TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls / 8174662b648d03c5503dfea15a57106ca7dd5312 / . / library / pk_wrap.h
blob: a6237bf6386cb7b6208b1d9c75a8f6536b412d59 [file] [log] [blame]
Manuel Pégourié-Gonnardd73b3c12013-08-12 17:06:05 +0200[diff] [blame]1/**
Chris Jonesdaacb592021-03-09 17:03:29 +0000[diff] [blame]2 * \file pk_wrap.h
Manuel Pégourié-Gonnardd73b3c12013-08-12 17:06:05 +0200[diff] [blame]3 *
4 * \brief Public Key abstraction layer: wrapper functions
Darryl Greena40a1012018-01-05 15:33:17 +0000[diff] [blame]5 */
6/*
Bence Szépkúti1e148272020-08-07 13:07:28 +0200[diff] [blame]7 * Copyright The Mbed TLS Contributors
Dave Rodgman16799db2023-11-02 19:47:20 +0000[diff] [blame]8 * SPDX-License-Identifier: Apache-2.0 OR GPL-2.0-or-later
Manuel Pégourié-Gonnardd73b3c12013-08-12 17:06:05 +0200[diff] [blame]9 */
10
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]11#ifndef MBEDTLS_PK_WRAP_H
12#define MBEDTLS_PK_WRAP_H
Manuel Pégourié-Gonnardd73b3c12013-08-12 17:06:05 +0200[diff] [blame]13
Bence Szépkútic662b362021-05-27 11:25:03 +0200[diff] [blame]14#include "mbedtls/build_info.h"
Manuel Pégourié-Gonnardd73b3c12013-08-12 17:06:05 +0200[diff] [blame]15
Jaeden Ameroc49fbbf2019-07-04 20:01:14 +0100[diff] [blame]16#include "mbedtls/pk.h"
Manuel Pégourié-Gonnardd73b3c12013-08-12 17:06:05 +0200[diff] [blame]17
Jerry Yub02ee182022-03-16 10:30:41 +0800[diff] [blame]18#if defined(MBEDTLS_PSA_CRYPTO_C)
19#include "psa/crypto.h"
20#endif /* MBEDTLS_PSA_CRYPTO_C */
21
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]22struct mbedtls_pk_info_t {
Manuel Pégourié-Gonnardc89d6cf2015-03-31 14:43:19 +0200[diff] [blame]23 /** Public key type */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]24 mbedtls_pk_type_t type;
Manuel Pégourié-Gonnardc89d6cf2015-03-31 14:43:19 +0200[diff] [blame]25
26 /** Type name */
27 const char *name;
28
29 /** Get key size in bits */
valerio38992cb2023-04-20 09:56:30 +0200[diff] [blame]30 size_t (*get_bitlen)(mbedtls_pk_context *pk);
Manuel Pégourié-Gonnardc89d6cf2015-03-31 14:43:19 +0200[diff] [blame]31
32 /** Tell if the context implements this type (e.g. ECKEY can do ECDSA) */
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]33 int (*can_do)(mbedtls_pk_type_t type);
Manuel Pégourié-Gonnardc89d6cf2015-03-31 14:43:19 +0200[diff] [blame]34
35 /** Verify signature */
valerio38992cb2023-04-20 09:56:30 +0200[diff] [blame]36 int (*verify_func)(mbedtls_pk_context *pk, mbedtls_md_type_t md_alg,
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]37 const unsigned char *hash, size_t hash_len,
38 const unsigned char *sig, size_t sig_len);
Manuel Pégourié-Gonnardc89d6cf2015-03-31 14:43:19 +0200[diff] [blame]39
40 /** Make signature */
valerio38992cb2023-04-20 09:56:30 +0200[diff] [blame]41 int (*sign_func)(mbedtls_pk_context *pk, mbedtls_md_type_t md_alg,
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]42 const unsigned char *hash, size_t hash_len,
43 unsigned char *sig, size_t sig_size, size_t *sig_len,
44 int (*f_rng)(void *, unsigned char *, size_t),
45 void *p_rng);
Manuel Pégourié-Gonnardc89d6cf2015-03-31 14:43:19 +0200[diff] [blame]46
Valerio Setti5b16e9e2023-02-07 08:08:53 +0100[diff] [blame]47#if defined(MBEDTLS_ECDSA_C) && defined(MBEDTLS_ECP_RESTARTABLE)
Manuel Pégourié-Gonnard1f596062017-05-09 10:42:40 +0200[diff] [blame]48 /** Verify signature (restartable) */
valerio38992cb2023-04-20 09:56:30 +0200[diff] [blame]49 int (*verify_rs_func)(mbedtls_pk_context *pk, mbedtls_md_type_t md_alg,
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]50 const unsigned char *hash, size_t hash_len,
51 const unsigned char *sig, size_t sig_len,
52 void *rs_ctx);
Manuel Pégourié-Gonnard1f596062017-05-09 10:42:40 +0200[diff] [blame]53
54 /** Make signature (restartable) */
valerio38992cb2023-04-20 09:56:30 +0200[diff] [blame]55 int (*sign_rs_func)(mbedtls_pk_context *pk, mbedtls_md_type_t md_alg,
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]56 const unsigned char *hash, size_t hash_len,
57 unsigned char *sig, size_t sig_size, size_t *sig_len,
58 int (*f_rng)(void *, unsigned char *, size_t),
59 void *p_rng, void *rs_ctx);
Manuel Pégourié-Gonnardaaa98142017-08-18 17:30:37 +0200[diff] [blame]60#endif /* MBEDTLS_ECDSA_C && MBEDTLS_ECP_RESTARTABLE */
Manuel Pégourié-Gonnard1f596062017-05-09 10:42:40 +0200[diff] [blame]61
Manuel Pégourié-Gonnardc89d6cf2015-03-31 14:43:19 +0200[diff] [blame]62 /** Decrypt message */
valerio38992cb2023-04-20 09:56:30 +0200[diff] [blame]63 int (*decrypt_func)(mbedtls_pk_context *pk, const unsigned char *input, size_t ilen,
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]64 unsigned char *output, size_t *olen, size_t osize,
65 int (*f_rng)(void *, unsigned char *, size_t),
66 void *p_rng);
Manuel Pégourié-Gonnardc89d6cf2015-03-31 14:43:19 +0200[diff] [blame]67
68 /** Encrypt message */
valerio38992cb2023-04-20 09:56:30 +0200[diff] [blame]69 int (*encrypt_func)(mbedtls_pk_context *pk, const unsigned char *input, size_t ilen,
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]70 unsigned char *output, size_t *olen, size_t osize,
71 int (*f_rng)(void *, unsigned char *, size_t),
72 void *p_rng);
Manuel Pégourié-Gonnardc89d6cf2015-03-31 14:43:19 +0200[diff] [blame]73
74 /** Check public-private key pair */
valerio38992cb2023-04-20 09:56:30 +0200[diff] [blame]75 int (*check_pair_func)(mbedtls_pk_context *pub, mbedtls_pk_context *prv,
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]76 int (*f_rng)(void *, unsigned char *, size_t),
77 void *p_rng);
Manuel Pégourié-Gonnardc89d6cf2015-03-31 14:43:19 +0200[diff] [blame]78
79 /** Allocate a new context */
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]80 void * (*ctx_alloc_func)(void);
Manuel Pégourié-Gonnardc89d6cf2015-03-31 14:43:19 +0200[diff] [blame]81
82 /** Free the given context */
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]83 void (*ctx_free_func)(void *ctx);
Manuel Pégourié-Gonnardc89d6cf2015-03-31 14:43:19 +0200[diff] [blame]84
Manuel Pégourié-Gonnardaaa98142017-08-18 17:30:37 +0200[diff] [blame]85#if defined(MBEDTLS_ECDSA_C) && defined(MBEDTLS_ECP_RESTARTABLE)
Manuel Pégourié-Gonnard0bbc66c2017-08-18 16:22:06 +0200[diff] [blame]86 /** Allocate the restart context */
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]87 void *(*rs_alloc_func)(void);
Manuel Pégourié-Gonnard0bbc66c2017-08-18 16:22:06 +0200[diff] [blame]88
89 /** Free the restart context */
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]90 void (*rs_free_func)(void *rs_ctx);
Manuel Pégourié-Gonnardaaa98142017-08-18 17:30:37 +0200[diff] [blame]91#endif /* MBEDTLS_ECDSA_C && MBEDTLS_ECP_RESTARTABLE */
Manuel Pégourié-Gonnard0bbc66c2017-08-18 16:22:06 +0200[diff] [blame]92
Manuel Pégourié-Gonnardc89d6cf2015-03-31 14:43:19 +0200[diff] [blame]93 /** Interface with the debug module */
valerio38992cb2023-04-20 09:56:30 +0200[diff] [blame]94 void (*debug_func)(mbedtls_pk_context *pk, mbedtls_pk_debug_item *items);
Manuel Pégourié-Gonnardc89d6cf2015-03-31 14:43:19 +0200[diff] [blame]95
96};
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]97#if defined(MBEDTLS_PK_RSA_ALT_SUPPORT)
Manuel Pégourié-Gonnard12c1ff02013-08-21 12:28:31 +0200[diff] [blame]98/* Container for RSA-alt */
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]99typedef struct {
Manuel Pégourié-Gonnard12c1ff02013-08-21 12:28:31 +0200[diff] [blame]100 void *key;
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]101 mbedtls_pk_rsa_alt_decrypt_func decrypt_func;
102 mbedtls_pk_rsa_alt_sign_func sign_func;
103 mbedtls_pk_rsa_alt_key_len_func key_len_func;
104} mbedtls_rsa_alt_context;
Manuel Pégourié-Gonnard348bcb32015-03-31 14:01:33 +0200[diff] [blame]105#endif
Manuel Pégourié-Gonnard12c1ff02013-08-21 12:28:31 +0200[diff] [blame]106
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]107#if defined(MBEDTLS_RSA_C)
108extern const mbedtls_pk_info_t mbedtls_rsa_info;
Manuel Pégourié-Gonnardd73b3c12013-08-12 17:06:05 +0200[diff] [blame]109#endif
110
Valerio Setti81d75122023-06-14 14:49:33 +0200[diff] [blame]111#if defined(MBEDTLS_PK_HAVE_ECC_KEYS)
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]112extern const mbedtls_pk_info_t mbedtls_eckey_info;
113extern const mbedtls_pk_info_t mbedtls_eckeydh_info;
Manuel Pégourié-Gonnardd73b3c12013-08-12 17:06:05 +0200[diff] [blame]114#endif
115
Valerio Setti7ca13182023-01-27 13:22:42 +0100[diff] [blame]116#if defined(MBEDTLS_PK_CAN_ECDSA_SOME)
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]117extern const mbedtls_pk_info_t mbedtls_ecdsa_info;
Manuel Pégourié-Gonnardd73b3c12013-08-12 17:06:05 +0200[diff] [blame]118#endif
119
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]120#if defined(MBEDTLS_PK_RSA_ALT_SUPPORT)
121extern const mbedtls_pk_info_t mbedtls_rsa_alt_info;
Manuel Pégourié-Gonnard348bcb32015-03-31 14:01:33 +0200[diff] [blame]122#endif
Manuel Pégourié-Gonnard12c1ff02013-08-21 12:28:31 +0200[diff] [blame]123
Manuel Pégourié-Gonnard1ecf92c32018-10-22 12:11:15 +0200[diff] [blame]124#if defined(MBEDTLS_USE_PSA_CRYPTO)
Valerio Setti76d0f962023-06-23 13:32:54 +0200[diff] [blame]125extern const mbedtls_pk_info_t mbedtls_ecdsa_opaque_info;
126extern const mbedtls_pk_info_t mbedtls_rsa_opaque_info;
Neil Armstrong19915c22022-03-01 15:21:02 +0100[diff] [blame]127
Andrzej Kurek8a045ce2022-12-23 11:00:06 -0500[diff] [blame]128#if !defined(MBEDTLS_DEPRECATED_REMOVED)
Neil Armstrong19915c22022-03-01 15:21:02 +0100[diff] [blame]129#if defined(PSA_WANT_KEY_TYPE_ECC_PUBLIC_KEY)
Andrzej Kurek8a045ce2022-12-23 11:00:06 -0500[diff] [blame]130int MBEDTLS_DEPRECATED mbedtls_pk_error_from_psa_ecdsa(psa_status_t status);
131#endif
Neil Armstrong19915c22022-03-01 15:21:02 +0100[diff] [blame]132#endif
133
Tomi Fontanilles81746622023-07-16 13:06:06 +0300[diff] [blame^]134#if defined(MBEDTLS_RSA_C)
135int mbedtls_pk_psa_rsa_sign_ext(psa_algorithm_t psa_alg_md,
136 mbedtls_rsa_context *rsa_ctx,
137 const unsigned char *hash, size_t hash_len,
138 unsigned char *sig, size_t sig_size,
139 size_t *sig_len);
140#endif /* MBEDTLS_RSA_C */
141
Jerry Yuf8aa9a42022-03-23 20:40:28 +0800[diff] [blame]142#endif /* MBEDTLS_USE_PSA_CRYPTO */
Jerry Yu75339822022-03-23 12:06:31 +0800[diff] [blame]143
144#if defined(MBEDTLS_PSA_CRYPTO_C)
Andrzej Kurek8a045ce2022-12-23 11:00:06 -0500[diff] [blame]145#if !defined(MBEDTLS_DEPRECATED_REMOVED)
146int MBEDTLS_DEPRECATED mbedtls_pk_error_from_psa(psa_status_t status);
Jerry Yu75339822022-03-23 12:06:31 +0800[diff] [blame]147
Neil Armstrong30beca32022-05-03 15:42:13 +0200[diff] [blame]148#if defined(PSA_WANT_KEY_TYPE_RSA_PUBLIC_KEY) || \
Valerio Settif6d4dfb2023-07-10 10:55:12 +0200[diff] [blame]149 defined(PSA_WANT_KEY_TYPE_RSA_KEY_PAIR_BASIC)
Andrzej Kurek8a045ce2022-12-23 11:00:06 -0500[diff] [blame]150int MBEDTLS_DEPRECATED mbedtls_pk_error_from_psa_rsa(psa_status_t status);
Valerio Settif6d4dfb2023-07-10 10:55:12 +0200[diff] [blame]151#endif /* PSA_WANT_KEY_TYPE_RSA_PUBLIC_KEY || PSA_WANT_KEY_TYPE_RSA_KEY_PAIR_BASIC */
Andrzej Kurek8a045ce2022-12-23 11:00:06 -0500[diff] [blame]152#endif /* !MBEDTLS_DEPRECATED_REMOVED */
Jerry Yu1d172a32022-03-12 19:12:05 +0800[diff] [blame]153
Jerry Yu406cf272022-03-22 11:33:42 +0800[diff] [blame]154#endif /* MBEDTLS_PSA_CRYPTO_C */
Neil Armstrong19915c22022-03-01 15:21:02 +0100[diff] [blame]155
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]156#endif /* MBEDTLS_PK_WRAP_H */