| blob | c99b2b6cbe95da6d908e010a892cf8686929fad2 |
1 /*
2 * Copyright (c) 2006 - 2008 Kungliga Tekniska Högskolan
3 * (Royal Institute of Technology, Stockholm, Sweden).
4 * All rights reserved.
5 *
6 * Redistribution and use in source and binary forms, with or without
7 * modification, are permitted provided that the following conditions
8 * are met:
9 *
10 * 1. Redistributions of source code must retain the above copyright
11 * notice, this list of conditions and the following disclaimer.
12 *
13 * 2. Redistributions in binary form must reproduce the above copyright
14 * notice, this list of conditions and the following disclaimer in the
15 * documentation and/or other materials provided with the distribution.
16 *
17 * 3. Neither the name of the Institute nor the names of its contributors
18 * may be used to endorse or promote products derived from this software
19 * without specific prior written permission.
20 *
21 * THIS SOFTWARE IS PROVIDED BY THE INSTITUTE AND CONTRIBUTORS ``AS IS'' AND
22 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
23 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
24 * ARE DISCLAIMED. IN NO EVENT SHALL THE INSTITUTE OR CONTRIBUTORS BE LIABLE
25 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
26 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
27 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
28 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
29 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
30 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
31 * SUCH DAMAGE.
32 */
34 #include <config.h>
35 #include <roken.h>
36 #include <krb5-types.h>
37 #include <rfc2459_asn1.h>
39 #include <der.h>
41 #include <rsa.h>
45 /**
46 * @page page_rsa RSA - public-key cryptography
47 *
48 * RSA is named by its inventors (Ron Rivest, Adi Shamir, and Leonard
49 * Adleman) (published in 1977), patented expired in 21 September 2000.
50 *
51 *
52 * Speed for RSA in seconds
53 * no key blinding
54 * 1000 iteration,
55 * same rsa keys (1024 and 2048)
56 * operation performed each eteration sign, verify, encrypt, decrypt on a random bit pattern
57 *
58 * name 1024 2048 4098
59 * =================================
60 * gmp: 0.73 6.60 44.80
61 * tfm: 2.45 -- --
62 * ltm: 3.79 20.74 105.41 (default in hcrypto)
63 * openssl: 4.04 11.90 82.59
64 * cdsa: 15.89 102.89 721.40
65 * imath: 40.62 -- --
66 *
67 * See the library functions here: @ref hcrypto_rsa
68 */
70 /**
71 * Same as RSA_new_method() using NULL as engine.
72 *
73 * @return a newly allocated RSA object. Free with RSA_free().
74 *
75 * @ingroup hcrypto_rsa
76 */
78 RSA *
80 {
82 }
84 /**
85 * Allocate a new RSA object using the engine, if NULL is specified as
86 * the engine, use the default RSA engine as returned by
87 * ENGINE_get_default_RSA().
88 *
89 * @param engine Specific what ENGINE RSA provider should be used.
90 *
91 * @return a newly allocated RSA object. Free with RSA_free().
92 *
93 * @ingroup hcrypto_rsa
94 */
96 RSA *
98 {
112 }
120 }
121 }
129 }
131 /**
132 * Free an allocation RSA object.
133 *
134 * @param rsa the RSA object to free.
135 * @ingroup hcrypto_rsa
136 */
138 void
140 {
152 #define free_if(f) if (f) { BN_free(f); }
161 #undef free_if
165 }
167 /**
168 * Add an extra reference to the RSA object. The object should be free
169 * with RSA_free() to drop the reference.
170 *
171 * @param rsa the object to add reference counting too.
172 *
173 * @return the current reference count, can't safely be used except
174 * for debug printing.
175 *
176 * @ingroup hcrypto_rsa
177 */
179 int
181 {
183 }
185 /**
186 * Return the RSA_METHOD used for this RSA object.
187 *
188 * @param rsa the object to get the method from.
189 *
190 * @return the method used for this RSA object.
191 *
192 * @ingroup hcrypto_rsa
193 */
197 {
199 }
201 /**
202 * Set a new method for the RSA keypair.
203 *
204 * @param rsa rsa parameter.
205 * @param method the new method for the RSA parameter.
206 *
207 * @return 1 on success.
208 *
209 * @ingroup hcrypto_rsa
210 */
212 int
214 {
220 }
225 }
227 /**
228 * Set the application data for the RSA object.
229 *
230 * @param rsa the rsa object to set the parameter for
231 * @param arg the data object to store
232 *
233 * @return 1 on success.
234 *
235 * @ingroup hcrypto_rsa
236 */
238 int
240 {
243 }
245 /**
246 * Get the application data for the RSA object.
247 *
248 * @param rsa the rsa object to get the parameter for
249 *
250 * @return the data object
251 *
252 * @ingroup hcrypto_rsa
253 */
257 {
259 }
261 int
263 {
269 /*
270 * XXX I have no clue how to implement this w/o a bignum library.
271 * Well, when we have a RSA key pair, we can try to encrypt/sign
272 * and then decrypt/verify.
273 */
288 }
295 }
300 }
303 }
305 int
307 {
309 }
311 #define RSAFUNC(name, body) \
312 int \
313 name(int flen,const unsigned char* f, unsigned char* t, RSA* r, int p){\
314 return body; \
315 }
327 };
331 };
335 };
338 int
341 {
346 heim_octet_string indata;
347 DigestInfo di;
370 ret);
386 }
389 }
391 int
394 {
401 DigestInfo di;
415 }
424 }
429 }
440 }
449 }
452 }
454 /*
455 * A NULL RSA_METHOD that returns failure for all operations. This is
456 * used as the default RSA method if we don't have any native
457 * support.
458 */
465 /*
466 *
467 */
469 int
471 {
475 }
478 /*
479 *
480 */
482 static int
484 {
486 }
488 static int
490 {
492 }
496 null_rsa_public_encrypt,
497 null_rsa_public_decrypt,
498 null_rsa_private_encrypt,
499 null_rsa_private_decrypt,
500 NULL,
501 NULL,
502 null_rsa_init,
503 null_rsa_finish,
505 NULL,
506 NULL,
507 NULL,
508 NULL
509 };
513 {
515 }
525 {
527 }
529 void
531 {
533 }
535 /*
536 *
537 */
539 RSA *
541 {
542 RSAPrivateKey data;
558 }
559 }
573 {
576 }
579 }
581 int
583 {
584 RSAPrivateKey data;
606 }
627 }
629 }
631 int
633 {
634 RSAPublicKey data;
642 {
645 }
665 }
668 }
670 RSA *
672 {
673 RSAPublicKey data;
689 }
690 }
700 }
703 }