nxdumptool/include/core/rsa.h

/*
 * rsa.c
 *
 * Copyright (c) 2018-2019, SciresM.
 * Copyright (c) 2018-2019, The-4n.
 * Copyright (c) 2020-2021, DarkMatterCore <pabloacurielz@gmail.com>.
 *
 * This file is part of nxdumptool (https://github.com/DarkMatterCore/nxdumptool).
 *
 * nxdumptool is free software: you can redistribute it and/or modify
 * it under the terms of the GNU General Public License as published by
 * the Free Software Foundation, either version 3 of the License, or
 * (at your option) any later version.
 *
 * nxdumptool is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 * GNU General Public License for more details.
 *
 * You should have received a copy of the GNU General Public License
 * along with this program.  If not, see <https://www.gnu.org/licenses/>.
 */

#pragma once

#ifndef __RSA_H__
#define __RSA_H__

#ifdef __cplusplus
extern "C" {
#endif

#define RSA2048_BYTES       0x100
#define RSA2048_BITS        (RSA2048_BYTES * 8)

#define RSA2048_SIG_SIZE    RSA2048_BYTES
#define RSA2048_PUBKEY_SIZE RSA2048_BYTES

/// Returns a pointer to the RSA-2048 public key that can be used to verify signatures generated by rsa2048GenerateSha256BasedPssSignature().
/// Suitable to replace the ACID public key in a NPDM.
const u8 *rsa2048GetCustomPublicKey(void);

/// Verifies a RSA-2048-PSS with SHA-256 signature.
/// The provided signature and modulus should have sizes of at least RSA2048_SIG_SIZE and RSA2048_PUBKEY_SIZE, respectively.
bool rsa2048VerifySha256BasedPssSignature(const void *data, size_t data_size, const void *signature, const void *modulus, const void *public_exponent, size_t public_exponent_size);

/// Generates a RSA-2048-PSS with SHA-256 signature using a custom RSA-2048 private key.
/// Suitable to replace the ACID signature in a Program NCA header.
/// Destination buffer size should be at least RSA2048_SIG_SIZE.
bool rsa2048GenerateSha256BasedPssSignature(void *dst, const void *src, size_t size);

/// Performs RSA-2048-OAEP decryption.
/// Suitable to decrypt the titlekey block from tickets with personalized crypto.
/// The provided signature and modulus should have sizes of at least RSA2048_SIG_SIZE and RSA2048_PUBKEY_SIZE, respectively.
/// The label and label_size arguments are optional - these may be set to NULL and 0 if not needed, respectively.
bool rsa2048OaepDecrypt(void *dst, size_t dst_size, const void *signature, const void *modulus, const void *public_exponent, size_t public_exponent_size, const void *private_exponent, \
                        size_t private_exponent_size, const void *label, size_t label_size, size_t *out_size);

#ifdef __cplusplus
}
#endif

#endif /* __RSA_H__ */
More baby steps. 2020-04-16 01:06:41 +01:00			`/*`
Bunch of changes. * Updated disclaimer in all source files. * Improved signed payload (certificate, ticket) handling. * Prefer strlen + strcmp over strncmp whenever possible. * Simplify header file inclusions in source files. * Simplify background gamecard thread logic. * Properly close keys file handle if there's a key parse error. * Update NcaKeyGeneration enum. * Small changes to save.c/h. Will probably have to revert some USB changes... 2020-07-03 10:31:22 +01:00			`* rsa.c`
More baby steps. 2020-04-16 01:06:41 +01:00			`*`
Bunch of changes. * Updated disclaimer in all source files. * Improved signed payload (certificate, ticket) handling. * Prefer strlen + strcmp over strncmp whenever possible. * Simplify header file inclusions in source files. * Simplify background gamecard thread logic. * Properly close keys file handle if there's a key parse error. * Update NcaKeyGeneration enum. * Small changes to save.c/h. Will probably have to revert some USB changes... 2020-07-03 10:31:22 +01:00			`* Copyright (c) 2018-2019, SciresM.`
			`* Copyright (c) 2018-2019, The-4n.`
Update copyright years. 2020-12-23 17:48:57 +00:00			`* Copyright (c) 2020-2021, DarkMatterCore <pabloacurielz@gmail.com>.`
Bunch of changes. * Updated disclaimer in all source files. * Improved signed payload (certificate, ticket) handling. * Prefer strlen + strcmp over strncmp whenever possible. * Simplify header file inclusions in source files. * Simplify background gamecard thread logic. * Properly close keys file handle if there's a key parse error. * Update NcaKeyGeneration enum. * Small changes to save.c/h. Will probably have to revert some USB changes... 2020-07-03 10:31:22 +01:00			`*`
			`* This file is part of nxdumptool (https://github.com/DarkMatterCore/nxdumptool).`
			`*`
Change project layout + upgrade license to GPLv3. 2021-03-25 19:26:58 +00:00			`* nxdumptool is free software: you can redistribute it and/or modify`
			`* it under the terms of the GNU General Public License as published by`
			`* the Free Software Foundation, either version 3 of the License, or`
			`* (at your option) any later version.`
More baby steps. 2020-04-16 01:06:41 +01:00			`*`
Change project layout + upgrade license to GPLv3. 2021-03-25 19:26:58 +00:00			`* nxdumptool is distributed in the hope that it will be useful,`
			`* but WITHOUT ANY WARRANTY; without even the implied warranty of`
			`* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the`
			`* GNU General Public License for more details.`
More baby steps. 2020-04-16 01:06:41 +01:00			`*`
			`* You should have received a copy of the GNU General Public License`
Change project layout + upgrade license to GPLv3. 2021-03-25 19:26:58 +00:00			`* along with this program. If not, see <https://www.gnu.org/licenses/>.`
More baby steps. 2020-04-16 01:06:41 +01:00			`*/`

First commit. 2020-04-11 06:28:26 +01:00			`#pragma once`

Some changes. * Placed C++ extern "C" blocks inside include guards. * Added a "clean_all" rule to the Makefile to avoid recompiling libusbhsfs after each time "clean" is used. * Added static asserts for all structs that may need it throughout the code. * Preprocessor macros are now used to generate certificate and ticket structs. 2021-03-24 17:25:19 +00:00			`#ifndef __RSA_H__`
			`#define __RSA_H__`

Fix linkage for C++ projects (#79) 2021-03-23 14:06:52 +00:00			`#ifdef __cplusplus`
			`extern "C" {`
			`#endif`

Crypto changes. * Implemented RSA-2048-PSS + SHA256 signature verification. * Refactored RSA-2048-OAEP decryption steps to use mbedtls function calls. * Implemented NCA header main signature verification. * Replaced Björn Samuelsson's CRC32 algorithm with the hardware accelerated CRC32 checksum calculation from libnx (latest commit with support for calculation in blocks). 2021-05-21 14:34:43 +01:00			`#define RSA2048_BYTES 0x100`
			`#define RSA2048_BITS (RSA2048_BYTES * 8)`
First commit. 2020-04-11 06:28:26 +01:00
Crypto changes. * Implemented RSA-2048-PSS + SHA256 signature verification. * Refactored RSA-2048-OAEP decryption steps to use mbedtls function calls. * Implemented NCA header main signature verification. * Replaced Björn Samuelsson's CRC32 algorithm with the hardware accelerated CRC32 checksum calculation from libnx (latest commit with support for calculation in blocks). 2021-05-21 14:34:43 +01:00			`#define RSA2048_SIG_SIZE RSA2048_BYTES`
			`#define RSA2048_PUBKEY_SIZE RSA2048_BYTES`
Some more changes. * Codestyle fixes. * NCA contexts for NCAs with titlekey crypto will now be generated even if the ticket can't be retrieved, in order to be able to use ncaReadContentFile() with them. * Moved aes128XtsNintendoCrypt() out of nca.c. 2020-07-06 01:10:07 +01:00
Codestyle fixes + prepare code for NPDM support. 2020-10-08 19:31:09 +01:00			`/// Returns a pointer to the RSA-2048 public key that can be used to verify signatures generated by rsa2048GenerateSha256BasedPssSignature().`
			`/// Suitable to replace the ACID public key in a NPDM.`
			`const u8 *rsa2048GetCustomPublicKey(void);`
First commit. 2020-04-11 06:28:26 +01:00
Crypto changes. * Implemented RSA-2048-PSS + SHA256 signature verification. * Refactored RSA-2048-OAEP decryption steps to use mbedtls function calls. * Implemented NCA header main signature verification. * Replaced Björn Samuelsson's CRC32 algorithm with the hardware accelerated CRC32 checksum calculation from libnx (latest commit with support for calculation in blocks). 2021-05-21 14:34:43 +01:00			`/// Verifies a RSA-2048-PSS with SHA-256 signature.`
			`/// The provided signature and modulus should have sizes of at least RSA2048_SIG_SIZE and RSA2048_PUBKEY_SIZE, respectively.`
			`bool rsa2048VerifySha256BasedPssSignature(const void data, size_t data_size, const void signature, const void modulus, const void public_exponent, size_t public_exponent_size);`

			`/// Generates a RSA-2048-PSS with SHA-256 signature using a custom RSA-2048 private key.`
			`/// Suitable to replace the ACID signature in a Program NCA header.`
			`/// Destination buffer size should be at least RSA2048_SIG_SIZE.`
			`bool rsa2048GenerateSha256BasedPssSignature(void dst, const void src, size_t size);`

			`/// Performs RSA-2048-OAEP decryption.`
			`/// Suitable to decrypt the titlekey block from tickets with personalized crypto.`
			`/// The provided signature and modulus should have sizes of at least RSA2048_SIG_SIZE and RSA2048_PUBKEY_SIZE, respectively.`
			`/// The label and label_size arguments are optional - these may be set to NULL and 0 if not needed, respectively.`
			`bool rsa2048OaepDecrypt(void dst, size_t dst_size, const void signature, const void modulus, const void public_exponent, size_t public_exponent_size, const void *private_exponent, \`
			`size_t private_exponent_size, const void label, size_t label_size, size_t out_size);`
First commit. 2020-04-11 06:28:26 +01:00
Fix linkage for C++ projects (#79) 2021-03-23 14:06:52 +00:00			`#ifdef __cplusplus`
			`}`
Some changes. * Placed C++ extern "C" blocks inside include guards. * Added a "clean_all" rule to the Makefile to avoid recompiling libusbhsfs after each time "clean" is used. * Added static asserts for all structs that may need it throughout the code. * Preprocessor macros are now used to generate certificate and ticket structs. 2021-03-24 17:25:19 +00:00			`#endif`

			`#endif /* __RSA_H__ */`