cuberite-2a/src/mbedTLS++/CryptoKey.h


// CryptoKey.h

// Declares the cCryptoKey class representing a RSA public key in mbedTLS


#pragma once

#include "CtrDrbgContext.h"
#include "mbedtls/pk.h"


class cCryptoKey
{
	friend class cSslConfig;

public:
	/** Constructs an empty key instance. Before use, it needs to be filled by ParsePublic() or ParsePrivate() */
	cCryptoKey(void);

	/** Constructs the public key out of the DER- or PEM-encoded pubkey data */
	cCryptoKey(const AString & a_PublicKeyData);

	/** Constructs the private key out of the DER- or PEM-encoded privkey data, with the specified password.
	If a_Password is empty, no password is assumed. */
	cCryptoKey(const AString & a_PrivateKeyData, const AString & a_Password);

	~cCryptoKey();

	/** Decrypts the data using the stored public key
	Both a_EncryptedData and a_DecryptedData must be at least <KeySizeBytes> bytes large.
	Returns the number of bytes decrypted, or negative number for error. */
	int Decrypt(const Byte * a_EncryptedData, size_t a_EncryptedLength, Byte * a_DecryptedData, size_t a_DecryptedMaxLength);

	/** Encrypts the data using the stored public key
	Both a_EncryptedData and a_DecryptedData must be at least <KeySizeBytes> bytes large.
	Returns the number of bytes decrypted, or negative number for error. */
	int Encrypt(const Byte * a_PlainData, size_t a_PlainLength, Byte * a_EncryptedData, size_t a_EncryptedMaxLength);

	/** Parses the specified data into a public key representation.
	The key can be DER- or PEM-encoded.
	Returns 0 on success, mbedTLS error code on failure. */
	int ParsePublic(const void * a_Data, size_t a_NumBytes);

	/** Parses the specified data into a private key representation.
	If a_Password is empty, no password is assumed.
	The key can be DER- or PEM-encoded.
	Returns 0 on success, mbedTLS error code on failure. */
	int ParsePrivate(const void * a_Data, size_t a_NumBytes, const AString & a_Password);

	/** Returns true if the contained key is valid. */
	bool IsValid(void) const;

protected:
	/** The mbedTLS representation of the key data */
	mbedtls_pk_context m_Pk;

	/** The random generator used in encryption and decryption */
	cCtrDrbgContext m_CtrDrbg;


	/** Returns the internal context ptr. Only use in mbedTLS API calls. */
	mbedtls_pk_context * GetInternal(void) { return &m_Pk; }
} ;

typedef std::shared_ptr<cCryptoKey> cCryptoKeyPtr;
Removed UTF-8 BOM (#4033) 2017-09-19 08:34:08 +00:00
Renamed cPublicKey to cCryptoKey. The class can hold both the private key and the public key, bad naming on PolarSSL's part. Also somewhat fixed the cert and key loading in cHTTPServer. 2014-05-01 13:21:41 +00:00			`// CryptoKey.h`
Moved cPublicKey to its separate file in PolarSSL++. 2014-04-29 15:13:08 +00:00
Update mbedtls to 2.5.1 (#3964) * Renaming changes: * macro prefix "POLARSSL" -> "MBEDTLS" * functions now prefixed with "mbedtls_" * rename PolarSSL++ -> mbedTLS++ * rename polarssl submodule * Use mbedtls' AES-CFB8 implementation. * Add cSslConfig to wrap mbedtls_ssl_config * Update cTCPLink and cBlockingSslClientSocket to use cSslConfig * Use cSslConfig in cHTTPServer * Use cSslConfig for cMojangAPI::SecureRequest * CI Fixes * Set -fomit-frame-pointer on the right target 2017-08-30 14:00:06 +00:00			`// Declares the cCryptoKey class representing a RSA public key in mbedTLS`
Moved cPublicKey to its separate file in PolarSSL++. 2014-04-29 15:13:08 +00:00




			`#pragma once`

			`#include "CtrDrbgContext.h"`
Update mbedtls to 2.5.1 (#3964) * Renaming changes: * macro prefix "POLARSSL" -> "MBEDTLS" * functions now prefixed with "mbedtls_" * rename PolarSSL++ -> mbedTLS++ * rename polarssl submodule * Use mbedtls' AES-CFB8 implementation. * Add cSslConfig to wrap mbedtls_ssl_config * Update cTCPLink and cBlockingSslClientSocket to use cSslConfig * Use cSslConfig in cHTTPServer * Use cSslConfig for cMojangAPI::SecureRequest * CI Fixes * Set -fomit-frame-pointer on the right target 2017-08-30 14:00:06 +00:00			`#include "mbedtls/pk.h"`
Moved cPublicKey to its separate file in PolarSSL++. 2014-04-29 15:13:08 +00:00




Renamed cPublicKey to cCryptoKey. The class can hold both the private key and the public key, bad naming on PolarSSL's part. Also somewhat fixed the cert and key loading in cHTTPServer. 2014-05-01 13:21:41 +00:00			`class cCryptoKey`
Moved cPublicKey to its separate file in PolarSSL++. 2014-04-29 15:13:08 +00:00			`{`
Update mbedtls to 2.5.1 (#3964) * Renaming changes: * macro prefix "POLARSSL" -> "MBEDTLS" * functions now prefixed with "mbedtls_" * rename PolarSSL++ -> mbedTLS++ * rename polarssl submodule * Use mbedtls' AES-CFB8 implementation. * Add cSslConfig to wrap mbedtls_ssl_config * Update cTCPLink and cBlockingSslClientSocket to use cSslConfig * Use cSslConfig in cHTTPServer * Use cSslConfig for cMojangAPI::SecureRequest * CI Fixes * Set -fomit-frame-pointer on the right target 2017-08-30 14:00:06 +00:00			`friend class cSslConfig;`
Bulk clearing of whitespace 2016-02-05 21:45:45 +00:00
Moved cPublicKey to its separate file in PolarSSL++. 2014-04-29 15:13:08 +00:00			`public:`
cSslContext supports setting own cert / privkey. 2014-04-30 22:28:27 +00:00			`/** Constructs an empty key instance. Before use, it needs to be filled by ParsePublic() or ParsePrivate() */`
Renamed cPublicKey to cCryptoKey. The class can hold both the private key and the public key, bad naming on PolarSSL's part. Also somewhat fixed the cert and key loading in cHTTPServer. 2014-05-01 13:21:41 +00:00			`cCryptoKey(void);`
Bulk clearing of whitespace 2016-02-05 21:45:45 +00:00
cSslContext supports setting own cert / privkey. 2014-04-30 22:28:27 +00:00			`/** Constructs the public key out of the DER- or PEM-encoded pubkey data */`
Renamed cPublicKey to cCryptoKey. The class can hold both the private key and the public key, bad naming on PolarSSL's part. Also somewhat fixed the cert and key loading in cHTTPServer. 2014-05-01 13:21:41 +00:00			`cCryptoKey(const AString & a_PublicKeyData);`
Bulk clearing of whitespace 2016-02-05 21:45:45 +00:00
cSslContext supports setting own cert / privkey. 2014-04-30 22:28:27 +00:00			`/** Constructs the private key out of the DER- or PEM-encoded privkey data, with the specified password.`
			`If a_Password is empty, no password is assumed. */`
Renamed cPublicKey to cCryptoKey. The class can hold both the private key and the public key, bad naming on PolarSSL's part. Also somewhat fixed the cert and key loading in cHTTPServer. 2014-05-01 13:21:41 +00:00			`cCryptoKey(const AString & a_PrivateKeyData, const AString & a_Password);`
Bulk clearing of whitespace 2016-02-05 21:45:45 +00:00
Renamed cPublicKey to cCryptoKey. The class can hold both the private key and the public key, bad naming on PolarSSL's part. Also somewhat fixed the cert and key loading in cHTTPServer. 2014-05-01 13:21:41 +00:00			`~cCryptoKey();`
Bulk clearing of whitespace 2016-02-05 21:45:45 +00:00
Moved cPublicKey to its separate file in PolarSSL++. 2014-04-29 15:13:08 +00:00			`/** Decrypts the data using the stored public key`
			`Both a_EncryptedData and a_DecryptedData must be at least <KeySizeBytes> bytes large.`
			`Returns the number of bytes decrypted, or negative number for error. */`
			`int Decrypt(const Byte * a_EncryptedData, size_t a_EncryptedLength, Byte * a_DecryptedData, size_t a_DecryptedMaxLength);`
Bulk clearing of whitespace 2016-02-05 21:45:45 +00:00
Moved cPublicKey to its separate file in PolarSSL++. 2014-04-29 15:13:08 +00:00			`/** Encrypts the data using the stored public key`
			`Both a_EncryptedData and a_DecryptedData must be at least <KeySizeBytes> bytes large.`
			`Returns the number of bytes decrypted, or negative number for error. */`
			`int Encrypt(const Byte * a_PlainData, size_t a_PlainLength, Byte * a_EncryptedData, size_t a_EncryptedMaxLength);`
Bulk clearing of whitespace 2016-02-05 21:45:45 +00:00
cSslContext supports setting own cert / privkey. 2014-04-30 22:28:27 +00:00			`/** Parses the specified data into a public key representation.`
			`The key can be DER- or PEM-encoded.`
Update mbedtls to 2.5.1 (#3964) * Renaming changes: * macro prefix "POLARSSL" -> "MBEDTLS" * functions now prefixed with "mbedtls_" * rename PolarSSL++ -> mbedTLS++ * rename polarssl submodule * Use mbedtls' AES-CFB8 implementation. * Add cSslConfig to wrap mbedtls_ssl_config * Update cTCPLink and cBlockingSslClientSocket to use cSslConfig * Use cSslConfig in cHTTPServer * Use cSslConfig for cMojangAPI::SecureRequest * CI Fixes * Set -fomit-frame-pointer on the right target 2017-08-30 14:00:06 +00:00			`Returns 0 on success, mbedTLS error code on failure. */`
cSslContext supports setting own cert / privkey. 2014-04-30 22:28:27 +00:00			`int ParsePublic(const void * a_Data, size_t a_NumBytes);`

			`/** Parses the specified data into a private key representation.`
			`If a_Password is empty, no password is assumed.`
			`The key can be DER- or PEM-encoded.`
Update mbedtls to 2.5.1 (#3964) * Renaming changes: * macro prefix "POLARSSL" -> "MBEDTLS" * functions now prefixed with "mbedtls_" * rename PolarSSL++ -> mbedTLS++ * rename polarssl submodule * Use mbedtls' AES-CFB8 implementation. * Add cSslConfig to wrap mbedtls_ssl_config * Update cTCPLink and cBlockingSslClientSocket to use cSslConfig * Use cSslConfig in cHTTPServer * Use cSslConfig for cMojangAPI::SecureRequest * CI Fixes * Set -fomit-frame-pointer on the right target 2017-08-30 14:00:06 +00:00			`Returns 0 on success, mbedTLS error code on failure. */`
cSslContext supports setting own cert / privkey. 2014-04-30 22:28:27 +00:00			`int ParsePrivate(const void * a_Data, size_t a_NumBytes, const AString & a_Password);`
Bulk clearing of whitespace 2016-02-05 21:45:45 +00:00
cSslContext supports setting own cert / privkey. 2014-04-30 22:28:27 +00:00			`/** Returns true if the contained key is valid. */`
			`bool IsValid(void) const;`
Moved cPublicKey to its separate file in PolarSSL++. 2014-04-29 15:13:08 +00:00
			`protected:`
Update mbedtls to 2.5.1 (#3964) * Renaming changes: * macro prefix "POLARSSL" -> "MBEDTLS" * functions now prefixed with "mbedtls_" * rename PolarSSL++ -> mbedTLS++ * rename polarssl submodule * Use mbedtls' AES-CFB8 implementation. * Add cSslConfig to wrap mbedtls_ssl_config * Update cTCPLink and cBlockingSslClientSocket to use cSslConfig * Use cSslConfig in cHTTPServer * Use cSslConfig for cMojangAPI::SecureRequest * CI Fixes * Set -fomit-frame-pointer on the right target 2017-08-30 14:00:06 +00:00			`/** The mbedTLS representation of the key data */`
			`mbedtls_pk_context m_Pk;`
Bulk clearing of whitespace 2016-02-05 21:45:45 +00:00
Moved cPublicKey to its separate file in PolarSSL++. 2014-04-29 15:13:08 +00:00			`/** The random generator used in encryption and decryption */`
			`cCtrDrbgContext m_CtrDrbg;`
Bulk clearing of whitespace 2016-02-05 21:45:45 +00:00

Update mbedtls to 2.5.1 (#3964) * Renaming changes: * macro prefix "POLARSSL" -> "MBEDTLS" * functions now prefixed with "mbedtls_" * rename PolarSSL++ -> mbedTLS++ * rename polarssl submodule * Use mbedtls' AES-CFB8 implementation. * Add cSslConfig to wrap mbedtls_ssl_config * Update cTCPLink and cBlockingSslClientSocket to use cSslConfig * Use cSslConfig in cHTTPServer * Use cSslConfig for cMojangAPI::SecureRequest * CI Fixes * Set -fomit-frame-pointer on the right target 2017-08-30 14:00:06 +00:00			`/** Returns the internal context ptr. Only use in mbedTLS API calls. */`
			`mbedtls_pk_context * GetInternal(void) { return &m_Pk; }`
Moved cPublicKey to its separate file in PolarSSL++. 2014-04-29 15:13:08 +00:00			`} ;`

Remove smart pointer macros 2017-07-20 11:19:18 +00:00			`typedef std::shared_ptr<cCryptoKey> cCryptoKeyPtr;`
Moved cPublicKey to its separate file in PolarSSL++. 2014-04-29 15:13:08 +00:00