17c478bd9Sstevel@tonic-gate /* 27c478bd9Sstevel@tonic-gate * CDDL HEADER START 37c478bd9Sstevel@tonic-gate * 47c478bd9Sstevel@tonic-gate * The contents of this file are subject to the terms of the 57c478bd9Sstevel@tonic-gate * Common Development and Distribution License, Version 1.0 only 67c478bd9Sstevel@tonic-gate * (the "License"). You may not use this file except in compliance 77c478bd9Sstevel@tonic-gate * with the License. 87c478bd9Sstevel@tonic-gate * 97c478bd9Sstevel@tonic-gate * You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE 107c478bd9Sstevel@tonic-gate * or http://www.opensolaris.org/os/licensing. 117c478bd9Sstevel@tonic-gate * See the License for the specific language governing permissions 127c478bd9Sstevel@tonic-gate * and limitations under the License. 137c478bd9Sstevel@tonic-gate * 147c478bd9Sstevel@tonic-gate * When distributing Covered Code, include this CDDL HEADER in each 157c478bd9Sstevel@tonic-gate * file and include the License file at usr/src/OPENSOLARIS.LICENSE. 167c478bd9Sstevel@tonic-gate * If applicable, add the following below this CDDL HEADER, with the 177c478bd9Sstevel@tonic-gate * fields enclosed by brackets "[]" replaced with your own identifying 187c478bd9Sstevel@tonic-gate * information: Portions Copyright [yyyy] [name of copyright owner] 197c478bd9Sstevel@tonic-gate * 207c478bd9Sstevel@tonic-gate * CDDL HEADER END 217c478bd9Sstevel@tonic-gate */ 227c478bd9Sstevel@tonic-gate /* 23*f66d273dSizick * Copyright 2005 Sun Microsystems, Inc. All rights reserved. 247c478bd9Sstevel@tonic-gate * Use is subject to license terms. 257c478bd9Sstevel@tonic-gate */ 267c478bd9Sstevel@tonic-gate 277c478bd9Sstevel@tonic-gate #ifndef _RSA_IMPL_H 287c478bd9Sstevel@tonic-gate #define _RSA_IMPL_H 297c478bd9Sstevel@tonic-gate 307c478bd9Sstevel@tonic-gate #pragma ident "%Z%%M% %I% %E% SMI" 317c478bd9Sstevel@tonic-gate 327c478bd9Sstevel@tonic-gate #ifdef __cplusplus 337c478bd9Sstevel@tonic-gate extern "C" { 347c478bd9Sstevel@tonic-gate #endif 357c478bd9Sstevel@tonic-gate 367c478bd9Sstevel@tonic-gate #include <sys/types.h> 377c478bd9Sstevel@tonic-gate #include <bignum.h> 387c478bd9Sstevel@tonic-gate 397c478bd9Sstevel@tonic-gate #define MIN_RSA_KEYLENGTH_IN_BYTES 32 407c478bd9Sstevel@tonic-gate #define MAX_RSA_KEYLENGTH_IN_BYTES 512 417c478bd9Sstevel@tonic-gate #define RSA_MIN_KEY_LEN 256 /* RSA min key length in bits */ 427c478bd9Sstevel@tonic-gate #define RSA_MAX_KEY_LEN 4096 /* RSA max key length in bits */ 437c478bd9Sstevel@tonic-gate 447c478bd9Sstevel@tonic-gate #define MIN_PKCS1_PADLEN 11 457c478bd9Sstevel@tonic-gate 467c478bd9Sstevel@tonic-gate #ifdef _KERNEL 477c478bd9Sstevel@tonic-gate 487c478bd9Sstevel@tonic-gate #include <sys/sunddi.h> 497c478bd9Sstevel@tonic-gate #include <sys/crypto/common.h> 507c478bd9Sstevel@tonic-gate 517c478bd9Sstevel@tonic-gate #define CK_BYTE uchar_t 527c478bd9Sstevel@tonic-gate #define CK_ULONG ulong_t 537c478bd9Sstevel@tonic-gate #define CK_RV int 547c478bd9Sstevel@tonic-gate #define CKR_OK CRYPTO_SUCCESS 557c478bd9Sstevel@tonic-gate #define CKR_HOST_MEMORY CRYPTO_HOST_MEMORY 567c478bd9Sstevel@tonic-gate #define CKR_DATA_LEN_RANGE CRYPTO_DATA_LEN_RANGE 577c478bd9Sstevel@tonic-gate #define CKR_ENCRYPTED_DATA_INVALID CRYPTO_ENCRYPTED_DATA_INVALID 587c478bd9Sstevel@tonic-gate #define CKR_SIGNATURE_INVALID CRYPTO_SIGNATURE_INVALID 597c478bd9Sstevel@tonic-gate #define CKR_FUNCTION_FAILED CRYPTO_NOT_SUPPORTED 607c478bd9Sstevel@tonic-gate 617c478bd9Sstevel@tonic-gate #else 627c478bd9Sstevel@tonic-gate 637c478bd9Sstevel@tonic-gate #include <security/cryptoki.h> 647c478bd9Sstevel@tonic-gate #include <security/pkcs11t.h> 657c478bd9Sstevel@tonic-gate 667c478bd9Sstevel@tonic-gate #endif /* _KERNEL */ 677c478bd9Sstevel@tonic-gate 687c478bd9Sstevel@tonic-gate #define MD5_DER_PREFIX_Len 18 697c478bd9Sstevel@tonic-gate #define SHA1_DER_PREFIX_Len 15 70*f66d273dSizick #define SHA2_DER_PREFIX_Len 19 717c478bd9Sstevel@tonic-gate 727c478bd9Sstevel@tonic-gate extern const CK_BYTE MD5_DER_PREFIX[MD5_DER_PREFIX_Len]; 737c478bd9Sstevel@tonic-gate extern const CK_BYTE SHA1_DER_PREFIX[SHA1_DER_PREFIX_Len]; 74*f66d273dSizick extern const CK_BYTE SHA256_DER_PREFIX[SHA2_DER_PREFIX_Len]; 75*f66d273dSizick extern const CK_BYTE SHA384_DER_PREFIX[SHA2_DER_PREFIX_Len]; 76*f66d273dSizick extern const CK_BYTE SHA512_DER_PREFIX[SHA2_DER_PREFIX_Len]; 777c478bd9Sstevel@tonic-gate 787c478bd9Sstevel@tonic-gate typedef struct { 797c478bd9Sstevel@tonic-gate int size; /* key size in bits */ 807c478bd9Sstevel@tonic-gate BIGNUM p; /* p */ 817c478bd9Sstevel@tonic-gate BIGNUM q; /* q */ 827c478bd9Sstevel@tonic-gate BIGNUM n; /* n = p * q (the modulus) */ 837c478bd9Sstevel@tonic-gate BIGNUM d; /* private exponent */ 847c478bd9Sstevel@tonic-gate BIGNUM e; /* public exponent */ 857c478bd9Sstevel@tonic-gate BIGNUM dmodpminus1; /* d mod (p - 1) */ 867c478bd9Sstevel@tonic-gate BIGNUM dmodqminus1; /* d mod (q - 1) */ 877c478bd9Sstevel@tonic-gate BIGNUM pinvmodq; /* p^(-1) mod q */ 887c478bd9Sstevel@tonic-gate BIGNUM p_rr; /* 2^(2*(32*p->len)) mod p */ 897c478bd9Sstevel@tonic-gate BIGNUM q_rr; /* 2^(2*(32*q->len)) mod q */ 907c478bd9Sstevel@tonic-gate BIGNUM n_rr; /* 2^(2*(32*n->len)) mod n */ 917c478bd9Sstevel@tonic-gate } RSAkey; 927c478bd9Sstevel@tonic-gate 937c478bd9Sstevel@tonic-gate 947c478bd9Sstevel@tonic-gate BIG_ERR_CODE RSA_key_init(RSAkey *key, int psize, int qsize); 957c478bd9Sstevel@tonic-gate void RSA_key_finish(RSAkey *key); 967c478bd9Sstevel@tonic-gate 977c478bd9Sstevel@tonic-gate CK_RV soft_encrypt_rsa_pkcs_encode(uint8_t *databuf, 987c478bd9Sstevel@tonic-gate size_t datalen, uint8_t *padbuf, size_t padbuflen); 997c478bd9Sstevel@tonic-gate CK_RV soft_decrypt_rsa_pkcs_decode(uint8_t *padbuf, int *plen); 1007c478bd9Sstevel@tonic-gate 1017c478bd9Sstevel@tonic-gate CK_RV soft_sign_rsa_pkcs_encode(uint8_t *pData, size_t dataLen, 1027c478bd9Sstevel@tonic-gate uint8_t *data, size_t mbit_l); 1037c478bd9Sstevel@tonic-gate CK_RV soft_verify_rsa_pkcs_decode(uint8_t *data, int *mbit_l); 1047c478bd9Sstevel@tonic-gate 1057c478bd9Sstevel@tonic-gate #ifdef _KERNEL 1067c478bd9Sstevel@tonic-gate int knzero_random_generator(uint8_t *ran_out, size_t ran_len); 1077c478bd9Sstevel@tonic-gate void kmemset(uint8_t *buf, char pattern, size_t len); 1087c478bd9Sstevel@tonic-gate #endif 1097c478bd9Sstevel@tonic-gate 1107c478bd9Sstevel@tonic-gate #ifdef __cplusplus 1117c478bd9Sstevel@tonic-gate } 1127c478bd9Sstevel@tonic-gate #endif 1137c478bd9Sstevel@tonic-gate 1147c478bd9Sstevel@tonic-gate #endif /* _RSA_IMPL_H */ 115