xref: /aosp_15_r20/external/libwebsockets/lib/tls/lws-genec-common.c (revision 1c60b9aca93fdbc9b5f19b2d2194c91294b22281) 
1*1c60b9acSAndroid Build Coastguard Worker  /*
2*1c60b9acSAndroid Build Coastguard Worker  * libwebsockets - small server side websockets and web server implementation
3*1c60b9acSAndroid Build Coastguard Worker  *
4*1c60b9acSAndroid Build Coastguard Worker  * Copyright (C) 2010 - 2019 Andy Green <[email protected]>
5*1c60b9acSAndroid Build Coastguard Worker  *
6*1c60b9acSAndroid Build Coastguard Worker  * Permission is hereby granted, free of charge, to any person obtaining a copy
7*1c60b9acSAndroid Build Coastguard Worker  * of this software and associated documentation files (the "Software"), to
8*1c60b9acSAndroid Build Coastguard Worker  * deal in the Software without restriction, including without limitation the
9*1c60b9acSAndroid Build Coastguard Worker  * rights to use, copy, modify, merge, publish, distribute, sublicense, and/or
10*1c60b9acSAndroid Build Coastguard Worker  * sell copies of the Software, and to permit persons to whom the Software is
11*1c60b9acSAndroid Build Coastguard Worker  * furnished to do so, subject to the following conditions:
12*1c60b9acSAndroid Build Coastguard Worker  *
13*1c60b9acSAndroid Build Coastguard Worker  * The above copyright notice and this permission notice shall be included in
14*1c60b9acSAndroid Build Coastguard Worker  * all copies or substantial portions of the Software.
15*1c60b9acSAndroid Build Coastguard Worker  *
16*1c60b9acSAndroid Build Coastguard Worker  * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
17*1c60b9acSAndroid Build Coastguard Worker  * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
18*1c60b9acSAndroid Build Coastguard Worker  * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
19*1c60b9acSAndroid Build Coastguard Worker  * AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
20*1c60b9acSAndroid Build Coastguard Worker  * LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING
21*1c60b9acSAndroid Build Coastguard Worker  * FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS
22*1c60b9acSAndroid Build Coastguard Worker  * IN THE SOFTWARE.
23*1c60b9acSAndroid Build Coastguard Worker  *
24*1c60b9acSAndroid Build Coastguard Worker  *  lws_genec provides an EC abstraction api in lws that works the
25*1c60b9acSAndroid Build Coastguard Worker  *  same whether you are using openssl or mbedtls crypto functions underneath.
26*1c60b9acSAndroid Build Coastguard Worker  */
27*1c60b9acSAndroid Build Coastguard Worker #include "private-lib-core.h"
28*1c60b9acSAndroid Build Coastguard Worker 
29*1c60b9acSAndroid Build Coastguard Worker const struct lws_ec_curves *
lws_genec_curve(const struct lws_ec_curves * table,const char * name)30*1c60b9acSAndroid Build Coastguard Worker lws_genec_curve(const struct lws_ec_curves *table, const char *name)
31*1c60b9acSAndroid Build Coastguard Worker {
32*1c60b9acSAndroid Build Coastguard Worker 	const struct lws_ec_curves *c = lws_ec_curves;
33*1c60b9acSAndroid Build Coastguard Worker 
34*1c60b9acSAndroid Build Coastguard Worker 	if (table)
35*1c60b9acSAndroid Build Coastguard Worker 		c = table;
36*1c60b9acSAndroid Build Coastguard Worker 
37*1c60b9acSAndroid Build Coastguard Worker 	while (c->name) {
38*1c60b9acSAndroid Build Coastguard Worker 		if (!strcmp(name, c->name))
39*1c60b9acSAndroid Build Coastguard Worker 			return c;
40*1c60b9acSAndroid Build Coastguard Worker 		c++;
41*1c60b9acSAndroid Build Coastguard Worker 	}
42*1c60b9acSAndroid Build Coastguard Worker 
43*1c60b9acSAndroid Build Coastguard Worker 	return NULL;
44*1c60b9acSAndroid Build Coastguard Worker }
45*1c60b9acSAndroid Build Coastguard Worker 
46*1c60b9acSAndroid Build Coastguard Worker //extern const struct lws_ec_curves *lws_ec_curves;
47*1c60b9acSAndroid Build Coastguard Worker 
48*1c60b9acSAndroid Build Coastguard Worker int
lws_genec_confirm_curve_allowed_by_tls_id(const char * allowed,int id,struct lws_jwk * jwk)49*1c60b9acSAndroid Build Coastguard Worker lws_genec_confirm_curve_allowed_by_tls_id(const char *allowed, int id,
50*1c60b9acSAndroid Build Coastguard Worker 					  struct lws_jwk *jwk)
51*1c60b9acSAndroid Build Coastguard Worker {
52*1c60b9acSAndroid Build Coastguard Worker 	struct lws_tokenize ts;
53*1c60b9acSAndroid Build Coastguard Worker 	lws_tokenize_elem e;
54*1c60b9acSAndroid Build Coastguard Worker 	size_t len;
55*1c60b9acSAndroid Build Coastguard Worker 	int n;
56*1c60b9acSAndroid Build Coastguard Worker 
57*1c60b9acSAndroid Build Coastguard Worker 	lws_tokenize_init(&ts, allowed, LWS_TOKENIZE_F_COMMA_SEP_LIST |
58*1c60b9acSAndroid Build Coastguard Worker 				       LWS_TOKENIZE_F_MINUS_NONTERM);
59*1c60b9acSAndroid Build Coastguard Worker 	ts.len = strlen(allowed);
60*1c60b9acSAndroid Build Coastguard Worker 	do {
61*1c60b9acSAndroid Build Coastguard Worker 		e = lws_tokenize(&ts);
62*1c60b9acSAndroid Build Coastguard Worker 		switch (e) {
63*1c60b9acSAndroid Build Coastguard Worker 		case LWS_TOKZE_TOKEN:
64*1c60b9acSAndroid Build Coastguard Worker 			n = 0;
65*1c60b9acSAndroid Build Coastguard Worker 			while (lws_ec_curves[n].name) {
66*1c60b9acSAndroid Build Coastguard Worker 				if (id != lws_ec_curves[n].tls_lib_nid) {
67*1c60b9acSAndroid Build Coastguard Worker 					n++;
68*1c60b9acSAndroid Build Coastguard Worker 					continue;
69*1c60b9acSAndroid Build Coastguard Worker 				}
70*1c60b9acSAndroid Build Coastguard Worker 				lwsl_info("match curve %s\n",
71*1c60b9acSAndroid Build Coastguard Worker 					  lws_ec_curves[n].name);
72*1c60b9acSAndroid Build Coastguard Worker 				len = strlen(lws_ec_curves[n].name);
73*1c60b9acSAndroid Build Coastguard Worker 				jwk->e[LWS_GENCRYPTO_EC_KEYEL_CRV].len = (uint32_t)len;
74*1c60b9acSAndroid Build Coastguard Worker 				jwk->e[LWS_GENCRYPTO_EC_KEYEL_CRV].buf =
75*1c60b9acSAndroid Build Coastguard Worker 						lws_malloc(len + 1, "cert crv");
76*1c60b9acSAndroid Build Coastguard Worker 				if (!jwk->e[LWS_GENCRYPTO_EC_KEYEL_CRV].buf) {
77*1c60b9acSAndroid Build Coastguard Worker 					lwsl_err("%s: OOM\n", __func__);
78*1c60b9acSAndroid Build Coastguard Worker 					return 1;
79*1c60b9acSAndroid Build Coastguard Worker 				}
80*1c60b9acSAndroid Build Coastguard Worker 				memcpy(jwk->e[LWS_GENCRYPTO_EC_KEYEL_CRV].buf,
81*1c60b9acSAndroid Build Coastguard Worker 				       lws_ec_curves[n].name, len + 1);
82*1c60b9acSAndroid Build Coastguard Worker 				return 0;
83*1c60b9acSAndroid Build Coastguard Worker 			}
84*1c60b9acSAndroid Build Coastguard Worker 			break;
85*1c60b9acSAndroid Build Coastguard Worker 
86*1c60b9acSAndroid Build Coastguard Worker 		case LWS_TOKZE_DELIMITER:
87*1c60b9acSAndroid Build Coastguard Worker 			break;
88*1c60b9acSAndroid Build Coastguard Worker 
89*1c60b9acSAndroid Build Coastguard Worker 		default: /* includes ENDED */
90*1c60b9acSAndroid Build Coastguard Worker 			lwsl_err("%s: malformed or curve name in list\n",
91*1c60b9acSAndroid Build Coastguard Worker 				 __func__);
92*1c60b9acSAndroid Build Coastguard Worker 
93*1c60b9acSAndroid Build Coastguard Worker 			return -1;
94*1c60b9acSAndroid Build Coastguard Worker 		}
95*1c60b9acSAndroid Build Coastguard Worker 	} while (e > 0);
96*1c60b9acSAndroid Build Coastguard Worker 
97*1c60b9acSAndroid Build Coastguard Worker 	lwsl_err("%s: unsupported curve group nid %d\n", __func__, n);
98*1c60b9acSAndroid Build Coastguard Worker 
99*1c60b9acSAndroid Build Coastguard Worker 	return -1;
100*1c60b9acSAndroid Build Coastguard Worker }
101*1c60b9acSAndroid Build Coastguard Worker 
102*1c60b9acSAndroid Build Coastguard Worker void
lws_genec_destroy_elements(struct lws_gencrypto_keyelem * el)103*1c60b9acSAndroid Build Coastguard Worker lws_genec_destroy_elements(struct lws_gencrypto_keyelem *el)
104*1c60b9acSAndroid Build Coastguard Worker {
105*1c60b9acSAndroid Build Coastguard Worker 	int n;
106*1c60b9acSAndroid Build Coastguard Worker 
107*1c60b9acSAndroid Build Coastguard Worker 	for (n = 0; n < LWS_GENCRYPTO_EC_KEYEL_COUNT; n++)
108*1c60b9acSAndroid Build Coastguard Worker 		if (el[n].buf)
109*1c60b9acSAndroid Build Coastguard Worker 			lws_free_set_NULL(el[n].buf);
110*1c60b9acSAndroid Build Coastguard Worker }
111*1c60b9acSAndroid Build Coastguard Worker 
112*1c60b9acSAndroid Build Coastguard Worker static const char *enames[] = { "crv", "x", "d", "y" };
113*1c60b9acSAndroid Build Coastguard Worker 
114*1c60b9acSAndroid Build Coastguard Worker int
lws_genec_dump(struct lws_gencrypto_keyelem * el)115*1c60b9acSAndroid Build Coastguard Worker lws_genec_dump(struct lws_gencrypto_keyelem *el)
116*1c60b9acSAndroid Build Coastguard Worker {
117*1c60b9acSAndroid Build Coastguard Worker 	int n;
118*1c60b9acSAndroid Build Coastguard Worker 
119*1c60b9acSAndroid Build Coastguard Worker 	(void)enames;
120*1c60b9acSAndroid Build Coastguard Worker 
121*1c60b9acSAndroid Build Coastguard Worker 	lwsl_info("  genec %p: crv: '%s'\n", el,
122*1c60b9acSAndroid Build Coastguard Worker 		  !!el[LWS_GENCRYPTO_EC_KEYEL_CRV].buf ?
123*1c60b9acSAndroid Build Coastguard Worker 		  (char *)el[LWS_GENCRYPTO_EC_KEYEL_CRV].buf: "no curve name");
124*1c60b9acSAndroid Build Coastguard Worker 
125*1c60b9acSAndroid Build Coastguard Worker 	for (n = LWS_GENCRYPTO_EC_KEYEL_X; n < LWS_GENCRYPTO_EC_KEYEL_COUNT;
126*1c60b9acSAndroid Build Coastguard Worker 	     n++) {
127*1c60b9acSAndroid Build Coastguard Worker 		lwsl_info("  e: %s\n", enames[n]);
128*1c60b9acSAndroid Build Coastguard Worker 		lwsl_hexdump_info(el[n].buf, el[n].len);
129*1c60b9acSAndroid Build Coastguard Worker 	}
130*1c60b9acSAndroid Build Coastguard Worker 
131*1c60b9acSAndroid Build Coastguard Worker 	lwsl_info("\n");
132*1c60b9acSAndroid Build Coastguard Worker 
133*1c60b9acSAndroid Build Coastguard Worker 	return 0;
134*1c60b9acSAndroid Build Coastguard Worker }
135