i2pd/Signature.h

272 lines
7.8 KiB
C
Raw Normal View History

2014-08-21 17:15:04 +02:00
#ifndef SIGNATURE_H__
#define SIGNATURE_H__
#include <inttypes.h>
#include <cryptopp/dsa.h>
2014-12-10 21:48:07 +01:00
#include <cryptopp/rsa.h>
2014-08-21 20:26:15 +02:00
#include <cryptopp/asn.h>
#include <cryptopp/oids.h>
2014-08-22 22:28:25 +02:00
#include <cryptopp/osrng.h>
2014-08-21 20:26:15 +02:00
#include <cryptopp/eccrypto.h>
2014-08-21 17:15:04 +02:00
#include "CryptoConst.h"
namespace i2p
{
namespace crypto
{
class Verifier
{
public:
virtual ~Verifier () {};
2014-08-23 14:41:06 +02:00
virtual bool Verify (const uint8_t * buf, size_t len, const uint8_t * signature) const = 0;
virtual size_t GetPublicKeyLen () const = 0;
virtual size_t GetSignatureLen () const = 0;
2014-08-21 17:15:04 +02:00
};
2014-08-22 22:48:30 +02:00
class Signer
2014-08-22 22:28:25 +02:00
{
public:
2014-08-22 22:48:30 +02:00
virtual ~Signer () {};
2014-08-23 14:41:06 +02:00
virtual void Sign (CryptoPP::RandomNumberGenerator& rnd, const uint8_t * buf, int len, uint8_t * signature) const = 0;
2014-08-22 22:28:25 +02:00
};
2014-10-15 20:04:23 +02:00
const size_t DSA_PUBLIC_KEY_LENGTH = 128;
const size_t DSA_SIGNATURE_LENGTH = 40;
const size_t DSA_PRIVATE_KEY_LENGTH = DSA_SIGNATURE_LENGTH/2;
2014-08-21 17:15:04 +02:00
class DSAVerifier: public Verifier
{
public:
DSAVerifier (const uint8_t * signingKey)
{
2014-10-15 20:04:23 +02:00
m_PublicKey.Initialize (dsap, dsaq, dsag, CryptoPP::Integer (signingKey, DSA_PUBLIC_KEY_LENGTH));
2014-08-21 17:15:04 +02:00
}
2014-08-23 14:41:06 +02:00
bool Verify (const uint8_t * buf, size_t len, const uint8_t * signature) const
2014-08-21 17:15:04 +02:00
{
CryptoPP::DSA::Verifier verifier (m_PublicKey);
2014-10-15 20:04:23 +02:00
return verifier.VerifyMessage (buf, len, signature, DSA_SIGNATURE_LENGTH);
2014-08-21 17:15:04 +02:00
}
2014-10-15 20:04:23 +02:00
size_t GetPublicKeyLen () const { return DSA_PUBLIC_KEY_LENGTH; };
size_t GetSignatureLen () const { return DSA_SIGNATURE_LENGTH; };
2014-08-21 17:15:04 +02:00
private:
CryptoPP::DSA::PublicKey m_PublicKey;
2014-08-21 20:26:15 +02:00
};
2014-08-22 22:48:30 +02:00
class DSASigner: public Signer
2014-08-22 22:28:25 +02:00
{
public:
2014-08-22 22:48:30 +02:00
DSASigner (const uint8_t * signingPrivateKey)
2014-08-22 22:28:25 +02:00
{
2014-10-15 20:04:23 +02:00
m_PrivateKey.Initialize (dsap, dsaq, dsag, CryptoPP::Integer (signingPrivateKey, DSA_PRIVATE_KEY_LENGTH));
2014-08-22 22:28:25 +02:00
}
2014-08-23 14:41:06 +02:00
void Sign (CryptoPP::RandomNumberGenerator& rnd, const uint8_t * buf, int len, uint8_t * signature) const
2014-08-22 22:28:25 +02:00
{
CryptoPP::DSA::Signer signer (m_PrivateKey);
signer.SignMessage (rnd, buf, len, signature);
}
private:
CryptoPP::DSA::PrivateKey m_PrivateKey;
};
2014-08-22 22:48:30 +02:00
inline void CreateDSARandomKeys (CryptoPP::RandomNumberGenerator& rnd, uint8_t * signingPrivateKey, uint8_t * signingPublicKey)
{
CryptoPP::DSA::PrivateKey privateKey;
CryptoPP::DSA::PublicKey publicKey;
privateKey.Initialize (rnd, dsap, dsaq, dsag);
privateKey.MakePublicKey (publicKey);
2014-10-15 20:04:23 +02:00
privateKey.GetPrivateExponent ().Encode (signingPrivateKey, DSA_PRIVATE_KEY_LENGTH);
publicKey.GetPublicElement ().Encode (signingPublicKey, DSA_PUBLIC_KEY_LENGTH);
2014-08-22 22:48:30 +02:00
}
2014-11-25 02:19:13 +01:00
template<typename Hash, size_t keyLen>
class ECDSAVerifier: public Verifier
{
2014-08-21 20:26:15 +02:00
public:
2014-11-25 02:19:13 +01:00
template<typename Curve>
ECDSAVerifier (Curve curve, const uint8_t * signingKey)
2014-08-21 20:26:15 +02:00
{
2014-11-25 02:19:13 +01:00
m_PublicKey.Initialize (curve,
CryptoPP::ECP::Point (CryptoPP::Integer (signingKey, keyLen/2),
CryptoPP::Integer (signingKey + keyLen/2, keyLen/2)));
}
2014-08-21 20:26:15 +02:00
2014-08-23 14:41:06 +02:00
bool Verify (const uint8_t * buf, size_t len, const uint8_t * signature) const
2014-08-21 20:26:15 +02:00
{
2014-11-25 02:19:13 +01:00
typename CryptoPP::ECDSA<CryptoPP::ECP, Hash>::Verifier verifier (m_PublicKey);
return verifier.VerifyMessage (buf, len, signature, keyLen); // signature length
2014-08-21 20:26:15 +02:00
}
2014-11-25 02:19:13 +01:00
size_t GetPublicKeyLen () const { return keyLen; };
size_t GetSignatureLen () const { return keyLen; }; // signature length = key length
2014-08-21 20:26:15 +02:00
private:
2014-11-25 02:19:13 +01:00
typename CryptoPP::ECDSA<CryptoPP::ECP, Hash>::PublicKey m_PublicKey;
};
2014-08-22 22:28:25 +02:00
2014-11-25 02:19:13 +01:00
template<typename Hash>
class ECDSASigner: public Signer
2014-08-22 22:28:25 +02:00
{
public:
2014-11-25 02:19:13 +01:00
template<typename Curve>
ECDSASigner (Curve curve, const uint8_t * signingPrivateKey, size_t keyLen)
2014-08-22 22:28:25 +02:00
{
2014-11-25 02:19:13 +01:00
m_PrivateKey.Initialize (curve, CryptoPP::Integer (signingPrivateKey, keyLen/2)); // private key length
2014-08-22 22:28:25 +02:00
}
2014-08-23 14:41:06 +02:00
void Sign (CryptoPP::RandomNumberGenerator& rnd, const uint8_t * buf, int len, uint8_t * signature) const
2014-08-22 22:28:25 +02:00
{
2014-11-25 02:19:13 +01:00
typename CryptoPP::ECDSA<CryptoPP::ECP, Hash>::Signer signer (m_PrivateKey);
2014-08-22 22:28:25 +02:00
signer.SignMessage (rnd, buf, len, signature);
}
private:
2014-11-25 02:19:13 +01:00
typename CryptoPP::ECDSA<CryptoPP::ECP, Hash>::PrivateKey m_PrivateKey;
2014-08-22 22:28:25 +02:00
};
2014-08-22 22:48:30 +02:00
2014-11-25 02:19:13 +01:00
template<typename Hash, typename Curve>
inline void CreateECDSARandomKeys (CryptoPP::RandomNumberGenerator& rnd, Curve curve,
size_t keyLen, uint8_t * signingPrivateKey, uint8_t * signingPublicKey)
2014-08-22 22:48:30 +02:00
{
2014-11-25 02:19:13 +01:00
typename CryptoPP::ECDSA<CryptoPP::ECP, Hash>::PrivateKey privateKey;
typename CryptoPP::ECDSA<CryptoPP::ECP, Hash>::PublicKey publicKey;
privateKey.Initialize (rnd, curve);
2014-08-22 22:48:30 +02:00
privateKey.MakePublicKey (publicKey);
2014-11-25 02:19:13 +01:00
privateKey.GetPrivateExponent ().Encode (signingPrivateKey, keyLen/2);
2014-08-22 22:48:30 +02:00
auto q = publicKey.GetPublicElement ();
2014-11-25 02:19:13 +01:00
q.x.Encode (signingPublicKey, keyLen/2);
q.y.Encode (signingPublicKey + keyLen/2, keyLen/2);
}
// ECDSA_SHA256_P256
const size_t ECDSAP256_KEY_LENGTH = 64;
class ECDSAP256Verifier: public ECDSAVerifier<CryptoPP::SHA256, ECDSAP256_KEY_LENGTH>
{
public:
ECDSAP256Verifier (const uint8_t * signingKey):
ECDSAVerifier (CryptoPP::ASN1::secp256r1(), signingKey)
{
}
};
class ECDSAP256Signer: public ECDSASigner<CryptoPP::SHA256>
{
public:
ECDSAP256Signer (const uint8_t * signingPrivateKey):
ECDSASigner (CryptoPP::ASN1::secp256r1(), signingPrivateKey, ECDSAP256_KEY_LENGTH)
{
}
};
inline void CreateECDSAP256RandomKeys (CryptoPP::RandomNumberGenerator& rnd, uint8_t * signingPrivateKey, uint8_t * signingPublicKey)
{
CreateECDSARandomKeys<CryptoPP::SHA256> (rnd, CryptoPP::ASN1::secp256r1(), ECDSAP256_KEY_LENGTH, signingPrivateKey, signingPublicKey);
2014-08-22 22:48:30 +02:00
}
2014-11-25 02:19:13 +01:00
// ECDSA_SHA384_P384
const size_t ECDSAP384_KEY_LENGTH = 96;
class ECDSAP384Verifier: public ECDSAVerifier<CryptoPP::SHA384, ECDSAP384_KEY_LENGTH>
{
public:
ECDSAP384Verifier (const uint8_t * signingKey):
ECDSAVerifier (CryptoPP::ASN1::secp384r1(), signingKey)
{
}
};
class ECDSAP384Signer: public ECDSASigner<CryptoPP::SHA384>
{
public:
ECDSAP384Signer (const uint8_t * signingPrivateKey):
ECDSASigner (CryptoPP::ASN1::secp384r1(), signingPrivateKey, ECDSAP384_KEY_LENGTH)
{
}
};
inline void CreateECDSAP384RandomKeys (CryptoPP::RandomNumberGenerator& rnd, uint8_t * signingPrivateKey, uint8_t * signingPublicKey)
{
CreateECDSARandomKeys<CryptoPP::SHA384> (rnd, CryptoPP::ASN1::secp384r1(), ECDSAP384_KEY_LENGTH, signingPrivateKey, signingPublicKey);
}
// ECDSA_SHA512_P521
const size_t ECDSAP521_KEY_LENGTH = 132;
class ECDSAP521Verifier: public ECDSAVerifier<CryptoPP::SHA512, ECDSAP521_KEY_LENGTH>
{
public:
ECDSAP521Verifier (const uint8_t * signingKey):
ECDSAVerifier (CryptoPP::ASN1::secp521r1(), signingKey)
{
}
};
class ECDSAP521Signer: public ECDSASigner<CryptoPP::SHA512>
{
public:
ECDSAP521Signer (const uint8_t * signingPrivateKey):
ECDSASigner (CryptoPP::ASN1::secp521r1(), signingPrivateKey, ECDSAP521_KEY_LENGTH)
{
}
};
inline void CreateECDSAP521RandomKeys (CryptoPP::RandomNumberGenerator& rnd, uint8_t * signingPrivateKey, uint8_t * signingPublicKey)
{
CreateECDSARandomKeys<CryptoPP::SHA512> (rnd, CryptoPP::ASN1::secp521r1(), ECDSAP521_KEY_LENGTH, signingPrivateKey, signingPublicKey);
}
2014-12-10 21:48:07 +01:00
// RSA
template<typename Hash, size_t keyLength>
class RSAVerifier: public Verifier
{
public:
RSAVerifier (const uint8_t * signingKey)
{
// TODO
}
bool Verify (const uint8_t * buf, size_t len, const uint8_t * signature) const
{
typename CryptoPP::RSASS<CryptoPP::PKCS1v15, Hash>::Verifier verifier (m_PublicKey);
return verifier.VerifyMessage (buf, len, signature, keyLength); // signature length
}
size_t GetPublicKeyLen () const { return keyLength; }
size_t GetSignatureLen () const { return keyLength; }
private:
CryptoPP::RSA::PublicKey m_PublicKey;
};
// RSA_SHA256_2048
const size_t RSASHA2562048_KEY_LENGTH =256;
class RSASHA2562048Verifier: public RSAVerifier<CryptoPP::SHA256, RSASHA2562048_KEY_LENGTH>
{
public:
RSASHA2562048Verifier (const uint8_t * signingKey): RSAVerifier (signingKey) {};
};
2014-08-21 17:15:04 +02:00
}
}
#endif