lws-api-doc-main/html/lws-jose_8h_source.html

/*

 * libwebsockets - small server side websockets and web server implementation

 *

 * Copyright (C) 2010 - 2019 Andy Green <andy@warmcat.com>

 *

 * Permission is hereby granted, free of charge, to any person obtaining a copy

 * of this software and associated documentation files (the "Software"), to

 * deal in the Software without restriction, including without limitation the

 * rights to use, copy, modify, merge, publish, distribute, sublicense, and/or

 * sell copies of the Software, and to permit persons to whom the Software is

 * furnished to do so, subject to the following conditions:

 *

 * The above copyright notice and this permission notice shall be included in

 * all copies or substantial portions of the Software.

 *

 * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR

 * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,

 * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE

 * AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER

 * LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING

 * FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS

 * IN THE SOFTWARE.

 */


enum lws_jws_jose_hdr_indexes {

        LJJHI_ALG,      /* REQUIRED */

        LJJHI_JKU,      /* Optional: string */

        LJJHI_JWK,      /* Optional: jwk JSON object: public key: */

        LJJHI_KID,      /* Optional: string */

        LJJHI_X5U,      /* Optional: string: url of public key cert / chain */

        LJJHI_X5C,      /* Optional: base64 (NOT -url): actual cert */

        LJJHI_X5T,      /* Optional: base64url: SHA-1 of actual cert */

        LJJHI_X5T_S256, /* Optional: base64url: SHA-256 of actual cert */

        LJJHI_TYP,      /* Optional: string: media type */

        LJJHI_CTY,      /* Optional: string: content media type */

        LJJHI_CRIT,     /* Optional for send, REQUIRED: array of strings:

                         * mustn't contain standardized strings or null set */


        LJJHI_RECIPS_HDR,

        LJJHI_RECIPS_HDR_ALG,

        LJJHI_RECIPS_HDR_KID,

        LJJHI_RECIPS_EKEY,


        LJJHI_ENC,      /* JWE only: Optional: string */

        LJJHI_ZIP,      /* JWE only: Optional: string ("DEF" = deflate) */


        LJJHI_EPK,      /* Additional arg for JWE ECDH:  ephemeral public key */

        LJJHI_APU,      /* Additional arg for JWE ECDH:  base64url */

        LJJHI_APV,      /* Additional arg for JWE ECDH:  base64url */

        LJJHI_IV,       /* Additional arg for JWE AES:   base64url */

        LJJHI_TAG,      /* Additional arg for JWE AES:   base64url */

        LJJHI_P2S,      /* Additional arg for JWE PBES2: base64url: salt */

        LJJHI_P2C,      /* Additional arg for JWE PBES2: integer: count */


        LWS_COUNT_JOSE_HDR_ELEMENTS

};


enum lws_jose_algtype {

        LWS_JOSE_ENCTYPE_NONE,


        LWS_JOSE_ENCTYPE_RSASSA_PKCS1_1_5,

        LWS_JOSE_ENCTYPE_RSASSA_PKCS1_OAEP,

        LWS_JOSE_ENCTYPE_RSASSA_PKCS1_PSS,


        LWS_JOSE_ENCTYPE_ECDSA,

        LWS_JOSE_ENCTYPE_ECDHES,


        LWS_JOSE_ENCTYPE_AES_CBC,

        LWS_JOSE_ENCTYPE_AES_CFB128,

        LWS_JOSE_ENCTYPE_AES_CFB8,

        LWS_JOSE_ENCTYPE_AES_CTR,

        LWS_JOSE_ENCTYPE_AES_ECB,

        LWS_JOSE_ENCTYPE_AES_OFB,

        LWS_JOSE_ENCTYPE_AES_XTS,       /* care: requires double-length key */

        LWS_JOSE_ENCTYPE_AES_GCM,

};


/* there's a table of these defined in lws-gencrypto-common.c */


struct lws_jose_jwe_alg {

        enum lws_genhash_types hash_type;

        enum lws_genhmac_types hmac_type;

        enum lws_jose_algtype algtype_signing; /* the signing cipher */

        enum lws_jose_algtype algtype_crypto; /* the encryption cipher */

        const char *alg; /* the JWA enc alg name, eg "ES512" */

        const char *curve_name; /* NULL, or, eg, "P-256" */

        unsigned short keybits_min, keybits_fixed;

        unsigned short ivbits;

};


/*

 * For JWS, "JOSE header" is defined to be the union of...

 *

 * o  JWS Protected Header

 * o  JWS Unprotected Header

 *

 * For JWE, the "JOSE header" is the union of...

 *

 * o  JWE Protected Header

 * o  JWE Shared Unprotected Header

 * o  JWE Per-Recipient Unprotected Header

 */


#define LWS_JWS_MAX_RECIPIENTS 3


struct lws_jws_recpient {

        /*

         * JOSE per-recipient unprotected header... for JWS this contains

         * protected / header / signature

         */

        struct lws_gencrypto_keyelem unprot[LWS_COUNT_JOSE_HDR_ELEMENTS];

        struct lws_jwk jwk_ephemeral;   /* recipient ephemeral key if any */

        struct lws_jwk jwk;             /* recipient "jwk" key if any */

};


struct lws_jose {

        /* JOSE protected and unprotected header elements */

        struct lws_gencrypto_keyelem e[LWS_COUNT_JOSE_HDR_ELEMENTS];


        struct lws_jws_recpient recipient[LWS_JWS_MAX_RECIPIENTS];


        char typ[32];

        char edone[LWS_COUNT_JOSE_HDR_ELEMENTS];


        /* information from the protected header part */

        const struct lws_jose_jwe_alg *alg;

        const struct lws_jose_jwe_alg *enc_alg;


        int recipients; /* count of used recipient[] entries */

};


/**

 * lws_jose_init() - prepare a struct lws_jose for use

 *

 * \param jose: the jose header struct to prepare

 */

LWS_VISIBLE LWS_EXTERN void

lws_jose_init(struct lws_jose *jose);


/**

 * lws_jose_destroy() - retire a struct lws_jose from use

 *

 * \param jose: the jose header struct to destroy

 */

LWS_VISIBLE LWS_EXTERN void

lws_jose_destroy(struct lws_jose *jose);


/**

 * lws_gencrypto_jws_alg_to_definition() - look up a jws alg name

 *

 * \param alg: the jws alg name

 * \param jose: pointer to the pointer to the info struct to set on success

 *

 * Returns 0 if *jose set, else nonzero for failure

 */

LWS_VISIBLE LWS_EXTERN int

lws_gencrypto_jws_alg_to_definition(const char *alg,

                                    const struct lws_jose_jwe_alg **jose);


/**

 * lws_gencrypto_jwe_alg_to_definition() - look up a jwe alg name

 *

 * \param alg: the jwe alg name

 * \param jose: pointer to the pointer to the info struct to set on success

 *

 * Returns 0 if *jose set, else nonzero for failure

 */

LWS_VISIBLE LWS_EXTERN int

lws_gencrypto_jwe_alg_to_definition(const char *alg,

                                    const struct lws_jose_jwe_alg **jose);


/**

 * lws_gencrypto_jwe_enc_to_definition() - look up a jwe enc name

 *

 * \param alg: the jwe enc name

 * \param jose: pointer to the pointer to the info struct to set on success

 *

 * Returns 0 if *jose set, else nonzero for failure

 */

LWS_VISIBLE LWS_EXTERN int

lws_gencrypto_jwe_enc_to_definition(const char *enc,

                                    const struct lws_jose_jwe_alg **jose);


/**

 * lws_jws_parse_jose() - parse a JWS JOSE header

 *

 * \param jose: the jose struct to set to parsing results

 * \param buf: the raw JOSE header

 * \param len: the length of the raw JOSE header

 * \param temp: parent-owned buffer to "allocate" elements into

 * \param temp_len: amount of space available in temp

 *

 * returns 0 for success, or -1 for error

 * *\p temp_len is updated to reflect the amount of \p temp used if successful.

 */

LWS_VISIBLE LWS_EXTERN int

lws_jws_parse_jose(struct lws_jose *jose,

                   const char *buf, int len, char *temp, int *temp_len);


/**

 * lws_jwe_parse_jose() - parse a JWE JOSE header

 *

 * \param jose: the jose struct to set to parsing results

 * \param buf: the raw JOSE header

 * \param len: the length of the raw JOSE header

 * \param temp: parent-owned buffer to "allocate" elements into

 * \param temp_len: amount of space available in temp

 *

 * returns 0 for success, or -1 for error

 * *\p temp_len is updated to reflect the amount of \p temp used if successful.

 */

LWS_VISIBLE LWS_EXTERN int

lws_jwe_parse_jose(struct lws_jose *jose,

                   const char *buf, int len, char *temp, int *temp_len);

lws_genhash_types
lws_genhash_types
Definition: lws-genhash.h:36

lws_genhmac_types
lws_genhmac_types
Definition: lws-genhash.h:45

lws_jwk
Definition: lws-jwk.h:50

lws_gencrypto_keyelem
Definition: lws-gencrypto.h:99

lws_gencrypto_jws_alg_to_definition
LWS_VISIBLE LWS_EXTERN int lws_gencrypto_jws_alg_to_definition(const char *alg, const struct lws_jose_jwe_alg **jose)

lws_jose::recipients
int recipients
Definition: lws-jose.h:129

lws_jose_jwe_alg::keybits_fixed
unsigned short keybits_fixed
Definition: lws-jose.h:87

lws_jose_jwe_alg::curve_name
const char * curve_name
Definition: lws-jose.h:86

lws_jose::enc_alg
const struct lws_jose_jwe_alg * enc_alg
Definition: lws-jose.h:127

lws_jose_init
LWS_VISIBLE LWS_EXTERN void lws_jose_init(struct lws_jose *jose)

lws_jose_jwe_alg::hmac_type
enum lws_genhmac_types hmac_type
Definition: lws-jose.h:82

lws_jws_jose_hdr_indexes
lws_jws_jose_hdr_indexes
Definition: lws-jose.h:25

LJJHI_X5T
@ LJJHI_X5T
Definition: lws-jose.h:32

LJJHI_P2S
@ LJJHI_P2S
Definition: lws-jose.h:52

LJJHI_X5U
@ LJJHI_X5U
Definition: lws-jose.h:30

LJJHI_TAG
@ LJJHI_TAG
Definition: lws-jose.h:51

LWS_COUNT_JOSE_HDR_ELEMENTS
@ LWS_COUNT_JOSE_HDR_ELEMENTS
Definition: lws-jose.h:55

LJJHI_TYP
@ LJJHI_TYP
Definition: lws-jose.h:34

LJJHI_ZIP
@ LJJHI_ZIP
Definition: lws-jose.h:45

LJJHI_RECIPS_HDR
@ LJJHI_RECIPS_HDR
Definition: lws-jose.h:39

LJJHI_CTY
@ LJJHI_CTY
Definition: lws-jose.h:35

LJJHI_JKU
@ LJJHI_JKU
Definition: lws-jose.h:27

LJJHI_P2C
@ LJJHI_P2C
Definition: lws-jose.h:53

LJJHI_RECIPS_HDR_ALG
@ LJJHI_RECIPS_HDR_ALG
Definition: lws-jose.h:40

LJJHI_APU
@ LJJHI_APU
Definition: lws-jose.h:48

LJJHI_RECIPS_HDR_KID
@ LJJHI_RECIPS_HDR_KID
Definition: lws-jose.h:41

LJJHI_APV
@ LJJHI_APV
Definition: lws-jose.h:49

LJJHI_RECIPS_EKEY
@ LJJHI_RECIPS_EKEY
Definition: lws-jose.h:42

LJJHI_ALG
@ LJJHI_ALG
Definition: lws-jose.h:26

LJJHI_KID
@ LJJHI_KID
Definition: lws-jose.h:29

LJJHI_CRIT
@ LJJHI_CRIT
Definition: lws-jose.h:36

LJJHI_X5C
@ LJJHI_X5C
Definition: lws-jose.h:31

LJJHI_X5T_S256
@ LJJHI_X5T_S256
Definition: lws-jose.h:33

LJJHI_IV
@ LJJHI_IV
Definition: lws-jose.h:50

LJJHI_EPK
@ LJJHI_EPK
Definition: lws-jose.h:47

LJJHI_JWK
@ LJJHI_JWK
Definition: lws-jose.h:28

LJJHI_ENC
@ LJJHI_ENC
Definition: lws-jose.h:44

lws_jose_destroy
LWS_VISIBLE LWS_EXTERN void lws_jose_destroy(struct lws_jose *jose)

lws_gencrypto_jwe_alg_to_definition
LWS_VISIBLE LWS_EXTERN int lws_gencrypto_jwe_alg_to_definition(const char *alg, const struct lws_jose_jwe_alg **jose)

lws_jose_jwe_alg::algtype_crypto
enum lws_jose_algtype algtype_crypto
Definition: lws-jose.h:84

lws_jose::alg
const struct lws_jose_jwe_alg * alg
Definition: lws-jose.h:126

LWS_JWS_MAX_RECIPIENTS
#define LWS_JWS_MAX_RECIPIENTS
Definition: lws-jose.h:104

lws_jws_recpient::jwk
struct lws_jwk jwk
Definition: lws-jose.h:113

lws_jws_recpient::jwk_ephemeral
struct lws_jwk jwk_ephemeral
Definition: lws-jose.h:112

lws_jwe_parse_jose
LWS_VISIBLE LWS_EXTERN int lws_jwe_parse_jose(struct lws_jose *jose, const char *buf, int len, char *temp, int *temp_len)

lws_jose_algtype
lws_jose_algtype
Definition: lws-jose.h:58

LWS_JOSE_ENCTYPE_AES_CFB128
@ LWS_JOSE_ENCTYPE_AES_CFB128
Definition: lws-jose.h:69

LWS_JOSE_ENCTYPE_AES_CTR
@ LWS_JOSE_ENCTYPE_AES_CTR
Definition: lws-jose.h:71

LWS_JOSE_ENCTYPE_AES_ECB
@ LWS_JOSE_ENCTYPE_AES_ECB
Definition: lws-jose.h:72

LWS_JOSE_ENCTYPE_AES_GCM
@ LWS_JOSE_ENCTYPE_AES_GCM
Definition: lws-jose.h:75

LWS_JOSE_ENCTYPE_AES_CFB8
@ LWS_JOSE_ENCTYPE_AES_CFB8
Definition: lws-jose.h:70

LWS_JOSE_ENCTYPE_RSASSA_PKCS1_OAEP
@ LWS_JOSE_ENCTYPE_RSASSA_PKCS1_OAEP
Definition: lws-jose.h:62

LWS_JOSE_ENCTYPE_AES_OFB
@ LWS_JOSE_ENCTYPE_AES_OFB
Definition: lws-jose.h:73

LWS_JOSE_ENCTYPE_NONE
@ LWS_JOSE_ENCTYPE_NONE
Definition: lws-jose.h:59

LWS_JOSE_ENCTYPE_AES_XTS
@ LWS_JOSE_ENCTYPE_AES_XTS
Definition: lws-jose.h:74

LWS_JOSE_ENCTYPE_ECDSA
@ LWS_JOSE_ENCTYPE_ECDSA
Definition: lws-jose.h:65

LWS_JOSE_ENCTYPE_ECDHES
@ LWS_JOSE_ENCTYPE_ECDHES
Definition: lws-jose.h:66

LWS_JOSE_ENCTYPE_RSASSA_PKCS1_PSS
@ LWS_JOSE_ENCTYPE_RSASSA_PKCS1_PSS
Definition: lws-jose.h:63

LWS_JOSE_ENCTYPE_RSASSA_PKCS1_1_5
@ LWS_JOSE_ENCTYPE_RSASSA_PKCS1_1_5
Definition: lws-jose.h:61

LWS_JOSE_ENCTYPE_AES_CBC
@ LWS_JOSE_ENCTYPE_AES_CBC
Definition: lws-jose.h:68

lws_jose::edone
char edone[LWS_COUNT_JOSE_HDR_ELEMENTS]
Definition: lws-jose.h:123

lws_jose_jwe_alg::ivbits
unsigned short ivbits
Definition: lws-jose.h:88

lws_jose::e
struct lws_gencrypto_keyelem e[LWS_COUNT_JOSE_HDR_ELEMENTS]
Definition: lws-jose.h:118

lws_gencrypto_jwe_enc_to_definition
LWS_VISIBLE LWS_EXTERN int lws_gencrypto_jwe_enc_to_definition(const char *enc, const struct lws_jose_jwe_alg **jose)

lws_jws_parse_jose
LWS_VISIBLE LWS_EXTERN int lws_jws_parse_jose(struct lws_jose *jose, const char *buf, int len, char *temp, int *temp_len)

lws_jose_jwe_alg::hash_type
enum lws_genhash_types hash_type
Definition: lws-jose.h:81

lws_jose_jwe_alg::alg
const char * alg
Definition: lws-jose.h:85

lws_jws_recpient::unprot
struct lws_gencrypto_keyelem unprot[LWS_COUNT_JOSE_HDR_ELEMENTS]
Definition: lws-jose.h:111

lws_jose::recipient
struct lws_jws_recpient recipient[LWS_JWS_MAX_RECIPIENTS]
Definition: lws-jose.h:120

lws_jose_jwe_alg::algtype_signing
enum lws_jose_algtype algtype_signing
Definition: lws-jose.h:83

lws_jose::typ
char typ[32]
Definition: lws-jose.h:122

lws_jose_jwe_alg::keybits_min
unsigned short keybits_min
Definition: lws-jose.h:87

lws_jose
Definition: lws-jose.h:116

lws_jose_jwe_alg
Definition: lws-jose.h:80

lws_jws_recpient
Definition: lws-jose.h:106