feat(pkey) get and set DH parameters

Author: fffonion

README.md

@@ -399,6 +399,7 @@ Each key type may only support part of operations:
 Key Type | Load existing key | Key generation | Encrypt/Decrypt | Sign/Verify | Key Exchange |
 ---------|----------|----------------|-----------------|-------------|---------- |
 RSA| Y | Y | Y | Y | |
+DH | Y | Y | | | Y |
 EC | Y | Y | | Y (ECDSA) | Y (ECDH) |
 Ed25519 | Y | Y | | Y (PureEdDSA) | |
 X25519 | Y | Y | | | Y (ECDH) |
@@ -417,9 +418,9 @@ X448 | Y | Y | | | Y (ECDH) |
 
 **syntax**: *pk, err = pkey.new()*
 
-Creates a new pkey instance. The first argument can be:
+Function to generate a key pair, or load existing key in PEM or DER format.
 
-1. A `config` table to create a new PKEY pair. Which defaults to:
+1. Pass a `config` table to create a new PKEY pair. Which defaults to:
 
 ```lua
 pkey.new({
@@ -435,7 +436,7 @@ To generate EC or DH key, please refer to [pkey.paramgen](#pkeyparamgen) for pos
 Other possible `type`s are `Ed25519`, `X25519`, `Ed448` and `X448`. No additional parameters
 can be set during key generation for those keys.
 
-2. A `string` of private or public key in PEM, DER or JWK format text; optionally accpet a table
+2. Pass a `string` of private or public key in PEM, DER or JWK format text; optionally accpet a table
 `opts` to explictly load `format` and key `type`. When loading a key in PEM format,
 `passphrase` or `passphrase_cb` may be provided to decrypt the key.
 
@@ -459,8 +460,8 @@ pkey.new(pem_or_der_text, {
   - Public key part for `OKP` keys
   (the `x` parameter) is always not honored and derived from private key part (the `d` parameter) if it's specified.
 
-3. `nil` to create a 2048 bits RSA key.
-4. A `EVP_PKEY*` pointer, to return a wrapped `pkey` instance. Normally user won't use this
+3. Pass `nil` to create a 2048 bits RSA key.
+4. Pass a `EVP_PKEY*` pointer, to return a wrapped `pkey` instance. Normally user won't use this
 approach. User shouldn't free the pointer on their own, since the pointer is not copied.
 
 [Back to TOC](#table-of-contents)
@@ -479,16 +480,14 @@ Returns `true` if table is an instance of `pkey`. Returns `false` otherwise.
 
 Generate parameters for EC or DH key and output as PEM-encoded text.
 
-For EC private key:
+For EC key:
 
  Parameter | Description
 -----------|-------------
 type | `"EC"`
 curve | EC curves. If omitted, default to `"prime192v1"`. To see list of supported EC curves, use `openssl ecparam -list_curves`.
 
-To see list of supported EC curves, use `openssl ecparam -list_curves`.
-
-For DH private key:
+For DH key:
 
  Parameter | Description
 -----------|-------------
@@ -508,6 +507,11 @@ local pem, err = pkey.paramgen({
   type = 'EC',
   curve = 'prime192v1',
 })
+
+local pem, err = pkey.paramgen({
+  type = 'DH',
+  group = 'ffdhe4096',
+})
 ```
 
 [Back to TOC](#table-of-contents)
@@ -568,6 +572,17 @@ group | the named curve group | [NID] as a number, when passed in as `set_parame
 It's not possible to set `x`, `y` with `public` at same time as `x` and `y` is basically another representation
 of `public`. Also currently it's only possible to set `x` and `y` at same time.
 
+Parameters for DH key:
+
+ Parameter | Description | Type
+-----------|-------------|-----
+private | private key | [bn](#restyopensslbn)
+public | public key | [bn](#restyopensslbn)
+p | prime modulus | [bn](#restyopensslbn)
+q | reference position | [bn](#restyopensslbn)
+p | base generator | [bn](#restyopensslbn)
+
+
 Parameters for Curve25519 and Curve448 keys:
 
  Parameter | Description | Type

lib/resty/openssl/dh.lua

@@ -0,0 +1,141 @@
+local ffi = require "ffi"
+local C = ffi.C
+local ffi_gc = ffi.gc
+
+require "resty.openssl.include.dh"
+local bn_lib = require "resty.openssl.bn"
+local objects_lib = require "resty.openssl.objects"
+
+local OPENSSL_10 = require("resty.openssl.version").OPENSSL_10
+local OPENSSL_11_OR_LATER = require("resty.openssl.version").OPENSSL_11_OR_LATER
+local format_error = require("resty.openssl.err").format_error
+
+local _M = {}
+
+_M.params = {"public", "private", "p", "q", "g"}
+
+local empty_table = {}
+local bn_ptrptr_ct = ffi.typeof("const BIGNUM *[1]")
+function _M.get_parameters(dh_st)
+  return setmetatable(empty_table, {
+    __index = function(_, k)
+      local ptr, ret
+      if OPENSSL_11_OR_LATER then
+        ptr = bn_ptrptr_ct()
+      end
+
+      if OPENSSL_11_OR_LATER then
+        ptr = bn_ptrptr_ct()
+      end
+
+      if k == 'p' then
+        if OPENSSL_11_OR_LATER then
+          C.DH_get0_pqg(dh_st, ptr, nil, nil)
+        end
+      elseif k == 'q' then
+        if OPENSSL_11_OR_LATER then
+          C.DH_get0_pqg(dh_st, nil, ptr, nil)
+        end
+      elseif k == 'g' then
+        if OPENSSL_11_OR_LATER then
+          C.DH_get0_pqg(dh_st, nil, nil, ptr)
+        end
+      elseif k == 'public' then
+        if OPENSSL_11_OR_LATER then
+          C.DH_get0_key(dh_st, ptr, nil)
+        end
+        k = "pub_key"
+      elseif k == 'private' then
+        if OPENSSL_11_OR_LATER then
+          C.DH_get0_key(dh_st, nil, ptr)
+        end
+        k = "priv_key"
+      else
+        return nil, "rsa.get_parameters: unknown parameter \"" .. k .. "\" for RSA key"
+      end
+
+      if OPENSSL_11_OR_LATER then
+        ret = ptr[0]
+      elseif OPENSSL_10 then
+        ret = dh_st[k]
+      end
+
+      if ret == nil then
+        return nil
+      end
+      return bn_lib.dup(ret)
+    end
+  }), nil
+end
+
+local function dup_bn_value(v)
+  if not bn_lib.istype(v) then
+    return nil, "expect value to be a bn instance"
+  end
+  local bn = C.BN_dup(v.ctx)
+  if bn == nil then
+    return nil, "BN_dup() failed"
+  end
+  return bn
+end
+
+function _M.set_parameters(dh_st, opts)
+  local err
+  local opts_bn = {}
+  -- remember which parts of BNs has been added to dh_st, they should be freed
+  -- by DH_free and we don't cleanup them on failure
+  local cleanup_from_idx = 1
+  -- dup input
+  local do_set_key, do_set_pqg
+  for k, v in pairs(opts) do
+    opts_bn[k], err = dup_bn_value(v)
+    if err then
+      err = "dh.set_parameters: cannot process parameter \"" .. k .. "\":" .. err
+      goto cleanup_with_error
+    end
+    if k == "private" or k == "public" then
+      do_set_key = true
+    elseif k == "p" or k == "q" or k == "g" then
+      do_set_pqg = true
+    end
+  end
+  if OPENSSL_11_OR_LATER then
+    local code
+    if do_set_key then
+      code = C.DH_set0_key(dh_st, opts_bn["public"], opts_bn["private"])
+      if code == 0 then
+        err = format_error("dh.set_parameters: DH_set0_key")
+        goto cleanup_with_error
+      end
+    end
+    cleanup_from_idx = cleanup_from_idx + 2
+    if do_set_pqg then
+      code = C.DH_set0_pqg(dh_st, opts_bn["p"], opts_bn["q"], opts_bn["g"])
+      if code == 0 then
+        err = format_error("dh.set_parameters: DH_set0_pqg")
+        goto cleanup_with_error
+      end
+    end
+    return true
+  elseif OPENSSL_10 then
+    for k, v in pairs(opts_bn) do
+      if k == "public" then
+        k = "pub_key"
+      elseif k == "private" then
+        k = "priv_key"
+      end
+      dh_st[k]= v
+    end
+    return true
+  end
+
+::cleanup_with_error::
+  for i, k in pairs(_M.params) do
+    if i >= cleanup_from_idx then
+      C.BN_free(opts_bn[k])
+    end
+  end
+  return false, err
+end
+
+return _M

lib/resty/openssl/include/dh.lua

@@ -3,13 +3,56 @@ local C = ffi.C
 
 require "resty.openssl.include.ossl_typ"
 require "resty.openssl.include.objects"
+local OPENSSL_10 = require("resty.openssl.version").OPENSSL_10
+local OPENSSL_11_OR_LATER = require("resty.openssl.version").OPENSSL_11_OR_LATER
+
+if OPENSSL_11_OR_LATER then
+  ffi.cdef [[
+    void DH_get0_pqg(const DH *dh,
+                  const BIGNUM **p, const BIGNUM **q, const BIGNUM **g);
+    int DH_set0_pqg(DH *dh, BIGNUM *p, BIGNUM *q, BIGNUM *g);
+    void DH_get0_key(const DH *dh,
+                    const BIGNUM **pub_key, const BIGNUM **priv_key);
+    int DH_set0_key(DH *dh, BIGNUM *pub_key, BIGNUM *priv_key);
+  ]]
+elseif OPENSSL_10 then
+  ffi.cdef [[
+    struct dh_st {
+      /*
+       * This first argument is used to pick up errors when a DH is passed
+       * instead of a EVP_PKEY
+       */
+      int pad;
+      int version;
+      BIGNUM *p;
+      BIGNUM *g;
+      long length;                /* optional */
+      BIGNUM *pub_key;            /* g^x */
+      BIGNUM *priv_key;           /* x */
+      int flags;
+      /*BN_MONT_CTX*/ void *method_mont_p;
+      /* Place holders if we want to do X9.42 DH */
+      BIGNUM *q;
+      BIGNUM *j;
+      unsigned char *seed;
+      int seedlen;
+      BIGNUM *counter;
+      int references;
+      /* trimmer */
+      // CRYPTO_EX_DATA ex_data;
+      // const DH_METHOD *meth;
+      // ENGINE *engine;
+    };
+  ]]
+end
 
 ffi.cdef [[
   DH *DH_get_1024_160(void);
   DH *DH_get_2048_224(void);
   DH *DH_get_2048_256(void);
   DH *DH_new_by_nid(int nid);
-]]
+]];
+
 
 local dh_groups = {
   -- per https://tools.ietf.org/html/rfc5114

lib/resty/openssl/pkey.lua

@@ -16,6 +16,7 @@ local evp_macro = require "resty.openssl.include.evp"
 local util = require "resty.openssl.util"
 local digest_lib = require "resty.openssl.digest"
 local rsa_lib = require "resty.openssl.rsa"
+local dh_lib = require "resty.openssl.dh"
 local ec_lib = require "resty.openssl.ec"
 local ecx_lib = require "resty.openssl.ecx"
 local objects_lib = require "resty.openssl.objects"
@@ -442,6 +443,8 @@ function _M:get_parameters()
       return rsa_lib.get_parameters(key)
     elseif self.key_type == evp_macro.EVP_PKEY_EC then
       return ec_lib.get_parameters(key)
+    elseif self.key_type == evp_macro.EVP_PKEY_DH then
+      return dh_lib.get_parameters(key)
     end
   else
     return ecx_lib.get_parameters(self.ctx)
@@ -463,6 +466,8 @@ function _M:set_parameters(opts)
       return rsa_lib.set_parameters(key, opts)
     elseif self.key_type == evp_macro.EVP_PKEY_EC then
       return ec_lib.set_parameters(key, opts)
+    elseif self.key_type == evp_macro.EVP_PKEY_DH then
+      return dh_lib.set_parameters(key, opts)
     end
   else
     -- for ecx keys we always create a new EVP_PKEY and release the old one

lib/resty/openssl/rsa.lua

@@ -64,6 +64,9 @@ function _M.get_parameters(rsa_st)
         ret = rsa_st[k]
       end
 
+      if ret == nil then
+        return nil
+      end
       return bn_lib.dup(ret)
     end
   }), nil

lua-resty-openssl-0.6.7-1.rockspec

@@ -18,6 +18,7 @@ build = {
       ["resty.openssl.aux.jwk"] = "lib/resty/openssl/aux/jwk.lua",
       ["resty.openssl.bn"] = "lib/resty/openssl/bn.lua",
       ["resty.openssl.cipher"] = "lib/resty/openssl/cipher.lua",
+      ["resty.openssl.dh"] = "lib/resty/openssl/dh.lua",
       ["resty.openssl.digest"] = "lib/resty/openssl/digest.lua",
       ["resty.openssl.ec"] = "lib/resty/openssl/ec.lua",
       ["resty.openssl.ecx"] = "lib/resty/openssl/ecx.lua",