[thirdparty/openssl.git] / providers / implementations / keymgmt / dh_kmgmt.c

/*
 * Copyright 2019 The OpenSSL Project Authors. All Rights Reserved.
 *
 * Licensed under the Apache License 2.0 (the "License").  You may not use
 * this file except in compliance with the License.  You can obtain a copy
 * in the file LICENSE in the source distribution or at
 * https://www.openssl.org/source/license.html
 */

#include <openssl/core_numbers.h>
#include <openssl/core_names.h>
#include <openssl/bn.h>
#include <openssl/dh.h>
#include <openssl/params.h>
#include "internal/provider_algs.h"

static OSSL_OP_keymgmt_importkey_fn dh_importkey;

static int params_to_key(DH *dh, const OSSL_PARAM params[])
{
    const OSSL_PARAM *param_p, *param_g, *param_priv_key, *param_pub_key;
    BIGNUM *p = NULL, *g = NULL, *priv_key = NULL, *pub_key = NULL;

    if (dh == NULL)
        return 0;

    param_p = OSSL_PARAM_locate_const(params, OSSL_PKEY_PARAM_FFC_P);
    param_g = OSSL_PARAM_locate_const(params, OSSL_PKEY_PARAM_FFC_G);
    param_priv_key =
        OSSL_PARAM_locate_const(params, OSSL_PKEY_PARAM_DH_PRIV_KEY);
    param_pub_key =
        OSSL_PARAM_locate_const(params, OSSL_PKEY_PARAM_DH_PUB_KEY);

    /*
     * DH documentation says that a public key must be present if a
     * private key is present.
     * We want to have at least a public key either way, so we end up
     * requiring it unconditionally.
     */
    if (param_pub_key == NULL)
        return 0;

    if ((param_p != NULL && !OSSL_PARAM_get_BN(param_p, &p))
        || (param_g != NULL && !OSSL_PARAM_get_BN(param_g, &g))
        || (param_priv_key != NULL
            && !OSSL_PARAM_get_BN(param_priv_key, &priv_key))
        || !OSSL_PARAM_get_BN(param_pub_key, &pub_key))
        goto err;

    if (!DH_set0_pqg(dh, p, NULL, g))
        goto err;
    p = g = NULL;

    if (!DH_set0_key(dh, pub_key, priv_key))
        goto err;
    priv_key = pub_key = NULL;

    return 1;

 err:
    BN_free(p);
    BN_free(g);
    BN_free(priv_key);
    BN_free(pub_key);
    return 0;
}

static void *dh_importkey(void *provctx, const OSSL_PARAM params[])
{
    DH *dh;

    if ((dh = DH_new()) == NULL
        || !params_to_key(dh, params)) {
        DH_free(dh);
        dh = NULL;
    }
    return dh;
}

const OSSL_DISPATCH dh_keymgmt_functions[] = {
    /*
     * TODO(3.0) When implementing OSSL_FUNC_KEYMGMT_GENKEY, remember to also
     * implement OSSL_FUNC_KEYMGMT_EXPORTKEY.
     */
    { OSSL_FUNC_KEYMGMT_IMPORTKEY, (void (*)(void))dh_importkey },
    { OSSL_FUNC_KEYMGMT_FREEKEY, (void (*)(void))DH_free },
    { 0, NULL }
};
Commit	Line	Data
8b84b075 RL	1	/*
	2	* Copyright 2019 The OpenSSL Project Authors. All Rights Reserved.
	3	*
	4	* Licensed under the Apache License 2.0 (the "License"). You may not use
	5	* this file except in compliance with the License. You can obtain a copy
	6	* in the file LICENSE in the source distribution or at
	7	* https://www.openssl.org/source/license.html
	8	*/
	9
	10	#include <openssl/core_numbers.h>
	11	#include <openssl/core_names.h>
	12	#include <openssl/bn.h>
	13	#include <openssl/dh.h>
	14	#include <openssl/params.h>
	15	#include "internal/provider_algs.h"
	16
	17	static OSSL_OP_keymgmt_importkey_fn dh_importkey;
	18
	19	static int params_to_key(DH *dh, const OSSL_PARAM params[])
	20	{
	21	const OSSL_PARAM param_p, param_g, param_priv_key, param_pub_key;
	22	BIGNUM p = NULL, g = NULL, priv_key = NULL, pub_key = NULL;
	23
	24	if (dh == NULL)
	25	return 0;
	26
4889dadc MC	27	param_p = OSSL_PARAM_locate_const(params, OSSL_PKEY_PARAM_FFC_P);
4889dadc MC	28	param_g = OSSL_PARAM_locate_const(params, OSSL_PKEY_PARAM_FFC_G);
8b84b075 RL	29	param_priv_key =
	30	OSSL_PARAM_locate_const(params, OSSL_PKEY_PARAM_DH_PRIV_KEY);
	31	param_pub_key =
	32	OSSL_PARAM_locate_const(params, OSSL_PKEY_PARAM_DH_PUB_KEY);
	33
	34	/*
	35	* DH documentation says that a public key must be present if a
	36	* private key is present.
	37	* We want to have at least a public key either way, so we end up
	38	* requiring it unconditionally.
	39	*/
	40	if (param_pub_key == NULL)
	41	return 0;
	42
	43	if ((param_p != NULL && !OSSL_PARAM_get_BN(param_p, &p))
	44	\|\| (param_g != NULL && !OSSL_PARAM_get_BN(param_g, &g))
	45	\|\| (param_priv_key != NULL
	46	&& !OSSL_PARAM_get_BN(param_priv_key, &priv_key))
	47	\|\| !OSSL_PARAM_get_BN(param_pub_key, &pub_key))
	48	goto err;
	49
	50	if (!DH_set0_pqg(dh, p, NULL, g))
	51	goto err;
	52	p = g = NULL;
	53
	54	if (!DH_set0_key(dh, pub_key, priv_key))
	55	goto err;
	56	priv_key = pub_key = NULL;
	57
	58	return 1;
	59
	60	err:
	61	BN_free(p);
	62	BN_free(g);
	63	BN_free(priv_key);
	64	BN_free(pub_key);
	65	return 0;
	66	}
	67
	68	static void dh_importkey(void provctx, const OSSL_PARAM params[])
	69	{
	70	DH *dh;
	71
	72	if ((dh = DH_new()) == NULL
	73	\|\| !params_to_key(dh, params)) {
	74	DH_free(dh);
	75	dh = NULL;
	76	}
	77	return dh;
	78	}
	79
	80	const OSSL_DISPATCH dh_keymgmt_functions[] = {
	81	/*
	82	* TODO(3.0) When implementing OSSL_FUNC_KEYMGMT_GENKEY, remember to also
	83	* implement OSSL_FUNC_KEYMGMT_EXPORTKEY.
	84	*/
	85	{ OSSL_FUNC_KEYMGMT_IMPORTKEY, (void (*)(void))dh_importkey },
	86	{ OSSL_FUNC_KEYMGMT_FREEKEY, (void (*)(void))DH_free },
	87	{ 0, NULL }
	88	};