Home Explore Help
Sign In
SMusatov
/
ydb
mirror of https://github.com/ydb-platform/ydb.git
1
0
Fork 0
Files
Branch: q-stable-2024-01-09
Branches Tags
ydb
/
contrib
/
restricted
/
aws
/
s2n
/
pq-crypto
/
s2n_kyber_evp.c

s2n_kyber_evp.c 4.4 KB
Permalink History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107 
  1. /*
    2. 

  2. * Copyright Amazon.com, Inc. or its affiliates. All Rights Reserved.
    3. 

  3. *
    4. 

  4. * Licensed under the Apache License, Version 2.0 (the "License").
    5. 

  5. * You may not use this file except in compliance with the License.
    6. 

  6. * A copy of the License is located at
    7. 

  7. *
    8. 

  8. *  http://aws.amazon.com/apache2.0
    9. 

  9. *
    10. 

  10. * or in the "license" file accompanying this file. This file is distributed
    11. 

  11. * on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either
    12. 

  12. * express or implied. See the License for the specific language governing
    13. 

  13. * permissions and limitations under the License.
    14. 

  14. */
    15. 

  15. 

  16. #include "s2n_kyber_evp.h"
    17. 

  17. 

  18. #include <openssl/evp.h>
    19. 

  19. #include <stddef.h>
    20. 

  20. 

  21. #include "error/s2n_errno.h"
    22. 

  22. #include "tls/s2n_kem.h"
    23. 

  23. #include "utils/s2n_safety.h"
    24. 

  24. #include "utils/s2n_safety_macros.h"
    25. 

  25. 

  26. #if defined(S2N_LIBCRYPTO_SUPPORTS_KYBER) && !defined(S2N_NO_PQ)
    27. 

  27. 

  28. DEFINE_POINTER_CLEANUP_FUNC(EVP_PKEY *, EVP_PKEY_free);
    29. 

  29. DEFINE_POINTER_CLEANUP_FUNC(EVP_PKEY_CTX *, EVP_PKEY_CTX_free);
    30. 

  30. 

  31. int s2n_kyber_evp_generate_keypair(IN const struct s2n_kem *kem, OUT uint8_t *public_key,
    32. 

  32.         OUT uint8_t *secret_key)
    33. 

  33. {
    34. 

  34.     DEFER_CLEANUP(EVP_PKEY_CTX *kyber_pkey_ctx = EVP_PKEY_CTX_new_id(EVP_PKEY_KEM, NULL), EVP_PKEY_CTX_free_pointer);
    35. 

  35.     POSIX_GUARD_PTR(kyber_pkey_ctx);
    36. 

  36.     POSIX_GUARD_OSSL(EVP_PKEY_CTX_kem_set_params(kyber_pkey_ctx, kem->kem_nid), S2N_ERR_PQ_CRYPTO);
    37. 

  37.     POSIX_GUARD_OSSL(EVP_PKEY_keygen_init(kyber_pkey_ctx), S2N_ERR_PQ_CRYPTO);
    38. 

  38. 

  39.     DEFER_CLEANUP(EVP_PKEY *kyber_pkey = NULL, EVP_PKEY_free_pointer);
    40. 

  40.     POSIX_GUARD_OSSL(EVP_PKEY_keygen(kyber_pkey_ctx, &kyber_pkey), S2N_ERR_PQ_CRYPTO);
    41. 

  41.     POSIX_GUARD_PTR(kyber_pkey);
    42. 

  42. 

  43.     size_t public_key_size = kem->public_key_length;
    44. 

  44.     POSIX_GUARD_OSSL(EVP_PKEY_get_raw_public_key(kyber_pkey, public_key, &public_key_size), S2N_ERR_PQ_CRYPTO);
    45. 

  45.     POSIX_ENSURE_EQ(kem->public_key_length, public_key_size);
    46. 

  46.     size_t private_key_size = kem->private_key_length;
    47. 

  47.     POSIX_GUARD_OSSL(EVP_PKEY_get_raw_private_key(kyber_pkey, secret_key, &private_key_size), S2N_ERR_PQ_CRYPTO);
    48. 

  48.     POSIX_ENSURE_EQ(kem->private_key_length, private_key_size);
    49. 

  49. 

  50.     return S2N_SUCCESS;
    51. 

  51. }
    52. 

  52. 

  53. int s2n_kyber_evp_encapsulate(IN const struct s2n_kem *kem, OUT uint8_t *ciphertext, OUT uint8_t *shared_secret,
    54. 

  54.         IN const uint8_t *public_key)
    55. 

  55. {
    56. 

  56.     DEFER_CLEANUP(EVP_PKEY *kyber_pkey = EVP_PKEY_kem_new_raw_public_key(kem->kem_nid, public_key, kem->public_key_length), EVP_PKEY_free_pointer);
    57. 

  57.     POSIX_GUARD_PTR(kyber_pkey);
    58. 

  58. 

  59.     DEFER_CLEANUP(EVP_PKEY_CTX *kyber_pkey_ctx = EVP_PKEY_CTX_new(kyber_pkey, NULL), EVP_PKEY_CTX_free_pointer);
    60. 

  60.     POSIX_GUARD_PTR(kyber_pkey_ctx);
    61. 

  61. 

  62.     size_t ciphertext_size = kem->ciphertext_length;
    63. 

  63.     size_t shared_secret_size = kem->shared_secret_key_length;
    64. 

  64.     POSIX_GUARD_OSSL(EVP_PKEY_encapsulate(kyber_pkey_ctx, ciphertext, &ciphertext_size, shared_secret,
    65. 

  65.                              &shared_secret_size),
    66. 

  66.             S2N_ERR_PQ_CRYPTO);
    67. 

  67.     POSIX_ENSURE_EQ(kem->ciphertext_length, ciphertext_size);
    68. 

  68.     POSIX_ENSURE_EQ(kem->shared_secret_key_length, shared_secret_size);
    69. 

  69. 

  70.     return S2N_SUCCESS;
    71. 

  71. }
    72. 

  72. 

  73. int s2n_kyber_evp_decapsulate(IN const struct s2n_kem *kem, OUT uint8_t *shared_secret, IN const uint8_t *ciphertext,
    74. 

  74.         IN const uint8_t *private_key)
    75. 

  75. {
    76. 

  76.     DEFER_CLEANUP(EVP_PKEY *kyber_pkey = EVP_PKEY_kem_new_raw_secret_key(kem->kem_nid, private_key, kem->private_key_length), EVP_PKEY_free_pointer);
    77. 

  77.     POSIX_GUARD_PTR(kyber_pkey);
    78. 

  78. 

  79.     DEFER_CLEANUP(EVP_PKEY_CTX *kyber_pkey_ctx = EVP_PKEY_CTX_new(kyber_pkey, NULL), EVP_PKEY_CTX_free_pointer);
    80. 

  80.     POSIX_GUARD_PTR(kyber_pkey_ctx);
    81. 

  81. 

  82.     size_t shared_secret_size = kem->shared_secret_key_length;
    83. 

  83.     POSIX_GUARD_OSSL(EVP_PKEY_decapsulate(kyber_pkey_ctx, shared_secret, &shared_secret_size,
    84. 

  84.                              (uint8_t *) ciphertext, kem->ciphertext_length),
    85. 

  85.             S2N_ERR_PQ_CRYPTO);
    86. 

  86.     POSIX_ENSURE_EQ(kem->shared_secret_key_length, shared_secret_size);
    87. 

  87. 

  88.     return S2N_SUCCESS;
    89. 

  89. }
    90. 

  90. #else
    91. 

  91. int s2n_kyber_512_evp_generate_keypair(IN const struct s2n_kem *kem, OUT uint8_t *public_key, OUT uint8_t *secret_key)
    92. 

  92. {
    93. 

  93.     POSIX_BAIL(S2N_ERR_UNIMPLEMENTED);
    94. 

  94. }
    95. 

  95. 

  96. int s2n_kyber_512_evp_encapsulate(IN const struct s2n_kem *kem, OUT uint8_t *ciphertext, OUT uint8_t *shared_secret,
    97. 

  97.         IN const uint8_t *public_key)
    98. 

  98. {
    99. 

  99.     POSIX_BAIL(S2N_ERR_UNIMPLEMENTED);
    100. 

  100. }
    101. 

  101. 

  102. int s2n_kyber_512_evp_decapsulate(IN const struct s2n_kem *kem, OUT uint8_t *shared_secret, IN const uint8_t *ciphertext,
    103. 

  103.         IN const uint8_t *secret_key)
    104. 

  104. {
    105. 

  105.     POSIX_BAIL(S2N_ERR_UNIMPLEMENTED);
    106. 

  106. }
    107. 

  107. #endif
    108.