aboutsummaryrefslogtreecommitdiffstats
path: root/vespalib/src/vespa/vespalib/crypto/private_key.h
diff options
context:
space:
mode:
Diffstat (limited to 'vespalib/src/vespa/vespalib/crypto/private_key.h')
-rw-r--r--vespalib/src/vespa/vespalib/crypto/private_key.h34
1 files changed, 34 insertions, 0 deletions
diff --git a/vespalib/src/vespa/vespalib/crypto/private_key.h b/vespalib/src/vespa/vespalib/crypto/private_key.h
new file mode 100644
index 00000000000..7ac5c31502c
--- /dev/null
+++ b/vespalib/src/vespa/vespalib/crypto/private_key.h
@@ -0,0 +1,34 @@
+// Copyright 2020 Oath Inc. Licensed under the terms of the Apache 2.0 license. See LICENSE in the project root.
+#pragma once
+
+#include <vespa/vespalib/stllike/string.h>
+#include <memory>
+
+namespace vespalib::crypto {
+
+/*
+ * Represents an asymmetric cryptographic private key.
+ *
+ * Can only be used for private/public key crypto, not for secret key (e.g. AES) crypto.
+ * Currently only supports generating EC keys on the standard P-256 curve.
+ */
+class PrivateKey {
+public:
+ enum class Type {
+ EC,
+ RSA // TODO implement support..!
+ };
+
+ virtual ~PrivateKey() = default;
+
+ virtual Type type() const noexcept = 0;
+ // TODO should have a wrapper for this that takes care to securely erase
+ // string memory on destruction.
+ virtual vespalib::string private_to_pem() const = 0;
+
+ static std::shared_ptr<PrivateKey> generate_p256_ec_key();
+protected:
+ PrivateKey() = default;
+};
+
+}