/src/openssl/crypto/dh/dh_group_params.c

Source (jump to first uncovered line)
/*
 * Copyright 2017-2022 The OpenSSL Project Authors. All Rights Reserved.
 *
 * Licensed under the Apache License 2.0 (the "License").  You may not use
 * this file except in compliance with the License.  You can obtain a copy
 * in the file LICENSE in the source distribution or at
 * https://www.openssl.org/source/license.html
 */

/* DH parameters from RFC7919 and RFC3526 */

/*
 * DH low level APIs are deprecated for public use, but still ok for
 * internal use.
 */
#include "internal/deprecated.h"

#include <stdio.h>
#include "internal/cryptlib.h"
#include "internal/ffc.h"
#include "dh_local.h"
#include <openssl/bn.h>
#include <openssl/objects.h>
#include "internal/nelem.h"
#include "crypto/dh.h"

static DH *dh_param_init(OSSL_LIB_CTX *libctx, const DH_NAMED_GROUP *group)
{
    DH *dh = ossl_dh_new_ex(libctx);

    if (dh == NULL)
        return NULL;

    ossl_ffc_named_group_set(&dh->params, group);
    dh->params.nid = ossl_ffc_named_group_get_uid(group);
    dh->dirty_cnt++;
    return dh;
}

DH *ossl_dh_new_by_nid_ex(OSSL_LIB_CTX *libctx, int nid)
{
    const DH_NAMED_GROUP *group;

    if ((group = ossl_ffc_uid_to_dh_named_group(nid)) != NULL)
        return dh_param_init(libctx, group);

    ERR_raise(ERR_LIB_DH, DH_R_INVALID_PARAMETER_NID);
    return NULL;
}

DH *DH_new_by_nid(int nid)
{
    return ossl_dh_new_by_nid_ex(NULL, nid);
}

void ossl_dh_cache_named_group(DH *dh)
{
    const DH_NAMED_GROUP *group;

    if (dh == NULL)
        return;

    dh->params.nid = NID_undef; /* flush cached value */

    /* Exit if p or g is not set */
    if (dh->params.p == NULL
        || dh->params.g == NULL)
        return;

    if ((group = ossl_ffc_numbers_to_dh_named_group(dh->params.p,
                                                    dh->params.q,
                                                    dh->params.g)) != NULL) {
        if (dh->params.q == NULL)
            dh->params.q = (BIGNUM *)ossl_ffc_named_group_get_q(group);
        /* cache the nid and default key length */
        dh->params.nid = ossl_ffc_named_group_get_uid(group);
        dh->params.keylength = ossl_ffc_named_group_get_keylength(group);
        dh->dirty_cnt++;
    }
}

int ossl_dh_is_named_safe_prime_group(const DH *dh)
{
    int id = DH_get_nid(dh);

    /*
     * Exclude RFC5114 groups (id = 1..3) since they do not have
     * q = (p - 1) / 2
     */
    return (id > 3);
}

int DH_get_nid(const DH *dh)
{
    if (dh == NULL)
        return NID_undef;

    return dh->params.nid;
}

Line	Count	Source (jump to first uncovered line)
1		/*
2		* Copyright 2017-2022 The OpenSSL Project Authors. All Rights Reserved.
3		*
4		* Licensed under the Apache License 2.0 (the "License"). You may not use
5		* this file except in compliance with the License. You can obtain a copy
6		* in the file LICENSE in the source distribution or at
7		* https://www.openssl.org/source/license.html
8		*/
9
10		/* DH parameters from RFC7919 and RFC3526 */
11
12		/*
13		* DH low level APIs are deprecated for public use, but still ok for
14		* internal use.
15		*/
16		#include "internal/deprecated.h"
17
18		#include <stdio.h>
19		#include "internal/cryptlib.h"
20		#include "internal/ffc.h"
21		#include "dh_local.h"
22		#include <openssl/bn.h>
23		#include <openssl/objects.h>
24		#include "internal/nelem.h"
25		#include "crypto/dh.h"
26
27		static DH dh_param_init(OSSL_LIB_CTX libctx, const DH_NAMED_GROUP *group)
28	0	{
29	0	DH *dh = ossl_dh_new_ex(libctx);
30
31	0	if (dh == NULL)
32	0	return NULL;
33
34	0	ossl_ffc_named_group_set(&dh->params, group);
35	0	dh->params.nid = ossl_ffc_named_group_get_uid(group);
36	0	dh->dirty_cnt++;
37	0	return dh;
38	0	}
39
40		DH ossl_dh_new_by_nid_ex(OSSL_LIB_CTX libctx, int nid)
41	0	{
42	0	const DH_NAMED_GROUP *group;
43
44	0	if ((group = ossl_ffc_uid_to_dh_named_group(nid)) != NULL)
45	0	return dh_param_init(libctx, group);
46
47	0	ERR_raise(ERR_LIB_DH, DH_R_INVALID_PARAMETER_NID);
48	0	return NULL;
49	0	}
50
51		DH *DH_new_by_nid(int nid)
52	0	{
53	0	return ossl_dh_new_by_nid_ex(NULL, nid);
54	0	}
55
56		void ossl_dh_cache_named_group(DH *dh)
57	0	{
58	0	const DH_NAMED_GROUP *group;
59
60	0	if (dh == NULL)
61	0	return;
62
63	0	dh->params.nid = NID_undef; /* flush cached value */
64
65		/* Exit if p or g is not set */
66	0	if (dh->params.p == NULL
67	0	\|\| dh->params.g == NULL)
68	0	return;
69
70	0	if ((group = ossl_ffc_numbers_to_dh_named_group(dh->params.p,
71	0	dh->params.q,
72	0	dh->params.g)) != NULL) {
73	0	if (dh->params.q == NULL)
74	0	dh->params.q = (BIGNUM *)ossl_ffc_named_group_get_q(group);
75		/* cache the nid and default key length */
76	0	dh->params.nid = ossl_ffc_named_group_get_uid(group);
77	0	dh->params.keylength = ossl_ffc_named_group_get_keylength(group);
78	0	dh->dirty_cnt++;
79	0	}
80	0	}
81
82		int ossl_dh_is_named_safe_prime_group(const DH *dh)
83	0	{
84	0	int id = DH_get_nid(dh);
85
86		/*
87		* Exclude RFC5114 groups (id = 1..3) since they do not have
88		* q = (p - 1) / 2
89		*/
90	0	return (id > 3);
91	0	}
92
93		int DH_get_nid(const DH *dh)
94	0	{
95	0	if (dh == NULL)
96	0	return NID_undef;
97
98	0	return dh->params.nid;
99	0	}

Coverage Report

Created: 2025-06-13 06:36