TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls / 7ff7965561863346218d0ec5dfa50d58893f7903 / . / library / pkcs11.c
blob: 45ea4afcc69c252976a7a503ab55e0de6fb009dc [file] [log] [blame]
Paul Bakker43b7e352011-01-18 15:27:19 +0000[diff] [blame]1/**
2 * \file pkcs11.c
3 *
4 * \brief Wrapper for PKCS#11 library libpkcs11-helper
5 *
6 * \author Adriaan de Jong <dejong@fox-it.com>
7 *
Bence Szépkúti1e148272020-08-07 13:07:28 +0200[diff] [blame]8 * Copyright The Mbed TLS Contributors
Dave Rodgman7ff79652023-11-03 12:04:52 +0000[diff] [blame^]9 * SPDX-License-Identifier: Apache-2.0 OR GPL-2.0-or-later
Paul Bakker43b7e352011-01-18 15:27:19 +0000[diff] [blame]10 */
11
Manuel Pégourié-Gonnard7f809972015-03-09 17:05:11 +0000[diff] [blame]12#include "mbedtls/pkcs11.h"
Paul Bakker43b7e352011-01-18 15:27:19 +0000[diff] [blame]13
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]14#if defined(MBEDTLS_PKCS11_C)
Rich Evans00ab4702015-02-06 13:43:58 +0000[diff] [blame]15
Manuel Pégourié-Gonnard7f809972015-03-09 17:05:11 +0000[diff] [blame]16#include "mbedtls/md.h"
17#include "mbedtls/oid.h"
18#include "mbedtls/x509_crt.h"
Paul Bakker43b7e352011-01-18 15:27:19 +0000[diff] [blame]19
Manuel Pégourié-Gonnard7f809972015-03-09 17:05:11 +0000[diff] [blame]20#include "mbedtls/platform.h"
Paul Bakker6e339b52013-07-03 13:37:05 +0200[diff] [blame]21
Manuel Pégourié-Gonnard3a895592015-05-27 17:09:21 +0200[diff] [blame]22#include <string.h>
23
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]24void mbedtls_pkcs11_init(mbedtls_pkcs11_context *ctx)
Manuel Pégourié-Gonnardeab147c2015-04-29 01:10:10 +0200[diff] [blame]25{
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]26 memset(ctx, 0, sizeof(mbedtls_pkcs11_context));
Manuel Pégourié-Gonnardeab147c2015-04-29 01:10:10 +0200[diff] [blame]27}
28
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]29int mbedtls_pkcs11_x509_cert_bind(mbedtls_x509_crt *cert, pkcs11h_certificate_t pkcs11_cert)
Paul Bakker43b7e352011-01-18 15:27:19 +0000[diff] [blame]30{
31 int ret = 1;
32 unsigned char *cert_blob = NULL;
33 size_t cert_blob_size = 0;
34
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]35 if (cert == NULL) {
Paul Bakker43b7e352011-01-18 15:27:19 +0000[diff] [blame]36 ret = 2;
37 goto cleanup;
38 }
39
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]40 if (pkcs11h_certificate_getCertificateBlob(pkcs11_cert, NULL,
41 &cert_blob_size) != CKR_OK) {
Paul Bakker43b7e352011-01-18 15:27:19 +0000[diff] [blame]42 ret = 3;
43 goto cleanup;
44 }
45
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]46 cert_blob = mbedtls_calloc(1, cert_blob_size);
47 if (NULL == cert_blob) {
Paul Bakker43b7e352011-01-18 15:27:19 +0000[diff] [blame]48 ret = 4;
49 goto cleanup;
50 }
51
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]52 if (pkcs11h_certificate_getCertificateBlob(pkcs11_cert, cert_blob,
53 &cert_blob_size) != CKR_OK) {
Paul Bakker43b7e352011-01-18 15:27:19 +0000[diff] [blame]54 ret = 5;
55 goto cleanup;
56 }
57
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]58 if (0 != mbedtls_x509_crt_parse(cert, cert_blob, cert_blob_size)) {
Paul Bakker43b7e352011-01-18 15:27:19 +0000[diff] [blame]59 ret = 6;
60 goto cleanup;
61 }
62
63 ret = 0;
64
65cleanup:
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]66 if (NULL != cert_blob) {
67 mbedtls_free(cert_blob);
68 }
Paul Bakker43b7e352011-01-18 15:27:19 +0000[diff] [blame]69
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]70 return ret;
Paul Bakker43b7e352011-01-18 15:27:19 +0000[diff] [blame]71}
72
73
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]74int mbedtls_pkcs11_priv_key_bind(mbedtls_pkcs11_context *priv_key,
75 pkcs11h_certificate_t pkcs11_cert)
Paul Bakker43b7e352011-01-18 15:27:19 +0000[diff] [blame]76{
77 int ret = 1;
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]78 mbedtls_x509_crt cert;
Paul Bakker43b7e352011-01-18 15:27:19 +0000[diff] [blame]79
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]80 mbedtls_x509_crt_init(&cert);
Paul Bakker43b7e352011-01-18 15:27:19 +0000[diff] [blame]81
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]82 if (priv_key == NULL) {
Paul Bakker43b7e352011-01-18 15:27:19 +0000[diff] [blame]83 goto cleanup;
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]84 }
Paul Bakker43b7e352011-01-18 15:27:19 +0000[diff] [blame]85
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]86 if (0 != mbedtls_pkcs11_x509_cert_bind(&cert, pkcs11_cert)) {
Paul Bakker43b7e352011-01-18 15:27:19 +0000[diff] [blame]87 goto cleanup;
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]88 }
Paul Bakker43b7e352011-01-18 15:27:19 +0000[diff] [blame]89
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]90 priv_key->len = mbedtls_pk_get_len(&cert.pk);
Paul Bakker43b7e352011-01-18 15:27:19 +0000[diff] [blame]91 priv_key->pkcs11h_cert = pkcs11_cert;
92
93 ret = 0;
94
95cleanup:
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]96 mbedtls_x509_crt_free(&cert);
Paul Bakker43b7e352011-01-18 15:27:19 +0000[diff] [blame]97
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]98 return ret;
Paul Bakker43b7e352011-01-18 15:27:19 +0000[diff] [blame]99}
100
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]101void mbedtls_pkcs11_priv_key_free(mbedtls_pkcs11_context *priv_key)
Paul Bakker43b7e352011-01-18 15:27:19 +0000[diff] [blame]102{
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]103 if (NULL != priv_key) {
104 pkcs11h_certificate_freeCertificate(priv_key->pkcs11h_cert);
105 }
Paul Bakker43b7e352011-01-18 15:27:19 +0000[diff] [blame]106}
107
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]108int mbedtls_pkcs11_decrypt(mbedtls_pkcs11_context *ctx,
109 int mode, size_t *olen,
110 const unsigned char *input,
111 unsigned char *output,
112 size_t output_max_len)
Paul Bakker43b7e352011-01-18 15:27:19 +0000[diff] [blame]113{
114 size_t input_len, output_len;
115
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]116 if (NULL == ctx) {
117 return MBEDTLS_ERR_RSA_BAD_INPUT_DATA;
118 }
Paul Bakker43b7e352011-01-18 15:27:19 +0000[diff] [blame]119
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]120 if (MBEDTLS_RSA_PRIVATE != mode) {
121 return MBEDTLS_ERR_RSA_BAD_INPUT_DATA;
122 }
Paul Bakker43b7e352011-01-18 15:27:19 +0000[diff] [blame]123
124 output_len = input_len = ctx->len;
125
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]126 if (input_len < 16 || input_len > output_max_len) {
127 return MBEDTLS_ERR_RSA_BAD_INPUT_DATA;
128 }
Paul Bakker43b7e352011-01-18 15:27:19 +0000[diff] [blame]129
130 /* Determine size of output buffer */
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]131 if (pkcs11h_certificate_decryptAny(ctx->pkcs11h_cert, CKM_RSA_PKCS, input,
132 input_len, NULL, &output_len) != CKR_OK) {
133 return MBEDTLS_ERR_RSA_BAD_INPUT_DATA;
Paul Bakker43b7e352011-01-18 15:27:19 +0000[diff] [blame]134 }
135
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]136 if (output_len > output_max_len) {
137 return MBEDTLS_ERR_RSA_OUTPUT_TOO_LARGE;
138 }
Paul Bakker43b7e352011-01-18 15:27:19 +0000[diff] [blame]139
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]140 if (pkcs11h_certificate_decryptAny(ctx->pkcs11h_cert, CKM_RSA_PKCS, input,
141 input_len, output, &output_len) != CKR_OK) {
142 return MBEDTLS_ERR_RSA_BAD_INPUT_DATA;
Paul Bakker43b7e352011-01-18 15:27:19 +0000[diff] [blame]143 }
144 *olen = output_len;
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]145 return 0;
Paul Bakker43b7e352011-01-18 15:27:19 +0000[diff] [blame]146}
147
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]148int mbedtls_pkcs11_sign(mbedtls_pkcs11_context *ctx,
149 int mode,
150 mbedtls_md_type_t md_alg,
151 unsigned int hashlen,
152 const unsigned char *hash,
153 unsigned char *sig)
Paul Bakker43b7e352011-01-18 15:27:19 +0000[diff] [blame]154{
Paul Bakkerdb1f0592014-03-26 14:53:47 +0100[diff] [blame]155 size_t sig_len = 0, asn_len = 0, oid_size = 0;
Paul Bakker43b7e352011-01-18 15:27:19 +0000[diff] [blame]156 unsigned char *p = sig;
Steffan Karger28d81a02013-11-13 16:57:58 +0100[diff] [blame]157 const char *oid;
Paul Bakker43b7e352011-01-18 15:27:19 +0000[diff] [blame]158
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]159 if (NULL == ctx) {
160 return MBEDTLS_ERR_RSA_BAD_INPUT_DATA;
161 }
Paul Bakker43b7e352011-01-18 15:27:19 +0000[diff] [blame]162
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]163 if (MBEDTLS_RSA_PRIVATE != mode) {
164 return MBEDTLS_ERR_RSA_BAD_INPUT_DATA;
165 }
Paul Bakker43b7e352011-01-18 15:27:19 +0000[diff] [blame]166
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]167 if (md_alg != MBEDTLS_MD_NONE) {
168 const mbedtls_md_info_t *md_info = mbedtls_md_info_from_type(md_alg);
169 if (md_info == NULL) {
170 return MBEDTLS_ERR_RSA_BAD_INPUT_DATA;
171 }
Steffan Karger28d81a02013-11-13 16:57:58 +0100[diff] [blame]172
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]173 if (mbedtls_oid_get_oid_by_md(md_alg, &oid, &oid_size) != 0) {
174 return MBEDTLS_ERR_RSA_BAD_INPUT_DATA;
175 }
Steffan Karger28d81a02013-11-13 16:57:58 +0100[diff] [blame]176
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]177 hashlen = mbedtls_md_get_size(md_info);
Paul Bakkerdb1f0592014-03-26 14:53:47 +0100[diff] [blame]178 asn_len = 10 + oid_size;
Steffan Karger28d81a02013-11-13 16:57:58 +0100[diff] [blame]179 }
180
Paul Bakkerdb1f0592014-03-26 14:53:47 +0100[diff] [blame]181 sig_len = ctx->len;
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]182 if (hashlen > sig_len || asn_len > sig_len ||
183 hashlen + asn_len > sig_len) {
184 return MBEDTLS_ERR_RSA_BAD_INPUT_DATA;
Steffan Karger28d81a02013-11-13 16:57:58 +0100[diff] [blame]185 }
Paul Bakkerdb1f0592014-03-26 14:53:47 +0100[diff] [blame]186
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]187 if (md_alg != MBEDTLS_MD_NONE) {
Steffan Karger28d81a02013-11-13 16:57:58 +0100[diff] [blame]188 /*
189 * DigestInfo ::= SEQUENCE {
190 * digestAlgorithm DigestAlgorithmIdentifier,
191 * digest Digest }
192 *
193 * DigestAlgorithmIdentifier ::= AlgorithmIdentifier
194 *
195 * Digest ::= OCTET STRING
196 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]197 *p++ = MBEDTLS_ASN1_SEQUENCE | MBEDTLS_ASN1_CONSTRUCTED;
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]198 *p++ = (unsigned char) (0x08 + oid_size + hashlen);
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]199 *p++ = MBEDTLS_ASN1_SEQUENCE | MBEDTLS_ASN1_CONSTRUCTED;
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]200 *p++ = (unsigned char) (0x04 + oid_size);
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]201 *p++ = MBEDTLS_ASN1_OID;
Steffan Karger28d81a02013-11-13 16:57:58 +0100[diff] [blame]202 *p++ = oid_size & 0xFF;
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]203 memcpy(p, oid, oid_size);
Steffan Karger28d81a02013-11-13 16:57:58 +0100[diff] [blame]204 p += oid_size;
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]205 *p++ = MBEDTLS_ASN1_NULL;
Steffan Karger28d81a02013-11-13 16:57:58 +0100[diff] [blame]206 *p++ = 0x00;
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]207 *p++ = MBEDTLS_ASN1_OCTET_STRING;
Steffan Karger28d81a02013-11-13 16:57:58 +0100[diff] [blame]208 *p++ = hashlen;
Paul Bakker43b7e352011-01-18 15:27:19 +0000[diff] [blame]209 }
210
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]211 memcpy(p, hash, hashlen);
Paul Bakkerdb1f0592014-03-26 14:53:47 +0100[diff] [blame]212
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]213 if (pkcs11h_certificate_signAny(ctx->pkcs11h_cert, CKM_RSA_PKCS, sig,
214 asn_len + hashlen, sig, &sig_len) != CKR_OK) {
215 return MBEDTLS_ERR_RSA_BAD_INPUT_DATA;
Paul Bakker43b7e352011-01-18 15:27:19 +0000[diff] [blame]216 }
217
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]218 return 0;
Paul Bakker43b7e352011-01-18 15:27:19 +0000[diff] [blame]219}
220
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]221#endif /* defined(MBEDTLS_PKCS11_C) */