid);

LWS_VISIBLE LWS_EXTERN void
lws_genrsa_destroy_elements(struct lws_gencrypto_keyelem *el);

LWS_VISIBLE LWS_EXTERN int
lws_genrsa_new_keypair(struct lws_context *context, struct lws_genrsa_ctx *ctx,
                       enum enum_genrsa_mode mode, struct lws_gencrypto_keyelem *el,
                       int bits);

LWS_VISIBLE LWS_EXTERN int
lws_genrsa_public_encrypt(struct lws_genrsa_ctx *ctx, const uint8_t *in,
                          size_t in_len, uint8_t *out);

LWS_VISIBLE LWS_EXTERN int
lws_genrsa_private_encrypt(struct lws_genrsa_ctx *ctx, const uint8_t *in,
                           size_t in_len, uint8_t *out);

LWS_VISIBLE LWS_EXTERN int
lws_genrsa_public_decrypt(struct lws_genrsa_ctx *ctx, const uint8_t *in,
                          size_t in_len, uint8_t *out, size_t out_max);

LWS_VISIBLE LWS_EXTERN int
lws_genrsa_private_decrypt(struct lws_genrsa_ctx *ctx, const uint8_t *in,
                           size_t in_len, uint8_t *out, size_t out_max);

LWS_VISIBLE LWS_EXTERN int
lws_genrsa_hash_sig_verify(struct lws_genrsa_ctx *ctx, const uint8_t *in,
                           enum lws_genhash_types hash_type,
                           const uint8_t *sig, size_t sig_len);

LWS_VISIBLE LWS_EXTERN int
lws_genrsa_hash_sign(struct lws_genrsa_ctx *ctx, const uint8_t *in,
                     enum lws_genhash_types hash_type,
                     uint8_t *sig, size_t sig_len);

LWS_VISIBLE LWS_EXTERN void
lws_genrsa_destroy(struct lws_genrsa_ctx *ctx);

LWS_VISIBLE LWS_EXTERN int
lws_genrsa_render_pkey_asn1(struct lws_genrsa_ctx *ctx, int _private,
                            uint8_t *pkey_asn1, size_t pkey_asn1_len);