| OLD | NEW |
|---|
| 1 // Copyright (c) 2012 The Chromium Authors. All rights reserved. | 1 // Copyright (c) 2012 The Chromium Authors. All rights reserved. |
| 2 // Use of this source code is governed by a BSD-style license that can be | 2 // Use of this source code is governed by a BSD-style license that can be |
| 3 // found in the LICENSE file. | 3 // found in the LICENSE file. |
| 4 | 4 |
| 5 #ifndef CRYPTO_RSA_PRIVATE_KEY_H_ | 5 #ifndef CRYPTO_RSA_PRIVATE_KEY_H_ |
| 6 #define CRYPTO_RSA_PRIVATE_KEY_H_ | 6 #define CRYPTO_RSA_PRIVATE_KEY_H_ |
| 7 | 7 |
| 8 #include "build/build_config.h" | 8 #include "build/build_config.h" |
| 9 | 9 |
| 10 #include <list> | 10 #include <list> |
| (...skipping 162 matching lines...) Expand 10 before | Expand all | Expand 10 after Loading... |
| 173 | 173 |
| 174 // Create a new random instance. Can return NULL if initialization fails. | 174 // Create a new random instance. Can return NULL if initialization fails. |
| 175 static RSAPrivateKey* Create(uint16 num_bits); | 175 static RSAPrivateKey* Create(uint16 num_bits); |
| 176 | 176 |
| 177 // Create a new instance by importing an existing private key. The format is | 177 // Create a new instance by importing an existing private key. The format is |
| 178 // an ASN.1-encoded PrivateKeyInfo block from PKCS #8. This can return NULL if | 178 // an ASN.1-encoded PrivateKeyInfo block from PKCS #8. This can return NULL if |
| 179 // initialization fails. | 179 // initialization fails. |
| 180 static RSAPrivateKey* CreateFromPrivateKeyInfo( | 180 static RSAPrivateKey* CreateFromPrivateKeyInfo( |
| 181 const std::vector<uint8>& input); | 181 const std::vector<uint8>& input); |
| 182 | 182 |
| 183 #if defined(USE_NSS) | 183 #if defined(USE_OPENSSL) |
| 184 // Create a new instance from an existing EVP_PKEY, taking a |
| 185 // reference to it. |key| must be an RSA key. Returns NULL on |
| 186 // failure. |
| 187 static RSAPrivateKey* CreateFromKey(EVP_PKEY* key); |
| 188 #else |
| 189 // Create a new instance by referencing an existing private key |
| 190 // structure. Does not import the key. |
| 191 static RSAPrivateKey* CreateFromKey(SECKEYPrivateKey* key); |
| 192 #endif |
| 193 |
| 194 #if defined(USE_NSS) && !defined(USE_OPENSSL) |
| 195 // TODO(davidben): These functions are used when NSS is the platform key |
| 196 // store, but they also assume that the internal crypto library is NSS. |
| 197 |
| 184 // Create a new random instance in |slot|. Can return NULL if initialization | 198 // Create a new random instance in |slot|. Can return NULL if initialization |
| 185 // fails. The created key is permanent and is not exportable in plaintext | 199 // fails. The created key is permanent and is not exportable in plaintext |
| 186 // form. | 200 // form. |
| 187 static RSAPrivateKey* CreateSensitive(PK11SlotInfo* slot, uint16 num_bits); | 201 static RSAPrivateKey* CreateSensitive(PK11SlotInfo* slot, uint16 num_bits); |
| 188 | 202 |
| 189 // Create a new instance in |slot| by importing an existing private key. The | 203 // Create a new instance in |slot| by importing an existing private key. The |
| 190 // format is an ASN.1-encoded PrivateKeyInfo block from PKCS #8. This can | 204 // format is an ASN.1-encoded PrivateKeyInfo block from PKCS #8. This can |
| 191 // return NULL if initialization fails. | 205 // return NULL if initialization fails. |
| 192 // The created key is permanent and is not exportable in plaintext form. | 206 // The created key is permanent and is not exportable in plaintext form. |
| 193 static RSAPrivateKey* CreateSensitiveFromPrivateKeyInfo( | 207 static RSAPrivateKey* CreateSensitiveFromPrivateKeyInfo( |
| 194 PK11SlotInfo* slot, | 208 PK11SlotInfo* slot, |
| 195 const std::vector<uint8>& input); | 209 const std::vector<uint8>& input); |
| 196 | 210 |
| 197 // Create a new instance by referencing an existing private key | |
| 198 // structure. Does not import the key. | |
| 199 static RSAPrivateKey* CreateFromKey(SECKEYPrivateKey* key); | |
| 200 | |
| 201 // Import an existing public key, and then search for the private | 211 // Import an existing public key, and then search for the private |
| 202 // half in the key database. The format of the public key blob is is | 212 // half in the key database. The format of the public key blob is is |
| 203 // an X509 SubjectPublicKeyInfo block. This can return NULL if | 213 // an X509 SubjectPublicKeyInfo block. This can return NULL if |
| 204 // initialization fails or the private key cannot be found. The | 214 // initialization fails or the private key cannot be found. The |
| 205 // caller takes ownership of the returned object, but nothing new is | 215 // caller takes ownership of the returned object, but nothing new is |
| 206 // created in the key database. | 216 // created in the key database. |
| 207 static RSAPrivateKey* FindFromPublicKeyInfo( | 217 static RSAPrivateKey* FindFromPublicKeyInfo( |
| 208 const std::vector<uint8>& input); | 218 const std::vector<uint8>& input); |
| 209 | 219 |
| 210 // Import an existing public key, and then search for the private | 220 // Import an existing public key, and then search for the private |
| 211 // half in the slot specified by |slot|. The format of the public | 221 // half in the slot specified by |slot|. The format of the public |
| 212 // key blob is is an X509 SubjectPublicKeyInfo block. This can return | 222 // key blob is is an X509 SubjectPublicKeyInfo block. This can return |
| 213 // NULL if initialization fails or the private key cannot be found. | 223 // NULL if initialization fails or the private key cannot be found. |
| 214 // The caller takes ownership of the returned object, but nothing new | 224 // The caller takes ownership of the returned object, but nothing new |
| 215 // is created in the slot. | 225 // is created in the slot. |
| 216 static RSAPrivateKey* FindFromPublicKeyInfoInSlot( | 226 static RSAPrivateKey* FindFromPublicKeyInfoInSlot( |
| 217 const std::vector<uint8>& input, | 227 const std::vector<uint8>& input, |
| 218 PK11SlotInfo* slot); | 228 PK11SlotInfo* slot); |
| 219 #elif defined(USE_OPENSSL) | 229 #endif // USE_NSS && !USE_OPENSSL |
| 220 // Create a new instance from an existing EVP_PKEY, taking a | |
| 221 // reference to it. |key| must be an RSA key. Returns NULL on | |
| 222 // failure. | |
| 223 static RSAPrivateKey* CreateFromKey(EVP_PKEY* key); | |
| 224 | |
| 225 #endif | |
| 226 | 230 |
| 227 #if defined(USE_OPENSSL) | 231 #if defined(USE_OPENSSL) |
| 228 EVP_PKEY* key() { return key_; } | 232 EVP_PKEY* key() { return key_; } |
| 229 #else | 233 #else |
| 230 SECKEYPrivateKey* key() { return key_; } | 234 SECKEYPrivateKey* key() { return key_; } |
| 231 SECKEYPublicKey* public_key() { return public_key_; } | 235 SECKEYPublicKey* public_key() { return public_key_; } |
| 232 #endif | 236 #endif |
| 233 | 237 |
| 234 // Creates a copy of the object. | 238 // Creates a copy of the object. |
| 235 RSAPrivateKey* Copy() const; | 239 RSAPrivateKey* Copy() const; |
| (...skipping 48 matching lines...) Expand 10 before | Expand all | Expand 10 after Loading... |
| 284 SECKEYPrivateKey* key_; | 288 SECKEYPrivateKey* key_; |
| 285 SECKEYPublicKey* public_key_; | 289 SECKEYPublicKey* public_key_; |
| 286 #endif | 290 #endif |
| 287 | 291 |
| 288 DISALLOW_COPY_AND_ASSIGN(RSAPrivateKey); | 292 DISALLOW_COPY_AND_ASSIGN(RSAPrivateKey); |
| 289 }; | 293 }; |
| 290 | 294 |
| 291 } // namespace crypto | 295 } // namespace crypto |
| 292 | 296 |
| 293 #endif // CRYPTO_RSA_PRIVATE_KEY_H_ | 297 #endif // CRYPTO_RSA_PRIVATE_KEY_H_ |
| OLD | NEW |
|---|
Chromium Code Reviews
Issue 881213004:
Support building BoringSSL with NSS certificates. (Closed)
Base URL: https://chromium.googlesource.com/chromium/src.git@master