Merge branch 'main' into pkcs7

John Bland · John Bland · commit 87d2b886504e · 2022-08-11T18:50:52.000-04:00
diff --git a/README.md b/README.md
@@ -58,5 +58,7 @@ PASS ecc makeKey
 PASS ecc sharedSecret32
 PASS ecc sharedSecret64
 PASS ecc signVerify
-PASS ecc importExport
+PASS ecc importExportx963
+PASS ecc importExportDer
+PASS pbkdf2
 ```
diff --git a/addon/wolfcrypt/ecc.cpp b/addon/wolfcrypt/ecc.cpp
@@ -51,9 +51,10 @@ Napi::Number bind_wc_ecc_init(const Napi::CallbackInfo& info)
   Napi::Env env = info.Env();
   ecc_key* ecc = (ecc_key*)( info[0].As<Napi::Uint8Array>().Data() );
 
-  ecc->rng = NULL;
   ret = wc_ecc_init( ecc );
 
+  ecc->rng = wc_rng_new( NULL, 0, NULL );
+
   return Napi::Number::New( env, ret );
 }
 
@@ -64,8 +65,6 @@ Napi::Number bind_wc_ecc_make_key(const Napi::CallbackInfo& info)
   int key_size = info[0].As<Napi::Number>().Int32Value();
   ecc_key* ecc = (ecc_key*)( info[1].As<Napi::Uint8Array>().Data() );
 
-  ecc->rng = wc_rng_new( NULL, 0, NULL );
-
   ret = wc_ecc_make_key( ecc->rng, key_size, ecc );
 
   return Napi::Number::New( env, ret );
@@ -113,6 +112,84 @@ Napi::Number bind_wc_ecc_import_x963(const Napi::CallbackInfo& info)
   return Napi::Number::New( env, ret );
 }
 
+Napi::Number bind_wc_EccKeyDerSize(const Napi::CallbackInfo& info)
+{
+  Napi::Env env = info.Env();
+  int ret;
+  ecc_key* ecc = (ecc_key*)( info[0].As<Napi::Uint8Array>().Data() );
+  int pub = info[1].As<Napi::Number>().Int32Value();
+
+  ret = wc_EccKeyDerSize( ecc, pub );
+
+  return Napi::Number::New( env, ret );
+}
+
+Napi::Number bind_wc_EccPublicKeyDerSize(const Napi::CallbackInfo& info)
+{
+  Napi::Env env = info.Env();
+  int ret;
+  ecc_key* ecc = (ecc_key*)( info[0].As<Napi::Uint8Array>().Data() );
+
+  ret = wc_EccPublicKeyDerSize( ecc, 1 );
+
+  return Napi::Number::New( env, ret );
+}
+
+Napi::Number bind_wc_EccPublicKeyToDer(const Napi::CallbackInfo& info)
+{
+  Napi::Env env = info.Env();
+  int ret;
+  ecc_key* ecc = (ecc_key*)( info[0].As<Napi::Uint8Array>().Data() );
+  uint8_t* out = (uint8_t*)( info[1].As<Napi::Uint8Array>().Data() );
+  unsigned int out_len = info[2].As<Napi::Number>().Int32Value();
+
+  /* 1=export with ASN.1/DER header (which includes curve info) */
+  ret = wc_EccPublicKeyToDer( ecc, out, out_len, 1 );
+
+  return Napi::Number::New( env, ret );
+}
+
+Napi::Number bind_wc_EccPublicKeyDecode(const Napi::CallbackInfo& info)
+{
+  Napi::Env env = info.Env();
+  int ret;
+  uint8_t* in = (uint8_t*)( info[0].As<Napi::Uint8Array>().Data() );
+  ecc_key* ecc = (ecc_key*)( info[1].As<Napi::Uint8Array>().Data() );
+  unsigned int in_len = info[2].As<Napi::Number>().Int32Value();
+  unsigned int idx = 0;
+
+  ret = wc_EccPublicKeyDecode( in, &idx, ecc, in_len );
+
+  return Napi::Number::New( env, ret );
+}
+
+Napi::Number bind_wc_EccPrivateKeyToDer(const Napi::CallbackInfo& info)
+{
+  Napi::Env env = info.Env();
+  int ret;
+  ecc_key* ecc = (ecc_key*)( info[0].As<Napi::Uint8Array>().Data() );
+  uint8_t* out = (uint8_t*)( info[1].As<Napi::Uint8Array>().Data() );
+  unsigned int out_len = info[2].As<Napi::Number>().Int32Value();
+
+  ret = wc_EccPrivateKeyToDer( ecc, out, out_len );
+
+  return Napi::Number::New( env, ret );
+}
+
+Napi::Number bind_wc_EccPrivateKeyDecode(const Napi::CallbackInfo& info)
+{
+  Napi::Env env = info.Env();
+  int ret;
+  uint8_t* in = (uint8_t*)( info[0].As<Napi::Uint8Array>().Data() );
+  ecc_key* ecc = (ecc_key*)( info[1].As<Napi::Uint8Array>().Data() );
+  unsigned int in_len = info[2].As<Napi::Number>().Int32Value();
+  unsigned int idx = 0;
+
+  ret = wc_EccPrivateKeyDecode( in, &idx, ecc, in_len );
+
+  return Napi::Number::New( env, ret );
+}
+
 Napi::Number bind_wc_ecc_set_curve(const Napi::CallbackInfo& info)
 {
   Napi::Env env = info.Env();
@@ -160,18 +237,13 @@ Napi::Number bind_wc_ecc_sign_hash(const Napi::CallbackInfo& info)
 {
   Napi::Env env = info.Env();
   int ret;
-  WC_RNG rng;
   uint8_t* in = (uint8_t*)( info[0].As<Napi::Uint8Array>().Data() );
   int in_len = info[1].As<Napi::Number>().Int32Value();
   uint8_t* out = (uint8_t*)( info[2].As<Napi::Uint8Array>().Data() );
   unsigned int out_len = info[3].As<Napi::Number>().Int32Value();
   ecc_key* ecc = (ecc_key*)( info[4].As<Napi::Uint8Array>().Data() );
 
-  ret = wc_InitRng( &rng );
-  if (ret == 0)
-  {
-    ret = wc_ecc_sign_hash( in, in_len, out, &out_len, &rng, ecc );
-  }
+  ret = wc_ecc_sign_hash( in, in_len, out, &out_len, ecc->rng, ecc );
 
   if ( ret < 0 )
   {
diff --git a/addon/wolfcrypt/h/ecc.h b/addon/wolfcrypt/h/ecc.h
@@ -22,6 +22,7 @@
 #include "wolfssl/options.h"
 #include <wolfssl/wolfcrypt/settings.h>
 #include <wolfssl/wolfcrypt/ecc.h>
+#include <wolfssl/wolfcrypt/asn.h>
 
 Napi::Number sizeof_ecc_key(const Napi::CallbackInfo& info);
 Napi::Number sizeof_ecc_point(const Napi::CallbackInfo& info);
@@ -31,6 +32,12 @@ Napi::Number bind_wc_ecc_make_key(const Napi::CallbackInfo& info);
 Napi::Number sizeof_ecc_x963(const Napi::CallbackInfo& info);
 Napi::Number bind_wc_ecc_export_x963(const Napi::CallbackInfo& info);
 Napi::Number bind_wc_ecc_import_x963(const Napi::CallbackInfo& info);
+Napi::Number bind_wc_EccKeyDerSize(const Napi::CallbackInfo& info);
+Napi::Number bind_wc_EccPublicKeyToDer(const Napi::CallbackInfo& info);
+Napi::Number bind_wc_EccPublicKeyDecode(const Napi::CallbackInfo& info);
+Napi::Number bind_wc_EccPublicKeyDerSize(const Napi::CallbackInfo& info);
+Napi::Number bind_wc_EccPrivateKeyToDer(const Napi::CallbackInfo& info);
+Napi::Number bind_wc_EccPrivateKeyDecode(const Napi::CallbackInfo& info);
 Napi::Number bind_wc_ecc_set_curve(const Napi::CallbackInfo& info);
 Napi::Number bind_wc_ecc_shared_secret(const Napi::CallbackInfo& info);
 Napi::Number bind_wc_ecc_sig_size(const Napi::CallbackInfo& info);
diff --git a/addon/wolfcrypt/h/pbkdf2.h b/addon/wolfcrypt/h/pbkdf2.h
@@ -0,0 +1,26 @@
+/* pbkdf2.h
+ *
+ * Copyright (C) 2006-2022 wolfSSL Inc.
+ *
+ * This file is part of wolfSSL.
+ *
+ * wolfSSL is free software; you can redistribute it and/or modify
+ * it under the terms of the GNU General Public License as published by
+ * the Free Software Foundation; either version 2 of the License, or
+ * (at your option) any later version.
+ *
+ * wolfSSL is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+ * GNU General Public License for more details.
+ *
+ * You should have received a copy of the GNU General Public License
+ * along with this program; if not, write to the Free Software
+ * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1335, USA
+ */
+#include <napi.h>
+#include "wolfssl/options.h"
+#include <wolfssl/wolfcrypt/settings.h>
+#include <wolfssl/wolfcrypt/pwdbased.h>
+
+Napi::Number bind_wc_PBKDF2(const Napi::CallbackInfo& info);
diff --git a/addon/wolfcrypt/main.cpp b/addon/wolfcrypt/main.cpp
@@ -26,6 +26,7 @@
 #include "./h/rsa.h"
 #include "./h/sha.h"
 #include "./h/ecc.h"
+#include "./h/pbkdf2.h"
 #include "./h/pkcs7.h"
 
 using namespace Napi;
@@ -107,13 +108,21 @@ Napi::Object Init(Napi::Env env, Napi::Object exports)
   exports.Set(Napi::String::New(env, "sizeof_ecc_x963"), Napi::Function::New(env, sizeof_ecc_x963));
   exports.Set(Napi::String::New(env, "wc_ecc_export_x963"), Napi::Function::New(env, bind_wc_ecc_export_x963));
   exports.Set(Napi::String::New(env, "wc_ecc_import_x963"), Napi::Function::New(env, bind_wc_ecc_import_x963));
+  exports.Set(Napi::String::New(env, "wc_EccKeyDerSize"), Napi::Function::New(env, bind_wc_EccKeyDerSize));
+  exports.Set(Napi::String::New(env, "wc_EccPublicKeyToDer"), Napi::Function::New(env, bind_wc_EccPublicKeyToDer));
+  exports.Set(Napi::String::New(env, "wc_EccPublicKeyDecode"), Napi::Function::New(env, bind_wc_EccPublicKeyDecode));
+  exports.Set(Napi::String::New(env, "wc_EccPublicKeyDerSize"), Napi::Function::New(env, bind_wc_EccPublicKeyDerSize));
+  exports.Set(Napi::String::New(env, "wc_EccPrivateKeyToDer"), Napi::Function::New(env, bind_wc_EccPrivateKeyToDer));
+  exports.Set(Napi::String::New(env, "wc_EccPrivateKeyDecode"), Napi::Function::New(env, bind_wc_EccPrivateKeyDecode));
   exports.Set(Napi::String::New(env, "wc_ecc_set_curve"), Napi::Function::New(env, bind_wc_ecc_set_curve));
   exports.Set(Napi::String::New(env, "wc_ecc_shared_secret"), Napi::Function::New(env, bind_wc_ecc_shared_secret));
   exports.Set(Napi::String::New(env, "wc_ecc_sig_size"), Napi::Function::New(env, bind_wc_ecc_sig_size));
   exports.Set(Napi::String::New(env, "wc_ecc_sign_hash"), Napi::Function::New(env, bind_wc_ecc_sign_hash));
   exports.Set(Napi::String::New(env, "wc_ecc_verify_hash"), Napi::Function::New(env, bind_wc_ecc_verify_hash));
   exports.Set(Napi::String::New(env, "wc_ecc_free"), Napi::Function::New(env, bind_wc_ecc_free));
 
+  exports.Set(Napi::String::New(env, "wc_PBKDF2"), Napi::Function::New(env, bind_wc_PBKDF2));
+
   exports.Set(Napi::String::New(env, "sizeof_PKCS7"), Napi::Function::New(env, sizeof_PKCS7));
   exports.Set(Napi::String::New(env, "typeof_Key_Sum"), Napi::Function::New(env, typeof_Key_Sum));
   exports.Set(Napi::String::New(env, "typeof_Hash_Sum"), Napi::Function::New(env, typeof_Hash_Sum));
diff --git a/addon/wolfcrypt/pbkdf2.cpp b/addon/wolfcrypt/pbkdf2.cpp
@@ -0,0 +1,39 @@
+/* pbkdf2.cpp
+ *
+ * Copyright (C) 2006-2022 wolfSSL Inc.
+ *
+ * This file is part of wolfSSL.
+ *
+ * wolfSSL is free software; you can redistribute it and/or modify
+ * it under the terms of the GNU General Public License as published by
+ * the Free Software Foundation; either version 2 of the License, or
+ * (at your option) any later version.
+ *
+ * wolfSSL is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+ * GNU General Public License for more details.
+ *
+ * You should have received a copy of the GNU General Public License
+ * along with this program; if not, write to the Free Software
+ * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1335, USA
+ */
+#include "./h/pbkdf2.h"
+
+Napi::Number bind_wc_PBKDF2(const Napi::CallbackInfo& info)
+{
+  Napi::Env env = info.Env();
+  int ret;
+  uint8_t* out = info[0].As<Napi::Uint8Array>().Data();
+  uint8_t* passwd = info[1].As<Napi::Uint8Array>().Data();
+  int p_len = info[2].As<Napi::Number>().Int32Value();
+  uint8_t* salt = info[3].As<Napi::Uint8Array>().Data();
+  int s_len = info[4].As<Napi::Number>().Int32Value();
+  int iterations = info[5].As<Napi::Number>().Int32Value();
+  int k_len = info[6].As<Napi::Number>().Int32Value();
+  int type_h = info[7].As<Napi::Number>().Int32Value();
+
+  ret = wc_PBKDF2( out, passwd, p_len, salt, s_len, iterations, k_len, type_h );
+
+  return Napi::Number::New( env, ret );
+}
diff --git a/app.js b/app.js
@@ -23,6 +23,7 @@ const hmac_tests = require( './tests/hmac' );
 const rsa_tests = require( './tests/rsa' );
 const sha_tests = require( './tests/sha' );
 const ecc_tests = require( './tests/ecc' );
+const pbkdf2_tests = require( './tests/pbkdf2' );
 const pkcs7_tests = require( './tests/pkcs7' );
 
 (async function() {
@@ -51,6 +52,11 @@ const pkcs7_tests = require( './tests/pkcs7' );
     await ecc_tests[key]()
   }
 
+  for ( const key of Object.keys( pbkdf2_tests ) )
+  {
+    await pbkdf2_tests[key]()
+  }
+
   for ( const key of Object.keys( pkcs7_tests ) )
   {
     await pkcs7_tests[key]()
diff --git a/binding.gyp b/binding.gyp
@@ -10,6 +10,7 @@
             "addon/wolfcrypt/rsa.cpp",
             "addon/wolfcrypt/sha.cpp",
             "addon/wolfcrypt/ecc.cpp",
+            "addon/wolfcrypt/pbkdf2.cpp",
             "addon/wolfcrypt/pkcs7.cpp"
         ],
         'include_dirs': [
diff --git a/interfaces/ecc.js b/interfaces/ecc.js
@@ -91,6 +91,84 @@ class WolfSSLEcc
     }
   }
 
+  PublicKeyToDer()
+  {
+    if ( this.ecc == null )
+    {
+      throw 'Ecc not allocated'
+    }
+
+    let derBuf = Buffer.alloc( wolfcrypt.wc_EccPublicKeyDerSize( this.ecc ) )
+
+    let ret = wolfcrypt.wc_EccPublicKeyToDer( this.ecc, derBuf, derBuf.length )
+
+    if ( ret <= 0 )
+    {
+      throw `Failed to wc_EccPublicKeyToDer ${ ret }`
+    }
+
+    return derBuf
+  }
+
+  PublicKeyDecode( derBuf )
+  {
+    if ( this.ecc == null )
+    {
+      throw 'Ecc not allocated'
+    }
+
+    if ( !Buffer.isBuffer( derBuf ) )
+    {
+      throw 'Public key der must be a Buffer'
+    }
+
+    let ret = wolfcrypt.wc_EccPublicKeyDecode( derBuf, this.ecc, derBuf.length )
+
+    if ( ret != 0 )
+    {
+      throw `Failed to wc_EccPublicKeyDecode ${ ret }`
+    }
+  }
+
+  PrivateKeyToDer()
+  {
+    if ( this.ecc == null )
+    {
+      throw 'Ecc not allocated'
+    }
+
+    let derBuf = Buffer.alloc( wolfcrypt.wc_EccKeyDerSize( this.ecc, 0 ) )
+
+    let ret = wolfcrypt.wc_EccPrivateKeyToDer( this.ecc, derBuf, derBuf.length )
+
+    if ( ret <= 0 )
+    {
+      throw `Failed to wc_EccPrivateKeyToDer ${ ret }`
+    }
+
+    return derBuf
+  }
+
+  PrivateKeyDecode( derBuf )
+  {
+    if ( this.ecc == null )
+    {
+      throw 'Ecc not allocated'
+    }
+
+    if ( !Buffer.isBuffer( derBuf ) )
+    {
+      throw 'Private key der must be a Buffer'
+    }
+
+    let ret = wolfcrypt.wc_EccPrivateKeyDecode( derBuf, this.ecc, derBuf.length )
+
+    if ( ret != 0 )
+    {
+      throw `Failed to wc_EccPrivateKeyDecode ${ ret }`
+    }
+  }
+
   set_curve( keySize, curveId )
   {
     if ( this.ecc == null )
diff --git a/interfaces/pbkdf2.js b/interfaces/pbkdf2.js
diff --git a/tests/ecc.js b/tests/ecc.js
diff --git a/tests/pbkdf2.js b/tests/pbkdf2.js
