src/netpgpverify/rsa.h

/*-
 * Copyright (c) 2012 Alistair Crooks <agc@NetBSD.org>
 * All rights reserved.
 *
 * Redistribution and use in source and binary forms, with or without
 * modification, are permitted provided that the following conditions
 * are met:
 * 1. Redistributions of source code must retain the above copyright
 *    notice, this list of conditions and the following disclaimer.
 * 2. Redistributions in binary form must reproduce the above copyright
 *    notice, this list of conditions and the following disclaimer in the
 *    documentation and/or other materials provided with the distribution.
 *
 * THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR
 * IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
 * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.
 * IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT,
 * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
 * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
 * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
 * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
 * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
 * THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
 */
#ifndef RSA_H_
#define RSA_H_	20120325

#include "bn.h"

#ifndef __BEGIN_DECLS
#  if defined(__cplusplus)
#  define __BEGIN_DECLS           extern "C" {
#  define __END_DECLS             }
#  else
#  define __BEGIN_DECLS
#  define __END_DECLS
#  endif
#endif

__BEGIN_DECLS

typedef struct netpgpv_rsa_pubkey_t {
	PGPV_BIGNUM		*n;	/* RSA public modulus n */
	PGPV_BIGNUM		*e;	/* RSA public encryption exponent e */
} netpgpv_rsa_pubkey_t;

typedef struct netpgpv_mpi_rsa_t {
	int		 f1;	/* openssl pad */
	long		 f2;	/* openssl version */
	const void	*f3;	/* openssl method */
	void		*f4;	/* openssl engine */
	PGPV_BIGNUM		*n;
	PGPV_BIGNUM		*e;
	PGPV_BIGNUM		*d;
	PGPV_BIGNUM		*p;
	PGPV_BIGNUM		*q;
	PGPV_BIGNUM		*dmp1;
	PGPV_BIGNUM		*dmq1;
	PGPV_BIGNUM		*iqmp;
} netpgpv_mpi_rsa_t;

#define NETPGPV_RSA	netpgpv_mpi_rsa_t

typedef struct netpgpv_dsa_pubkey_t {
	PGPV_BIGNUM		*p;	/* DSA public modulus n */
	PGPV_BIGNUM		*q;	/* DSA public encryption exponent e */
	PGPV_BIGNUM		*g;
	PGPV_BIGNUM		*y;
} netpgpv_dsa_pubkey_t;

typedef struct netpgpv_mpi_dsa_t {
	PGPV_BIGNUM		*p;
	PGPV_BIGNUM		*q;
	PGPV_BIGNUM		*g;
	PGPV_BIGNUM		*y;
	PGPV_BIGNUM		*x;
	PGPV_BIGNUM		*pub_key;
	PGPV_BIGNUM		*priv_key;
} netpgpv_mpi_dsa_t;

#define NETPGPV_DSA	netpgpv_mpi_dsa_t

typedef struct netpgpv_rsasig_t {
	PGPV_BIGNUM		*sig;			/* mpi which is actual signature */
} netpgpv_rsasig_t;

typedef struct netpgpv_dsasig_t {
	PGPV_BIGNUM		*r;			/* mpi which is actual signature */
	PGPV_BIGNUM		*s;			/* mpi which is actual signature */
} netpgpv_dsasig_t;

#define NETPGPV_DSA_SIG		netpgpv_dsasig_t

/* misc defs */
#define NETPGPV_RSA_NO_PADDING		3

#define SIGNETBSD_ID_SIZE		8
#define SIGNETBSD_NAME_SIZE		128

#define NETPGPV_RSA_PUBKEY_ALG		1
#define NETPGPV_DSA_PUBKEY_ALG		17

/* the public part of the key */
typedef struct pubkey_t {
	uint32_t	version;		/* key version - usually 4 */
	uint8_t		id[SIGNETBSD_ID_SIZE];		/* binary id */
	char		name[SIGNETBSD_NAME_SIZE];	/* name of identity - not necessary, but looks better */
	int64_t		birthtime;		/* time of creation of key */
	int64_t		expiry;			/* expiration time of the key */
	uint32_t	validity;		/* validity in days */
	uint32_t	alg;			/* pubkey algorithm - rsa/dss etc */
	netpgpv_rsa_pubkey_t	rsa;			/* specific RSA keys */
	netpgpv_dsa_pubkey_t	dsa;			/* specific DSA keys */
} pubkey_t;

/* signature details (for a specific file) */
typedef struct signature_t {
	uint32_t	 version;		/* signature version number */
	uint32_t	 type;			/* signature type value */
	int64_t		 birthtime;		/* creation time of the signature */
	int64_t		 expiry;		/* expiration time of the signature */
	uint8_t		 id[SIGNETBSD_ID_SIZE];	/* binary id */
	uint32_t	 key_alg;		/* public key algorithm number */
	uint32_t	 hash_alg;		/* hashing algorithm number */
	netpgpv_rsasig_t	 rsa;			/* RSA signature */
	netpgpv_dsasig_t	 dsa;			/* DSA signature */
	size_t           v4_hashlen;		/* length of hashed info */
	uint8_t		*v4_hashed;		/* hashed info */
	uint8_t		 hash2[2];		/* high 2 bytes of hashed value - for quick test */
	pubkey_t	*signer;		/* pubkey of signer */
} signature_t;

unsigned netpgpv_dsa_verify(const signature_t */*sig*/,
	const netpgpv_dsa_pubkey_t */*pubdsa*/, const uint8_t */*calc*/,
	size_t /*hashlen*/);

NETPGPV_RSA *netpgpv_RSA_new(void);
int netpgpv_RSA_size(const NETPGPV_RSA */*rsa*/);
void netpgpv_RSA_free(NETPGPV_RSA */*rsa*/);
int netpgpv_RSA_check_key(NETPGPV_RSA */*rsa*/);
NETPGPV_RSA *netpgpv_RSA_generate_key(int /*num*/, unsigned long /*e*/,
	void (*callback)(int,int,void *), void */*cb_arg*/);
int netpgpv_RSA_public_encrypt(int /*flen*/, const unsigned char */*from*/,
	unsigned char */*to*/, NETPGPV_RSA */*rsa*/, int /*padding*/);
int netpgpv_RSA_private_decrypt(int /*flen*/, const unsigned char */*from*/,
	unsigned char */*to*/, NETPGPV_RSA */*rsa*/, int /*padding*/);
int netpgpv_RSA_private_encrypt(int /*flen*/, const unsigned char */*from*/,
	unsigned char */*to*/, NETPGPV_RSA */*rsa*/, int /*padding*/);
int netpgpv_RSA_public_decrypt(int /*flen*/, const uint8_t */*from*/,
	uint8_t */*to*/, NETPGPV_RSA */*rsa*/, int /*padding*/);

NETPGPV_DSA *netpgpv_DSA_new(void);
int netpgpv_DSA_size(const NETPGPV_DSA */*rsa*/);
void netpgpv_DSA_free(NETPGPV_DSA */*dsa*/);
NETPGPV_DSA_SIG *netpgpv_DSA_SIG_new(void);
void netpgpv_DSA_SIG_free(NETPGPV_DSA_SIG */*sig*/);
int netpgpv_DSA_do_verify(const unsigned char */*dgst*/, int /*dgst_len*/,
	NETPGPV_DSA_SIG */*sig*/, NETPGPV_DSA */*dsa*/);
NETPGPV_DSA_SIG *netpgpv_DSA_do_sign(const unsigned char */*dgst*/,
	int /*dlen*/, NETPGPV_DSA */*dsa*/);

__END_DECLS

#endif