#lang scheme/base
(require scheme/foreign
scheme/match
"macros.ss"
"libcrypto.ss"
"error.ss"
"rand.ss"
"util.ss"
"digest.ss"
"cipher.ss"
"bn.ss")
(provide (all-defined-out))
(unsafe!)
(define/alloc EVP_PKEY)
(define/alloc RSA)
(define/alloc DSA)
(define/ffi (EVP_PKEY_type _int) -> _int : int/error)
(define/ffi (EVP_PKEY_size _pointer) -> _int : int/error)
(define/ffi (EVP_PKEY_bits _pointer) -> _int : int/error)
(define/ffi (EVP_PKEY_assign _pointer _int _pointer) -> _int : check-error)
(define/ffi (EVP_PKEY_set1_RSA _pointer _pointer) -> _int : check-error)
(define/ffi (EVP_PKEY_set1_DSA _pointer _pointer) -> _int : check-error)
(define/ffi
(EVP_SignFinal _pointer _pointer (count : (_ptr o _uint)) _pointer)
-> _int : (lambda (f r) (check-error f r) count))
(define/ffi (EVP_VerifyFinal _pointer _pointer _uint _pointer)
-> _int : bool/error)
(define/ffi (EVP_PKEY_cmp _pointer _pointer) -> _int : bool/error)
(define/ffi (EVP_PKEY_encrypt _pointer _pointer _int _pointer)
-> _int : int/error*)
(define/ffi (EVP_PKEY_decrypt _pointer _pointer _int _pointer)
-> _int : int/error*)
(define/ffi (RSA_generate_key_ex _pointer _int _pointer (_pointer = #f))
-> _int : check-error)
(define/ffi
(DSA_generate_parameters_ex _pointer _int
(_pointer = #f) (_int = 0) (_pointer = #f) (_pointer = #f)
(_pointer = #f))
-> _int : check-error)
(define/ffi (DSA_generate_key _pointer) -> _int : check-error)
(define-struct !pkey (type keygen))
(define-struct pkey (type evp private?))
(define/ffi (d2i_PublicKey _int (_pointer = #f) (_ptr i _pointer) _long)
-> _pointer : pointer/error)
(define/ffi (d2i_PrivateKey _int (_pointer = #f) (_ptr i _pointer) _long)
-> _pointer : pointer/error)
(define/ffi (i2d_PublicKey _pointer (_ptr i _pointer)) -> _int : int/error)
(define/ffi (i2d_PrivateKey _pointer (_ptr i _pointer)) -> _int : int/error)
(define i2d_PublicKey-length
(lambda/ffi (i2d_PublicKey _pointer (_pointer = #f))
-> _int : int/error))
(define i2d_PrivateKey-length
(lambda/ffi (i2d_PrivateKey _pointer (_pointer = #f))
-> _int : int/error))
(define (pkey-size pk)
(EVP_PKEY_size (pkey-evp pk)))
(define (pkey-bits pk)
(EVP_PKEY_bits (pkey-evp pk)))
(define (pkey=? k1 . klst)
(let ((evp (pkey-evp k1)))
(let lp ((lst klst))
(cond
((null? lst) #t)
((EVP_PKEY_cmp evp (pkey-evp (car lst))) (lp (cdr lst)))
(else #f)))))
(define (read-pkey type public? bs)
(let* ((d2i (if public? d2i_PublicKey d2i_PrivateKey))
(evp (d2i (!pkey-type type) bs (bytes-length bs)))
(pk (make-pkey type evp (not public?))))
(register-finalizer pk (compose EVP_PKEY_free pkey-evp))
pk))
(define (write-pkey pk public?)
(let*-values
(((i2d i2d-len)
(if public?
(values i2d_PublicKey i2d_PublicKey-length)
(values i2d_PrivateKey i2d_PrivateKey-length)))
((obs) (make-bytes (i2d-len (pkey-evp pk)))))
(i2d (pkey-evp pk) obs)
obs))
(define-rule (define-bytes->pkey id public?)
(define (id type bs)
(read-pkey type public? bs)))
(define-bytes->pkey bytes->private-key #f)
(define-bytes->pkey bytes->public-key #t)
(define-rule (define-pkey->bytes id public?)
(define (id pk)
(write-pkey pk public?)))
(define-pkey->bytes private-key->bytes #f)
(define-pkey->bytes public-key->bytes #t)
(define (pkey->public-key pk)
(if (pkey-private? pk)
(bytes->public-key (pkey-type pk) (public-key->bytes pk))
pk))
(define (pk->type evp)
(EVP_PKEY_type (car (ptr-ref evp (_list-struct _int)))))
(define (evp->pkey evp pkt pkp)
(EVP_PKEY_assign evp (!pkey-type pkt) pkp)
(let ((pk (make-pkey pkt evp #t)))
(register-finalizer pk (compose EVP_PKEY_free pkey-evp)) pk))
(define (rsa-keygen bits (exp 65537))
(let/fini ((ep (BN_new) BN_free))
(BN_add_word ep exp)
(let/error ((rsap (RSA_new) RSA_free)
(evp (EVP_PKEY_new) EVP_PKEY_free))
(RSA_generate_key_ex rsap bits ep)
(evp->pkey evp pkey:rsa rsap))))
(define pkey:rsa
(with-handlers ((exn:fail? (lambda x #f)))
(let/fini ((rsap (RSA_new) RSA_free)
(evp (EVP_PKEY_new) EVP_PKEY_free))
(EVP_PKEY_set1_RSA evp rsap)
(make-!pkey (pk->type evp) rsa-keygen))))
(define (dsa-keygen bits)
(let/error ((dsap (DSA_new) DSA_free)
(evp (EVP_PKEY_new) EVP_PKEY_free))
(DSA_generate_parameters_ex dsap bits)
(DSA_generate_key dsap)
(evp->pkey evp pkey:dsa dsap)))
(define pkey:dsa
(with-handlers ((exn:fail? (lambda x #f)))
(let/fini ((dsap (DSA_new) DSA_free)
(evp (EVP_PKEY_new) EVP_PKEY_free))
(EVP_PKEY_set1_DSA evp dsap)
(make-!pkey (pk->type evp) dsa-keygen))))
(define (generate-pkey type bits . args)
(apply (!pkey-keygen type) bits args))
(define (pkey-sign dg pk bs)
(unless (pkey-private? pk)
(mismatch-error 'sign "not a private key"))
(cond
((digest-ctx dg) => (lambda (ctx) (EVP_SignFinal ctx bs (pkey-evp pk))))
(else (mismatch-error 'pkey-sign "finalized context"))))
(define (pkey-verify dg pk bs len)
(cond
((digest-ctx dg) => (lambda (ctx) (EVP_VerifyFinal ctx bs len (pkey-evp pk))))
(else (error 'pkey-verify "finalized context"))))
(define* digest-sign
((dg pk)
(let* ((bs (make-bytes (pkey-size pk)))
(len (pkey-sign dg pk bs)))
(shrink-bytes bs len)))
((dg pk bs)
(check-output-range digest-sign bs (pkey-size pk))
(pkey-sign dg pk bs))
((dg pk bs start)
(check-output-range digest-sign bs start (bytes-length bs) (pkey-size pk))
(pkey-sign dg pk (ptr-add bs start)))
((dg pk bs start end)
(check-output-range digest-sign bs start end (pkey-size pk))
(pkey-sign dg pk (ptr-add bs start))))
(define* digest-verify
((dg pk bs)
(pkey-verify dg pk bs (bytes-length bs)))
((dg pk bs start)
(check-input-range digest-verify bs start (bytes-length bs))
(pkey-verify dg pk (ptr-add bs start) (- (bytes-length bs) start)))
((dg pk bs start end)
(check-input-range digest-verify bs start end)
(pkey-verify dg pk (ptr-add bs start) (- end start))))
(define (sign-bytes dgt pk bs)
(let ((dg (digest-new dgt)))
(digest-update! dg bs)
(digest-sign dg pk)))
(define (verify-bytes dgt pk sigbs bs)
(let ((dg (digest-new dgt)))
(digest-update! dg bs)
(digest-verify dg pk sigbs)))
(define (sign-port dgt pk inp)
(digest-sign (digest-port* dgt inp) pk))
(define (verify-port dgt pk sigbs inp)
(digest-verify (digest-port* dgt inp) pk sigbs))
(define (sign pk dgt inp)
(cond
((bytes? inp) (sign-bytes dgt pk inp))
((input-port? inp) (sign-port dgt pk inp))
(else (raise-type-error 'sign "bytes or input-port" inp))))
(define (verify pk dgt sigbs inp)
(cond
((bytes? inp) (verify-bytes dgt pk sigbs inp))
((input-port? inp) (verify-port dgt pk sigbs inp))
(else (raise-type-error 'verify "bytes or input-port" inp))))
(define-rule (define-pkey-crypt crypt op evp-op public?)
(begin
(define (op pk ibs ilen)
(unless (or public? (pkey-private? pk))
(mismatch-error 'crypt "not a private key"))
(let* ((obs (make-bytes (pkey-size pk)))
(olen (evp-op obs ibs ilen (pkey-evp pk))))
(shrink-bytes obs olen)))
(define* crypt
((pk ibs)
(check-input-range crypt ibs (pkey-size pk))
(op pk ibs (bytes-length ibs)))
((pk ibs istart)
(check-input-range crypt ibs istart (bytes-length ibs) (pkey-size pk))
(op pk (ptr-add ibs istart) (- (bytes-length ibs) istart)))
((pk ibs istart iend)
(check-input-range crypt ibs istart iend (pkey-size pk))
(op pk (ptr-add ibs istart) (- iend istart))))))
(define-pkey-crypt encrypt/pkey pkey-encrypt EVP_PKEY_encrypt #t)
(define-pkey-crypt decrypt/pkey pkey-decrypt EVP_PKEY_decrypt #f)
(define (encrypt/envelope pk cipher . cargs)
(let*-values (((k iv) (generate-cipher-key cipher))
((sk) (encrypt/pkey pk k)))
(call/values
(lambda () (apply encrypt cipher k iv cargs))
(lambda cvals (apply values sk iv cvals)))))
(define (decrypt/envelope pk cipher sk iv . cargs)
(apply decrypt cipher (decrypt/pkey pk sk) iv cargs))
(define pkey:rsa:digests
(filter values
(list digest:ripemd160
digest:sha1 digest:sha224 digest:sha256 digest:sha384 digest:sha512)))
(define pkey:dsa:digests
(filter values
(list digest:dss1)))
(define (pkey-digest? pk dgt)
(cond
((!pkey? pk)
(memq dgt
(cond
((eq? pk pkey:rsa) pkey:rsa:digests)
((eq? pk pkey:dsa) pkey:dsa:digests)
(else #f))))
((pkey? pk) (pkey-digest? (pkey-type pk) dgt))
(else (raise-type-error 'pkey-digest? "pkey or pkey type" pk))))
(define-symbols pkey.symbols
!pkey? pkey? pkey-private? pkey-size pkey-bits pkey=?
pkey->public-key public-key->bytes bytes->public-key
private-key->bytes bytes->private-key
digest-sign digest-verify
sign verify
encrypt/pkey decrypt/pkey
encrypt/envelope decrypt/envelope
pkey:rsa pkey:dsa
pkey:rsa:digests pkey:dsa:digests
pkey-digest?)
(define-provider provide-pkey pkey.symbols)
![[logo]](/logo.png){kind=logo}