Rev 846 | Rev 1042 | Go to most recent revision | Details | Compare with Previous | Last modification | View Log | RSS feed
Rev | Author | Line No. | Line |
---|---|---|---|
827 | daniel-mar | 1 | <?php |
2 | |||
3 | /** |
||
4 | * PKCS#8 Formatted DH Key Handler |
||
5 | * |
||
6 | * PHP version 5 |
||
7 | * |
||
8 | * Processes keys with the following headers: |
||
9 | * |
||
10 | * -----BEGIN ENCRYPTED PRIVATE KEY----- |
||
11 | * -----BEGIN PRIVATE KEY----- |
||
12 | * -----BEGIN PUBLIC KEY----- |
||
13 | * |
||
874 | daniel-mar | 14 | * @category Crypt |
15 | * @package DH |
||
827 | daniel-mar | 16 | * @author Jim Wigginton <terrafrost@php.net> |
17 | * @copyright 2015 Jim Wigginton |
||
18 | * @license http://www.opensource.org/licenses/mit-license.html MIT License |
||
19 | * @link http://phpseclib.sourceforge.net |
||
20 | */ |
||
21 | |||
22 | namespace phpseclib3\Crypt\DH\Formats\Keys; |
||
23 | |||
24 | use phpseclib3\Common\Functions\Strings; |
||
25 | use phpseclib3\Crypt\Common\Formats\Keys\PKCS8 as Progenitor; |
||
26 | use phpseclib3\File\ASN1; |
||
27 | use phpseclib3\File\ASN1\Maps; |
||
28 | use phpseclib3\Math\BigInteger; |
||
29 | |||
30 | /** |
||
31 | * PKCS#8 Formatted DH Key Handler |
||
32 | * |
||
874 | daniel-mar | 33 | * @package DH |
827 | daniel-mar | 34 | * @author Jim Wigginton <terrafrost@php.net> |
874 | daniel-mar | 35 | * @access public |
827 | daniel-mar | 36 | */ |
37 | abstract class PKCS8 extends Progenitor |
||
38 | { |
||
39 | /** |
||
40 | * OID Name |
||
41 | * |
||
42 | * @var string |
||
874 | daniel-mar | 43 | * @access private |
827 | daniel-mar | 44 | */ |
45 | const OID_NAME = 'dhKeyAgreement'; |
||
46 | |||
47 | /** |
||
48 | * OID Value |
||
49 | * |
||
50 | * @var string |
||
874 | daniel-mar | 51 | * @access private |
827 | daniel-mar | 52 | */ |
53 | const OID_VALUE = '1.2.840.113549.1.3.1'; |
||
54 | |||
55 | /** |
||
56 | * Child OIDs loaded |
||
57 | * |
||
58 | * @var bool |
||
874 | daniel-mar | 59 | * @access private |
827 | daniel-mar | 60 | */ |
61 | protected static $childOIDsLoaded = false; |
||
62 | |||
63 | /** |
||
64 | * Break a public or private key down into its constituent components |
||
65 | * |
||
874 | daniel-mar | 66 | * @access public |
827 | daniel-mar | 67 | * @param string $key |
68 | * @param string $password optional |
||
69 | * @return array |
||
70 | */ |
||
71 | public static function load($key, $password = '') |
||
72 | { |
||
73 | if (!Strings::is_stringable($key)) { |
||
74 | throw new \UnexpectedValueException('Key should be a string - not a ' . gettype($key)); |
||
75 | } |
||
76 | |||
77 | $isPublic = strpos($key, 'PUBLIC') !== false; |
||
78 | |||
79 | $key = parent::load($key, $password); |
||
80 | |||
81 | $type = isset($key['privateKey']) ? 'privateKey' : 'publicKey'; |
||
82 | |||
83 | switch (true) { |
||
84 | case !$isPublic && $type == 'publicKey': |
||
85 | throw new \UnexpectedValueException('Human readable string claims non-public key but DER encoded string claims public key'); |
||
86 | case $isPublic && $type == 'privateKey': |
||
87 | throw new \UnexpectedValueException('Human readable string claims public key but DER encoded string claims private key'); |
||
88 | } |
||
89 | |||
90 | $decoded = ASN1::decodeBER($key[$type . 'Algorithm']['parameters']->element); |
||
91 | if (empty($decoded)) { |
||
92 | throw new \RuntimeException('Unable to decode BER of parameters'); |
||
93 | } |
||
94 | $components = ASN1::asn1map($decoded[0], Maps\DHParameter::MAP); |
||
95 | if (!is_array($components)) { |
||
96 | throw new \RuntimeException('Unable to perform ASN1 mapping on parameters'); |
||
97 | } |
||
98 | |||
99 | $decoded = ASN1::decodeBER($key[$type]); |
||
100 | switch (true) { |
||
101 | case empty($decoded): |
||
102 | case !is_array($decoded): |
||
103 | case !isset($decoded[0]['content']): |
||
104 | case !$decoded[0]['content'] instanceof BigInteger: |
||
105 | throw new \RuntimeException('Unable to decode BER of parameters'); |
||
106 | } |
||
107 | $components[$type] = $decoded[0]['content']; |
||
108 | |||
109 | return $components; |
||
110 | } |
||
111 | |||
112 | /** |
||
113 | * Convert a private key to the appropriate format. |
||
114 | * |
||
874 | daniel-mar | 115 | * @access public |
827 | daniel-mar | 116 | * @param \phpseclib3\Math\BigInteger $prime |
117 | * @param \phpseclib3\Math\BigInteger $base |
||
118 | * @param \phpseclib3\Math\BigInteger $privateKey |
||
119 | * @param \phpseclib3\Math\BigInteger $publicKey |
||
120 | * @param string $password optional |
||
121 | * @param array $options optional |
||
122 | * @return string |
||
123 | */ |
||
124 | public static function savePrivateKey(BigInteger $prime, BigInteger $base, BigInteger $privateKey, BigInteger $publicKey, $password = '', array $options = []) |
||
125 | { |
||
126 | $params = [ |
||
127 | 'prime' => $prime, |
||
128 | 'base' => $base |
||
129 | ]; |
||
130 | $params = ASN1::encodeDER($params, Maps\DHParameter::MAP); |
||
131 | $params = new ASN1\Element($params); |
||
132 | $key = ASN1::encodeDER($privateKey, ['type' => ASN1::TYPE_INTEGER]); |
||
133 | return self::wrapPrivateKey($key, [], $params, $password, null, '', $options); |
||
134 | } |
||
135 | |||
136 | /** |
||
137 | * Convert a public key to the appropriate format |
||
138 | * |
||
874 | daniel-mar | 139 | * @access public |
827 | daniel-mar | 140 | * @param \phpseclib3\Math\BigInteger $prime |
141 | * @param \phpseclib3\Math\BigInteger $base |
||
142 | * @param \phpseclib3\Math\BigInteger $publicKey |
||
143 | * @param array $options optional |
||
144 | * @return string |
||
145 | */ |
||
146 | public static function savePublicKey(BigInteger $prime, BigInteger $base, BigInteger $publicKey, array $options = []) |
||
147 | { |
||
148 | $params = [ |
||
149 | 'prime' => $prime, |
||
150 | 'base' => $base |
||
151 | ]; |
||
152 | $params = ASN1::encodeDER($params, Maps\DHParameter::MAP); |
||
153 | $params = new ASN1\Element($params); |
||
154 | $key = ASN1::encodeDER($publicKey, ['type' => ASN1::TYPE_INTEGER]); |
||
155 | return self::wrapPublicKey($key, $params); |
||
156 | } |
||
157 | } |