implement pkcs7 functions, encode signed broken

Author: John Bland

addon/wolfcrypt/h/pkcs7.h

@@ -0,0 +1,35 @@
+/* hmac.h
+ *
+ * Copyright (C) 2006-2022 wolfSSL Inc.
+ *
+ * This file is part of wolfSSL.
+ *
+ * wolfSSL is free software; you can redistribute it and/or modify
+ * it under the terms of the GNU General Public License as published by
+ * the Free Software Foundation; either version 2 of the License, or
+ * (at your option) any later version.
+ *
+ * wolfSSL is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+ * GNU General Public License for more details.
+ *
+ * You should have received a copy of the GNU General Public License
+ * along with this program; if not, write to the Free Software
+ * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1335, USA
+ */
+#include <napi.h>
+#include "wolfssl/options.h"
+#include <wolfssl/wolfcrypt/settings.h>
+#include <wolfssl/wolfcrypt/pkcs7.h>
+
+Napi::Number sizeof_PKCS7(const Napi::CallbackInfo& info);
+Napi::Number typeof_Key_Sum(const Napi::CallbackInfo& info);
+Napi::Number typeof_Hash_Sum(const Napi::CallbackInfo& info);
+Napi::Number bind_wc_PKCS7_Init(const Napi::CallbackInfo& info);
+Napi::Number bind_wc_PKCS7_InitWithCert(const Napi::CallbackInfo& info);
+Napi::Number bind_wc_PKCS7_AddCertificate(const Napi::CallbackInfo& info);
+Napi::Number bind_wc_PKCS7_EncodeData(const Napi::CallbackInfo& info);
+Napi::Number bind_wc_PKCS7_EncodeSignedData(const Napi::CallbackInfo& info);
+Napi::Number bind_wc_PKCS7_VerifySignedData(const Napi::CallbackInfo& info);
+void bind_wc_PKCS7_Free(const Napi::CallbackInfo& info);

addon/wolfcrypt/main.cpp

@@ -26,6 +26,7 @@
 #include "./h/rsa.h"
 #include "./h/sha.h"
 #include "./h/ecc.h"
+#include "./h/pkcs7.h"
 
 using namespace Napi;
 
@@ -113,6 +114,17 @@ Napi::Object Init(Napi::Env env, Napi::Object exports)
   exports.Set(Napi::String::New(env, "wc_ecc_verify_hash"), Napi::Function::New(env, bind_wc_ecc_verify_hash));
   exports.Set(Napi::String::New(env, "wc_ecc_free"), Napi::Function::New(env, bind_wc_ecc_free));
 
+  exports.Set(Napi::String::New(env, "sizeof_PKCS7"), Napi::Function::New(env, sizeof_PKCS7));
+  exports.Set(Napi::String::New(env, "typeof_Key_Sum"), Napi::Function::New(env, typeof_Key_Sum));
+  exports.Set(Napi::String::New(env, "typeof_Hash_Sum"), Napi::Function::New(env, typeof_Hash_Sum));
+  exports.Set(Napi::String::New(env, "wc_PKCS7_Init"), Napi::Function::New(env, bind_wc_PKCS7_Init));
+  exports.Set(Napi::String::New(env, "wc_PKCS7_InitWithCert"), Napi::Function::New(env, bind_wc_PKCS7_InitWithCert));
+  exports.Set(Napi::String::New(env, "wc_PKCS7_AddCertificate"), Napi::Function::New(env, bind_wc_PKCS7_AddCertificate));
+  exports.Set(Napi::String::New(env, "wc_PKCS7_EncodeData"), Napi::Function::New(env, bind_wc_PKCS7_EncodeData));
+  exports.Set(Napi::String::New(env, "wc_PKCS7_EncodeSignedData"), Napi::Function::New(env, bind_wc_PKCS7_EncodeSignedData));
+  exports.Set(Napi::String::New(env, "wc_PKCS7_VerifySignedData"), Napi::Function::New(env, bind_wc_PKCS7_VerifySignedData));
+  exports.Set(Napi::String::New(env, "wc_PKCS7_Free"), Napi::Function::New(env, bind_wc_PKCS7_Free));
+
   return exports;
 }
 

addon/wolfcrypt/pkcs7.cpp

@@ -0,0 +1,259 @@
+/* pkcs7.cpp
+ *
+ * Copyright (C) 2006-2022 wolfSSL Inc.
+ *
+ * This file is part of wolfSSL.
+ *
+ * wolfSSL is free software; you can redistribute it and/or modify
+ * it under the terms of the GNU General Public License as published by
+ * the Free Software Foundation; either version 2 of the License, or
+ * (at your option) any later version.
+ *
+ * wolfSSL is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+ * GNU General Public License for more details.
+ *
+ * You should have received a copy of the GNU General Public License
+ * along with this program; if not, write to the Free Software
+ * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1335, USA
+ */
+#include "./h/pkcs7.h"
+
+Napi::Number sizeof_PKCS7(const Napi::CallbackInfo& info)
+{
+  Napi::Env env = info.Env();
+
+  return Napi::Number::New( env, sizeof( PKCS7 ) );
+}
+
+Napi::Number typeof_Key_Sum(const Napi::CallbackInfo& info)
+{
+  int ret = -1;
+  Napi::Env env = info.Env();
+  std::string type = info[0].As<Napi::String>().Utf8Value();
+
+  if ( strcmp( type.c_str(), "DSA" ) == 0 )
+  {
+    ret = DSAk;
+  }
+  else if ( strcmp( type.c_str(), "RSA" ) == 0 )
+  {
+    ret = RSAk;
+  }
+  else if ( strcmp( type.c_str(), "ECDSA" ) == 0 )
+  {
+    ret = ECDSAk;
+  }
+  else if ( strcmp( type.c_str(), "ED25519" ) == 0 )
+  {
+    ret = ED25519k;
+  }
+  else if ( strcmp( type.c_str(), "X25519" ) == 0 )
+  {
+    ret = X25519k;
+  }
+  else if ( strcmp( type.c_str(), "ED448" ) == 0 )
+  {
+    ret = ED448k;
+  }
+  else if ( strcmp( type.c_str(), "X448" ) == 0 )
+  {
+    ret = X448k;
+  }
+  else if ( strcmp( type.c_str(), "DH" ) == 0 )
+  {
+    ret = DHk;
+  }
+  else if ( strcmp( type.c_str(), "FALCON_LEVEL1" ) == 0 )
+  {
+    ret = FALCON_LEVEL1k;
+  }
+  else if ( strcmp( type.c_str(), "FALCON_LEVEL5" ) == 0 )
+  {
+    ret = FALCON_LEVEL5k;
+  }
+
+  return Napi::Number::New( env, ret );
+}
+
+Napi::Number typeof_Hash_Sum(const Napi::CallbackInfo& info)
+{
+  int ret = -1;
+  Napi::Env env = info.Env();
+  std::string type = info[0].As<Napi::String>().Utf8Value();
+
+  if ( strcmp( type.c_str(), "MD2" ) == 0 )
+  {
+    ret = MD2h;
+  }
+  else if ( strcmp( type.c_str(), "MD5" ) == 0 )
+  {
+    ret = MD5h;
+  }
+  else if ( strcmp( type.c_str(), "SHA" ) == 0 )
+  {
+    ret = SHAh;
+  }
+  else if ( strcmp( type.c_str(), "SHA224" ) == 0 )
+  {
+    ret = SHA224h;
+  }
+  else if ( strcmp( type.c_str(), "SHA256" ) == 0 )
+  {
+    ret = SHA256h;
+  }
+  else if ( strcmp( type.c_str(), "SHA384" ) == 0 )
+  {
+    ret = SHA384h;
+  }
+  else if ( strcmp( type.c_str(), "SHA512" ) == 0 )
+  {
+    ret = SHA512h;
+  }
+  else if ( strcmp( type.c_str(), "SHA512_224" ) == 0 )
+  {
+    ret = SHA512_224h;
+  }
+  else if ( strcmp( type.c_str(), "SHA512_256" ) == 0 )
+  {
+    ret = SHA512_256h;
+  }
+  else if ( strcmp( type.c_str(), "SHA3_224" ) == 0 )
+  {
+    ret = SHA3_224h;
+  }
+  else if ( strcmp( type.c_str(), "SHA3_256" ) == 0 )
+  {
+    ret = SHA3_256h;
+  }
+  else if ( strcmp( type.c_str(), "SHA3_384" ) == 0 )
+  {
+    ret = SHA3_384h;
+  }
+  else if ( strcmp( type.c_str(), "SHA3_512" ) == 0 )
+  {
+    ret = SHA3_512h;
+  }
+  else if ( strcmp( type.c_str(), "SHAKE128" ) == 0 )
+  {
+    ret = SHAKE128h;
+  }
+  else if ( strcmp( type.c_str(), "SHAKE256" ) == 0 )
+  {
+    ret = SHAKE256h;
+  }
+
+  return Napi::Number::New( env, ret );
+}
+
+Napi::Number bind_wc_PKCS7_Init(const Napi::CallbackInfo& info)
+{
+  int ret;
+  Napi::Env env = info.Env();
+  PKCS7* pkcs7 = (PKCS7*)( info[0].As<Napi::Uint8Array>().Data() );
+
+  ret = wc_PKCS7_Init( pkcs7, NULL, INVALID_DEVID );
+
+  return Napi::Number::New( env, ret );
+}
+
+Napi::Number bind_wc_PKCS7_InitWithCert(const Napi::CallbackInfo& info)
+{
+  int ret;
+  Napi::Env env = info.Env();
+  PKCS7* pkcs7 = (PKCS7*)( info[0].As<Napi::Uint8Array>().Data() );
+  uint8_t* cert = info[1].As<Napi::Uint8Array>().Data();
+  int cert_size = info[2].As<Napi::Number>().Int32Value();
+
+  ret = wc_PKCS7_InitWithCert( pkcs7, cert, cert_size );
+
+  return Napi::Number::New( env, ret );
+}
+
+Napi::Number bind_wc_PKCS7_AddCertificate(const Napi::CallbackInfo& info)
+{
+  int ret;
+  Napi::Env env = info.Env();
+  PKCS7* pkcs7 = (PKCS7*)( info[0].As<Napi::Uint8Array>().Data() );
+  uint8_t* cert = info[1].As<Napi::Uint8Array>().Data();
+  int cert_size = info[2].As<Napi::Number>().Int32Value();
+
+  ret = wc_PKCS7_AddCertificate( pkcs7, cert, cert_size );
+
+  return Napi::Number::New( env, ret );
+}
+
+Napi::Number bind_wc_PKCS7_EncodeData(const Napi::CallbackInfo& info)
+{
+  int ret;
+  Napi::Env env = info.Env();
+  PKCS7* pkcs7 = (PKCS7*)( info[0].As<Napi::Uint8Array>().Data() );
+  uint8_t* data = info[1].As<Napi::Uint8Array>().Data();
+  int data_size = info[2].As<Napi::Number>().Int32Value();
+  uint8_t* key = info[3].As<Napi::Uint8Array>().Data();
+  int key_size = info[4].As<Napi::Number>().Int32Value();
+  uint8_t* output = info[5].As<Napi::Uint8Array>().Data();
+  int output_size = info[6].As<Napi::Number>().Int32Value();
+
+  pkcs7->content = data;
+  pkcs7->contentSz = data_size;
+  pkcs7->privateKey = key;
+  pkcs7->privateKeySz = key_size;
+
+  ret = wc_PKCS7_EncodeData( pkcs7, output, output_size );
+
+  return Napi::Number::New( env, ret );
+}
+
+Napi::Number bind_wc_PKCS7_EncodeSignedData(const Napi::CallbackInfo& info)
+{
+  int ret;
+  Napi::Env env = info.Env();
+  WC_RNG rng;
+  PKCS7* pkcs7 = (PKCS7*)( info[0].As<Napi::Uint8Array>().Data() );
+  uint8_t* data = info[1].As<Napi::Uint8Array>().Data();
+  int data_size = info[2].As<Napi::Number>().Int32Value();
+  uint8_t* key = info[3].As<Napi::Uint8Array>().Data();
+  int key_size = info[4].As<Napi::Number>().Int32Value();
+  int key_sum = info[5].As<Napi::Number>().Int32Value();
+  int hash_sum = info[6].As<Napi::Number>().Int32Value();
+  uint8_t* output = info[7].As<Napi::Uint8Array>().Data();
+  int output_size = info[8].As<Napi::Number>().Int32Value();
+
+  wc_InitRng( &rng );
+
+  pkcs7->content = data;
+  pkcs7->contentSz = data_size;
+  pkcs7->privateKey = key;
+  pkcs7->privateKeySz = key_size;
+  pkcs7->encryptOID = key_sum;
+  pkcs7->hashOID = hash_sum;
+  pkcs7->rng = &rng;
+
+  ret = wc_PKCS7_EncodeSignedData( pkcs7, output, output_size );
+
+  wc_FreeRng( &rng );
+
+  return Napi::Number::New( env, ret );
+}
+
+Napi::Number bind_wc_PKCS7_VerifySignedData(const Napi::CallbackInfo& info)
+{
+  int ret;
+  Napi::Env env = info.Env();
+  PKCS7* pkcs7 = (PKCS7*)( info[0].As<Napi::Uint8Array>().Data() );
+  uint8_t* in = info[1].As<Napi::Uint8Array>().Data();
+  int in_size = info[2].As<Napi::Number>().Int32Value();
+
+  ret = wc_PKCS7_VerifySignedData( pkcs7, in, in_size );
+
+  return Napi::Number::New( env, ret );
+}
+
+void bind_wc_PKCS7_Free(const Napi::CallbackInfo& info)
+{
+  PKCS7* pkcs7 = (PKCS7*)( info[0].As<Napi::Uint8Array>().Data() );
+
+  wc_PKCS7_Free( pkcs7 );
+}

app.js

@@ -23,6 +23,7 @@ const hmac_tests = require( './tests/hmac' );
 const rsa_tests = require( './tests/rsa' );
 const sha_tests = require( './tests/sha' );
 const ecc_tests = require( './tests/ecc' );
+const pkcs7_tests = require( './tests/pkcs7' );
 
 (async function() {
   for ( const key of Object.keys( evp_tests ) )
@@ -49,4 +50,9 @@ const ecc_tests = require( './tests/ecc' );
   {
     await ecc_tests[key]()
   }
+
+  for ( const key of Object.keys( pkcs7_tests ) )
+  {
+    await pkcs7_tests[key]()
+  }
 })()

binding.gyp

@@ -9,7 +9,8 @@
             "addon/wolfcrypt/hmac.cpp",
             "addon/wolfcrypt/rsa.cpp",
             "addon/wolfcrypt/sha.cpp",
-            "addon/wolfcrypt/ecc.cpp"
+            "addon/wolfcrypt/ecc.cpp",
+            "addon/wolfcrypt/pkcs7.cpp"
         ],
         'include_dirs': [
             "<!@(node -p \"require('node-addon-api').include\")"