| blob | c71ded1b7a8bb0f2e6f6cdb55923b243afaeeede |
1 /*
2 * Copyright (c) 2006 - 2008 Kungliga Tekniska Högskolan
3 * (Royal Institute of Technology, Stockholm, Sweden).
4 * All rights reserved.
5 *
6 * Redistribution and use in source and binary forms, with or without
7 * modification, are permitted provided that the following conditions
8 * are met:
9 *
10 * 1. Redistributions of source code must retain the above copyright
11 * notice, this list of conditions and the following disclaimer.
12 *
13 * 2. Redistributions in binary form must reproduce the above copyright
14 * notice, this list of conditions and the following disclaimer in the
15 * documentation and/or other materials provided with the distribution.
16 *
17 * 3. Neither the name of the Institute nor the names of its contributors
18 * may be used to endorse or promote products derived from this software
19 * without specific prior written permission.
20 *
21 * THIS SOFTWARE IS PROVIDED BY THE INSTITUTE AND CONTRIBUTORS ``AS IS'' AND
22 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
23 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
24 * ARE DISCLAIMED. IN NO EVENT SHALL THE INSTITUTE OR CONTRIBUTORS BE LIABLE
25 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
26 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
27 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
28 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
29 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
30 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
31 * SUCH DAMAGE.
32 */
34 #include <config.h>
36 #include <stdio.h>
37 #include <stdlib.h>
38 #include <krb5-types.h>
39 #include <rfc2459_asn1.h>
41 #include <der.h>
43 #include <rsa.h>
47 #include <roken.h>
49 /**
50 * @page page_rsa RSA - public-key cryptography
51 *
52 * RSA is named by its inventors (Ron Rivest, Adi Shamir, and Leonard
53 * Adleman) (published in 1977), patented expired in 21 September 2000.
54 *
55 *
56 * Speed for RSA in seconds
57 * no key blinding
58 * 1000 iteration,
59 * same rsa keys (1024 and 2048)
60 * operation performed each eteration sign, verify, encrypt, decrypt on a random bit pattern
61 *
62 * name 1024 2048 4098
63 * =================================
64 * gmp: 0.73 6.60 44.80
65 * tfm: 2.45 -- --
66 * ltm: 3.79 20.74 105.41 (default in hcrypto)
67 * openssl: 4.04 11.90 82.59
68 * cdsa: 15.89 102.89 721.40
69 * imath: 40.62 -- --
70 *
71 * See the library functions here: @ref hcrypto_rsa
72 */
74 /**
75 * Same as RSA_new_method() using NULL as engine.
76 *
77 * @return a newly allocated RSA object. Free with RSA_free().
78 *
79 * @ingroup hcrypto_rsa
80 */
82 RSA *
84 {
86 }
88 /**
89 * Allocate a new RSA object using the engine, if NULL is specified as
90 * the engine, use the default RSA engine as returned by
91 * ENGINE_get_default_RSA().
92 *
93 * @param engine Specific what ENGINE RSA provider should be used.
94 *
95 * @return a newly allocated RSA object. Free with RSA_free().
96 *
97 * @ingroup hcrypto_rsa
98 */
100 RSA *
102 {
116 }
124 }
125 }
133 }
135 /**
136 * Free an allocation RSA object.
137 *
138 * @param rsa the RSA object to free.
139 * @ingroup hcrypto_rsa
140 */
142 void
144 {
156 #define free_if(f) if (f) { BN_free(f); }
165 #undef free_if
169 }
171 /**
172 * Add an extra reference to the RSA object. The object should be free
173 * with RSA_free() to drop the reference.
174 *
175 * @param rsa the object to add reference counting too.
176 *
177 * @return the current reference count, can't safely be used except
178 * for debug printing.
179 *
180 * @ingroup hcrypto_rsa
181 */
183 int
185 {
187 }
189 /**
190 * Return the RSA_METHOD used for this RSA object.
191 *
192 * @param rsa the object to get the method from.
193 *
194 * @return the method used for this RSA object.
195 *
196 * @ingroup hcrypto_rsa
197 */
201 {
203 }
205 /**
206 * Set a new method for the RSA keypair.
207 *
208 * @param rsa rsa parameter.
209 * @param method the new method for the RSA parameter.
210 *
211 * @return 1 on success.
212 *
213 * @ingroup hcrypto_rsa
214 */
216 int
218 {
224 }
229 }
231 /**
232 * Set the application data for the RSA object.
233 *
234 * @param rsa the rsa object to set the parameter for
235 * @param arg the data object to store
236 *
237 * @return 1 on success.
238 *
239 * @ingroup hcrypto_rsa
240 */
242 int
244 {
247 }
249 /**
250 * Get the application data for the RSA object.
251 *
252 * @param rsa the rsa object to get the parameter for
253 *
254 * @return the data object
255 *
256 * @ingroup hcrypto_rsa
257 */
261 {
263 }
265 int
267 {
273 /*
274 * XXX I have no clue how to implement this w/o a bignum library.
275 * Well, when we have a RSA key pair, we can try to encrypt/sign
276 * and then decrypt/verify.
277 */
292 }
299 }
304 }
307 }
309 int
311 {
313 }
315 #define RSAFUNC(name, body) \
316 int \
317 name(int flen,const unsigned char* f, unsigned char* t, RSA* r, int p){\
318 return body; \
319 }
331 };
335 };
339 };
342 int
345 {
350 heim_octet_string indata;
351 DigestInfo di;
374 ret);
390 }
393 }
395 int
398 {
405 DigestInfo di;
419 }
428 }
433 }
444 }
453 }
456 }
458 /*
459 * A NULL RSA_METHOD that returns failure for all operations. This is
460 * used as the default RSA method if we don't have any native
461 * support.
462 */
469 /*
470 *
471 */
473 int
475 {
479 }
482 /*
483 *
484 */
486 static int
488 {
490 }
492 static int
494 {
496 }
500 null_rsa_public_encrypt,
501 null_rsa_public_decrypt,
502 null_rsa_private_encrypt,
503 null_rsa_private_decrypt,
504 NULL,
505 NULL,
506 null_rsa_init,
507 null_rsa_finish,
509 NULL,
510 NULL,
511 NULL
512 };
516 {
518 }
528 {
530 }
532 void
534 {
536 }
538 /*
539 *
540 */
542 RSA *
544 {
545 RSAPrivateKey data;
561 }
562 }
576 {
579 }
582 }
584 int
586 {
587 RSAPrivateKey data;
609 }
630 }
632 }
634 int
636 {
637 RSAPublicKey data;
645 {
648 }
668 }
671 }
673 RSA *
675 {
676 RSAPublicKey data;
692 }
693 }
703 }
706 }