xref: /aosp_15_r20/external/tink/cc/internal/bn_util.cc (revision e7b1675dde1b92d52ec075b0a92829627f2c52a5) 
1*e7b1675dSTing-Kang Chang // Copyright 2021 Google LLC
2*e7b1675dSTing-Kang Chang //
3*e7b1675dSTing-Kang Chang // Licensed under the Apache License, Version 2.0 (the "License");
4*e7b1675dSTing-Kang Chang // you may not use this file except in compliance with the License.
5*e7b1675dSTing-Kang Chang // You may obtain a copy of the License at
6*e7b1675dSTing-Kang Chang //
7*e7b1675dSTing-Kang Chang //     http://www.apache.org/licenses/LICENSE-2.0
8*e7b1675dSTing-Kang Chang //
9*e7b1675dSTing-Kang Chang // Unless required by applicable law or agreed to in writing, software
10*e7b1675dSTing-Kang Chang // distributed under the License is distributed on an "AS IS" BASIS,
11*e7b1675dSTing-Kang Chang // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
12*e7b1675dSTing-Kang Chang // See the License for the specific language governing permissions and
13*e7b1675dSTing-Kang Chang // limitations under the License.
14*e7b1675dSTing-Kang Chang //
15*e7b1675dSTing-Kang Chang ///////////////////////////////////////////////////////////////////////////////
16*e7b1675dSTing-Kang Chang #include "tink/internal/bn_util.h"
17*e7b1675dSTing-Kang Chang 
18*e7b1675dSTing-Kang Chang #include <stddef.h>
19*e7b1675dSTing-Kang Chang 
20*e7b1675dSTing-Kang Chang #include <memory>
21*e7b1675dSTing-Kang Chang #include <string>
22*e7b1675dSTing-Kang Chang #include <utility>
23*e7b1675dSTing-Kang Chang 
24*e7b1675dSTing-Kang Chang #include "absl/status/status.h"
25*e7b1675dSTing-Kang Chang #include "absl/strings/string_view.h"
26*e7b1675dSTing-Kang Chang #include "absl/types/span.h"
27*e7b1675dSTing-Kang Chang #include "openssl/bn.h"
28*e7b1675dSTing-Kang Chang #include "tink/internal/ssl_unique_ptr.h"
29*e7b1675dSTing-Kang Chang #include "tink/subtle/subtle_util.h"
30*e7b1675dSTing-Kang Chang #include "tink/util/secret_data.h"
31*e7b1675dSTing-Kang Chang #include "tink/util/status.h"
32*e7b1675dSTing-Kang Chang #include "tink/util/statusor.h"
33*e7b1675dSTing-Kang Chang 
34*e7b1675dSTing-Kang Chang namespace crypto {
35*e7b1675dSTing-Kang Chang namespace tink {
36*e7b1675dSTing-Kang Chang namespace internal {
37*e7b1675dSTing-Kang Chang 
BignumToBinaryPadded(absl::Span<char> buffer,const BIGNUM * bignum)38*e7b1675dSTing-Kang Chang util::Status BignumToBinaryPadded(absl::Span<char> buffer,
39*e7b1675dSTing-Kang Chang                                   const BIGNUM *bignum) {
40*e7b1675dSTing-Kang Chang   if (bignum == nullptr) {
41*e7b1675dSTing-Kang Chang     return util::Status(absl::StatusCode::kInvalidArgument, "BIGNUM is NULL");
42*e7b1675dSTing-Kang Chang   }
43*e7b1675dSTing-Kang Chang   if (BN_is_negative(bignum)) {
44*e7b1675dSTing-Kang Chang     return util::Status(absl::StatusCode::kInternal,
45*e7b1675dSTing-Kang Chang                         "Value must not be negative");
46*e7b1675dSTing-Kang Chang   }
47*e7b1675dSTing-Kang Chang 
48*e7b1675dSTing-Kang Chang   // BN_bn2binpad returns the length of the buffer on success and -1 on failure.
49*e7b1675dSTing-Kang Chang   int len = BN_bn2binpad(
50*e7b1675dSTing-Kang Chang       bignum, reinterpret_cast<unsigned char *>(buffer.data()), buffer.size());
51*e7b1675dSTing-Kang Chang   if (len == -1) {
52*e7b1675dSTing-Kang Chang     return util::Status(absl::StatusCode::kInternal,
53*e7b1675dSTing-Kang Chang                         "Value too large to fit into the given buffer");
54*e7b1675dSTing-Kang Chang   }
55*e7b1675dSTing-Kang Chang 
56*e7b1675dSTing-Kang Chang   return util::OkStatus();
57*e7b1675dSTing-Kang Chang }
58*e7b1675dSTing-Kang Chang 
BignumToString(const BIGNUM * bn,size_t len)59*e7b1675dSTing-Kang Chang util::StatusOr<std::string> BignumToString(const BIGNUM *bn, size_t len) {
60*e7b1675dSTing-Kang Chang   if (bn == nullptr) {
61*e7b1675dSTing-Kang Chang     return util::Status(absl::StatusCode::kInvalidArgument, "BIGNUM is NULL");
62*e7b1675dSTing-Kang Chang   }
63*e7b1675dSTing-Kang Chang   std::string buffer;
64*e7b1675dSTing-Kang Chang   subtle::ResizeStringUninitialized(&buffer, len);
65*e7b1675dSTing-Kang Chang   util::Status res = BignumToBinaryPadded(absl::MakeSpan(&buffer[0], len), bn);
66*e7b1675dSTing-Kang Chang   if (!res.ok()) {
67*e7b1675dSTing-Kang Chang     return res;
68*e7b1675dSTing-Kang Chang   }
69*e7b1675dSTing-Kang Chang   return buffer;
70*e7b1675dSTing-Kang Chang }
71*e7b1675dSTing-Kang Chang 
BignumToSecretData(const BIGNUM * bn,size_t len)72*e7b1675dSTing-Kang Chang util::StatusOr<util::SecretData> BignumToSecretData(const BIGNUM *bn,
73*e7b1675dSTing-Kang Chang                                                     size_t len) {
74*e7b1675dSTing-Kang Chang   if (bn == nullptr) {
75*e7b1675dSTing-Kang Chang     return util::Status(absl::StatusCode::kInvalidArgument, "BIGNUM is NULL");
76*e7b1675dSTing-Kang Chang   }
77*e7b1675dSTing-Kang Chang   util::SecretData secret_data(len);
78*e7b1675dSTing-Kang Chang   util::Status res = BignumToBinaryPadded(
79*e7b1675dSTing-Kang Chang       absl::MakeSpan(reinterpret_cast<char *>(secret_data.data()),
80*e7b1675dSTing-Kang Chang                      secret_data.size()),
81*e7b1675dSTing-Kang Chang       bn);
82*e7b1675dSTing-Kang Chang   if (!res.ok()) {
83*e7b1675dSTing-Kang Chang     return res;
84*e7b1675dSTing-Kang Chang   }
85*e7b1675dSTing-Kang Chang   return secret_data;
86*e7b1675dSTing-Kang Chang }
87*e7b1675dSTing-Kang Chang 
StringToBignum(absl::string_view bigendian_bn_str)88*e7b1675dSTing-Kang Chang util::StatusOr<internal::SslUniquePtr<BIGNUM>> StringToBignum(
89*e7b1675dSTing-Kang Chang     absl::string_view bigendian_bn_str) {
90*e7b1675dSTing-Kang Chang   internal::SslUniquePtr<BIGNUM> bn(BN_bin2bn(
91*e7b1675dSTing-Kang Chang       reinterpret_cast<const unsigned char *>(bigendian_bn_str.data()),
92*e7b1675dSTing-Kang Chang       bigendian_bn_str.length(), /*ret=*/nullptr));
93*e7b1675dSTing-Kang Chang   if (bn.get() == nullptr) {
94*e7b1675dSTing-Kang Chang     return util::Status(absl::StatusCode::kInternal,
95*e7b1675dSTing-Kang Chang                         "BIGNUM allocation failed");
96*e7b1675dSTing-Kang Chang   }
97*e7b1675dSTing-Kang Chang   return std::move(bn);
98*e7b1675dSTing-Kang Chang }
99*e7b1675dSTing-Kang Chang 
CompareBignumWithWord(const BIGNUM * bignum,BN_ULONG word)100*e7b1675dSTing-Kang Chang int CompareBignumWithWord(const BIGNUM *bignum, BN_ULONG word) {
101*e7b1675dSTing-Kang Chang #ifdef OPENSSL_IS_BORINGSSL
102*e7b1675dSTing-Kang Chang   return BN_cmp_word(bignum, word);
103*e7b1675dSTing-Kang Chang #else
104*e7b1675dSTing-Kang Chang   internal::SslUniquePtr<BIGNUM> bn_word(BN_new());
105*e7b1675dSTing-Kang Chang   BN_set_word(bn_word.get(), word);
106*e7b1675dSTing-Kang Chang   return BN_cmp(bignum, bn_word.get());
107*e7b1675dSTing-Kang Chang #endif
108*e7b1675dSTing-Kang Chang }
109*e7b1675dSTing-Kang Chang 
110*e7b1675dSTing-Kang Chang }  // namespace internal
111*e7b1675dSTing-Kang Chang }  // namespace tink
112*e7b1675dSTing-Kang Chang }  // namespace crypto
113