diff options
| author | robot-contrib <robot-contrib@yandex-team.com> | 2023-10-23 21:53:30 +0300 |
|---|---|---|
| committer | robot-contrib <robot-contrib@yandex-team.com> | 2023-10-23 22:17:19 +0300 |
| commit | 185aad3f5de6274260a161e58d92312d91813770 (patch) | |
| tree | 39b2a93a9a649bffaaea9e405b00ceeea0d13c11 /contrib/restricted/aws/s2n/pq-crypto/s2n_kyber_evp.c | |
| parent | a14514f8c6ab647d334ae41253e65f69ee9b5fa6 (diff) | |
| download | ydb-185aad3f5de6274260a161e58d92312d91813770.tar.gz | |
Update contrib/restricted/aws/s2n to 1.3.54
Diffstat (limited to 'contrib/restricted/aws/s2n/pq-crypto/s2n_kyber_evp.c')
| -rw-r--r-- | contrib/restricted/aws/s2n/pq-crypto/s2n_kyber_evp.c | 107 |
1 files changed, 107 insertions, 0 deletions
diff --git a/contrib/restricted/aws/s2n/pq-crypto/s2n_kyber_evp.c b/contrib/restricted/aws/s2n/pq-crypto/s2n_kyber_evp.c new file mode 100644 index 0000000000..534751a461 --- /dev/null +++ b/contrib/restricted/aws/s2n/pq-crypto/s2n_kyber_evp.c @@ -0,0 +1,107 @@ +/* +* Copyright Amazon.com, Inc. or its affiliates. All Rights Reserved. +* +* Licensed under the Apache License, Version 2.0 (the "License"). +* You may not use this file except in compliance with the License. +* A copy of the License is located at +* +* http://aws.amazon.com/apache2.0 +* +* or in the "license" file accompanying this file. This file is distributed +* on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either +* express or implied. See the License for the specific language governing +* permissions and limitations under the License. +*/ + +#include "s2n_kyber_evp.h" + +#include <openssl/evp.h> +#include <stddef.h> + +#include "error/s2n_errno.h" +#include "tls/s2n_kem.h" +#include "utils/s2n_safety.h" +#include "utils/s2n_safety_macros.h" + +#if defined(S2N_LIBCRYPTO_SUPPORTS_KYBER) && !defined(S2N_NO_PQ) + +DEFINE_POINTER_CLEANUP_FUNC(EVP_PKEY *, EVP_PKEY_free); +DEFINE_POINTER_CLEANUP_FUNC(EVP_PKEY_CTX *, EVP_PKEY_CTX_free); + +int s2n_kyber_evp_generate_keypair(IN const struct s2n_kem *kem, OUT uint8_t *public_key, + OUT uint8_t *secret_key) +{ + DEFER_CLEANUP(EVP_PKEY_CTX *kyber_pkey_ctx = EVP_PKEY_CTX_new_id(EVP_PKEY_KEM, NULL), EVP_PKEY_CTX_free_pointer); + POSIX_GUARD_PTR(kyber_pkey_ctx); + POSIX_GUARD_OSSL(EVP_PKEY_CTX_kem_set_params(kyber_pkey_ctx, kem->kem_nid), S2N_ERR_PQ_CRYPTO); + POSIX_GUARD_OSSL(EVP_PKEY_keygen_init(kyber_pkey_ctx), S2N_ERR_PQ_CRYPTO); + + DEFER_CLEANUP(EVP_PKEY *kyber_pkey = NULL, EVP_PKEY_free_pointer); + POSIX_GUARD_OSSL(EVP_PKEY_keygen(kyber_pkey_ctx, &kyber_pkey), S2N_ERR_PQ_CRYPTO); + POSIX_GUARD_PTR(kyber_pkey); + + size_t public_key_size = kem->public_key_length; + POSIX_GUARD_OSSL(EVP_PKEY_get_raw_public_key(kyber_pkey, public_key, &public_key_size), S2N_ERR_PQ_CRYPTO); + POSIX_ENSURE_EQ(kem->public_key_length, public_key_size); + size_t private_key_size = kem->private_key_length; + POSIX_GUARD_OSSL(EVP_PKEY_get_raw_private_key(kyber_pkey, secret_key, &private_key_size), S2N_ERR_PQ_CRYPTO); + POSIX_ENSURE_EQ(kem->private_key_length, private_key_size); + + return S2N_SUCCESS; +} + +int s2n_kyber_evp_encapsulate(IN const struct s2n_kem *kem, OUT uint8_t *ciphertext, OUT uint8_t *shared_secret, + IN const uint8_t *public_key) +{ + DEFER_CLEANUP(EVP_PKEY *kyber_pkey = EVP_PKEY_kem_new_raw_public_key(kem->kem_nid, public_key, kem->public_key_length), EVP_PKEY_free_pointer); + POSIX_GUARD_PTR(kyber_pkey); + + DEFER_CLEANUP(EVP_PKEY_CTX *kyber_pkey_ctx = EVP_PKEY_CTX_new(kyber_pkey, NULL), EVP_PKEY_CTX_free_pointer); + POSIX_GUARD_PTR(kyber_pkey_ctx); + + size_t ciphertext_size = kem->ciphertext_length; + size_t shared_secret_size = kem->shared_secret_key_length; + POSIX_GUARD_OSSL(EVP_PKEY_encapsulate(kyber_pkey_ctx, ciphertext, &ciphertext_size, shared_secret, + &shared_secret_size), + S2N_ERR_PQ_CRYPTO); + POSIX_ENSURE_EQ(kem->ciphertext_length, ciphertext_size); + POSIX_ENSURE_EQ(kem->shared_secret_key_length, shared_secret_size); + + return S2N_SUCCESS; +} + +int s2n_kyber_evp_decapsulate(IN const struct s2n_kem *kem, OUT uint8_t *shared_secret, IN const uint8_t *ciphertext, + IN const uint8_t *private_key) +{ + DEFER_CLEANUP(EVP_PKEY *kyber_pkey = EVP_PKEY_kem_new_raw_secret_key(kem->kem_nid, private_key, kem->private_key_length), EVP_PKEY_free_pointer); + POSIX_GUARD_PTR(kyber_pkey); + + DEFER_CLEANUP(EVP_PKEY_CTX *kyber_pkey_ctx = EVP_PKEY_CTX_new(kyber_pkey, NULL), EVP_PKEY_CTX_free_pointer); + POSIX_GUARD_PTR(kyber_pkey_ctx); + + size_t shared_secret_size = kem->shared_secret_key_length; + POSIX_GUARD_OSSL(EVP_PKEY_decapsulate(kyber_pkey_ctx, shared_secret, &shared_secret_size, + (uint8_t *) ciphertext, kem->ciphertext_length), + S2N_ERR_PQ_CRYPTO); + POSIX_ENSURE_EQ(kem->shared_secret_key_length, shared_secret_size); + + return S2N_SUCCESS; +} +#else +int s2n_kyber_512_evp_generate_keypair(IN const struct s2n_kem *kem, OUT uint8_t *public_key, OUT uint8_t *secret_key) +{ + POSIX_BAIL(S2N_ERR_UNIMPLEMENTED); +} + +int s2n_kyber_512_evp_encapsulate(IN const struct s2n_kem *kem, OUT uint8_t *ciphertext, OUT uint8_t *shared_secret, + IN const uint8_t *public_key) +{ + POSIX_BAIL(S2N_ERR_UNIMPLEMENTED); +} + +int s2n_kyber_512_evp_decapsulate(IN const struct s2n_kem *kem, OUT uint8_t *shared_secret, IN const uint8_t *ciphertext, + IN const uint8_t *secret_key) +{ + POSIX_BAIL(S2N_ERR_UNIMPLEMENTED); +} +#endif |