| 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256 |
- #pragma once
- #include <openssl/err.h>
- #include <openssl/pem.h>
- #include <openssl/bio.h>
- #include <openssl/rsa.h>
- #include "ExceptionOpenssl.hpp"
- #include "ResourceGuardOpenssl.hpp"
- #include <string>
- #include <memory.h>
- #ifdef _DEBUG
- #pragma comment(lib, "libcryptoMTd.lib")
- #else
- #pragma comment(lib, "libcryptoMT.lib")
- #endif
- #pragma comment(lib, "WS2_32.lib") // some symbol are used in OpenSSL static lib
- #pragma comment(lib, "Crypt32.lib") // some symbol are used in OpenSSL static lib
- #undef __BASE_FILE__
- #define __BASE_FILE__ "RSACipher.hpp"
- class RSACipher {
- public:
- enum class KeyType {
- PrivateKey,
- PublicKey
- };
- enum class KeyFormat {
- NotSpecified,
- PEM,
- PKCS1
- };
- private:
- ResourceGuard<OpensslRSATraits> _RsaObj;
- RSACipher(RSA* pRsa) : _RsaObj(pRsa) {}
- // Copy constructor is not allowed
- RSACipher(const RSACipher&) = delete;
- // Copy assignment is not allowed
- RSACipher& operator=(const RSACipher&) = delete;
- template<KeyType _Type, KeyFormat _Format = KeyFormat::NotSpecified>
- static void _RSAToBIO(RSA* pRsaObject, BIO* pBioObject) {
- if constexpr (_Type == KeyType::PrivateKey) {
- if (!PEM_write_bio_RSAPrivateKey(pBioObject, pRsaObject, nullptr, nullptr, 0, nullptr, nullptr))
- throw Exception(__BASE_FILE__, __LINE__,
- "PEM_write_bio_RSAPrivateKey fails.");
- } else {
- if constexpr (_Format == KeyFormat::PEM) {
- if (!PEM_write_bio_RSA_PUBKEY(pBioObject, pRsaObject))
- throw Exception(__BASE_FILE__, __LINE__,
- "PEM_write_bio_RSA_PUBKEY fails.");
- } else if constexpr (_Format == KeyFormat::PKCS1) {
- if (!PEM_write_bio_RSAPublicKey(pBioObject, pRsaObject))
- throw Exception(__BASE_FILE__, __LINE__,
- "PEM_write_bio_RSAPublicKey fails.");
- } else {
- static_assert(_Format == KeyFormat::PEM || _Format == KeyFormat::PKCS1);
- }
- }
- }
- template<KeyType _Type, KeyFormat _Format = KeyFormat::NotSpecified>
- static RSA* _BIOToRSA(BIO* pBioObject) {
- RSA* pNewRsaObject;
- if constexpr (_Type == KeyType::PrivateKey) {
- pNewRsaObject = PEM_read_bio_RSAPrivateKey(pBioObject, nullptr, nullptr, nullptr);
- if (pNewRsaObject == nullptr)
- throw Exception(__BASE_FILE__, __LINE__,
- "PEM_read_bio_RSAPrivateKey fails.");
- } else {
- if constexpr (_Format == KeyFormat::PEM) {
- pNewRsaObject = PEM_read_bio_RSA_PUBKEY(pBioObject, nullptr, nullptr, nullptr);
- if (pNewRsaObject == nullptr)
- throw Exception(__BASE_FILE__, __LINE__,
- "PEM_read_bio_RSA_PUBKEY fails.");
- } else if constexpr (_Format == KeyFormat::PKCS1) {
- pNewRsaObject = PEM_read_bio_RSAPublicKey(pBioObject, nullptr, nullptr, nullptr);
- if (pNewRsaObject == nullptr)
- throw Exception(__BASE_FILE__, __LINE__,
- "PEM_read_bio_RSAPublicKey fails.");
- } else {
- static_assert(_Format == KeyFormat::PEM || _Format == KeyFormat::PKCS1);
- }
- }
- return pNewRsaObject;
- }
- public:
- static RSACipher* Create() {
- RSACipher* aCipher = new RSACipher(RSA_new());
- if (aCipher->_RsaObj.IsValid() == false) {
- delete aCipher;
- aCipher = nullptr;
- }
- return aCipher;
- }
- RSACipher() : _RsaObj(RSA_new()) {
- if (_RsaObj.IsValid() == false)
- throw OpensslError(__BASE_FILE__, __LINE__, ERR_get_error(),
- "RSA_new fails.");
- }
- void GenerateKey(int bits, unsigned int e = RSA_F4) {
- ResourceGuard<OpensslBNTraits> bn_e;
- bn_e.TakeHoldOf(BN_new());
- if (bn_e.IsValid() == false)
- throw OpensslError(__BASE_FILE__, __LINE__, ERR_get_error(),
- "BN_new fails.");
- if (!BN_set_word(bn_e, e))
- throw Exception(__BASE_FILE__, __LINE__,
- "BN_set_word fails.");
- if (!RSA_generate_key_ex(_RsaObj, bits, bn_e, nullptr))
- throw OpensslError(__BASE_FILE__, __LINE__, ERR_get_error(),
- "RSA_generate_key_ex fails.");
- }
- template<KeyType _Type, KeyFormat _Format = KeyFormat::NotSpecified>
- void ExportKeyToFile(const std::string& FileName) {
- ResourceGuard<OpensslBIOTraits> bio_file;
- bio_file.TakeHoldOf(BIO_new_file(FileName.c_str(), "w"));
- if (bio_file.IsValid() == false)
- throw Exception(__BASE_FILE__, __LINE__,
- "BIO_new_file fails.");
- _RSAToBIO<_Type, _Format>(_RsaObj, bio_file);
- }
- template<KeyType _Type, KeyFormat _Format = KeyFormat::NotSpecified>
- std::string ExportKeyString() {
- std::string result;
- ResourceGuard<OpensslBIOTraits> bio_mem;
- int DataSize;
- const char* pData = nullptr;
- bio_mem.TakeHoldOf(BIO_new(BIO_s_mem()));
- if (bio_mem.IsValid() == false)
- throw Exception(__BASE_FILE__, __LINE__,
- "BIO_new fails.");
- _RSAToBIO<_Type, _Format>(_RsaObj, bio_mem);
- DataSize = BIO_get_mem_data(bio_mem, &pData);
- result.resize(DataSize);
- memcpy(result.data(), pData, DataSize);
- return result;
- }
- template<KeyType _Type, KeyFormat _Format = KeyFormat::NotSpecified>
- void ImportKeyFromFile(const std::string& FileName) {
- bool bSuccess = false;
- ResourceGuard<OpensslBIOTraits> bio_file;
- RSA* NewRsaObj;
- bio_file.TakeHoldOf(BIO_new_file(FileName.c_str(), "r"));
- if (bio_file.IsValid() == false)
- throw Exception(__BASE_FILE__, __LINE__,
- "BIO_new_file fails.");
- NewRsaObj = _BIOToRSA<_Type, _Format>(bio_file);
- _RsaObj.Release();
- _RsaObj.TakeHoldOf(NewRsaObj);
- }
- template<KeyType _Type, KeyFormat _Format = KeyFormat::NotSpecified>
- void ImportKeyString(const std::string& KeyString) {
- ResourceGuard<OpensslBIOTraits> bio_mem;
- RSA* NewRsaObj;
- bio_mem = BIO_new(BIO_s_mem());
- if (bio_mem == nullptr)
- throw Exception(__BASE_FILE__, __LINE__,
- "BIO_new fails.");
- if (BIO_puts(bio_mem, KeyString.c_str()) <= 0)
- throw Exception(__BASE_FILE__, __LINE__,
- "BIO_puts fails.");
- NewRsaObj = _BIOToRSA<_Type, _Format>(bio_mem);
- _RsaObj.Release();
- _RsaObj.TakeHoldOf(NewRsaObj);
- }
- template<KeyType _Type = KeyType::PublicKey>
- int Encrypt(const void* from, int len, void* to, int padding) {
- int write_bytes;
- if constexpr (_Type == KeyType::PrivateKey) {
- write_bytes = RSA_private_encrypt(len,
- reinterpret_cast<const unsigned char*>(from),
- reinterpret_cast<unsigned char*>(to),
- _RsaObj,
- padding);
- if (write_bytes == -1)
- throw OpensslError(__BASE_FILE__, __LINE__, ERR_get_error(),
- "RSA_private_encrypt fails.");
- } else {
- write_bytes = RSA_public_encrypt(len,
- reinterpret_cast<const unsigned char*>(from),
- reinterpret_cast<unsigned char*>(to),
- _RsaObj,
- padding);
- if (write_bytes == -1)
- throw OpensslError(__BASE_FILE__, __LINE__, ERR_get_error(),
- "RSA_public_encrypt fails.");
- }
- return write_bytes;
- }
- template<KeyType _Type = KeyType::PrivateKey>
- int Decrypt(const void* from, int len, void* to, int padding) {
- int write_bytes;
- if constexpr (_Type == KeyType::PrivateKey) {
- write_bytes = RSA_private_decrypt(len,
- reinterpret_cast<const unsigned char*>(from),
- reinterpret_cast<unsigned char*>(to),
- _RsaObj,
- padding);
- if (write_bytes == -1)
- throw OpensslError(__BASE_FILE__, __LINE__, ERR_get_error(),
- "RSA_private_decrypt fails.");
- } else {
- write_bytes = RSA_public_decrypt(len,
- reinterpret_cast<const unsigned char*>(from),
- reinterpret_cast<unsigned char*>(to),
- _RsaObj,
- padding);
- if (write_bytes == -1)
- throw OpensslError(__BASE_FILE__, __LINE__, ERR_get_error(),
- "RSA_public_decrypt fails.");
- }
- return write_bytes;
- }
- };
|
