aboutsummaryrefslogtreecommitdiffstats
path: root/server/resty/openssl/include/evp.lua
diff options
context:
space:
mode:
Diffstat (limited to 'server/resty/openssl/include/evp.lua')
-rw-r--r--server/resty/openssl/include/evp.lua109
1 files changed, 0 insertions, 109 deletions
diff --git a/server/resty/openssl/include/evp.lua b/server/resty/openssl/include/evp.lua
deleted file mode 100644
index beeaf91..0000000
--- a/server/resty/openssl/include/evp.lua
+++ /dev/null
@@ -1,109 +0,0 @@
-local ffi = require "ffi"
-local C = ffi.C
-local bit = require("bit")
-
-require "resty.openssl.include.ossl_typ"
-require "resty.openssl.include.err"
-require "resty.openssl.include.objects"
-local OPENSSL_3X = require("resty.openssl.version").OPENSSL_3X
-local BORINGSSL = require("resty.openssl.version").BORINGSSL
-
-if BORINGSSL then
- ffi.cdef [[
- int PKCS5_PBKDF2_HMAC(const char *password, size_t password_len,
- const uint8_t *salt, size_t salt_len,
- unsigned iterations, const EVP_MD *digest,
- size_t key_len, uint8_t *out_key);
- int EVP_PBE_scrypt(const char *password, size_t password_len,
- const uint8_t *salt, size_t salt_len,
- uint64_t N, uint64_t r, uint64_t p,
- size_t max_mem, uint8_t *out_key,
- size_t key_len);
- ]]
-else
- ffi.cdef [[
- /* KDF */
- int PKCS5_PBKDF2_HMAC(const char *pass, int passlen,
- const unsigned char *salt, int saltlen, int iter,
- const EVP_MD *digest, int keylen, unsigned char *out);
-
- int EVP_PBE_scrypt(const char *pass, size_t passlen,
- const unsigned char *salt, size_t saltlen,
- uint64_t N, uint64_t r, uint64_t p, uint64_t maxmem,
- unsigned char *key, size_t keylen);
- ]]
-end
-
-if OPENSSL_3X then
- require "resty.openssl.include.provider"
-
- ffi.cdef [[
- int EVP_set_default_properties(OSSL_LIB_CTX *libctx, const char *propq);
- int EVP_default_properties_enable_fips(OSSL_LIB_CTX *libctx, int enable);
- int EVP_default_properties_is_fips_enabled(OSSL_LIB_CTX *libctx);
-
- // const OSSL_PROVIDER *EVP_RAND_get0_provider(const EVP_RAND *rand);
- // EVP_RAND *EVP_RAND_fetch(OSSL_LIB_CTX *libctx, const char *algorithm,
- // const char *properties);
- ]]
-end
-
-local EVP_PKEY_ALG_CTRL = 0x1000
-
-local _M = {
- EVP_PKEY_RSA = C.OBJ_txt2nid("rsaEncryption"),
- EVP_PKEY_DH = C.OBJ_txt2nid("dhKeyAgreement"),
- EVP_PKEY_EC = C.OBJ_txt2nid("id-ecPublicKey"),
- EVP_PKEY_X25519 = C.OBJ_txt2nid("X25519"),
- EVP_PKEY_ED25519 = C.OBJ_txt2nid("ED25519"),
- EVP_PKEY_X448 = C.OBJ_txt2nid("X448"),
- EVP_PKEY_ED448 = C.OBJ_txt2nid("ED448"),
-
- EVP_PKEY_OP_PARAMGEN = bit.lshift(1, 1),
- EVP_PKEY_OP_KEYGEN = bit.lshift(1, 2),
- EVP_PKEY_OP_SIGN = bit.lshift(1, 3),
- EVP_PKEY_OP_VERIFY = bit.lshift(1, 4),
- EVP_PKEY_OP_DERIVE = OPENSSL_3X and bit.lshift(1, 12) or bit.lshift(1, 10),
-
- EVP_PKEY_ALG_CTRL = EVP_PKEY_ALG_CTRL,
-
-
- EVP_PKEY_CTRL_DH_PARAMGEN_PRIME_LEN = EVP_PKEY_ALG_CTRL + 1,
- EVP_PKEY_CTRL_EC_PARAMGEN_CURVE_NID = EVP_PKEY_ALG_CTRL + 1,
- EVP_PKEY_CTRL_EC_PARAM_ENC = EVP_PKEY_ALG_CTRL + 2,
- EVP_PKEY_CTRL_RSA_KEYGEN_BITS = EVP_PKEY_ALG_CTRL + 3,
- EVP_PKEY_CTRL_RSA_KEYGEN_PUBEXP = EVP_PKEY_ALG_CTRL + 4,
- EVP_PKEY_CTRL_RSA_PADDING = EVP_PKEY_ALG_CTRL + 1,
- EVP_PKEY_CTRL_RSA_PSS_SALTLEN = EVP_PKEY_ALG_CTRL + 2,
-
- EVP_CTRL_AEAD_SET_IVLEN = 0x9,
- EVP_CTRL_AEAD_GET_TAG = 0x10,
- EVP_CTRL_AEAD_SET_TAG = 0x11,
-
- EVP_PKEY_CTRL_TLS_MD = EVP_PKEY_ALG_CTRL,
- EVP_PKEY_CTRL_TLS_SECRET = EVP_PKEY_ALG_CTRL + 1,
- EVP_PKEY_CTRL_TLS_SEED = EVP_PKEY_ALG_CTRL + 2,
- EVP_PKEY_CTRL_HKDF_MD = EVP_PKEY_ALG_CTRL + 3,
- EVP_PKEY_CTRL_HKDF_SALT = EVP_PKEY_ALG_CTRL + 4,
- EVP_PKEY_CTRL_HKDF_KEY = EVP_PKEY_ALG_CTRL + 5,
- EVP_PKEY_CTRL_HKDF_INFO = EVP_PKEY_ALG_CTRL + 6,
- EVP_PKEY_CTRL_HKDF_MODE = EVP_PKEY_ALG_CTRL + 7,
- EVP_PKEY_CTRL_PASS = EVP_PKEY_ALG_CTRL + 8,
- EVP_PKEY_CTRL_SCRYPT_SALT = EVP_PKEY_ALG_CTRL + 9,
- EVP_PKEY_CTRL_SCRYPT_N = EVP_PKEY_ALG_CTRL + 10,
- EVP_PKEY_CTRL_SCRYPT_R = EVP_PKEY_ALG_CTRL + 11,
- EVP_PKEY_CTRL_SCRYPT_P = EVP_PKEY_ALG_CTRL + 12,
- EVP_PKEY_CTRL_SCRYPT_MAXMEM_BYTES = EVP_PKEY_ALG_CTRL + 13,
-}
-
--- clean up error occurs during OBJ_txt2*
-C.ERR_clear_error()
-
-_M.ecx_curves = {
- Ed25519 = _M.EVP_PKEY_ED25519,
- X25519 = _M.EVP_PKEY_X25519,
- Ed448 = _M.EVP_PKEY_ED448,
- X448 = _M.EVP_PKEY_X448,
-}
-
-return _M