[thirdparty/openssl.git] / include / crypto / ecx.h

/*
 * Copyright 2020-2021 The OpenSSL Project Authors. All Rights Reserved.
 *
 * Licensed under the Apache License 2.0 (the "License").  You may not use
 * this file except in compliance with the License.  You can obtain a copy
 * in the file LICENSE in the source distribution or at
 * https://www.openssl.org/source/license.html
 */

/* Internal EC functions for other submodules: not for application use */

#ifndef OSSL_CRYPTO_ECX_H
# define OSSL_CRYPTO_ECX_H
# pragma once

# include <openssl/opensslconf.h>

# ifndef OPENSSL_NO_ECX

#  include <openssl/core.h>
#  include <openssl/e_os2.h>
#  include <openssl/crypto.h>
#  include "internal/refcount.h"
#  include "crypto/types.h"

#  define X25519_KEYLEN         32
#  define X448_KEYLEN           56
#  define ED25519_KEYLEN        32
#  define ED448_KEYLEN          57

#  define MAX_KEYLEN  ED448_KEYLEN

#  define X25519_BITS           253
#  define X25519_SECURITY_BITS  128

#  define X448_BITS             448
#  define X448_SECURITY_BITS    224

#  define ED25519_BITS          256
/* RFC8032 Section 8.5 */
#  define ED25519_SECURITY_BITS 128
#  define ED25519_SIGSIZE       64

#  define ED448_BITS            456
/* RFC8032 Section 8.5 */
#  define ED448_SECURITY_BITS   224
#  define ED448_SIGSIZE         114


typedef enum {
    ECX_KEY_TYPE_X25519,
    ECX_KEY_TYPE_X448,
    ECX_KEY_TYPE_ED25519,
    ECX_KEY_TYPE_ED448
} ECX_KEY_TYPE;

#define KEYTYPE2NID(type) \
    ((type) == ECX_KEY_TYPE_X25519 \
     ?  EVP_PKEY_X25519 \
     : ((type) == ECX_KEY_TYPE_X448 \
        ? EVP_PKEY_X448 \
        : ((type) == ECX_KEY_TYPE_ED25519 \
           ? EVP_PKEY_ED25519 \
           : EVP_PKEY_ED448)))

struct ecx_key_st {
    OSSL_LIB_CTX *libctx;
    char *propq;
    unsigned int haspubkey:1;
    unsigned char pubkey[MAX_KEYLEN];
    unsigned char *privkey;
    size_t keylen;
    ECX_KEY_TYPE type;
    CRYPTO_REF_COUNT references;
    CRYPTO_RWLOCK *lock;
};

size_t ossl_ecx_key_length(ECX_KEY_TYPE type);
ECX_KEY *ossl_ecx_key_new(OSSL_LIB_CTX *libctx, ECX_KEY_TYPE type,
                          int haspubkey, const char *propq);
void ossl_ecx_key_set0_libctx(ECX_KEY *key, OSSL_LIB_CTX *libctx);
unsigned char *ossl_ecx_key_allocate_privkey(ECX_KEY *key);
void ossl_ecx_key_free(ECX_KEY *key);
int ossl_ecx_key_up_ref(ECX_KEY *key);
ECX_KEY *ossl_ecx_key_dup(const ECX_KEY *key, int selection);
int ossl_ecx_compute_key(ECX_KEY *peer, ECX_KEY *priv, size_t keylen,
                         unsigned char *secret, size_t *secretlen,
                         size_t outlen);

int ossl_x25519(uint8_t out_shared_key[32], const uint8_t private_key[32],
                const uint8_t peer_public_value[32]);
void ossl_x25519_public_from_private(uint8_t out_public_value[32],
                                     const uint8_t private_key[32]);

int
ossl_ed25519_public_from_private(OSSL_LIB_CTX *ctx, uint8_t out_public_key[32],
                                 const uint8_t private_key[32],
                                 const char *propq);
int
ossl_ed25519_sign(uint8_t *out_sig, const uint8_t *tbs, size_t tbs_len,
                  const uint8_t public_key[32], const uint8_t private_key[32],
                  const uint8_t dom2flag, const uint8_t phflag, const uint8_t csflag,
                  const uint8_t *context, size_t context_len,
                  OSSL_LIB_CTX *libctx, const char *propq);
int
ossl_ed25519_verify(const uint8_t *tbs, size_t tbs_len,
                    const uint8_t signature[64], const uint8_t public_key[32],
                    const uint8_t dom2flag, const uint8_t phflag, const uint8_t csflag,
                    const uint8_t *context, size_t context_len,
                    OSSL_LIB_CTX *libctx, const char *propq);
int
ossl_ed448_public_from_private(OSSL_LIB_CTX *ctx, uint8_t out_public_key[57],
                               const uint8_t private_key[57], const char *propq);
int
ossl_ed448_sign(OSSL_LIB_CTX *ctx, uint8_t *out_sig,
                const uint8_t *message, size_t message_len,
                const uint8_t public_key[57], const uint8_t private_key[57],
                const uint8_t *context, size_t context_len,
                const uint8_t phflag, const char *propq);

int
ossl_ed448_verify(OSSL_LIB_CTX *ctx,
                  const uint8_t *message, size_t message_len,
                  const uint8_t signature[114], const uint8_t public_key[57],
                  const uint8_t *context, size_t context_len,
                  const uint8_t phflag, const char *propq);

int
ossl_x448(uint8_t out_shared_key[56], const uint8_t private_key[56],
          const uint8_t peer_public_value[56]);
void
ossl_x448_public_from_private(uint8_t out_public_value[56],
                              const uint8_t private_key[56]);


/* Backend support */
typedef enum {
    KEY_OP_PUBLIC,
    KEY_OP_PRIVATE,
    KEY_OP_KEYGEN
} ecx_key_op_t;

ECX_KEY *ossl_ecx_key_op(const X509_ALGOR *palg,
                         const unsigned char *p, int plen,
                         int pkey_id, ecx_key_op_t op,
                         OSSL_LIB_CTX *libctx, const char *propq);

int ossl_ecx_public_from_private(ECX_KEY *key);
int ossl_ecx_key_fromdata(ECX_KEY *ecx, const OSSL_PARAM params[],
                          int include_private);
ECX_KEY *ossl_ecx_key_from_pkcs8(const PKCS8_PRIV_KEY_INFO *p8inf,
                                 OSSL_LIB_CTX *libctx, const char *propq);

ECX_KEY *ossl_evp_pkey_get1_X25519(EVP_PKEY *pkey);
ECX_KEY *ossl_evp_pkey_get1_X448(EVP_PKEY *pkey);
ECX_KEY *ossl_evp_pkey_get1_ED25519(EVP_PKEY *pkey);
ECX_KEY *ossl_evp_pkey_get1_ED448(EVP_PKEY *pkey);
# endif /* OPENSSL_NO_ECX */
#endif
Commit	Line	Data
4de88fe6	1	/*
a28d06f3	2	* Copyright 2020-2021 The OpenSSL Project Authors. All Rights Reserved.
4de88fe6 MC	3	*
	4	* Licensed under the Apache License 2.0 (the "License"). You may not use
	5	* this file except in compliance with the License. You can obtain a copy
	6	* in the file LICENSE in the source distribution or at
	7	* https://www.openssl.org/source/license.html
	8	*/
	9
	10	/* Internal EC functions for other submodules: not for application use */
	11
	12	#ifndef OSSL_CRYPTO_ECX_H
	13	# define OSSL_CRYPTO_ECX_H
80ce21fe F	14	# pragma once
80ce21fe F	15
4de88fe6 MC	16	# include <openssl/opensslconf.h>
4de88fe6 MC	17
4032cd9a	18	# ifndef OPENSSL_NO_ECX
4de88fe6	19
0abae163	20	# include <openssl/core.h>
4de88fe6 MC	21	# include <openssl/e_os2.h>
	22	# include <openssl/crypto.h>
	23	# include "internal/refcount.h"
cf333799	24	# include "crypto/types.h"
4de88fe6	25
af6d8dd3 MC	26	# define X25519_KEYLEN 32
	27	# define X448_KEYLEN 56
	28	# define ED25519_KEYLEN 32
	29	# define ED448_KEYLEN 57
4de88fe6 MC	30
	31	# define MAX_KEYLEN ED448_KEYLEN
	32
af6d8dd3 MC	33	# define X25519_BITS 253
af6d8dd3 MC	34	# define X25519_SECURITY_BITS 128
4de88fe6	35
af6d8dd3 MC	36	# define X448_BITS 448
af6d8dd3 MC	37	# define X448_SECURITY_BITS 224
4de88fe6	38
af6d8dd3 MC	39	# define ED25519_BITS 256
	40	/* RFC8032 Section 8.5 */
	41	# define ED25519_SECURITY_BITS 128
	42	# define ED25519_SIGSIZE 64
4de88fe6	43
af6d8dd3 MC	44	# define ED448_BITS 456
	45	/* RFC8032 Section 8.5 */
	46	# define ED448_SECURITY_BITS 224
	47	# define ED448_SIGSIZE 114
4de88fe6	48
244bc297 MC	49
	50	typedef enum {
	51	ECX_KEY_TYPE_X25519,
	52	ECX_KEY_TYPE_X448,
	53	ECX_KEY_TYPE_ED25519,
	54	ECX_KEY_TYPE_ED448
	55	} ECX_KEY_TYPE;
	56
	57	#define KEYTYPE2NID(type) \
	58	((type) == ECX_KEY_TYPE_X25519 \
	59	? EVP_PKEY_X25519 \
	60	: ((type) == ECX_KEY_TYPE_X448 \
	61	? EVP_PKEY_X448 \
	62	: ((type) == ECX_KEY_TYPE_ED25519 \
	63	? EVP_PKEY_ED25519 \
	64	: EVP_PKEY_ED448)))
	65
4de88fe6	66	struct ecx_key_st {
b4250010	67	OSSL_LIB_CTX *libctx;
8dbef010	68	char *propq;
4de88fe6 MC	69	unsigned int haspubkey:1;
	70	unsigned char pubkey[MAX_KEYLEN];
	71	unsigned char *privkey;
	72	size_t keylen;
244bc297	73	ECX_KEY_TYPE type;
4de88fe6 MC	74	CRYPTO_REF_COUNT references;
	75	CRYPTO_RWLOCK *lock;
	76	};
	77
cf333799	78	size_t ossl_ecx_key_length(ECX_KEY_TYPE type);
32ab57cb SL	79	ECX_KEY ossl_ecx_key_new(OSSL_LIB_CTX libctx, ECX_KEY_TYPE type,
	80	int haspubkey, const char *propq);
	81	void ossl_ecx_key_set0_libctx(ECX_KEY key, OSSL_LIB_CTX libctx);
	82	unsigned char ossl_ecx_key_allocate_privkey(ECX_KEY key);
	83	void ossl_ecx_key_free(ECX_KEY *key);
	84	int ossl_ecx_key_up_ref(ECX_KEY *key);
b4f447c0	85	ECX_KEY ossl_ecx_key_dup(const ECX_KEY key, int selection);
78c44b05	86	int ossl_ecx_compute_key(ECX_KEY peer, ECX_KEY priv, size_t keylen,
	87	unsigned char secret, size_t secretlen,
	88	size_t outlen);
4de88fe6	89
054d43ff SL	90	int ossl_x25519(uint8_t out_shared_key[32], const uint8_t private_key[32],
	91	const uint8_t peer_public_value[32]);
	92	void ossl_x25519_public_from_private(uint8_t out_public_value[32],
	93	const uint8_t private_key[32]);
	94
	95	int
	96	ossl_ed25519_public_from_private(OSSL_LIB_CTX *ctx, uint8_t out_public_key[32],
	97	const uint8_t private_key[32],
	98	const char *propq);
	99	int
836080a8	100	ossl_ed25519_sign(uint8_t out_sig, const uint8_t tbs, size_t tbs_len,
054d43ff	101	const uint8_t public_key[32], const uint8_t private_key[32],
836080a8 JM	102	const uint8_t dom2flag, const uint8_t phflag, const uint8_t csflag,
836080a8 JM	103	const uint8_t *context, size_t context_len,
054d43ff SL	104	OSSL_LIB_CTX libctx, const char propq);
054d43ff SL	105	int
836080a8	106	ossl_ed25519_verify(const uint8_t *tbs, size_t tbs_len,
054d43ff	107	const uint8_t signature[64], const uint8_t public_key[32],
836080a8 JM	108	const uint8_t dom2flag, const uint8_t phflag, const uint8_t csflag,
836080a8 JM	109	const uint8_t *context, size_t context_len,
054d43ff	110	OSSL_LIB_CTX libctx, const char propq);
054d43ff SL	111	int
	112	ossl_ed448_public_from_private(OSSL_LIB_CTX *ctx, uint8_t out_public_key[57],
	113	const uint8_t private_key[57], const char *propq);
	114	int
836080a8 JM	115	ossl_ed448_sign(OSSL_LIB_CTX ctx, uint8_t out_sig,
	116	const uint8_t *message, size_t message_len,
	117	const uint8_t public_key[57], const uint8_t private_key[57],
	118	const uint8_t *context, size_t context_len,
	119	const uint8_t phflag, const char *propq);
054d43ff SL	120
054d43ff SL	121	int
836080a8 JM	122	ossl_ed448_verify(OSSL_LIB_CTX *ctx,
836080a8 JM	123	const uint8_t *message, size_t message_len,
054d43ff	124	const uint8_t signature[114], const uint8_t public_key[57],
836080a8 JM	125	const uint8_t *context, size_t context_len,
836080a8 JM	126	const uint8_t phflag, const char *propq);
054d43ff SL	127
	128	int
	129	ossl_x448(uint8_t out_shared_key[56], const uint8_t private_key[56],
	130	const uint8_t peer_public_value[56]);
	131	void
	132	ossl_x448_public_from_private(uint8_t out_public_value[56],
4de88fe6 MC	133	const uint8_t private_key[56]);
4de88fe6 MC	134
25b16562	135
0abae163	136	/* Backend support */
cf333799 RL	137	typedef enum {
	138	KEY_OP_PUBLIC,
	139	KEY_OP_PRIVATE,
	140	KEY_OP_KEYGEN
	141	} ecx_key_op_t;
	142
	143	ECX_KEY ossl_ecx_key_op(const X509_ALGOR palg,
	144	const unsigned char *p, int plen,
	145	int pkey_id, ecx_key_op_t op,
	146	OSSL_LIB_CTX libctx, const char propq);
	147
32ab57cb SL	148	int ossl_ecx_public_from_private(ECX_KEY *key);
	149	int ossl_ecx_key_fromdata(ECX_KEY *ecx, const OSSL_PARAM params[],
	150	int include_private);
cf333799 RL	151	ECX_KEY ossl_ecx_key_from_pkcs8(const PKCS8_PRIV_KEY_INFO p8inf,
cf333799 RL	152	OSSL_LIB_CTX libctx, const char propq);
32ab57cb SL	153
	154	ECX_KEY ossl_evp_pkey_get1_X25519(EVP_PKEY pkey);
	155	ECX_KEY ossl_evp_pkey_get1_X448(EVP_PKEY pkey);
	156	ECX_KEY ossl_evp_pkey_get1_ED25519(EVP_PKEY pkey);
	157	ECX_KEY ossl_evp_pkey_get1_ED448(EVP_PKEY pkey);
4032cd9a	158	# endif /* OPENSSL_NO_ECX */
4de88fe6	159	#endif