1 /* ---- NUMBER THEORY ---- */
8 int rand_prime(void *N, long len, prng_state *prng, int wprng);
13 /* Min and Max RSA key sizes (in bits) */
14 #define MIN_RSA_SIZE 1024
15 #define MAX_RSA_SIZE 4096
17 /** RSA PKCS style key */
18 typedef struct Rsa_key {
19 /** Type of key, PK_PRIVATE or PK_PUBLIC */
21 /** The public exponent */
23 /** The private exponent */
27 /** The p factor of N */
29 /** The q factor of N */
31 /** The 1/q mod p CRT param */
33 /** The d mod (p - 1) CRT param */
35 /** The d mod (q - 1) CRT param */
39 int rsa_make_key(prng_state *prng, int wprng, int size, long e, rsa_key *key);
41 int rsa_exptmod(const unsigned char *in, unsigned long inlen,
42 unsigned char *out, unsigned long *outlen, int which,
45 void rsa_free(rsa_key *key);
47 /* These use PKCS #1 v2.0 padding */
48 #define rsa_encrypt_key(_in, _inlen, _out, _outlen, _lparam, _lparamlen, _prng, _prng_idx, _hash_idx, _key) \
49 rsa_encrypt_key_ex(_in, _inlen, _out, _outlen, _lparam, _lparamlen, _prng, _prng_idx, _hash_idx, LTC_PKCS_1_OAEP, _key)
51 #define rsa_decrypt_key(_in, _inlen, _out, _outlen, _lparam, _lparamlen, _hash_idx, _stat, _key) \
52 rsa_decrypt_key_ex(_in, _inlen, _out, _outlen, _lparam, _lparamlen, _hash_idx, LTC_PKCS_1_OAEP, _stat, _key)
54 #define rsa_sign_hash(_in, _inlen, _out, _outlen, _prng, _prng_idx, _hash_idx, _saltlen, _key) \
55 rsa_sign_hash_ex(_in, _inlen, _out, _outlen, LTC_PKCS_1_PSS, _prng, _prng_idx, _hash_idx, _saltlen, _key)
57 #define rsa_verify_hash(_sig, _siglen, _hash, _hashlen, _hash_idx, _saltlen, _stat, _key) \
58 rsa_verify_hash_ex(_sig, _siglen, _hash, _hashlen, LTC_PKCS_1_PSS, _hash_idx, _saltlen, _stat, _key)
60 /* These can be switched between PKCS #1 v2.x and PKCS #1 v1.5 paddings */
61 int rsa_encrypt_key_ex(const unsigned char *in, unsigned long inlen,
62 unsigned char *out, unsigned long *outlen,
63 const unsigned char *lparam, unsigned long lparamlen,
64 prng_state *prng, int prng_idx, int hash_idx, int padding, rsa_key *key);
66 int rsa_decrypt_key_ex(const unsigned char *in, unsigned long inlen,
67 unsigned char *out, unsigned long *outlen,
68 const unsigned char *lparam, unsigned long lparamlen,
69 int hash_idx, int padding,
70 int *stat, rsa_key *key);
72 int rsa_sign_hash_ex(const unsigned char *in, unsigned long inlen,
73 unsigned char *out, unsigned long *outlen,
75 prng_state *prng, int prng_idx,
76 int hash_idx, unsigned long saltlen,
79 int rsa_verify_hash_ex(const unsigned char *sig, unsigned long siglen,
80 const unsigned char *hash, unsigned long hashlen,
82 int hash_idx, unsigned long saltlen,
83 int *stat, rsa_key *key);
85 /* PKCS #1 import/export */
86 int rsa_export(unsigned char *out, unsigned long *outlen, int type, rsa_key *key);
87 int rsa_import(const unsigned char *in, unsigned long inlen, rsa_key *key);
94 /* Min and Max KAT key sizes (in bits) */
95 #define MIN_KAT_SIZE 1024
96 #define MAX_KAT_SIZE 4096
98 /** Katja PKCS style key */
99 typedef struct KAT_key {
100 /** Type of key, PK_PRIVATE or PK_PUBLIC */
102 /** The private exponent */
106 /** The p factor of N */
108 /** The q factor of N */
110 /** The 1/q mod p CRT param */
112 /** The d mod (p - 1) CRT param */
114 /** The d mod (q - 1) CRT param */
120 int katja_make_key(prng_state *prng, int wprng, int size, katja_key *key);
122 int katja_exptmod(const unsigned char *in, unsigned long inlen,
123 unsigned char *out, unsigned long *outlen, int which,
126 void katja_free(katja_key *key);
128 /* These use PKCS #1 v2.0 padding */
129 int katja_encrypt_key(const unsigned char *in, unsigned long inlen,
130 unsigned char *out, unsigned long *outlen,
131 const unsigned char *lparam, unsigned long lparamlen,
132 prng_state *prng, int prng_idx, int hash_idx, katja_key *key);
134 int katja_decrypt_key(const unsigned char *in, unsigned long inlen,
135 unsigned char *out, unsigned long *outlen,
136 const unsigned char *lparam, unsigned long lparamlen,
137 int hash_idx, int *stat,
140 /* PKCS #1 import/export */
141 int katja_export(unsigned char *out, unsigned long *outlen, int type, katja_key *key);
142 int katja_import(const unsigned char *in, unsigned long inlen, katja_key *key);
146 /* ---- ECC Routines ---- */
149 /* size of our temp buffers for exported keys */
150 #define ECC_BUF_SIZE 256
152 /* max private key size */
153 #define ECC_MAXSIZE 66
155 /** Structure defines a NIST GF(p) curve */
157 /** The size of the curve in octets */
163 /** The prime that defines the field the curve is in (encoded in hex) */
166 /** The fields B param (hex) */
169 /** The order of the curve (hex) */
172 /** The x co-ordinate of the base point on the curve (hex) */
175 /** The y co-ordinate of the base point on the curve (hex) */
179 /** A point on a ECC curve, stored in Jacbobian format such that (x,y,z) => (x/z^2, y/z^3, 1) when interpretted as affine */
181 /** The x co-ordinate */
184 /** The y co-ordinate */
187 /** The z co-ordinate */
193 /** Type of key, PK_PRIVATE or PK_PUBLIC */
196 /** Index into the ltc_ecc_sets[] for the parameters of this curve; if -1, then this key is using user supplied curve in dp */
199 /** pointer to domain parameters; either points to NIST curves (identified by idx >= 0) or user supplied curve */
200 const ltc_ecc_set_type *dp;
202 /** The public key */
205 /** The private key */
209 /** the ECC params provided */
210 extern const ltc_ecc_set_type ltc_ecc_sets[];
213 void ecc_sizes(int *low, int *high);
214 int ecc_get_size(ecc_key *key);
216 int ecc_make_key(prng_state *prng, int wprng, int keysize, ecc_key *key);
217 int ecc_make_key_ex(prng_state *prng, int wprng, ecc_key *key, const ltc_ecc_set_type *dp);
218 void ecc_free(ecc_key *key);
220 int ecc_export(unsigned char *out, unsigned long *outlen, int type, ecc_key *key);
221 int ecc_import(const unsigned char *in, unsigned long inlen, ecc_key *key);
222 int ecc_import_ex(const unsigned char *in, unsigned long inlen, ecc_key *key, const ltc_ecc_set_type *dp);
224 int ecc_ansi_x963_export(ecc_key *key, unsigned char *out, unsigned long *outlen);
225 int ecc_ansi_x963_import(const unsigned char *in, unsigned long inlen, ecc_key *key);
226 int ecc_ansi_x963_import_ex(const unsigned char *in, unsigned long inlen, ecc_key *key, ltc_ecc_set_type *dp);
228 int ecc_shared_secret(ecc_key *private_key, ecc_key *public_key,
229 unsigned char *out, unsigned long *outlen);
231 int ecc_encrypt_key(const unsigned char *in, unsigned long inlen,
232 unsigned char *out, unsigned long *outlen,
233 prng_state *prng, int wprng, int hash,
236 int ecc_decrypt_key(const unsigned char *in, unsigned long inlen,
237 unsigned char *out, unsigned long *outlen,
240 int ecc_sign_hash(const unsigned char *in, unsigned long inlen,
241 unsigned char *out, unsigned long *outlen,
242 prng_state *prng, int wprng, ecc_key *key);
244 int ecc_verify_hash(const unsigned char *sig, unsigned long siglen,
245 const unsigned char *hash, unsigned long hashlen,
246 int *stat, ecc_key *key);
248 /* low level functions */
249 ecc_point *ltc_ecc_new_point(void);
250 void ltc_ecc_del_point(ecc_point *p);
251 int ltc_ecc_is_valid_idx(int n);
253 /* point ops (mp == montgomery digit) */
254 #if !defined(MECC_ACCEL) || defined(LTM_DESC) || defined(GMP_DESC)
256 int ltc_ecc_projective_dbl_point(ecc_point *P, ecc_point *R, void *modulus, void *mp);
259 int ltc_ecc_projective_add_point(ecc_point *P, ecc_point *Q, ecc_point *R, void *modulus, void *mp);
263 int ltc_ecc_fp_mulmod(void *k, ecc_point *G, ecc_point *R, void *modulus, int map);
264 int ltc_ecc_fp_save_state(unsigned char **out, unsigned long *outlen);
265 int ltc_ecc_fp_restore_state(unsigned char *in, unsigned long inlen);
266 void ltc_ecc_fp_free(void);
270 int ltc_ecc_mulmod(void *k, ecc_point *G, ecc_point *R, void *modulus, int map);
272 #ifdef LTC_ECC_SHAMIR
273 /* kA*A + kB*B = C */
274 int ltc_ecc_mul2add(ecc_point *A, void *kA,
275 ecc_point *B, void *kB,
280 int ltc_ecc_fp_mul2add(ecc_point *A, void *kA,
281 ecc_point *B, void *kB,
282 ecc_point *C, void *modulus);
288 /* map P to affine from projective */
289 int ltc_ecc_map(ecc_point *P, void *modulus, void *mp);
295 /* Max diff between group and modulus size in bytes */
296 #define MDSA_DELTA 512
298 /* Max DSA group size in bytes (default allows 4k-bit groups) */
299 #define MDSA_MAX_GROUP 512
301 /** DSA key structure */
303 /** The key type, PK_PRIVATE or PK_PUBLIC */
306 /** The order of the sub-group used in octets */
312 /** The prime used to generate the sub-group */
315 /** The large prime that generats the field the contains the sub-group */
318 /** The private key */
321 /** The public key */
325 int dsa_make_key(prng_state *prng, int wprng, int group_size, int modulus_size, dsa_key *key);
326 void dsa_free(dsa_key *key);
328 int dsa_sign_hash_raw(const unsigned char *in, unsigned long inlen,
330 prng_state *prng, int wprng, dsa_key *key);
332 int dsa_sign_hash(const unsigned char *in, unsigned long inlen,
333 unsigned char *out, unsigned long *outlen,
334 prng_state *prng, int wprng, dsa_key *key);
336 int dsa_verify_hash_raw( void *r, void *s,
337 const unsigned char *hash, unsigned long hashlen,
338 int *stat, dsa_key *key);
340 int dsa_verify_hash(const unsigned char *sig, unsigned long siglen,
341 const unsigned char *hash, unsigned long hashlen,
342 int *stat, dsa_key *key);
344 int dsa_encrypt_key(const unsigned char *in, unsigned long inlen,
345 unsigned char *out, unsigned long *outlen,
346 prng_state *prng, int wprng, int hash,
349 int dsa_decrypt_key(const unsigned char *in, unsigned long inlen,
350 unsigned char *out, unsigned long *outlen,
353 int dsa_import(const unsigned char *in, unsigned long inlen, dsa_key *key);
354 int dsa_export(unsigned char *out, unsigned long *outlen, int type, dsa_key *key);
355 int dsa_verify_key(dsa_key *key, int *stat);
357 int dsa_shared_secret(void *private_key, void *base,
359 unsigned char *out, unsigned long *outlen);
369 LTC_ASN1_SHORT_INTEGER,
371 LTC_ASN1_OCTET_STRING,
373 LTC_ASN1_OBJECT_IDENTIFIER,
375 LTC_ASN1_PRINTABLE_STRING,
376 LTC_ASN1_UTF8_STRING,
384 /** A LTC ASN.1 list type */
385 typedef struct ltc_asn1_list_ {
386 /** The LTC ASN.1 enumerated type identifier */
388 /** The data to encode or place for decoding */
390 /** The size of the input or resulting output */
392 /** The used flag, this is used by the CHOICE ASN.1 type to indicate which choice was made */
394 /** prev/next entry in the list */
395 struct ltc_asn1_list_ *prev, *next, *child, *parent;
398 #define LTC_SET_ASN1(list, index, Type, Data, Size) \
400 int LTC_MACRO_temp = (index); \
401 ltc_asn1_list *LTC_MACRO_list = (list); \
402 LTC_MACRO_list[LTC_MACRO_temp].type = (Type); \
403 LTC_MACRO_list[LTC_MACRO_temp].data = (void*)(Data); \
404 LTC_MACRO_list[LTC_MACRO_temp].size = (Size); \
405 LTC_MACRO_list[LTC_MACRO_temp].used = 0; \
409 int der_encode_sequence_ex(ltc_asn1_list *list, unsigned long inlen,
410 unsigned char *out, unsigned long *outlen, int type_of);
412 #define der_encode_sequence(list, inlen, out, outlen) der_encode_sequence_ex(list, inlen, out, outlen, LTC_ASN1_SEQUENCE)
414 int der_decode_sequence_ex(const unsigned char *in, unsigned long inlen,
415 ltc_asn1_list *list, unsigned long outlen, int ordered);
417 #define der_decode_sequence(in, inlen, list, outlen) der_decode_sequence_ex(in, inlen, list, outlen, 1)
419 int der_length_sequence(ltc_asn1_list *list, unsigned long inlen,
420 unsigned long *outlen);
423 #define der_decode_set(in, inlen, list, outlen) der_decode_sequence_ex(in, inlen, list, outlen, 0)
424 #define der_length_set der_length_sequence
425 int der_encode_set(ltc_asn1_list *list, unsigned long inlen,
426 unsigned char *out, unsigned long *outlen);
428 int der_encode_setof(ltc_asn1_list *list, unsigned long inlen,
429 unsigned char *out, unsigned long *outlen);
431 /* VA list handy helpers with triplets of <type, size, data> */
432 int der_encode_sequence_multi(unsigned char *out, unsigned long *outlen, ...);
433 int der_decode_sequence_multi(const unsigned char *in, unsigned long inlen, ...);
435 /* FLEXI DECODER handle unknown list decoder */
436 int der_decode_sequence_flexi(const unsigned char *in, unsigned long *inlen, ltc_asn1_list **out);
437 void der_free_sequence_flexi(ltc_asn1_list *list);
438 void der_sequence_free(ltc_asn1_list *in);
441 int der_length_boolean(unsigned long *outlen);
442 int der_encode_boolean(int in,
443 unsigned char *out, unsigned long *outlen);
444 int der_decode_boolean(const unsigned char *in, unsigned long inlen,
447 int der_encode_integer(void *num, unsigned char *out, unsigned long *outlen);
448 int der_decode_integer(const unsigned char *in, unsigned long inlen, void *num);
449 int der_length_integer(void *num, unsigned long *len);
451 /* INTEGER -- handy for 0..2^32-1 values */
452 int der_decode_short_integer(const unsigned char *in, unsigned long inlen, unsigned long *num);
453 int der_encode_short_integer(unsigned long num, unsigned char *out, unsigned long *outlen);
454 int der_length_short_integer(unsigned long num, unsigned long *outlen);
457 int der_encode_bit_string(const unsigned char *in, unsigned long inlen,
458 unsigned char *out, unsigned long *outlen);
459 int der_decode_bit_string(const unsigned char *in, unsigned long inlen,
460 unsigned char *out, unsigned long *outlen);
461 int der_length_bit_string(unsigned long nbits, unsigned long *outlen);
464 int der_encode_octet_string(const unsigned char *in, unsigned long inlen,
465 unsigned char *out, unsigned long *outlen);
466 int der_decode_octet_string(const unsigned char *in, unsigned long inlen,
467 unsigned char *out, unsigned long *outlen);
468 int der_length_octet_string(unsigned long noctets, unsigned long *outlen);
470 /* OBJECT IDENTIFIER */
471 int der_encode_object_identifier(unsigned long *words, unsigned long nwords,
472 unsigned char *out, unsigned long *outlen);
473 int der_decode_object_identifier(const unsigned char *in, unsigned long inlen,
474 unsigned long *words, unsigned long *outlen);
475 int der_length_object_identifier(unsigned long *words, unsigned long nwords, unsigned long *outlen);
476 unsigned long der_object_identifier_bits(unsigned long x);
479 int der_encode_ia5_string(const unsigned char *in, unsigned long inlen,
480 unsigned char *out, unsigned long *outlen);
481 int der_decode_ia5_string(const unsigned char *in, unsigned long inlen,
482 unsigned char *out, unsigned long *outlen);
483 int der_length_ia5_string(const unsigned char *octets, unsigned long noctets, unsigned long *outlen);
485 int der_ia5_char_encode(int c);
486 int der_ia5_value_decode(int v);
488 /* Printable STRING */
489 int der_encode_printable_string(const unsigned char *in, unsigned long inlen,
490 unsigned char *out, unsigned long *outlen);
491 int der_decode_printable_string(const unsigned char *in, unsigned long inlen,
492 unsigned char *out, unsigned long *outlen);
493 int der_length_printable_string(const unsigned char *octets, unsigned long noctets, unsigned long *outlen);
495 int der_printable_char_encode(int c);
496 int der_printable_value_decode(int v);
499 #if (defined(SIZE_MAX) || __STDC_VERSION__ >= 199901L || defined(WCHAR_MAX) || defined(_WCHAR_T) || defined(_WCHAR_T_DEFINED)) && !defined(LTC_NO_WCHAR)
502 typedef ulong32 wchar_t;
505 int der_encode_utf8_string(const wchar_t *in, unsigned long inlen,
506 unsigned char *out, unsigned long *outlen);
508 int der_decode_utf8_string(const unsigned char *in, unsigned long inlen,
509 wchar_t *out, unsigned long *outlen);
510 unsigned long der_utf8_charsize(const wchar_t c);
511 int der_length_utf8_string(const wchar_t *in, unsigned long noctets, unsigned long *outlen);
515 int der_decode_choice(const unsigned char *in, unsigned long *inlen,
516 ltc_asn1_list *list, unsigned long outlen);
520 unsigned YY, /* year */
526 off_dir, /* timezone offset direction 0 == +, 1 == - */
527 off_hh, /* timezone offset hours */
528 off_mm; /* timezone offset minutes */
531 int der_encode_utctime(ltc_utctime *utctime,
532 unsigned char *out, unsigned long *outlen);
534 int der_decode_utctime(const unsigned char *in, unsigned long *inlen,
537 int der_length_utctime(ltc_utctime *utctime, unsigned long *outlen);
542 /* $Source: /cvs/libtom/libtomcrypt/src/headers/tomcrypt_pk.h,v $ */
543 /* $Revision: 1.77 $ */
544 /* $Date: 2006/12/03 00:39:56 $ */