1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
431
432
433
434
435
436
437
438
439
440
441
442
443
444
445
446
447
448
449
450
451
452
453
454
455
456
457
458
459
460
461
462
463
464
465
466
467
468
469
470
471
472
473
474
475
476
477
478
479
480
481
482
483
484
485
486
487
488
489
490
491
492
493
494
495
496
497
498
499
500
501
502
503
504
505
506
507
508
509
510
511
512
513
514
515
516
517
518
519
520
521
522
523
524
525
526
527
528
529
530
531
532
533
534
535
536
537
538
539
540
541
542
543
544
545
546
547
548
549
550
551
552
553
554
555
556
557
558
559
560
561
562
563
564
565
566
567
568
569
570
571
572
573
574
575
576
577
578
579
580
581
582
583
584
585
586
587
588
589
590
591
592
593
594
595
596
597
598
599
600
601
602
603
604
605
606
607
608
609
610
611
612
613
614
615
616
617
618
619
620
621
622
|
/** @file
* IPRT - Public Key Infrastructure APIs.
*/
/*
* Copyright (C) 2006-2025 Oracle and/or its affiliates.
*
* This file is part of VirtualBox base platform packages, as
* available from https://www.virtualbox.org.
*
* This program is free software; you can redistribute it and/or
* modify it under the terms of the GNU General Public License
* as published by the Free Software Foundation, in version 3 of the
* License.
*
* This program is distributed in the hope that it will be useful, but
* WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
* General Public License for more details.
*
* You should have received a copy of the GNU General Public License
* along with this program; if not, see <https://www.gnu.org/licenses>.
*
* The contents of this file may alternatively be used under the terms
* of the Common Development and Distribution License Version 1.0
* (CDDL), a copy of it is provided in the "COPYING.CDDL" file included
* in the VirtualBox distribution, in which case the provisions of the
* CDDL are applicable instead of those of the GPL.
*
* You may elect to license modified versions of this file under the
* terms and conditions of either the GPL or the CDDL or both.
*
* SPDX-License-Identifier: GPL-3.0-only OR CDDL-1.0
*/
#ifndef IPRT_INCLUDED_crypto_pkix_h
#define IPRT_INCLUDED_crypto_pkix_h
#ifndef RT_WITHOUT_PRAGMA_ONCE
# pragma once
#endif
#include <iprt/asn1.h>
RT_C_DECLS_BEGIN
struct RTCRX509CERTIFICATE;
struct RTCRX509SUBJECTPUBLICKEYINFO;
/** @defgroup grp_rt_crpkix RTCrPkix - Public Key Infrastructure APIs
* @ingroup grp_rt_crypto
* @{
*/
/**
* Verifies the signature (@a pSignatureValue) of the give data (@a pvData)
* using the specfied public key (@a pPublicKey) and algorithm.
*
* @returns IPRT status code.
* @param pAlgorithm The signature algorithm (digest w/ cipher).
* @param hPublicKey The public key.
* @param pParameters The signature parameters (not key, those are already
* kept by hPublicKey).
* @param pSignatureValue The signature value.
* @param pvData The signed data.
* @param cbData The amount of signed data.
* @param pErrInfo Where to return extended error info. Optional.
*
* @remarks Depending on the IPRT build configuration, the verficiation may be
* performed more than once using all available crypto implementations.
*/
RTDECL(int) RTCrPkixPubKeyVerifySignature(PCRTASN1OBJID pAlgorithm, RTCRKEY hPublicKey, PCRTASN1DYNTYPE pParameters,
PCRTASN1BITSTRING pSignatureValue, const void *pvData, size_t cbData,
PRTERRINFO pErrInfo);
/**
* Verifies the signed digest (@a pvSignedDigest) against our digest (@a
* hDigest) using the specfied public key (@a pPublicKey) and algorithm.
*
* @returns IPRT status code.
* @param pAlgorithm The signature algorithm (digest w/ cipher).
* @param hPublicKey The public key.
* @param pParameters The signature parameters (not key, those are already
* kept by hPublicKey).
* @param pvSignedDigest The signed digest.
* @param cbSignedDigest The signed digest size.
* @param hDigest The digest of the data to compare @a pvSignedDigest
* with.
* @param pErrInfo Where to return extended error info. Optional.
*
* @remarks Depending on the IPRT build configuration, the verficiation may be
* performed more than once using all available crypto implementations.
*/
RTDECL(int) RTCrPkixPubKeyVerifySignedDigest(PCRTASN1OBJID pAlgorithm, RTCRKEY hPublicKey, PCRTASN1DYNTYPE pParameters,
void const *pvSignedDigest, size_t cbSignedDigest,
RTCRDIGEST hDigest, PRTERRINFO pErrInfo);
/**
* Wrapper around RTCrPkixPubKeyVerifySignedDigest & RTCrKeyCreateFromAlgorithmAndBits.
*
* @note The public key info must include digest type for this to work.
*/
RTDECL(int) RTCrPkixPubKeyVerifySignedDigestByCertPubKeyInfo(struct RTCRX509SUBJECTPUBLICKEYINFO const *pCertPubKeyInfo,
void const *pvSignedDigest, size_t cbSignedDigest,
RTCRDIGEST hDigest, PRTERRINFO pErrInfo);
/**
* Checks if the hash size can be handled by the given public key.
*/
RTDECL(bool) RTCrPkixPubKeyCanHandleDigestType(struct RTCRX509SUBJECTPUBLICKEYINFO const *pPublicKeyInfo,
RTDIGESTTYPE enmDigestType, PRTERRINFO pErrInfo);
/**
* Checks if the hash size can be handled by the given certificate's public key.
*/
RTDECL(bool) RTCrPkixCanCertHandleDigestType(struct RTCRX509CERTIFICATE const *pCertificate,
RTDIGESTTYPE enmDigestType, PRTERRINFO pErrInfo);
/**
* Signs a digest (@a hDigest) using the specified private key (@a pPrivateKey) and algorithm.
*
* @returns IPRT status code.
* @param pAlgorithm The signature algorithm (digest w/ cipher).
* @param hPrivateKey Handle to the private key to use.
* @param pParameters Parameter to the public key algorithm. Optional.
* @param hDigest The digest of the data being signed.
* @param fFlags Flags for future extensions, MBZ.
* @param pvSignature The output signature buffer. Pass NULL to query
* the signature size.
* @param pcbSignature On input the variable pointed to holds the size of
* the buffer @a pvSignature points to.
* On return the variable pointed to is set to the size
* of the returned signature, or the required size in
* case of VERR_BUFFER_OVERFLOW.
* @param pErrInfo Where to return extended error info. Optional.
*
* @remarks Depending on the IPRT build configuration and the algorithm used, the
* signing may be performed more than once using all available crypto
* implementations.
*/
RTDECL(int) RTCrPkixPubKeySignDigest(PCRTASN1OBJID pAlgorithm, RTCRKEY hPrivateKey, PCRTASN1DYNTYPE pParameters,
RTCRDIGEST hDigest, uint32_t fFlags,
void *pvSignature, size_t *pcbSignature, PRTERRINFO pErrInfo);
/**
* Gets the cipher OID matching the given signature algorithm.
*
* @returns Cipher OID string on success, NULL on failure.
* @param pAlgorithm The signature algorithm (hash function w/ cipher).
* @sa RTCrX509AlgorithmIdentifier_GetEncryptionOid,
* RTCrX509AlgorithmIdentifier_GetEncryptionOidFromOid
*/
RTDECL(const char *) RTCrPkixGetCiperOidFromSignatureAlgorithm(PCRTASN1OBJID pAlgorithm);
/**
* Gets the cipher OID matching the given signature algorithm OID.
*
* @returns Cipher OID string on success, NULL on failure.
* @param pszSignatureOid The signature algorithm ID (hash function w/ cipher).
* @sa RTCrX509AlgorithmIdentifier_GetEncryptionOid,
* RTCrX509AlgorithmIdentifier_GetEncryptionOidFromOid
*/
RTDECL(const char *) RTCrPkixGetCiperOidFromSignatureAlgorithmOid(const char *pszSignatureOid);
/** @name PKCS-1 Object Identifiers (OIDs)
* @{ */
#define RTCR_PKCS1_OID "1.2.840.113549.1.1"
#define RTCR_PKCS1_RSA_OID "1.2.840.113549.1.1.1"
#define RTCR_PKCS1_MD2_WITH_RSA_OID "1.2.840.113549.1.1.2"
#define RTCR_PKCS1_MD4_WITH_RSA_OID "1.2.840.113549.1.1.3"
#define RTCR_PKCS1_MD5_WITH_RSA_OID "1.2.840.113549.1.1.4"
#define RTCR_PKCS1_SHA1_WITH_RSA_OID "1.2.840.113549.1.1.5"
#define RTCR_PKCS1_RSA_OAEP_ENCRYPTION_SET_OID "1.2.840.113549.1.1.6"
#define RTCR_PKCS1_RSA_AES_OAEP_OID "1.2.840.113549.1.1.7"
#define RTCR_PKCS1_MSGF1_OID "1.2.840.113549.1.1.8"
#define RTCR_PKCS1_P_SPECIFIED_OID "1.2.840.113549.1.1.9"
#define RTCR_PKCS1_RSASSA_PSS_OID "1.2.840.113549.1.1.10"
#define RTCR_PKCS1_SHA256_WITH_RSA_OID "1.2.840.113549.1.1.11"
#define RTCR_PKCS1_SHA384_WITH_RSA_OID "1.2.840.113549.1.1.12"
#define RTCR_PKCS1_SHA512_WITH_RSA_OID "1.2.840.113549.1.1.13"
#define RTCR_PKCS1_SHA224_WITH_RSA_OID "1.2.840.113549.1.1.14"
#define RTCR_PKCS1_SHA512T224_WITH_RSA_OID "1.2.840.113549.1.1.15"
#define RTCR_PKCS1_SHA512T256_WITH_RSA_OID "1.2.840.113549.1.1.16"
/** @} */
/** @name ANSI X9.62 Object Identifiers (OIDs)
* @{ */
#define RTCR_X962_ECDSA_OID "1.2.840.10045.2.1"
#define RTCR_X962_ECDSA_WITH_SHA1_OID "1.2.840.10045.4.1"
#define RTCR_X962_ECDSA_WITH_SHA2_OID "1.2.840.10045.4.3"
#define RTCR_X962_ECDSA_WITH_SHA224_OID "1.2.840.10045.4.3.1"
#define RTCR_X962_ECDSA_WITH_SHA256_OID "1.2.840.10045.4.3.2"
#define RTCR_X962_ECDSA_WITH_SHA384_OID "1.2.840.10045.4.3.3"
#define RTCR_X962_ECDSA_WITH_SHA512_OID "1.2.840.10045.4.3.4"
/** @} */
/** @name NIST Object Identifiers (OIDs)
* @{ */
#define RTCR_NIST_ALGORITHM_OID "2.16.840.1.101.3.4"
#define RTCR_NIST_HASH_ALGS_OID "2.16.840.1.101.3.4.2"
#define RTCR_NIST_SIG_ALGS_OID "2.16.840.1.101.3.4.3"
#define RTCR_NIST_SHA3_224_WITH_ECDSA_OID "2.16.840.1.101.3.4.3.9"
#define RTCR_NIST_SHA3_256_WITH_ECDSA_OID "2.16.840.1.101.3.4.3.10"
#define RTCR_NIST_SHA3_384_WITH_ECDSA_OID "2.16.840.1.101.3.4.3.11"
#define RTCR_NIST_SHA3_512_WITH_ECDSA_OID "2.16.840.1.101.3.4.3.12"
#define RTCR_NIST_SHA3_224_WITH_RSA_OID "2.16.840.1.101.3.4.3.13"
#define RTCR_NIST_SHA3_256_WITH_RSA_OID "2.16.840.1.101.3.4.3.14"
#define RTCR_NIST_SHA3_384_WITH_RSA_OID "2.16.840.1.101.3.4.3.15"
#define RTCR_NIST_SHA3_512_WITH_RSA_OID "2.16.840.1.101.3.4.3.16"
/** @} */
/**
* Public key signature scheme provider descriptor.
*/
typedef struct RTCRPKIXSIGNATUREDESC
{
/** The signature scheme provider name. */
const char *pszName;
/** The object ID string. */
const char *pszObjId;
/** Pointer to a NULL terminated table of alias object IDs (optional). */
const char * const *papszObjIdAliases;
/** The size of the state. */
uint32_t cbState;
/** Reserved for future / explicit padding. */
uint32_t uReserved;
/** Provider specific field. This generally indicates the kind of padding
* scheme to employ with the given OID. */
uintptr_t uProviderSpecific;
/**
* Initializes the state of the signature scheme provider.
*
* Optional, RT_BZERO will be used if NULL.
*
* @returns IPRT status code.
* @param pDesc Pointer to this structure (for uProviderSpecific).
* @param pvState The opaque provider state.
* @param pvOpaque Opaque provider specific parameter.
* @param fSigning Set if a signing operation is going to be performed,
* clear if it is a verification. This is a fixed
* setting for the lifetime of the instance due to the
* algorithm requiring different keys.
* @param hKey The key handle. Caller has retained it for the
* lifetime of the state being initialize.
* @param pParams Algorithm/key parameters, optional. Will be NULL if
* none.
*/
DECLCALLBACKMEMBER(int, pfnInit,(struct RTCRPKIXSIGNATUREDESC const *pDesc, void *pvState, void *pvOpaque, bool fSigning,
RTCRKEY hKey, PCRTASN1DYNTYPE pParams));
/**
* Resets the state before performing another signing or verification.
*
* Optional. It is assumed that the provider does not have any state needing to
* be re-initialized if this method is not implemented.
*
* @returns IPRT status code.
* @param pDesc Pointer to this structure (for uProviderSpecific).
* @param pvState The opaque provider state.
* @param fSigning Exactly the same value as the init call.
*/
DECLCALLBACKMEMBER(int, pfnReset,(struct RTCRPKIXSIGNATUREDESC const *pDesc, void *pvState, bool fSigning));
/**
* Deletes the provider state. Optional.
*
* The state will be securely wiped clean after the call, regardless of whether
* the method is implemented or not.
*
* @param pDesc Pointer to this structure (for uProviderSpecific).
* @param pvState The opaque provider state.
* @param fSigning Exactly the same value as the init call.
*/
DECLCALLBACKMEMBER(void, pfnDelete,(struct RTCRPKIXSIGNATUREDESC const *pDesc, void *pvState, bool fSigning));
/**
* Verifies a signed message digest (fSigning = false).
*
* @returns IPRT status code.
* @retval VINF_SUCCESS if the signature checked out correctly.
* @retval VINF_CR_DIGEST_DEPRECATED if the signature checked out correctly
* but the hash algorithm is deprecated.
* @retval VINF_CR_DIGEST_COMPROMISED if the signature checked out correctly
* but the hash algorithm is compromised.
* @retval VINF_CR_DIGEST_SEVERELY_COMPROMISED if the signature checked out
* correctly but the hash algorithm is severely compromised.
* @retval VERR_PKIX_KEY wrong key or some other key issue.
*
* @param pDesc Pointer to this structure (for uProviderSpecific).
* @param pvState The opaque provider state.
* @param hKey The key handle associated with the state at init.
* @param hDigest The handle to the digest. Calls RTCrDigestFinal to
* complete and retreive the final hash value.
* @param pvSignature The signature to validate.
* @param cbSignature The size of the signature (in bytes).
*/
DECLCALLBACKMEMBER(int, pfnVerify,(struct RTCRPKIXSIGNATUREDESC const *pDesc, void *pvState, RTCRKEY hKey,
RTCRDIGEST hDigest, void const *pvSignature, size_t cbSignature));
/**
* Sign a message digest (fSigning = true).
*
* @returns IPRT status code.
* @retval VINF_SUCCESS on success.
* @retval VINF_CR_DIGEST_DEPRECATED on success but the hash algorithm is deprecated.
* @retval VINF_CR_DIGEST_COMPROMISED on success but the hash algorithm is compromised.
* @retval VINF_CR_DIGEST_SEVERELY_COMPROMISED on success but the hash algorithm
* is severely compromised.
* @retval VERR_PKIX_KEY wrong key or some other key issue.
* @retval VERR_BUFFER_OVERFLOW if the signature buffer is too small, the
* require buffer size will be available in @a *pcbSignature.
*
* @param pDesc Pointer to this structure (for uProviderSpecific).
* @param pvState The opaque provider state.
* @param hKey The key handle associated with the state at init.
* @param hDigest The handle to the digest. Calls RTCrDigestFinal to
* complete and retreive the final hash value.
* @param pvSignature The output signature buffer.
* @param pcbSignature On input the variable pointed to holds the size of
* the buffer @a pvSignature points to.
* On return the variable pointed to is set to the size
* of the returned signature, or the required size in
* case of VERR_BUFFER_OVERFLOW.
*/
DECLCALLBACKMEMBER(int, pfnSign,(struct RTCRPKIXSIGNATUREDESC const *pDesc, void *pvState, RTCRKEY hKey,
RTCRDIGEST hDigest, void *pvSignature, size_t *pcbSignature));
} RTCRPKIXSIGNATUREDESC;
/** Pointer to a public key signature scheme provider descriptor. */
typedef RTCRPKIXSIGNATUREDESC const *PCRTCRPKIXSIGNATUREDESC;
/**
* Locates a signature schema provider descriptor by object ID string.
* @returns Pointer to descriptor on success, NULL on if not found.
* @param pszObjId The ID of the signature to search for.
* @param ppvOpaque Where to store an opaque schema parameter. Optional.
*/
PCRTCRPKIXSIGNATUREDESC RTCrPkixSignatureFindByObjIdString(const char *pszObjId, void **ppvOpaque);
/**
* Locates a signature schema provider descriptor by ASN.1 object ID.
* @returns Pointer to descriptor on success, NULL on if not found.
* @param pObjId The ID of the signature to search for.
* @param ppvOpaque Where to store an opaque schema parameter. Optional.
*/
PCRTCRPKIXSIGNATUREDESC RTCrPkixSignatureFindByObjId(PCRTASN1OBJID pObjId, void **ppvOpaque);
/**
* Create a signature schema provier instance.
*
* @returns IPRT status code.
* @param phSignature Where to return the handle to the created instance.
* @param pDesc The signature schema provider descriptor. Use
* RTCrPkixSignatureFindByObjIdString() or RTCrPkixSignatureFindByObjId()
* to get this.
* @param pvOpaque The opaque schema parameter returned by the find functions.
* @param fSigning Set if the intention is to sign stuff, clear if verification only.
* @param hKey The key handle. A referenced will be retained.
* @param pParams Algorithm/key parameters, optional.
*/
RTDECL(int) RTCrPkixSignatureCreate(PRTCRPKIXSIGNATURE phSignature, PCRTCRPKIXSIGNATUREDESC pDesc, void *pvOpaque,
bool fSigning, RTCRKEY hKey, PCRTASN1DYNTYPE pParams);
/** Convenience wrapper function for RTCrPkixSignatureCreate(). */
RTDECL(int) RTCrPkixSignatureCreateByObjIdString(PRTCRPKIXSIGNATURE phSignature, const char *pszObjId,
RTCRKEY hKey, PCRTASN1DYNTYPE pParams, bool fSigning);
/** Convenience wrapper function for RTCrPkixSignatureCreate(). */
RTDECL(int) RTCrPkixSignatureCreateByObjId(PRTCRPKIXSIGNATURE phSignature, PCRTASN1OBJID pObjId, RTCRKEY hKey,
PCRTASN1DYNTYPE pParams, bool fSigning);
/**
* Retains a reference to the signature schema provider instance.
*
* @returns New reference count on success, UINT32_MAX if invalid handle.
* @param hSignature The signature schema provider handle.
*/
RTDECL(uint32_t) RTCrPkixSignatureRetain(RTCRPKIXSIGNATURE hSignature);
/**
* Releases a reference to the signature schema provider instance.
*
* @returns New reference count on success, UINT32_MAX if invalid handle.
* @param hSignature The signature schema provider handle. NIL is ignored.
*/
RTDECL(uint32_t) RTCrPkixSignatureRelease(RTCRPKIXSIGNATURE hSignature);
/**
* Verifies a signed message digest.
*
* @returns IPRT status code.
* @retval VINF_SUCCESS if the signature checked out correctly.
* @retval VINF_CR_DIGEST_DEPRECATED if the signature checked out correctly
* but the hash algorithm is deprecated.
* @retval VINF_CR_DIGEST_COMPROMISED if the signature checked out correctly
* but the hash algorithm is compromised.
* @retval VINF_CR_DIGEST_SEVERELY_COMPROMISED if the signature checked out
* correctly but the hash algorithm is severely compromised.
* @retval VERR_PKIX_KEY wrong key or some other key issue.
*
* @param hSignature The signature schema provider handle.
* @param hDigest The handle to the digest. All that must have been
* feed to it via RTCrDigestUpdate() and friends prior
* to calling this function. The function will itself
* call RTCrDigestFinal() to complete and retreive the
* final hash value.
* @param pvSignature The signature to validate.
* @param cbSignature The size of the signature (in bytes).
*/
RTDECL(int) RTCrPkixSignatureVerify(RTCRPKIXSIGNATURE hSignature, RTCRDIGEST hDigest, void const *pvSignature, size_t cbSignature);
/** Convenience wrapper function for RTCrPkixSignatureVerify(). */
RTDECL(int) RTCrPkixSignatureVerifyBitString(RTCRPKIXSIGNATURE hSignature, RTCRDIGEST hDigest, PCRTASN1BITSTRING pSignature);
/** Convenience wrapper function for RTCrPkixSignatureVerify(). */
RTDECL(int) RTCrPkixSignatureVerifyOctetString(RTCRPKIXSIGNATURE hSignature, RTCRDIGEST hDigest, PCRTASN1OCTETSTRING pSignature);
/**
* Sign a message digest.
*
* @returns IPRT status code.
* @retval VINF_SUCCESS on success.
* @retval VINF_CR_DIGEST_DEPRECATED on success but the hash algorithm is deprecated.
* @retval VINF_CR_DIGEST_COMPROMISED on success but the hash algorithm is compromised.
* @retval VINF_CR_DIGEST_SEVERELY_COMPROMISED on success but the hash algorithm
* is severely compromised.
* @retval VERR_PKIX_KEY wrong key or some other key issue.
* @retval VERR_BUFFER_OVERFLOW if the signature buffer is too small, the
* require buffer size will be available in @a *pcbSignature.
*
* @param hSignature The signature schema provider handle.
* @param hDigest The handle to the digest. All that must have been
* feed to it via RTCrDigestUpdate() and friends prior
* to calling this function. The function will itself
* call RTCrDigestFinal() to complete and retreive the
* final hash value.
* @param pvSignature The output signature buffer.
* @param pcbSignature On input the variable pointed to holds the size of
* the buffer @a pvSignature points to.
* On return the variable pointed to is set to the size
* of the returned signature, or the required size in
* case of VERR_BUFFER_OVERFLOW.
*/
RTDECL(int) RTCrPkixSignatureSign(RTCRPKIXSIGNATURE hSignature, RTCRDIGEST hDigest, void *pvSignature, size_t *pcbSignature);
/**
* Public key encryption scheme provider descriptor.
*
* @todo This is just a sketch left over from when the signature code was
* chiseled out.
*/
typedef struct RTCRPKIXENCRYPTIONDESC
{
/** The encryption scheme provider name. */
const char *pszName;
/** The object ID string. */
const char *pszObjId;
/** Pointer to a NULL terminated table of alias object IDs (optional). */
const char * const *papszObjIdAliases;
/** The size of the state. */
uint32_t cbState;
/** Reserved for future use / padding. */
uint32_t uReserved;
/** Provider specific field. */
uintptr_t uProviderSpecific;
/**
* Initializes the state for this encryption scheme.
*
* Optional, RT_BZERO will be used if NULL.
*
* @returns IPRT status code.
* @param pDesc Pointer to this structure (so uProviderSpecific can
* be read).
* @param pvState The opaque provider state.
* @param pvOpaque Opaque provider specific parameter.
* @param fEncrypt Set if the instance will be encrypting, clear if it
* will be decrypting. This aspect of the instance is
* immutable due to the algorithm requiring different
* keys for each of the operations.
* @param pKey The key to use (whether private or public depends on
* the operation type).
* @param pParams Algorithm/key parameters, optional. Will be NULL if
* none.
*/
DECLCALLBACKMEMBER(int, pfnInit,(struct RTCRPKIXENCRYPTIONDESC const *pDesc, void *pvState, void *pvOpaque, bool fEncrypt,
PCRTASN1BITSTRING pKey, PCRTASN1DYNTYPE pParams));
/**
* Re-initializes the provider state.
*
* Optional. It is assumed that the provider does not have any state needing
* to be re-initialized if this method is not implemented. (Do not assume that
* a final encrypt/decrypt call has been made prior to this call.)
*
* @returns IPRT status code.
* @param pDesc Pointer to this structure (so uProviderSpecific can
* be read).
* @param pvState The opaque provider state.
* @param enmOperation Same as for the earlier pfnInit call.
*/
DECLCALLBACKMEMBER(int, pfnReset,(struct RTCRPKIXENCRYPTIONDESC const *pDesc, void *pvState, bool fEncrypt));
/**
* Deletes the provider state. Optional.
*
* The state will be securely wiped clean after the call, regardless of whether
* the method is implemented or not.
*
* @param pDesc Pointer to this structure (so uProviderSpecific can
* be read).
* @param pvState The opaque provider state.
* @param enmOperation Same as for the earlier pfnInit call.
*/
DECLCALLBACKMEMBER(void, pfnDelete,(struct RTCRPKIXENCRYPTIONDESC const *pDesc, void *pvState, bool fEncrypt));
/**
* Encrypt using the public key (fEncrypt = true).
*
* @returns IPRT status code.
* @retval VINF_SUCCESS on success.
* @retval VERR_PKIX_KEY wrong key or some other key issue.
* @retval VERR_BUFFER_OVERFLOW if the output buffer is too small, the require
* buffer size will be available in @a *pcbCiphertext. The caller can
* should retry the call with a larger buffer.
*
* @param pDesc Pointer to this structure (so uProviderSpecific can
* be read).
* @param pvState The opaque provider state.
* @param pvPlaintext The plaintext to encrypt.
* @param cbPlaintext The number of bytes of plaintext.
* @param pvCiphertext Where to return the ciphertext (if any).
* @param cbMaxCiphertext The size of the buffer @a pvCiphertext points to.
* @param pcbCiphertext Where to return the actual number of bytes of
* ciphertext returned.
* @param fFinal Whether this is the final call.
*/
DECLCALLBACKMEMBER(int, pfnEncrypt,(struct RTCRPKIXENCRYPTIONDESC const *pDesc, void *pvState,
void const *pvPlaintext, size_t cbPlaintext,
void *pvCiphertext, size_t cbMaxCiphertext, size_t *pcbCiphertext, bool fFinal));
/**
* Calculate the output buffer size for the next pfnEncrypt call.
*
* @returns IPRT status code.
* @param pDesc Pointer to this structure (so uProviderSpecific can
* be read).
* @param pvState The opaque provider state.
* @param cbPlaintext The number of bytes of plaintext.
* @param pcbCiphertext Where to return the minimum buffer size. This may
* be larger than the actual number of bytes return.
* @param fFinal Whether this is the final call.
*/
DECLCALLBACKMEMBER(int, pfnEncryptLength,(struct RTCRPKIXENCRYPTIONDESC const *pDesc, void *pvState,
size_t cbPlaintext, size_t *pcbCiphertext, bool fFinal));
/**
* Decrypt using the private key (fEncrypt = false).
*
* @returns IPRT status code.
* @retval VINF_SUCCESS on success.
* @retval VERR_PKIX_KEY wrong key or some other key issue.
* @retval VERR_BUFFER_OVERFLOW if the output buffer is too small, the require
* buffer size will be available in @a *pcbCiphertext. The caller can
* should retry the call with a larger buffer.
*
* @param pDesc Pointer to this structure (so uProviderSpecific can
* be read).
* @param pvState The opaque provider state.
* @param pvCiphertext The ciphertext to decrypt.
* @param cbCiphertext The number of bytes of ciphertext.
* @param pvPlaintext Where to return the plaintext (if any).
* @param cbMaxPlaintext The size of the buffer @a pvPlaintext points to.
* @param pcbPlaintext Where to return the actual number of bytes of
* plaintext returned.
* @param fFinal Whether this is the final call.
*/
DECLCALLBACKMEMBER(int, pfnDecrypt,(struct RTCRPKIXENCRYPTIONDESC const *pDesc, void *pvState,
void const *pvCiphertext, size_t cbCiphertext,
void *pvPlaintext, size_t cbMaxPlaintext, size_t *pcbPlaintext, bool fFinal));
/**
* Calculate the output buffer size for the next pfnDecrypt call.
*
* @returns IPRT status code.
* @param pDesc Pointer to this structure (so uProviderSpecific can
* be read).
* @param pvState The opaque provider state.
* @param cbCiphertext The number of bytes of ciphertext.
* @param pcbPlaintext Where to return the minimum buffer size. This may
* be larger than the actual number of bytes return.
* @param fFinal Whether this is the final call.
*/
DECLCALLBACKMEMBER(int, pfnDecryptLength,(struct RTCRPKIXENCRYPTIONDESC const *pDesc, void *pvState,
size_t cbCiphertext, size_t *pcbPlaintext, bool fFinal));
} RTCRPKIXENCRYPTIONDESC;
/** Pointer to a public key encryption schema provider descriptor. */
typedef RTCRPKIXENCRYPTIONDESC const *PCRTCRPKIXENCRYPTIONDESC;
PCRTCRPKIXENCRYPTIONDESC RTCrPkixEncryptionFindByObjIdString(const char *pszObjId, void *ppvOpaque);
PCRTCRPKIXENCRYPTIONDESC RTCrPkixEncryptionFindByObjId(PCRTASN1OBJID pObjId, void *ppvOpaque);
RTDECL(int) RTCrPkixEncryptionCreateByObjIdString(PRTCRPKIXENCRYPTION phEncryption, const char *pszObjId,
bool fEncrypt, RTCRKEY hKey, PCRTASN1DYNTYPE pParams);
RTDECL(int) RTCrPkixEncryptionCreateByObjId(PRTCRPKIXENCRYPTION phEncryption, PCRTASN1OBJID pObjId, bool fEncrypt,
RTCRKEY hKey, PCRTASN1DYNTYPE pParams);
RTDECL(int) RTCrPkixEncryptionCreate(PRTCRPKIXENCRYPTION phEncryption, PCRTCRPKIXENCRYPTIONDESC pDesc, void *pvOpaque,
bool fEncrypt, PCRTASN1BITSTRING pKey, PCRTASN1DYNTYPE pParams);
RTDECL(int) RTCrPkixEncryptionReset(RTCRPKIXENCRYPTION hEncryption);
RTDECL(uint32_t) RTCrPkixEncryptionRetain(RTCRPKIXENCRYPTION hEncryption);
RTDECL(uint32_t) RTCrPkixEncryptionRelease(RTCRPKIXENCRYPTION hEncryption);
/** @} */
RT_C_DECLS_END
#endif /* !IPRT_INCLUDED_crypto_pkix_h */
|
