/src/openssl/crypto/dh/dh_lib.c
Line | Count | Source (jump to first uncovered line) |
1 | | /* crypto/dh/dh_lib.c */ |
2 | | /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) |
3 | | * All rights reserved. |
4 | | * |
5 | | * This package is an SSL implementation written |
6 | | * by Eric Young (eay@cryptsoft.com). |
7 | | * The implementation was written so as to conform with Netscapes SSL. |
8 | | * |
9 | | * This library is free for commercial and non-commercial use as long as |
10 | | * the following conditions are aheared to. The following conditions |
11 | | * apply to all code found in this distribution, be it the RC4, RSA, |
12 | | * lhash, DES, etc., code; not just the SSL code. The SSL documentation |
13 | | * included with this distribution is covered by the same copyright terms |
14 | | * except that the holder is Tim Hudson (tjh@cryptsoft.com). |
15 | | * |
16 | | * Copyright remains Eric Young's, and as such any Copyright notices in |
17 | | * the code are not to be removed. |
18 | | * If this package is used in a product, Eric Young should be given attribution |
19 | | * as the author of the parts of the library used. |
20 | | * This can be in the form of a textual message at program startup or |
21 | | * in documentation (online or textual) provided with the package. |
22 | | * |
23 | | * Redistribution and use in source and binary forms, with or without |
24 | | * modification, are permitted provided that the following conditions |
25 | | * are met: |
26 | | * 1. Redistributions of source code must retain the copyright |
27 | | * notice, this list of conditions and the following disclaimer. |
28 | | * 2. Redistributions in binary form must reproduce the above copyright |
29 | | * notice, this list of conditions and the following disclaimer in the |
30 | | * documentation and/or other materials provided with the distribution. |
31 | | * 3. All advertising materials mentioning features or use of this software |
32 | | * must display the following acknowledgement: |
33 | | * "This product includes cryptographic software written by |
34 | | * Eric Young (eay@cryptsoft.com)" |
35 | | * The word 'cryptographic' can be left out if the rouines from the library |
36 | | * being used are not cryptographic related :-). |
37 | | * 4. If you include any Windows specific code (or a derivative thereof) from |
38 | | * the apps directory (application code) you must include an acknowledgement: |
39 | | * "This product includes software written by Tim Hudson (tjh@cryptsoft.com)" |
40 | | * |
41 | | * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND |
42 | | * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE |
43 | | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE |
44 | | * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE |
45 | | * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL |
46 | | * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS |
47 | | * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) |
48 | | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT |
49 | | * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY |
50 | | * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF |
51 | | * SUCH DAMAGE. |
52 | | * |
53 | | * The licence and distribution terms for any publically available version or |
54 | | * derivative of this code cannot be changed. i.e. this code cannot simply be |
55 | | * copied and put under another distribution licence |
56 | | * [including the GNU Public Licence.] |
57 | | */ |
58 | | |
59 | | #include <stdio.h> |
60 | | #include "cryptlib.h" |
61 | | #include <openssl/bn.h> |
62 | | #include <openssl/dh.h> |
63 | | #ifndef OPENSSL_NO_ENGINE |
64 | | # include <openssl/engine.h> |
65 | | #endif |
66 | | |
67 | | #ifdef OPENSSL_FIPS |
68 | | # include <openssl/fips.h> |
69 | | #endif |
70 | | |
71 | | const char DH_version[] = "Diffie-Hellman" OPENSSL_VERSION_PTEXT; |
72 | | |
73 | | static const DH_METHOD *default_DH_method = NULL; |
74 | | |
75 | | void DH_set_default_method(const DH_METHOD *meth) |
76 | 0 | { |
77 | 0 | default_DH_method = meth; |
78 | 0 | } |
79 | | |
80 | | const DH_METHOD *DH_get_default_method(void) |
81 | 0 | { |
82 | 0 | if (!default_DH_method) { |
83 | | #ifdef OPENSSL_FIPS |
84 | | if (FIPS_mode()) |
85 | | return FIPS_dh_openssl(); |
86 | | else |
87 | | return DH_OpenSSL(); |
88 | | #else |
89 | 0 | default_DH_method = DH_OpenSSL(); |
90 | 0 | #endif |
91 | 0 | } |
92 | 0 | return default_DH_method; |
93 | 0 | } |
94 | | |
95 | | int DH_set_method(DH *dh, const DH_METHOD *meth) |
96 | 0 | { |
97 | | /* |
98 | | * NB: The caller is specifically setting a method, so it's not up to us |
99 | | * to deal with which ENGINE it comes from. |
100 | | */ |
101 | 0 | const DH_METHOD *mtmp; |
102 | 0 | mtmp = dh->meth; |
103 | 0 | if (mtmp->finish) |
104 | 0 | mtmp->finish(dh); |
105 | 0 | #ifndef OPENSSL_NO_ENGINE |
106 | 0 | if (dh->engine) { |
107 | 0 | ENGINE_finish(dh->engine); |
108 | 0 | dh->engine = NULL; |
109 | 0 | } |
110 | 0 | #endif |
111 | 0 | dh->meth = meth; |
112 | 0 | if (meth->init) |
113 | 0 | meth->init(dh); |
114 | 0 | return 1; |
115 | 0 | } |
116 | | |
117 | | DH *DH_new(void) |
118 | 0 | { |
119 | 0 | return DH_new_method(NULL); |
120 | 0 | } |
121 | | |
122 | | DH *DH_new_method(ENGINE *engine) |
123 | 0 | { |
124 | 0 | DH *ret; |
125 | |
|
126 | 0 | ret = (DH *)OPENSSL_malloc(sizeof(DH)); |
127 | 0 | if (ret == NULL) { |
128 | 0 | DHerr(DH_F_DH_NEW_METHOD, ERR_R_MALLOC_FAILURE); |
129 | 0 | return (NULL); |
130 | 0 | } |
131 | | |
132 | 0 | ret->meth = DH_get_default_method(); |
133 | 0 | #ifndef OPENSSL_NO_ENGINE |
134 | 0 | if (engine) { |
135 | 0 | if (!ENGINE_init(engine)) { |
136 | 0 | DHerr(DH_F_DH_NEW_METHOD, ERR_R_ENGINE_LIB); |
137 | 0 | OPENSSL_free(ret); |
138 | 0 | return NULL; |
139 | 0 | } |
140 | 0 | ret->engine = engine; |
141 | 0 | } else |
142 | 0 | ret->engine = ENGINE_get_default_DH(); |
143 | 0 | if (ret->engine) { |
144 | 0 | ret->meth = ENGINE_get_DH(ret->engine); |
145 | 0 | if (!ret->meth) { |
146 | 0 | DHerr(DH_F_DH_NEW_METHOD, ERR_R_ENGINE_LIB); |
147 | 0 | ENGINE_finish(ret->engine); |
148 | 0 | OPENSSL_free(ret); |
149 | 0 | return NULL; |
150 | 0 | } |
151 | 0 | } |
152 | 0 | #endif |
153 | | |
154 | 0 | ret->pad = 0; |
155 | 0 | ret->version = 0; |
156 | 0 | ret->p = NULL; |
157 | 0 | ret->g = NULL; |
158 | 0 | ret->length = 0; |
159 | 0 | ret->pub_key = NULL; |
160 | 0 | ret->priv_key = NULL; |
161 | 0 | ret->q = NULL; |
162 | 0 | ret->j = NULL; |
163 | 0 | ret->seed = NULL; |
164 | 0 | ret->seedlen = 0; |
165 | 0 | ret->counter = NULL; |
166 | 0 | ret->method_mont_p = NULL; |
167 | 0 | ret->references = 1; |
168 | 0 | ret->flags = ret->meth->flags & ~DH_FLAG_NON_FIPS_ALLOW; |
169 | 0 | CRYPTO_new_ex_data(CRYPTO_EX_INDEX_DH, ret, &ret->ex_data); |
170 | 0 | if ((ret->meth->init != NULL) && !ret->meth->init(ret)) { |
171 | 0 | #ifndef OPENSSL_NO_ENGINE |
172 | 0 | if (ret->engine) |
173 | 0 | ENGINE_finish(ret->engine); |
174 | 0 | #endif |
175 | 0 | CRYPTO_free_ex_data(CRYPTO_EX_INDEX_DH, ret, &ret->ex_data); |
176 | 0 | OPENSSL_free(ret); |
177 | 0 | ret = NULL; |
178 | 0 | } |
179 | 0 | return (ret); |
180 | 0 | } |
181 | | |
182 | | void DH_free(DH *r) |
183 | 0 | { |
184 | 0 | int i; |
185 | 0 | if (r == NULL) |
186 | 0 | return; |
187 | 0 | i = CRYPTO_add(&r->references, -1, CRYPTO_LOCK_DH); |
188 | | #ifdef REF_PRINT |
189 | | REF_PRINT("DH", r); |
190 | | #endif |
191 | 0 | if (i > 0) |
192 | 0 | return; |
193 | | #ifdef REF_CHECK |
194 | | if (i < 0) { |
195 | | fprintf(stderr, "DH_free, bad reference count\n"); |
196 | | abort(); |
197 | | } |
198 | | #endif |
199 | | |
200 | 0 | if (r->meth->finish) |
201 | 0 | r->meth->finish(r); |
202 | 0 | #ifndef OPENSSL_NO_ENGINE |
203 | 0 | if (r->engine) |
204 | 0 | ENGINE_finish(r->engine); |
205 | 0 | #endif |
206 | |
|
207 | 0 | CRYPTO_free_ex_data(CRYPTO_EX_INDEX_DH, r, &r->ex_data); |
208 | |
|
209 | 0 | if (r->p != NULL) |
210 | 0 | BN_clear_free(r->p); |
211 | 0 | if (r->g != NULL) |
212 | 0 | BN_clear_free(r->g); |
213 | 0 | if (r->q != NULL) |
214 | 0 | BN_clear_free(r->q); |
215 | 0 | if (r->j != NULL) |
216 | 0 | BN_clear_free(r->j); |
217 | 0 | if (r->seed) |
218 | 0 | OPENSSL_free(r->seed); |
219 | 0 | if (r->counter != NULL) |
220 | 0 | BN_clear_free(r->counter); |
221 | 0 | if (r->pub_key != NULL) |
222 | 0 | BN_clear_free(r->pub_key); |
223 | 0 | if (r->priv_key != NULL) |
224 | 0 | BN_clear_free(r->priv_key); |
225 | 0 | OPENSSL_free(r); |
226 | 0 | } |
227 | | |
228 | | int DH_up_ref(DH *r) |
229 | 0 | { |
230 | 0 | int i = CRYPTO_add(&r->references, 1, CRYPTO_LOCK_DH); |
231 | | #ifdef REF_PRINT |
232 | | REF_PRINT("DH", r); |
233 | | #endif |
234 | | #ifdef REF_CHECK |
235 | | if (i < 2) { |
236 | | fprintf(stderr, "DH_up, bad reference count\n"); |
237 | | abort(); |
238 | | } |
239 | | #endif |
240 | 0 | return ((i > 1) ? 1 : 0); |
241 | 0 | } |
242 | | |
243 | | int DH_get_ex_new_index(long argl, void *argp, CRYPTO_EX_new *new_func, |
244 | | CRYPTO_EX_dup *dup_func, CRYPTO_EX_free *free_func) |
245 | 0 | { |
246 | 0 | return CRYPTO_get_ex_new_index(CRYPTO_EX_INDEX_DH, argl, argp, |
247 | 0 | new_func, dup_func, free_func); |
248 | 0 | } |
249 | | |
250 | | int DH_set_ex_data(DH *d, int idx, void *arg) |
251 | 0 | { |
252 | 0 | return (CRYPTO_set_ex_data(&d->ex_data, idx, arg)); |
253 | 0 | } |
254 | | |
255 | | void *DH_get_ex_data(DH *d, int idx) |
256 | 0 | { |
257 | 0 | return (CRYPTO_get_ex_data(&d->ex_data, idx)); |
258 | 0 | } |
259 | | |
260 | | int DH_size(const DH *dh) |
261 | 0 | { |
262 | 0 | return (BN_num_bytes(dh->p)); |
263 | 0 | } |