security_ecc.hh

Go to the documentation of this file.

#pragma once

#include <vector>

#include <openssl/err.h>
#include <openssl/ec.h>
#include <openssl/pem.h>
#include <openssl/bn.h>

enum class ec_elliptic_curves: unsigned char {
  nist_p_256,         
  brainpool_p_256_r1, 
  brainpool_p_384_r1  
}; // End of class ec_elliptic_curves

enum class encryption_algotithm: unsigned char {
  aes_128_ccm,
  aes_256_ccm,
  aes_128_gcm,
  aes_256_gcm
}; // End of class encryption_algotithm

class security_ecc {
  ec_elliptic_curves _elliptic_curve;         
  encryption_algotithm _encryption_algotithm; 
  EC_KEY* _ec_key;                            
  const EC_GROUP* _ec_group;                  
  BN_CTX* _bn_ctx;                            
  std::vector<unsigned char> _pri_key;        
  std::vector<unsigned char> _pub_key_x;      
  std::vector<unsigned char> _pub_key_y;      
  std::vector<unsigned char> _eph_key;        
  std::vector<unsigned char> _enc_key_x;      
  std::vector<unsigned char> _enc_key_y;      
  std::vector<unsigned char> _sym_key;        
  std::vector<unsigned char> _nonce;          
  std::vector<unsigned char> _tag;            
public: 

  security_ecc(const ec_elliptic_curves p_elliptic_curve);
  security_ecc(const ec_elliptic_curves p_elliptic_curve, const std::vector<unsigned char>& p_private_key);
  security_ecc(const ec_elliptic_curves p_elliptic_curve, const std::vector<unsigned char>& p_public_key_x, const std::vector<unsigned char>& p_public_key_y);
  virtual ~security_ecc();

  int generate();
  int sign(const std::vector<unsigned char>& p_data, std::vector<unsigned char>& p_r_sig, std::vector<unsigned char>& p_s_sig);
  int sign_verif(const std::vector<unsigned char>& p_data, const std::vector<unsigned char>& p_signature);

  int encrypt(const encryption_algotithm p_enc_algorithm, const std::vector<unsigned char>& p_message, std::vector<unsigned char>& p_enc_message);
  int encrypt(const encryption_algotithm p_enc_algorithm, const std::vector<unsigned char>& p_symmetric_key, const std::vector<unsigned char>& p_nonce, const std::vector<unsigned char>& p_message, std::vector<unsigned char>& p_enc_message);
  int decrypt(const encryption_algotithm p_enc_algorithm, const std::vector<unsigned char>& p_key, const std::vector<unsigned char>& p_nonce, const std::vector<unsigned char>& p_tag, const std::vector<unsigned char>& p_enc_message, std::vector<unsigned char>& p_message);
  
  // TODO To be reorganised
  int generate_and_derive_ephemeral_key(const std::vector<unsigned char>& p_peer_public_enc_key_x, const std::vector<unsigned char>& p_peer_public_enc_key_y);



//  int generate_ephemeral_key(const encryption_algotithm p_enc_algorithm, const std::vector<unsigned char>& p_public_enc_key_x, const std::vector<unsigned char>& p_public_enc_key_y);
  int decrypt(const std::vector<unsigned char>& p_nonce, const std::vector<unsigned char>& p_tag, const std::vector<unsigned char>& p_enc_message, std::vector<unsigned char>& p_message);
  
  inline const std::vector<unsigned char>& private_key() const { return _pri_key; };
  inline const std::vector<unsigned char>& public_key_x() const { return _pub_key_x; };
  inline const std::vector<unsigned char>& public_key_y() const { return _pub_key_y; };
  inline const std::vector<unsigned char>& ephemeral_key() const { return _eph_key; };
  inline const std::vector<unsigned char>& encryption_key_x() const { return _enc_key_x; };
  inline const std::vector<unsigned char>& encryption_key_y() const { return _enc_key_y; };
  inline const std::vector<unsigned char>& symmetric_encryption_key() const { return _sym_key; };
  inline const std::vector<unsigned char>& nonce() const { return _nonce; };
  inline const std::vector<unsigned char>& tag() const { return _tag; };
  
private: 

  const int init();
  int bin_to_ec_point(const std::vector<unsigned char>& p_public_key_x, const std::vector<unsigned char>& p_public_key_y, EC_POINT** p_ec_point);
  int public_key_to_bin(std::vector<unsigned char>& p_bin_key);
}; // End of class security_ecc