aboutsummaryrefslogtreecommitdiffstats
path: root/contrib/restricted/aws/s2n/crypto/s2n_ecc_evp.h
blob: e8905f2d28f97203a1a7ad0c68e2c2cd75e87d6c (plain) (blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
/* 
 * Copyright Amazon.com, Inc. or its affiliates. All Rights Reserved. 
 * 
 * Licensed under the Apache License, Version 2.0 (the "License"). 
 * You may not use this file except in compliance with the License. 
 * A copy of the License is located at 
 * 
 *  http://aws.amazon.com/apache2.0 
 * 
 * or in the "license" file accompanying this file. This file is distributed 
 * on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either 
 * express or implied. See the License for the specific language governing 
 * permissions and limitations under the License. 
 */ 
 
#pragma once 
 
#include <openssl/evp.h> 
 
#include "crypto/s2n_hash.h" 
#include "tls/s2n_kex_data.h" 
#include "stuffer/s2n_stuffer.h" 
#include "tls/s2n_tls_parameters.h" 
#include "utils/s2n_safety.h" 
 
/* Share sizes are described here: https://tools.ietf.org/html/rfc8446#section-4.2.8.2 
 * and include the extra "legacy_form" byte */ 
#define SECP256R1_SHARE_SIZE ((32 * 2 ) + 1) 
#define SECP384R1_SHARE_SIZE ((48 * 2 ) + 1) 
#define SECP521R1_SHARE_SIZE ((66 * 2 ) + 1) 
#define X25519_SHARE_SIZE (32) 
 
struct s2n_ecc_named_curve { 
    /* See https://www.iana.org/assignments/tls-parameters/tls-parameters.xhtml#tls-parameters-8 */ 
    uint16_t iana_id; 
    /* See nid_list in openssl/ssl/t1_lib.c */ 
    int libcrypto_nid; 
    const char *name; 
    const uint8_t share_size; 
    int (*generate_key) (const struct s2n_ecc_named_curve *named_curve, EVP_PKEY **evp_pkey); 
}; 
 
extern const struct s2n_ecc_named_curve s2n_ecc_curve_secp256r1; 
extern const struct s2n_ecc_named_curve s2n_ecc_curve_secp384r1; 
extern const struct s2n_ecc_named_curve s2n_ecc_curve_secp521r1; 
extern const struct s2n_ecc_named_curve s2n_ecc_curve_x25519; 
 
/* BoringSSL only supports using EVP_PKEY_X25519 with "modern" EC EVP APIs. BoringSSL has a note to possibly add this in 
 * the future. See https://github.com/google/boringssl/blob/master/crypto/evp/p_x25519_asn1.c#L233 
 */ 
#if S2N_OPENSSL_VERSION_AT_LEAST(1, 1, 0) && !defined(LIBRESSL_VERSION_NUMBER) && !defined(OPENSSL_IS_BORINGSSL) 
    #define EVP_APIS_SUPPORTED 1 
    #define S2N_ECC_EVP_SUPPORTED_CURVES_COUNT 4 
#else 
    #define EVP_APIS_SUPPORTED 0 
    #define S2N_ECC_EVP_SUPPORTED_CURVES_COUNT 3 
#endif 
 
extern const struct s2n_ecc_named_curve *const s2n_all_supported_curves_list[]; 
extern const size_t s2n_all_supported_curves_list_len; 
 
struct s2n_ecc_evp_params { 
    const struct s2n_ecc_named_curve *negotiated_curve; 
    EVP_PKEY *evp_pkey; 
}; 
 
int s2n_ecc_evp_generate_ephemeral_key(struct s2n_ecc_evp_params *ecc_evp_params); 
int s2n_ecc_evp_compute_shared_secret_from_params(struct s2n_ecc_evp_params *private_ecc_evp_params, 
                                                  struct s2n_ecc_evp_params *public_ecc_evp_params, 
                                                  struct s2n_blob *shared_key); 
int s2n_ecc_evp_write_params_point(struct s2n_ecc_evp_params *ecc_evp_params, struct s2n_stuffer *out); 
int s2n_ecc_evp_read_params_point(struct s2n_stuffer *in, int point_size, struct s2n_blob *point_blob); 
int s2n_ecc_evp_compute_shared_secret_from_params(struct s2n_ecc_evp_params *private_ecc_evp_params, 
                                                  struct s2n_ecc_evp_params *public_ecc_evp_params, 
                                                  struct s2n_blob *shared_key); 
int s2n_ecc_evp_compute_shared_secret_as_server(struct s2n_ecc_evp_params *server_ecc_evp_params,  
                                            struct s2n_stuffer *Yc_in, struct s2n_blob *shared_key); 
int s2n_ecc_evp_compute_shared_secret_as_client(struct s2n_ecc_evp_params *server_ecc_evp_params,  
                                            struct s2n_stuffer *Yc_out, struct s2n_blob *shared_key);  
int s2n_ecc_evp_parse_params_point(struct s2n_blob *point_blob, struct s2n_ecc_evp_params *ecc_evp_params); 
int s2n_ecc_evp_write_params(struct s2n_ecc_evp_params *ecc_evp_params, struct s2n_stuffer *out, 
                             struct s2n_blob *written); 
int s2n_ecc_evp_read_params(struct s2n_stuffer *in, struct s2n_blob *data_to_verify, 
                            struct s2n_ecdhe_raw_server_params *raw_server_ecc_params); 
int s2n_ecc_evp_parse_params(struct s2n_ecdhe_raw_server_params *raw_server_ecc_params, 
                             struct s2n_ecc_evp_params *ecc_evp_params); 
int s2n_ecc_evp_find_supported_curve(struct s2n_blob *iana_ids, const struct s2n_ecc_named_curve **found); 
int s2n_ecc_evp_params_free(struct s2n_ecc_evp_params *ecc_evp_params); 
int s2n_is_evp_apis_supported();