/src/gnutls/lib/algorithms/publickey.c

Source (jump to first uncovered line)
/*
 * Copyright (C) 2011-2012 Free Software Foundation, Inc.
 *
 * Author: Nikos Mavrogiannopoulos
 *
 * This file is part of GnuTLS.
 *
 * The GnuTLS is free software; you can redistribute it and/or
 * modify it under the terms of the GNU Lesser General Public License
 * as published by the Free Software Foundation; either version 2.1 of
 * the License, or (at your option) any later version.
 *
 * This library is distributed in the hope that it will be useful, but
 * WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
 * Lesser General Public License for more details.
 *
 * You should have received a copy of the GNU Lesser General Public License
 * along with this program.  If not, see <https://www.gnu.org/licenses/>
 *
 */

#include "gnutls_int.h"
#include "algorithms.h"
#include "errors.h"
#include "x509/common.h"
#include "pk.h"

/* KX mappings to PK algorithms */
typedef struct {
  gnutls_kx_algorithm_t kx_algorithm;
  gnutls_pk_algorithm_t pk_algorithm;
  enum encipher_type
    encipher_type; /* CIPHER_ENCRYPT if this algorithm is to be used
             * for encryption, CIPHER_SIGN if signature only,
             * CIPHER_IGN if this does not apply at all.
             *
             * This is useful to certificate cipher suites, which check
             * against the certificate key usage bits.
             */
} gnutls_pk_map;

/* This table maps the Key exchange algorithms to
 * the certificate algorithms. Eg. if we have
 * RSA algorithm in the certificate then we can
 * use GNUTLS_KX_RSA or GNUTLS_KX_DHE_RSA.
 */
static const gnutls_pk_map pk_mappings[] = {
  { GNUTLS_KX_RSA, GNUTLS_PK_RSA, CIPHER_ENCRYPT },
  { GNUTLS_KX_DHE_RSA, GNUTLS_PK_RSA, CIPHER_SIGN },
  { GNUTLS_KX_SRP_RSA, GNUTLS_PK_RSA, CIPHER_SIGN },
  { GNUTLS_KX_ECDHE_RSA, GNUTLS_PK_RSA, CIPHER_SIGN },
  { GNUTLS_KX_ECDHE_ECDSA, GNUTLS_PK_EC, CIPHER_SIGN },
  { GNUTLS_KX_ECDHE_ECDSA, GNUTLS_PK_EDDSA_ED25519, CIPHER_SIGN },
  { GNUTLS_KX_ECDHE_ECDSA, GNUTLS_PK_EDDSA_ED448, CIPHER_SIGN },
  { GNUTLS_KX_DHE_DSS, GNUTLS_PK_DSA, CIPHER_SIGN },
  { GNUTLS_KX_DHE_RSA, GNUTLS_PK_RSA_PSS, CIPHER_SIGN },
  { GNUTLS_KX_ECDHE_RSA, GNUTLS_PK_RSA_PSS, CIPHER_SIGN },
  { GNUTLS_KX_SRP_DSS, GNUTLS_PK_DSA, CIPHER_SIGN },
  { GNUTLS_KX_RSA_PSK, GNUTLS_PK_RSA, CIPHER_ENCRYPT },
  { GNUTLS_KX_VKO_GOST_12, GNUTLS_PK_GOST_01, CIPHER_SIGN },
  { GNUTLS_KX_VKO_GOST_12, GNUTLS_PK_GOST_12_256, CIPHER_SIGN },
  { GNUTLS_KX_VKO_GOST_12, GNUTLS_PK_GOST_12_512, CIPHER_SIGN },
  { 0, 0, 0 }
};

#define GNUTLS_PK_MAP_LOOP(b)                              \
  const gnutls_pk_map *p;                            \
  for (p = pk_mappings; p->kx_algorithm != 0; p++) { \
    b                                          \
  }

#define GNUTLS_PK_MAP_ALG_LOOP(a)                                 \
  GNUTLS_PK_MAP_LOOP(if (p->kx_algorithm == kx_algorithm) { \
    a;                                                \
    break;                                            \
  })

unsigned _gnutls_kx_supports_pk(gnutls_kx_algorithm_t kx_algorithm,
        gnutls_pk_algorithm_t pk_algorithm)
{
  GNUTLS_PK_MAP_LOOP(if (p->kx_algorithm == kx_algorithm &&
             p->pk_algorithm == pk_algorithm) { return 1; })
  return 0;
}

unsigned _gnutls_kx_supports_pk_usage(gnutls_kx_algorithm_t kx_algorithm,
              gnutls_pk_algorithm_t pk_algorithm,
              unsigned int key_usage)
{
  const gnutls_pk_map *p;

  for (p = pk_mappings; p->kx_algorithm != 0; p++) {
    if (p->kx_algorithm == kx_algorithm &&
        p->pk_algorithm == pk_algorithm) {
      if (key_usage == 0)
        return 1;
      else if (p->encipher_type == CIPHER_SIGN &&
         (key_usage & GNUTLS_KEY_DIGITAL_SIGNATURE))
        return 1;
      else if (p->encipher_type == CIPHER_ENCRYPT &&
         (key_usage & GNUTLS_KEY_KEY_ENCIPHERMENT))
        return 1;
      else
        return 0;
    }
  }

  return 0;
}

/* pk algorithms;
 */
struct gnutls_pk_entry {
  const char *name;
  const char *oid;
  gnutls_pk_algorithm_t id;
  gnutls_ecc_curve_t
    curve; /* to map PK to specific OID, we need to know the curve for EdDSA */
  bool no_prehashed; /* non-zero if the algorithm cannot sign pre-hashed data */
};
typedef struct gnutls_pk_entry gnutls_pk_entry;

static const gnutls_pk_entry pk_algorithms[] = {
  /* having duplicate entries is ok, as long as the one
   * we want to return OID from is first */
  { .name = "RSA",
    .oid = PK_PKIX1_RSA_OID,
    .id = GNUTLS_PK_RSA,
    .curve = GNUTLS_ECC_CURVE_INVALID },
  { .name = "RSA-PSS",
    .oid = PK_PKIX1_RSA_PSS_OID,
    .id = GNUTLS_PK_RSA_PSS,
    .curve = GNUTLS_ECC_CURVE_INVALID },
  { .name = "RSA-OAEP",
    .oid = PK_PKIX1_RSA_OAEP_OID,
    .id = GNUTLS_PK_RSA_OAEP,
    .curve = GNUTLS_ECC_CURVE_INVALID },
  { .name = "RSA (X.509)",
    .oid = PK_X509_RSA_OID,
    .id = GNUTLS_PK_RSA,
    .curve =
      GNUTLS_ECC_CURVE_INVALID }, /* some certificates use this OID for RSA */
  { .name = "RSA-MD5",
    .oid = SIG_RSA_MD5_OID,
    .id = GNUTLS_PK_RSA,
    .curve =
      GNUTLS_ECC_CURVE_INVALID }, /* some other broken certificates set RSA with MD5 as an indicator of RSA */
  { .name = "RSA-SHA1",
    .oid = SIG_RSA_SHA1_OID,
    .id = GNUTLS_PK_RSA,
    .curve =
      GNUTLS_ECC_CURVE_INVALID }, /* some other broken certificates set RSA with SHA1 as an indicator of RSA */
  { .name = "RSA-SHA1",
    .oid = ISO_SIG_RSA_SHA1_OID,
    .id = GNUTLS_PK_RSA,
    .curve =
      GNUTLS_ECC_CURVE_INVALID }, /* some other broken certificates set RSA with SHA1 as an indicator of RSA */
  { .name = "DSA",
    .oid = PK_DSA_OID,
    .id = GNUTLS_PK_DSA,
    .curve = GNUTLS_ECC_CURVE_INVALID },
  { .name = "GOST R 34.10-2012-512",
    .oid = PK_GOST_R3410_2012_512_OID,
    .id = GNUTLS_PK_GOST_12_512,
    .curve = GNUTLS_ECC_CURVE_INVALID },
  { .name = "GOST R 34.10-2012-256",
    .oid = PK_GOST_R3410_2012_256_OID,
    .id = GNUTLS_PK_GOST_12_256,
    .curve = GNUTLS_ECC_CURVE_INVALID },
  { .name = "GOST R 34.10-2001",
    .oid = PK_GOST_R3410_2001_OID,
    .id = GNUTLS_PK_GOST_01,
    .curve = GNUTLS_ECC_CURVE_INVALID },
  { .name = "GOST R 34.10-94",
    .oid = PK_GOST_R3410_94_OID,
    .id = GNUTLS_PK_UNKNOWN,
    .curve = GNUTLS_ECC_CURVE_INVALID },
  { .name = "EC/ECDSA",
    .oid = "1.2.840.10045.2.1",
    .id = GNUTLS_PK_ECDSA,
    .curve = GNUTLS_ECC_CURVE_INVALID },
  { .name = "EdDSA (Ed25519)",
    .oid = SIG_EDDSA_SHA512_OID,
    .id = GNUTLS_PK_EDDSA_ED25519,
    .curve = GNUTLS_ECC_CURVE_ED25519,
    .no_prehashed = 1 },
  { .name = "EdDSA (Ed448)",
    .oid = SIG_ED448_OID,
    .id = GNUTLS_PK_EDDSA_ED448,
    .curve = GNUTLS_ECC_CURVE_ED448,
    .no_prehashed = 1 },
  { .name = "DH",
    .oid = NULL,
    .id = GNUTLS_PK_DH,
    .curve = GNUTLS_ECC_CURVE_INVALID },
  { .name = "ECDH (X25519)",
    .oid = ECDH_X25519_OID,
    .id = GNUTLS_PK_ECDH_X25519,
    .curve = GNUTLS_ECC_CURVE_X25519 },
  { .name = "ECDH (X448)",
    .oid = ECDH_X448_OID,
    .id = GNUTLS_PK_ECDH_X448,
    .curve = GNUTLS_ECC_CURVE_X448 },
  { .name = "ML-KEM-768",
    .oid = NULL,
    .id = GNUTLS_PK_MLKEM768,
    .curve = GNUTLS_ECC_CURVE_INVALID },
  { .name = "ML-KEM-1024",
    .oid = NULL,
    .id = GNUTLS_PK_MLKEM1024,
    .curve = GNUTLS_ECC_CURVE_INVALID },
  { .name = "ML-DSA-44",
    .oid = MLDSA44_OID,
    .id = GNUTLS_PK_MLDSA44,
    .curve = GNUTLS_ECC_CURVE_INVALID,
    .no_prehashed = 1 },
  { .name = "ML-DSA-65",
    .oid = MLDSA65_OID,
    .id = GNUTLS_PK_MLDSA65,
    .curve = GNUTLS_ECC_CURVE_INVALID,
    .no_prehashed = 1 },
  { .name = "ML-DSA-87",
    .oid = MLDSA87_OID,
    .id = GNUTLS_PK_MLDSA87,
    .curve = GNUTLS_ECC_CURVE_INVALID,
    .no_prehashed = 1 },
  { .name = "UNKNOWN",
    .oid = NULL,
    .id = GNUTLS_PK_UNKNOWN,
    .curve = GNUTLS_ECC_CURVE_INVALID },
  { 0, 0, 0, 0 }
};

#define GNUTLS_PK_LOOP(b)                                       \
  {                                                       \
    const gnutls_pk_entry *p;                       \
    for (p = pk_algorithms; p->name != NULL; p++) { \
      b;                                      \
    }                                               \
  }

/**
 * gnutls_pk_algorithm_get_name:
 * @algorithm: is a pk algorithm
 *
 * Convert a #gnutls_pk_algorithm_t value to a string.
 *
 * Returns: a string that contains the name of the specified public
 *   key algorithm, or %NULL.
 **/
const char *gnutls_pk_algorithm_get_name(gnutls_pk_algorithm_t algorithm)
{
  const char *ret = NULL;

  GNUTLS_PK_LOOP(if (p->id == algorithm) {
    ret = p->name;
    break;
  });

  return ret;
}

/**
 * gnutls_pk_list:
 *
 * Get a list of supported public key algorithms.
 *
 * This function is not thread safe.
 *
 * Returns: a (0)-terminated list of #gnutls_pk_algorithm_t integers
 *   indicating the available ciphers.
 *
 * Since: 2.6.0
 **/
const gnutls_pk_algorithm_t *gnutls_pk_list(void)
{
  static gnutls_pk_algorithm_t supported_pks[MAX_ALGOS] = { 0 };

  if (supported_pks[0] == 0) {
    int i = 0;

    GNUTLS_PK_LOOP(
      if (p->id != GNUTLS_PK_UNKNOWN &&
          supported_pks[i > 0 ? (i - 1) : 0] != p->id &&
          _gnutls_pk_exists(p->id)) {
        supported_pks[i++] = p->id;
      });
    supported_pks[i++] = 0;
  }

  return supported_pks;
}

/**
 * gnutls_pk_get_id:
 * @name: is a string containing a public key algorithm name.
 *
 * Convert a string to a #gnutls_pk_algorithm_t value.  The names are
 * compared in a case insensitive way.  For example,
 * gnutls_pk_get_id("RSA") will return %GNUTLS_PK_RSA.
 *
 * Returns: a #gnutls_pk_algorithm_t id of the specified public key
 *   algorithm string, or %GNUTLS_PK_UNKNOWN on failures.
 *
 * Since: 2.6.0
 **/
gnutls_pk_algorithm_t gnutls_pk_get_id(const char *name)
{
  gnutls_pk_algorithm_t ret = GNUTLS_PK_UNKNOWN;
  const gnutls_pk_entry *p;

  for (p = pk_algorithms; p->name != NULL; p++)
    if (name && strcmp(p->name, name) == 0) {
      ret = p->id;
      break;
    }

  return ret;
}

/**
 * gnutls_pk_get_name:
 * @algorithm: is a public key algorithm
 *
 * Convert a #gnutls_pk_algorithm_t value to a string.
 *
 * Returns: a pointer to a string that contains the name of the
 *   specified public key algorithm, or %NULL.
 *
 * Since: 2.6.0
 **/
const char *gnutls_pk_get_name(gnutls_pk_algorithm_t algorithm)
{
  const char *ret = "Unknown";
  const gnutls_pk_entry *p;

  for (p = pk_algorithms; p->name != NULL; p++)
    if (algorithm == p->id) {
      ret = p->name;
      break;
    }

  return ret;
}

/*-
 * _gnutls_pk_is_not_prehashed:
 * @algorithm: is a public key algorithm
 *
 * Returns non-zero when the public key algorithm does not support pre-hashed
 * data.
 *
 * Since: 3.6.0
 **/
bool _gnutls_pk_is_not_prehashed(gnutls_pk_algorithm_t algorithm)
{
  const gnutls_pk_entry *p;

  for (p = pk_algorithms; p->name != NULL; p++)
    if (algorithm == p->id) {
      return p->no_prehashed;
    }

  return 0;
}

/**
 * gnutls_oid_to_pk:
 * @oid: is an object identifier
 *
 * Converts a textual object identifier to a #gnutls_pk_algorithm_t value.
 *
 * Returns: a #gnutls_pk_algorithm_t id of the specified digest
 *   algorithm, or %GNUTLS_PK_UNKNOWN on failure.
 *
 * Since: 3.4.3
 **/
gnutls_pk_algorithm_t gnutls_oid_to_pk(const char *oid)
{
  gnutls_pk_algorithm_t ret = GNUTLS_PK_UNKNOWN;
  const gnutls_pk_entry *p;

  for (p = pk_algorithms; p->name != NULL; p++)
    if (p->oid && strcmp(p->oid, oid) == 0) {
      ret = p->id;
      break;
    }

  return ret;
}

/**
 * gnutls_pk_get_oid:
 * @algorithm: is a public key algorithm
 *
 * Convert a #gnutls_pk_algorithm_t value to its object identifier string.
 *
 * Returns: a pointer to a string that contains the object identifier of the
 *   specified public key algorithm, or %NULL.
 *
 * Since: 3.4.3
 **/
const char *gnutls_pk_get_oid(gnutls_pk_algorithm_t algorithm)
{
  const char *ret = NULL;
  const gnutls_pk_entry *p;

  if (algorithm == 0)
    return NULL;

  for (p = pk_algorithms; p->name != NULL; p++)
    if (p->id == algorithm) {
      ret = p->oid;
      break;
    }

  return ret;
}

/*-
 * _gnutls_oid_to_pk_and_curve:
 * @oid: is an object identifier
 *
 * Convert an OID to a #gnutls_pk_algorithm_t and curve values. If no curve
 * is applicable, curve will be set GNUTLS_ECC_CURVE_INVALID.
 *
 * Returns: a #gnutls_pk_algorithm_t id of the specified digest
 *   algorithm, or %GNUTLS_PK_UNKNOWN on failure.
 *
 * Since: 3.6.0
 -*/
gnutls_pk_algorithm_t _gnutls_oid_to_pk_and_curve(const char *oid,
              gnutls_ecc_curve_t *curve)
{
  gnutls_pk_algorithm_t ret = GNUTLS_PK_UNKNOWN;
  const gnutls_pk_entry *p;

  for (p = pk_algorithms; p->name != NULL; p++)
    if (p->oid && strcmp(p->oid, oid) == 0) {
      ret = p->id;
      if (curve)
        *curve = p->curve;
      break;
    }

  if (ret == GNUTLS_PK_UNKNOWN && curve)
    *curve = GNUTLS_ECC_CURVE_INVALID;

  return ret;
}

/* Returns the encipher type for the given key exchange algorithm.
 * That one of CIPHER_ENCRYPT, CIPHER_SIGN, CIPHER_IGN.
 *
 * ex. GNUTLS_KX_RSA requires a certificate able to encrypt... so returns CIPHER_ENCRYPT.
 */
enum encipher_type _gnutls_kx_encipher_type(gnutls_kx_algorithm_t kx_algorithm)
{
  int ret = CIPHER_IGN;
  GNUTLS_PK_MAP_ALG_LOOP(ret = p->encipher_type)
  return ret;
}

bool _gnutls_pk_are_compat(gnutls_pk_algorithm_t pk1, gnutls_pk_algorithm_t pk2)
{
  if (pk1 == pk2)
    return 1;

  if (GNUTLS_PK_IS_RSA(pk1) && GNUTLS_PK_IS_RSA(pk2))
    return 1;

  return 0;
}

Coverage Report

Created: 2025-07-23 07:16

Line	Count	Source (jump to first uncovered line)
1		/*
2		* Copyright (C) 2011-2012 Free Software Foundation, Inc.
3		*
4		* Author: Nikos Mavrogiannopoulos
5		*
6		* This file is part of GnuTLS.
7		*
8		* The GnuTLS is free software; you can redistribute it and/or
9		* modify it under the terms of the GNU Lesser General Public License
10		* as published by the Free Software Foundation; either version 2.1 of
11		* the License, or (at your option) any later version.
12		*
13		* This library is distributed in the hope that it will be useful, but
14		* WITHOUT ANY WARRANTY; without even the implied warranty of
15		* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
16		* Lesser General Public License for more details.
17		*
18		* You should have received a copy of the GNU Lesser General Public License
19		* along with this program. If not, see <https://www.gnu.org/licenses/>
20		*
21		*/
22
23		#include "gnutls_int.h"
24		#include "algorithms.h"
25		#include "errors.h"
26		#include "x509/common.h"
27		#include "pk.h"
28
29		/* KX mappings to PK algorithms */
30		typedef struct {
31		gnutls_kx_algorithm_t kx_algorithm;
32		gnutls_pk_algorithm_t pk_algorithm;
33		enum encipher_type
34		encipher_type; /* CIPHER_ENCRYPT if this algorithm is to be used
35		* for encryption, CIPHER_SIGN if signature only,
36		* CIPHER_IGN if this does not apply at all.
37		*
38		* This is useful to certificate cipher suites, which check
39		* against the certificate key usage bits.
40		*/
41		} gnutls_pk_map;
42
43		/* This table maps the Key exchange algorithms to
44		* the certificate algorithms. Eg. if we have
45		* RSA algorithm in the certificate then we can
46		* use GNUTLS_KX_RSA or GNUTLS_KX_DHE_RSA.
47		*/
48		static const gnutls_pk_map pk_mappings[] = {
49		{ GNUTLS_KX_RSA, GNUTLS_PK_RSA, CIPHER_ENCRYPT },
50		{ GNUTLS_KX_DHE_RSA, GNUTLS_PK_RSA, CIPHER_SIGN },
51		{ GNUTLS_KX_SRP_RSA, GNUTLS_PK_RSA, CIPHER_SIGN },
52		{ GNUTLS_KX_ECDHE_RSA, GNUTLS_PK_RSA, CIPHER_SIGN },
53		{ GNUTLS_KX_ECDHE_ECDSA, GNUTLS_PK_EC, CIPHER_SIGN },
54		{ GNUTLS_KX_ECDHE_ECDSA, GNUTLS_PK_EDDSA_ED25519, CIPHER_SIGN },
55		{ GNUTLS_KX_ECDHE_ECDSA, GNUTLS_PK_EDDSA_ED448, CIPHER_SIGN },
56		{ GNUTLS_KX_DHE_DSS, GNUTLS_PK_DSA, CIPHER_SIGN },
57		{ GNUTLS_KX_DHE_RSA, GNUTLS_PK_RSA_PSS, CIPHER_SIGN },
58		{ GNUTLS_KX_ECDHE_RSA, GNUTLS_PK_RSA_PSS, CIPHER_SIGN },
59		{ GNUTLS_KX_SRP_DSS, GNUTLS_PK_DSA, CIPHER_SIGN },
60		{ GNUTLS_KX_RSA_PSK, GNUTLS_PK_RSA, CIPHER_ENCRYPT },
61		{ GNUTLS_KX_VKO_GOST_12, GNUTLS_PK_GOST_01, CIPHER_SIGN },
62		{ GNUTLS_KX_VKO_GOST_12, GNUTLS_PK_GOST_12_256, CIPHER_SIGN },
63		{ GNUTLS_KX_VKO_GOST_12, GNUTLS_PK_GOST_12_512, CIPHER_SIGN },
64		{ 0, 0, 0 }
65		};
66
67		#define GNUTLS_PK_MAP_LOOP(b) \
68	0	const gnutls_pk_map *p; \
69	0	for (p = pk_mappings; p->kx_algorithm != 0; p++) { \
70	0	b \
71	0	}
72
73		#define GNUTLS_PK_MAP_ALG_LOOP(a) \
74	0	GNUTLS_PK_MAP_LOOP(if (p->kx_algorithm == kx_algorithm) { \
75	0	a; \
76	0	break; \
77	0	})
78
79		unsigned _gnutls_kx_supports_pk(gnutls_kx_algorithm_t kx_algorithm,
80		gnutls_pk_algorithm_t pk_algorithm)
81	0	{
82	0	GNUTLS_PK_MAP_LOOP(if (p->kx_algorithm == kx_algorithm &&
83	0	p->pk_algorithm == pk_algorithm) { return 1; })
84	0	return 0;
85	0	}
86
87		unsigned _gnutls_kx_supports_pk_usage(gnutls_kx_algorithm_t kx_algorithm,
88		gnutls_pk_algorithm_t pk_algorithm,
89		unsigned int key_usage)
90	0	{
91	0	const gnutls_pk_map *p;
92
93	0	for (p = pk_mappings; p->kx_algorithm != 0; p++) {
94	0	if (p->kx_algorithm == kx_algorithm &&
95	0	p->pk_algorithm == pk_algorithm) {
96	0	if (key_usage == 0)
97	0	return 1;
98	0	else if (p->encipher_type == CIPHER_SIGN &&
99	0	(key_usage & GNUTLS_KEY_DIGITAL_SIGNATURE))
100	0	return 1;
101	0	else if (p->encipher_type == CIPHER_ENCRYPT &&
102	0	(key_usage & GNUTLS_KEY_KEY_ENCIPHERMENT))
103	0	return 1;
104	0	else
105	0	return 0;
106	0	}
107	0	}
108
109	0	return 0;
110	0	}
111
112		/* pk algorithms;
113		*/
114		struct gnutls_pk_entry {
115		const char *name;
116		const char *oid;
117		gnutls_pk_algorithm_t id;
118		gnutls_ecc_curve_t
119		curve; /* to map PK to specific OID, we need to know the curve for EdDSA */
120		bool no_prehashed; /* non-zero if the algorithm cannot sign pre-hashed data */
121		};
122		typedef struct gnutls_pk_entry gnutls_pk_entry;
123
124		static const gnutls_pk_entry pk_algorithms[] = {
125		/* having duplicate entries is ok, as long as the one
126		* we want to return OID from is first */
127		{ .name = "RSA",
128		.oid = PK_PKIX1_RSA_OID,
129		.id = GNUTLS_PK_RSA,
130		.curve = GNUTLS_ECC_CURVE_INVALID },
131		{ .name = "RSA-PSS",
132		.oid = PK_PKIX1_RSA_PSS_OID,
133		.id = GNUTLS_PK_RSA_PSS,
134		.curve = GNUTLS_ECC_CURVE_INVALID },
135		{ .name = "RSA-OAEP",
136		.oid = PK_PKIX1_RSA_OAEP_OID,
137		.id = GNUTLS_PK_RSA_OAEP,
138		.curve = GNUTLS_ECC_CURVE_INVALID },
139		{ .name = "RSA (X.509)",
140		.oid = PK_X509_RSA_OID,
141		.id = GNUTLS_PK_RSA,
142		.curve =
143		GNUTLS_ECC_CURVE_INVALID }, /* some certificates use this OID for RSA */
144		{ .name = "RSA-MD5",
145		.oid = SIG_RSA_MD5_OID,
146		.id = GNUTLS_PK_RSA,
147		.curve =
148		GNUTLS_ECC_CURVE_INVALID }, /* some other broken certificates set RSA with MD5 as an indicator of RSA */
149		{ .name = "RSA-SHA1",
150		.oid = SIG_RSA_SHA1_OID,
151		.id = GNUTLS_PK_RSA,
152		.curve =
153		GNUTLS_ECC_CURVE_INVALID }, /* some other broken certificates set RSA with SHA1 as an indicator of RSA */
154		{ .name = "RSA-SHA1",
155		.oid = ISO_SIG_RSA_SHA1_OID,
156		.id = GNUTLS_PK_RSA,
157		.curve =
158		GNUTLS_ECC_CURVE_INVALID }, /* some other broken certificates set RSA with SHA1 as an indicator of RSA */
159		{ .name = "DSA",
160		.oid = PK_DSA_OID,
161		.id = GNUTLS_PK_DSA,
162		.curve = GNUTLS_ECC_CURVE_INVALID },
163		{ .name = "GOST R 34.10-2012-512",
164		.oid = PK_GOST_R3410_2012_512_OID,
165		.id = GNUTLS_PK_GOST_12_512,
166		.curve = GNUTLS_ECC_CURVE_INVALID },
167		{ .name = "GOST R 34.10-2012-256",
168		.oid = PK_GOST_R3410_2012_256_OID,
169		.id = GNUTLS_PK_GOST_12_256,
170		.curve = GNUTLS_ECC_CURVE_INVALID },
171		{ .name = "GOST R 34.10-2001",
172		.oid = PK_GOST_R3410_2001_OID,
173		.id = GNUTLS_PK_GOST_01,
174		.curve = GNUTLS_ECC_CURVE_INVALID },
175		{ .name = "GOST R 34.10-94",
176		.oid = PK_GOST_R3410_94_OID,
177		.id = GNUTLS_PK_UNKNOWN,
178		.curve = GNUTLS_ECC_CURVE_INVALID },
179		{ .name = "EC/ECDSA",
180		.oid = "1.2.840.10045.2.1",
181		.id = GNUTLS_PK_ECDSA,
182		.curve = GNUTLS_ECC_CURVE_INVALID },
183		{ .name = "EdDSA (Ed25519)",
184		.oid = SIG_EDDSA_SHA512_OID,
185		.id = GNUTLS_PK_EDDSA_ED25519,
186		.curve = GNUTLS_ECC_CURVE_ED25519,
187		.no_prehashed = 1 },
188		{ .name = "EdDSA (Ed448)",
189		.oid = SIG_ED448_OID,
190		.id = GNUTLS_PK_EDDSA_ED448,
191		.curve = GNUTLS_ECC_CURVE_ED448,
192		.no_prehashed = 1 },
193		{ .name = "DH",
194		.oid = NULL,
195		.id = GNUTLS_PK_DH,
196		.curve = GNUTLS_ECC_CURVE_INVALID },
197		{ .name = "ECDH (X25519)",
198		.oid = ECDH_X25519_OID,
199		.id = GNUTLS_PK_ECDH_X25519,
200		.curve = GNUTLS_ECC_CURVE_X25519 },
201		{ .name = "ECDH (X448)",
202		.oid = ECDH_X448_OID,
203		.id = GNUTLS_PK_ECDH_X448,
204		.curve = GNUTLS_ECC_CURVE_X448 },
205		{ .name = "ML-KEM-768",
206		.oid = NULL,
207		.id = GNUTLS_PK_MLKEM768,
208		.curve = GNUTLS_ECC_CURVE_INVALID },
209		{ .name = "ML-KEM-1024",
210		.oid = NULL,
211		.id = GNUTLS_PK_MLKEM1024,
212		.curve = GNUTLS_ECC_CURVE_INVALID },
213		{ .name = "ML-DSA-44",
214		.oid = MLDSA44_OID,
215		.id = GNUTLS_PK_MLDSA44,
216		.curve = GNUTLS_ECC_CURVE_INVALID,
217		.no_prehashed = 1 },
218		{ .name = "ML-DSA-65",
219		.oid = MLDSA65_OID,
220		.id = GNUTLS_PK_MLDSA65,
221		.curve = GNUTLS_ECC_CURVE_INVALID,
222		.no_prehashed = 1 },
223		{ .name = "ML-DSA-87",
224		.oid = MLDSA87_OID,
225		.id = GNUTLS_PK_MLDSA87,
226		.curve = GNUTLS_ECC_CURVE_INVALID,
227		.no_prehashed = 1 },
228		{ .name = "UNKNOWN",
229		.oid = NULL,
230		.id = GNUTLS_PK_UNKNOWN,
231		.curve = GNUTLS_ECC_CURVE_INVALID },
232		{ 0, 0, 0, 0 }
233		};
234
235		#define GNUTLS_PK_LOOP(b) \
236	0	{ \
237	0	const gnutls_pk_entry *p; \
238	0	for (p = pk_algorithms; p->name != NULL; p++) { \
239	0	b; \
240	0	} \
241	0	}
242
243		/**
244		* gnutls_pk_algorithm_get_name:
245		* @algorithm: is a pk algorithm
246		*
247		* Convert a #gnutls_pk_algorithm_t value to a string.
248		*
249		* Returns: a string that contains the name of the specified public
250		* key algorithm, or %NULL.
251		**/
252		const char *gnutls_pk_algorithm_get_name(gnutls_pk_algorithm_t algorithm)
253	0	{
254	0	const char *ret = NULL;
255
256	0	GNUTLS_PK_LOOP(if (p->id == algorithm) {
257	0	ret = p->name;
258	0	break;
259	0	});
260
261	0	return ret;
262	0	}
263
264		/**
265		* gnutls_pk_list:
266		*
267		* Get a list of supported public key algorithms.
268		*
269		* This function is not thread safe.
270		*
271		* Returns: a (0)-terminated list of #gnutls_pk_algorithm_t integers
272		* indicating the available ciphers.
273		*
274		* Since: 2.6.0
275		**/
276		const gnutls_pk_algorithm_t *gnutls_pk_list(void)
277	0	{
278	0	static gnutls_pk_algorithm_t supported_pks[MAX_ALGOS] = { 0 };
279
280	0	if (supported_pks[0] == 0) {
281	0	int i = 0;
282
283	0	GNUTLS_PK_LOOP(
284	0	if (p->id != GNUTLS_PK_UNKNOWN &&
285	0	supported_pks[i > 0 ? (i - 1) : 0] != p->id &&
286	0	_gnutls_pk_exists(p->id)) {
287	0	supported_pks[i++] = p->id;
288	0	});
289	0	supported_pks[i++] = 0;
290	0	}
291
292	0	return supported_pks;
293	0	}
294
295		/**
296		* gnutls_pk_get_id:
297		* @name: is a string containing a public key algorithm name.
298		*
299		* Convert a string to a #gnutls_pk_algorithm_t value. The names are
300		* compared in a case insensitive way. For example,
301		* gnutls_pk_get_id("RSA") will return %GNUTLS_PK_RSA.
302		*
303		* Returns: a #gnutls_pk_algorithm_t id of the specified public key
304		* algorithm string, or %GNUTLS_PK_UNKNOWN on failures.
305		*
306		* Since: 2.6.0
307		**/
308		gnutls_pk_algorithm_t gnutls_pk_get_id(const char *name)
309	0	{
310	0	gnutls_pk_algorithm_t ret = GNUTLS_PK_UNKNOWN;
311	0	const gnutls_pk_entry *p;
312
313	0	for (p = pk_algorithms; p->name != NULL; p++)
314	0	if (name && strcmp(p->name, name) == 0) {
315	0	ret = p->id;
316	0	break;
317	0	}
318
319	0	return ret;
320	0	}
321
322		/**
323		* gnutls_pk_get_name:
324		* @algorithm: is a public key algorithm
325		*
326		* Convert a #gnutls_pk_algorithm_t value to a string.
327		*
328		* Returns: a pointer to a string that contains the name of the
329		* specified public key algorithm, or %NULL.
330		*
331		* Since: 2.6.0
332		**/
333		const char *gnutls_pk_get_name(gnutls_pk_algorithm_t algorithm)
334	0	{
335	0	const char *ret = "Unknown";
336	0	const gnutls_pk_entry *p;
337
338	0	for (p = pk_algorithms; p->name != NULL; p++)
339	0	if (algorithm == p->id) {
340	0	ret = p->name;
341	0	break;
342	0	}
343
344	0	return ret;
345	0	}
346
347		/*-
348		* _gnutls_pk_is_not_prehashed:
349		* @algorithm: is a public key algorithm
350		*
351		* Returns non-zero when the public key algorithm does not support pre-hashed
352		* data.
353		*
354		* Since: 3.6.0
355		**/
356		bool _gnutls_pk_is_not_prehashed(gnutls_pk_algorithm_t algorithm)
357	0	{
358	0	const gnutls_pk_entry *p;
359
360	0	for (p = pk_algorithms; p->name != NULL; p++)
361	0	if (algorithm == p->id) {
362	0	return p->no_prehashed;
363	0	}
364
365	0	return 0;
366	0	}
367
368		/**
369		* gnutls_oid_to_pk:
370		* @oid: is an object identifier
371		*
372		* Converts a textual object identifier to a #gnutls_pk_algorithm_t value.
373		*
374		* Returns: a #gnutls_pk_algorithm_t id of the specified digest
375		* algorithm, or %GNUTLS_PK_UNKNOWN on failure.
376		*
377		* Since: 3.4.3
378		**/
379		gnutls_pk_algorithm_t gnutls_oid_to_pk(const char *oid)
380	0	{
381	0	gnutls_pk_algorithm_t ret = GNUTLS_PK_UNKNOWN;
382	0	const gnutls_pk_entry *p;
383
384	0	for (p = pk_algorithms; p->name != NULL; p++)
385	0	if (p->oid && strcmp(p->oid, oid) == 0) {
386	0	ret = p->id;
387	0	break;
388	0	}
389
390	0	return ret;
391	0	}
392
393		/**
394		* gnutls_pk_get_oid:
395		* @algorithm: is a public key algorithm
396		*
397		* Convert a #gnutls_pk_algorithm_t value to its object identifier string.
398		*
399		* Returns: a pointer to a string that contains the object identifier of the
400		* specified public key algorithm, or %NULL.
401		*
402		* Since: 3.4.3
403		**/
404		const char *gnutls_pk_get_oid(gnutls_pk_algorithm_t algorithm)
405	0	{
406	0	const char *ret = NULL;
407	0	const gnutls_pk_entry *p;
408
409	0	if (algorithm == 0)
410	0	return NULL;
411
412	0	for (p = pk_algorithms; p->name != NULL; p++)
413	0	if (p->id == algorithm) {
414	0	ret = p->oid;
415	0	break;
416	0	}
417
418	0	return ret;
419	0	}
420
421		/*-
422		* _gnutls_oid_to_pk_and_curve:
423		* @oid: is an object identifier
424		*
425		* Convert an OID to a #gnutls_pk_algorithm_t and curve values. If no curve
426		* is applicable, curve will be set GNUTLS_ECC_CURVE_INVALID.
427		*
428		* Returns: a #gnutls_pk_algorithm_t id of the specified digest
429		* algorithm, or %GNUTLS_PK_UNKNOWN on failure.
430		*
431		* Since: 3.6.0
432		-*/
433		gnutls_pk_algorithm_t _gnutls_oid_to_pk_and_curve(const char *oid,
434		gnutls_ecc_curve_t *curve)
435	0	{
436	0	gnutls_pk_algorithm_t ret = GNUTLS_PK_UNKNOWN;
437	0	const gnutls_pk_entry *p;
438
439	0	for (p = pk_algorithms; p->name != NULL; p++)
440	0	if (p->oid && strcmp(p->oid, oid) == 0) {
441	0	ret = p->id;
442	0	if (curve)
443	0	*curve = p->curve;
444	0	break;
445	0	}
446
447	0	if (ret == GNUTLS_PK_UNKNOWN && curve)
448	0	*curve = GNUTLS_ECC_CURVE_INVALID;
449
450	0	return ret;
451	0	}
452
453		/* Returns the encipher type for the given key exchange algorithm.
454		* That one of CIPHER_ENCRYPT, CIPHER_SIGN, CIPHER_IGN.
455		*
456		* ex. GNUTLS_KX_RSA requires a certificate able to encrypt... so returns CIPHER_ENCRYPT.
457		*/
458		enum encipher_type _gnutls_kx_encipher_type(gnutls_kx_algorithm_t kx_algorithm)
459	0	{
460	0	int ret = CIPHER_IGN;
461	0	GNUTLS_PK_MAP_ALG_LOOP(ret = p->encipher_type)
462	0	return ret;
463	0	}
464
465		bool _gnutls_pk_are_compat(gnutls_pk_algorithm_t pk1, gnutls_pk_algorithm_t pk2)
466	0	{
467	0	if (pk1 == pk2)
468	0	return 1;
469
470	0	if (GNUTLS_PK_IS_RSA(pk1) && GNUTLS_PK_IS_RSA(pk2))
471	0	return 1;
472
473	0	return 0;
474	0	}