mirror of
https://github.com/Atmosphere-NX/Atmosphere-libs.git
synced 2025-11-04 13:21:17 +01:00
141 lines
5.7 KiB
C++
141 lines
5.7 KiB
C++
/*
|
|
* Copyright (c) Atmosphère-NX
|
|
*
|
|
* This program is free software; you can redistribute it and/or modify it
|
|
* under the terms and conditions of the GNU General Public License,
|
|
* version 2, as published by the Free Software Foundation.
|
|
*
|
|
* This program is distributed in the hope it will be useful, but WITHOUT
|
|
* ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
|
|
* FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for
|
|
* more details.
|
|
*
|
|
* You should have received a copy of the GNU General Public License
|
|
* along with this program. If not, see <http://www.gnu.org/licenses/>.
|
|
*/
|
|
|
|
#pragma once
|
|
#include <vapours/common.hpp>
|
|
#include <vapours/assert.hpp>
|
|
#include <vapours/util.hpp>
|
|
#include <vapours/crypto/crypto_rsa_calculator.hpp>
|
|
#include <vapours/crypto/impl/crypto_rsa_oaep_impl.hpp>
|
|
|
|
namespace ams::crypto {
|
|
|
|
template<size_t ModulusSize, typename Hash> requires impl::HashFunction<Hash>
|
|
class RsaOaepDecryptor {
|
|
NON_COPYABLE(RsaOaepDecryptor);
|
|
NON_MOVEABLE(RsaOaepDecryptor);
|
|
public:
|
|
static constexpr size_t HashSize = Hash::HashSize;
|
|
static constexpr size_t BlockSize = ModulusSize;
|
|
static constexpr size_t MaximumExponentSize = ModulusSize;
|
|
static constexpr size_t RequiredWorkBufferSize = RsaCalculator<ModulusSize, MaximumExponentSize>::RequiredWorkBufferSize;
|
|
private:
|
|
enum class State {
|
|
None,
|
|
Initialized,
|
|
Done,
|
|
};
|
|
private:
|
|
RsaCalculator<ModulusSize, MaximumExponentSize> m_calculator;
|
|
Hash m_hash;
|
|
bool m_set_label_digest;
|
|
u8 m_label_digest[HashSize];
|
|
State m_state;
|
|
public:
|
|
RsaOaepDecryptor() : m_set_label_digest(false), m_state(State::None) { std::memset(m_label_digest, 0, sizeof(m_label_digest)); }
|
|
|
|
~RsaOaepDecryptor() {
|
|
ClearMemory(m_label_digest, sizeof(m_label_digest));
|
|
}
|
|
|
|
bool Initialize(const void *mod, size_t mod_size, const void *exp, size_t exp_size) {
|
|
m_hash.Initialize();
|
|
m_set_label_digest = false;
|
|
if (m_calculator.Initialize(mod, mod_size, exp, exp_size)) {
|
|
m_state = State::Initialized;
|
|
return true;
|
|
} else {
|
|
return false;
|
|
}
|
|
}
|
|
|
|
void UpdateLabel(const void *data, size_t size) {
|
|
AMS_ASSERT(m_state == State::Initialized);
|
|
|
|
m_hash.Update(data, size);
|
|
}
|
|
|
|
void SetLabelDigest(const void *digest, size_t digest_size) {
|
|
AMS_ASSERT(m_state == State::Initialized);
|
|
AMS_ABORT_UNLESS(digest_size == sizeof(m_label_digest));
|
|
|
|
std::memcpy(m_label_digest, digest, digest_size);
|
|
m_set_label_digest = true;
|
|
}
|
|
|
|
size_t Decrypt(void *dst, size_t dst_size, const void *src, size_t src_size) {
|
|
AMS_ASSERT(m_state == State::Initialized);
|
|
|
|
impl::RsaOaepImpl<Hash> impl;
|
|
u8 message[BlockSize];
|
|
ON_SCOPE_EXIT { ClearMemory(message, sizeof(message)); };
|
|
|
|
if (!m_calculator.ExpMod(message, src, src_size)) {
|
|
std::memset(dst, 0, dst_size);
|
|
return false;
|
|
}
|
|
|
|
if (!m_set_label_digest) {
|
|
m_hash.GetHash(m_label_digest, sizeof(m_label_digest));
|
|
}
|
|
|
|
ON_SCOPE_EXIT { m_state = State::Done; };
|
|
|
|
return impl.Decode(dst, dst_size, m_label_digest, sizeof(m_label_digest), message, sizeof(message));
|
|
}
|
|
|
|
size_t Decrypt(void *dst, size_t dst_size, const void *src, size_t src_size, void *work_buf, size_t work_buf_size) {
|
|
AMS_ASSERT(m_state == State::Initialized);
|
|
ON_SCOPE_EXIT { m_state = State::Done; };
|
|
|
|
impl::RsaOaepImpl<Hash> impl;
|
|
u8 message[BlockSize];
|
|
ON_SCOPE_EXIT { ClearMemory(message, sizeof(message)); };
|
|
|
|
if (!m_calculator.ExpMod(message, src, src_size, work_buf, work_buf_size)) {
|
|
return false;
|
|
}
|
|
|
|
if (!m_set_label_digest) {
|
|
m_hash.GetHash(m_label_digest, sizeof(m_label_digest));
|
|
m_set_label_digest = true;
|
|
}
|
|
|
|
return impl.Decode(dst, dst_size, m_label_digest, sizeof(m_label_digest), message, sizeof(message));
|
|
}
|
|
|
|
static size_t Decrypt(void *dst, size_t dst_size, const void *mod, size_t mod_size, const void *exp, size_t exp_size, const void *msg, size_t msg_size, const void *lab, size_t lab_size) {
|
|
RsaOaepDecryptor<ModulusSize, Hash> crypt;
|
|
if (!crypt.Initialize(mod, mod_size, exp, exp_size)) {
|
|
return 0;
|
|
}
|
|
crypt.UpdateLabel(lab, lab_size);
|
|
return crypt.Decrypt(dst, dst_size, msg, msg_size);
|
|
}
|
|
|
|
static size_t Decrypt(void *dst, size_t dst_size, const void *mod, size_t mod_size, const void *exp, size_t exp_size, const void *msg, size_t msg_size, const void *lab, size_t lab_size, void *work_buf, size_t work_buf_size) {
|
|
RsaOaepDecryptor<ModulusSize, Hash> crypt;
|
|
if (!crypt.Initialize(mod, mod_size, exp, exp_size)) {
|
|
return 0;
|
|
}
|
|
crypt.UpdateLabel(lab, lab_size);
|
|
return crypt.Decrypt(dst, dst_size, msg, msg_size, work_buf, work_buf_size);
|
|
}
|
|
|
|
};
|
|
|
|
}
|