mirror of
https://github.com/LadybirdBrowser/ladybird.git
synced 2025-04-24 21:45:20 +00:00
353 lines
9.7 KiB
C++
353 lines
9.7 KiB
C++
/*
|
|
* Copyright (c) 2020, Ali Mohammad Pur <mpfard@serenityos.org>
|
|
* Copyright (c) 2022, the SerenityOS developers.
|
|
*
|
|
* SPDX-License-Identifier: BSD-2-Clause
|
|
*/
|
|
|
|
#pragma once
|
|
|
|
#include <LibCrypto/ASN1/DER.h>
|
|
#include <LibCrypto/BigInt/UnsignedBigInteger.h>
|
|
#include <LibCrypto/Hash/HashManager.h>
|
|
#include <LibCrypto/OpenSSL.h>
|
|
#include <LibCrypto/PK/PK.h>
|
|
|
|
namespace Crypto::PK {
|
|
|
|
template<typename Integer = UnsignedBigInteger>
|
|
class RSAPublicKey {
|
|
public:
|
|
RSAPublicKey(Integer n, Integer e)
|
|
: m_modulus(move(n))
|
|
, m_public_exponent(move(e))
|
|
, m_length(m_modulus.trimmed_length() * sizeof(u32))
|
|
{
|
|
}
|
|
|
|
RSAPublicKey()
|
|
: m_modulus(0)
|
|
, m_public_exponent(0)
|
|
{
|
|
}
|
|
|
|
Integer const& modulus() const { return m_modulus; }
|
|
Integer const& public_exponent() const { return m_public_exponent; }
|
|
size_t length() const { return m_length; }
|
|
void set_length(size_t length) { m_length = length; }
|
|
|
|
ErrorOr<ByteBuffer> export_as_der() const
|
|
{
|
|
ASN1::Encoder encoder;
|
|
TRY(encoder.write_constructed(ASN1::Class::Universal, ASN1::Kind::Sequence, [&]() -> ErrorOr<void> {
|
|
TRY(encoder.write(m_modulus));
|
|
TRY(encoder.write(m_public_exponent));
|
|
return {};
|
|
}));
|
|
|
|
return encoder.finish();
|
|
}
|
|
|
|
void set(Integer n, Integer e)
|
|
{
|
|
m_modulus = move(n);
|
|
m_public_exponent = move(e);
|
|
m_length = (m_modulus.trimmed_length() * sizeof(u32));
|
|
}
|
|
|
|
private:
|
|
Integer m_modulus;
|
|
Integer m_public_exponent;
|
|
size_t m_length { 0 };
|
|
};
|
|
|
|
template<typename Integer = UnsignedBigInteger>
|
|
class RSAPrivateKey {
|
|
public:
|
|
RSAPrivateKey(Integer n, Integer d, Integer e)
|
|
: m_modulus(move(n))
|
|
, m_private_exponent(move(d))
|
|
, m_public_exponent(move(e))
|
|
, m_length(m_modulus.trimmed_length() * sizeof(u32))
|
|
{
|
|
}
|
|
|
|
RSAPrivateKey(Integer n, Integer d, Integer e, Integer p, Integer q, Integer dp, Integer dq, Integer qinv)
|
|
: m_modulus(move(n))
|
|
, m_private_exponent(move(d))
|
|
, m_public_exponent(move(e))
|
|
, m_prime_1(move(p))
|
|
, m_prime_2(move(q))
|
|
, m_exponent_1(move(dp))
|
|
, m_exponent_2(move(dq))
|
|
, m_coefficient(move(qinv))
|
|
, m_length(m_modulus.trimmed_length() * sizeof(u32))
|
|
{
|
|
}
|
|
|
|
RSAPrivateKey() = default;
|
|
|
|
Integer const& modulus() const { return m_modulus; }
|
|
Integer const& private_exponent() const { return m_private_exponent; }
|
|
Integer const& public_exponent() const { return m_public_exponent; }
|
|
Integer const& prime1() const { return m_prime_1; }
|
|
Integer const& prime2() const { return m_prime_2; }
|
|
Integer const& exponent1() const { return m_exponent_1; }
|
|
Integer const& exponent2() const { return m_exponent_2; }
|
|
Integer const& coefficient() const { return m_coefficient; }
|
|
size_t length() const { return m_length; }
|
|
|
|
ErrorOr<ByteBuffer> export_as_der() const
|
|
{
|
|
if (m_prime_1.is_zero() || m_prime_2.is_zero()) {
|
|
return Error::from_string_literal("Cannot export private key without prime factors");
|
|
}
|
|
|
|
ASN1::Encoder encoder;
|
|
TRY(encoder.write_constructed(ASN1::Class::Universal, ASN1::Kind::Sequence, [&]() -> ErrorOr<void> {
|
|
TRY(encoder.write(0x00u)); // version
|
|
TRY(encoder.write(m_modulus));
|
|
TRY(encoder.write(m_public_exponent));
|
|
TRY(encoder.write(m_private_exponent));
|
|
TRY(encoder.write(m_prime_1));
|
|
TRY(encoder.write(m_prime_2));
|
|
TRY(encoder.write(m_exponent_1));
|
|
TRY(encoder.write(m_exponent_2));
|
|
TRY(encoder.write(m_coefficient));
|
|
return {};
|
|
}));
|
|
|
|
return encoder.finish();
|
|
}
|
|
|
|
private:
|
|
Integer m_modulus;
|
|
Integer m_private_exponent;
|
|
Integer m_public_exponent;
|
|
Integer m_prime_1;
|
|
Integer m_prime_2;
|
|
Integer m_exponent_1; // d mod (p-1)
|
|
Integer m_exponent_2; // d mod (q-1)
|
|
Integer m_coefficient; // q^-1 mod p
|
|
size_t m_length { 0 };
|
|
};
|
|
|
|
template<typename PubKey, typename PrivKey>
|
|
struct RSAKeyPair {
|
|
PubKey public_key;
|
|
PrivKey private_key;
|
|
};
|
|
|
|
using IntegerType = UnsignedBigInteger;
|
|
class RSA : public PKSystem<RSAPrivateKey<IntegerType>, RSAPublicKey<IntegerType>> {
|
|
public:
|
|
using KeyPairType = RSAKeyPair<PublicKeyType, PrivateKeyType>;
|
|
|
|
static ErrorOr<KeyPairType> parse_rsa_key(ReadonlyBytes der, bool is_private, Vector<StringView> current_scope);
|
|
static ErrorOr<KeyPairType> generate_key_pair(size_t bits, IntegerType e = 65537);
|
|
|
|
RSA(KeyPairType const& pair)
|
|
: PKSystem<RSAPrivateKey<IntegerType>, RSAPublicKey<IntegerType>>(pair.public_key, pair.private_key)
|
|
{
|
|
}
|
|
|
|
RSA(PublicKeyType const& pubkey, PrivateKeyType const& privkey)
|
|
: PKSystem<RSAPrivateKey<IntegerType>, RSAPublicKey<IntegerType>>(pubkey, privkey)
|
|
{
|
|
}
|
|
|
|
RSA(PrivateKeyType const& privkey)
|
|
{
|
|
m_private_key = privkey;
|
|
m_public_key.set(m_private_key.modulus(), m_private_key.public_exponent());
|
|
}
|
|
|
|
RSA(PublicKeyType const& pubkey)
|
|
{
|
|
m_public_key = pubkey;
|
|
}
|
|
|
|
RSA(ByteBuffer const& publicKeyPEM, ByteBuffer const& privateKeyPEM)
|
|
{
|
|
import_public_key(publicKeyPEM);
|
|
import_private_key(privateKeyPEM);
|
|
}
|
|
|
|
RSA(StringView privKeyPEM)
|
|
{
|
|
import_private_key(privKeyPEM.bytes());
|
|
m_public_key.set(m_private_key.modulus(), m_private_key.public_exponent());
|
|
}
|
|
|
|
virtual ErrorOr<ByteBuffer> encrypt(ReadonlyBytes in) override;
|
|
virtual ErrorOr<ByteBuffer> decrypt(ReadonlyBytes in) override;
|
|
|
|
virtual ErrorOr<ByteBuffer> sign(ReadonlyBytes message) override;
|
|
virtual ErrorOr<bool> verify(ReadonlyBytes message, ReadonlyBytes signature) override;
|
|
|
|
virtual ByteString class_name() const override
|
|
{
|
|
return "RSA";
|
|
}
|
|
|
|
virtual size_t output_size() const override
|
|
{
|
|
return m_public_key.length();
|
|
}
|
|
|
|
void import_public_key(ReadonlyBytes, bool pem = true);
|
|
void import_private_key(ReadonlyBytes, bool pem = true);
|
|
|
|
PrivateKeyType const& private_key() const { return m_private_key; }
|
|
PublicKeyType const& public_key() const { return m_public_key; }
|
|
|
|
void set_public_key(PublicKeyType const& key) { m_public_key = key; }
|
|
void set_private_key(PrivateKeyType const& key) { m_private_key = key; }
|
|
|
|
protected:
|
|
virtual ErrorOr<void> configure(OpenSSL_PKEY_CTX& ctx);
|
|
|
|
static ErrorOr<OpenSSL_PKEY> public_key_to_openssl_pkey(PublicKeyType const& public_key);
|
|
static ErrorOr<OpenSSL_PKEY> private_key_to_openssl_pkey(PrivateKeyType const& private_key);
|
|
};
|
|
|
|
ErrorOr<EVP_MD const*> hash_kind_to_hash_type(Hash::HashKind hash_kind);
|
|
|
|
class RSA_EME : public RSA {
|
|
public:
|
|
template<typename... Args>
|
|
RSA_EME(Hash::HashKind hash_kind, Args... args)
|
|
: RSA(args...)
|
|
, m_hash_kind(hash_kind)
|
|
{
|
|
}
|
|
|
|
~RSA_EME() = default;
|
|
|
|
virtual ErrorOr<ByteBuffer> sign(ReadonlyBytes) override
|
|
{
|
|
return Error::from_string_literal("Signing is not supported");
|
|
}
|
|
virtual ErrorOr<bool> verify(ReadonlyBytes, ReadonlyBytes) override
|
|
{
|
|
return Error::from_string_literal("Verifying is not supported");
|
|
}
|
|
|
|
protected:
|
|
Hash::HashKind m_hash_kind { Hash::HashKind::Unknown };
|
|
};
|
|
|
|
class RSA_EMSA : public RSA {
|
|
public:
|
|
template<typename... Args>
|
|
RSA_EMSA(Hash::HashKind hash_kind, Args... args)
|
|
: RSA(args...)
|
|
, m_hash_kind(hash_kind)
|
|
{
|
|
}
|
|
|
|
~RSA_EMSA() = default;
|
|
|
|
virtual ErrorOr<ByteBuffer> encrypt(ReadonlyBytes) override
|
|
{
|
|
return Error::from_string_literal("Encrypting is not supported");
|
|
}
|
|
virtual ErrorOr<ByteBuffer> decrypt(ReadonlyBytes) override
|
|
{
|
|
return Error::from_string_literal("Decrypting is not supported");
|
|
}
|
|
|
|
virtual ErrorOr<bool> verify(ReadonlyBytes message, ReadonlyBytes signature) override;
|
|
virtual ErrorOr<ByteBuffer> sign(ReadonlyBytes message) override;
|
|
|
|
protected:
|
|
Hash::HashKind m_hash_kind { Hash::HashKind::Unknown };
|
|
};
|
|
|
|
class RSA_PKCS1_EME : public RSA_EME {
|
|
public:
|
|
template<typename... Args>
|
|
RSA_PKCS1_EME(Args... args)
|
|
: RSA_EME(Hash::HashKind::None, args...)
|
|
{
|
|
}
|
|
|
|
~RSA_PKCS1_EME() = default;
|
|
|
|
virtual ByteString class_name() const override
|
|
{
|
|
return "RSA_PKCS1-EME";
|
|
}
|
|
|
|
protected:
|
|
ErrorOr<void> configure(OpenSSL_PKEY_CTX& ctx) override;
|
|
};
|
|
|
|
class RSA_PKCS1_EMSA : public RSA_EMSA {
|
|
public:
|
|
template<typename... Args>
|
|
RSA_PKCS1_EMSA(Hash::HashKind hash_kind, Args... args)
|
|
: RSA_EMSA(hash_kind, args...)
|
|
{
|
|
}
|
|
|
|
~RSA_PKCS1_EMSA() = default;
|
|
|
|
virtual ByteString class_name() const override
|
|
{
|
|
return "RSA_PKCS1-EMSA";
|
|
}
|
|
|
|
protected:
|
|
ErrorOr<void> configure(OpenSSL_PKEY_CTX& ctx) override;
|
|
};
|
|
|
|
class RSA_OAEP_EME : public RSA_EME {
|
|
public:
|
|
template<typename... Args>
|
|
RSA_OAEP_EME(Hash::HashKind hash_kind, Args... args)
|
|
: RSA_EME(hash_kind, args...)
|
|
{
|
|
}
|
|
|
|
~RSA_OAEP_EME() = default;
|
|
|
|
virtual ByteString class_name() const override
|
|
{
|
|
return "RSA_OAEP-EME";
|
|
}
|
|
|
|
void set_label(ReadonlyBytes label) { m_label = label; }
|
|
|
|
protected:
|
|
ErrorOr<void> configure(OpenSSL_PKEY_CTX& ctx) override;
|
|
|
|
private:
|
|
Optional<ReadonlyBytes> m_label {};
|
|
};
|
|
|
|
class RSA_PSS_EMSA : public RSA_EMSA {
|
|
public:
|
|
template<typename... Args>
|
|
RSA_PSS_EMSA(Hash::HashKind hash_kind, Args... args)
|
|
: RSA_EMSA(hash_kind, args...)
|
|
{
|
|
}
|
|
|
|
~RSA_PSS_EMSA() = default;
|
|
|
|
virtual ByteString class_name() const override
|
|
{
|
|
return "RSA_PSS-EMSA";
|
|
}
|
|
|
|
void set_salt_length(int value) { m_salt_length = value; }
|
|
|
|
protected:
|
|
ErrorOr<void> configure(OpenSSL_PKEY_CTX& ctx) override;
|
|
|
|
private:
|
|
Optional<int> m_salt_length;
|
|
};
|
|
|
|
}
|