/src/openssl/crypto/evp/m_sigver.c

Source (jump to first uncovered line)
/* m_sigver.c */
/*
 * Written by Dr Stephen N Henson (steve@openssl.org) for the OpenSSL project
 * 2006.
 */
/* ====================================================================
 * Copyright (c) 2006,2007 The OpenSSL Project.  All rights reserved.
 *
 * Redistribution and use in source and binary forms, with or without
 * modification, are permitted provided that the following conditions
 * are met:
 *
 * 1. Redistributions of source code must retain the above copyright
 *    notice, this list of conditions and the following disclaimer.
 *
 * 2. Redistributions in binary form must reproduce the above copyright
 *    notice, this list of conditions and the following disclaimer in
 *    the documentation and/or other materials provided with the
 *    distribution.
 *
 * 3. All advertising materials mentioning features or use of this
 *    software must display the following acknowledgment:
 *    "This product includes software developed by the OpenSSL Project
 *    for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)"
 *
 * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to
 *    endorse or promote products derived from this software without
 *    prior written permission. For written permission, please contact
 *    licensing@OpenSSL.org.
 *
 * 5. Products derived from this software may not be called "OpenSSL"
 *    nor may "OpenSSL" appear in their names without prior written
 *    permission of the OpenSSL Project.
 *
 * 6. Redistributions of any form whatsoever must retain the following
 *    acknowledgment:
 *    "This product includes software developed by the OpenSSL Project
 *    for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)"
 *
 * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY
 * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
 * PURPOSE ARE DISCLAIMED.  IN NO EVENT SHALL THE OpenSSL PROJECT OR
 * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
 * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
 * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
 * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
 * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
 * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
 * OF THE POSSIBILITY OF SUCH DAMAGE.
 * ====================================================================
 *
 * This product includes cryptographic software written by Eric Young
 * (eay@cryptsoft.com).  This product includes software written by Tim
 * Hudson (tjh@cryptsoft.com).
 *
 */

#include <stdio.h>
#include "cryptlib.h"
#include <openssl/evp.h>
#include <openssl/objects.h>
#include <openssl/x509.h>
#include "evp_locl.h"

static int do_sigver_init(EVP_MD_CTX *ctx, EVP_PKEY_CTX **pctx,
                          const EVP_MD *type, ENGINE *e, EVP_PKEY *pkey,
                          int ver)
{
    if (ctx->pctx == NULL)
        ctx->pctx = EVP_PKEY_CTX_new(pkey, e);
    if (ctx->pctx == NULL)
        return 0;

    if (!(ctx->pctx->pmeth->flags & EVP_PKEY_FLAG_SIGCTX_CUSTOM)) {

        if (type == NULL) {
            int def_nid;
            if (EVP_PKEY_get_default_digest_nid(pkey, &def_nid) > 0)
                type = EVP_get_digestbynid(def_nid);
        }

        if (type == NULL) {
            EVPerr(EVP_F_DO_SIGVER_INIT, EVP_R_NO_DEFAULT_DIGEST);
            return 0;
        }
    }

    if (ver) {
        if (ctx->pctx->pmeth->verifyctx_init) {
            if (ctx->pctx->pmeth->verifyctx_init(ctx->pctx, ctx) <= 0)
                return 0;
            ctx->pctx->operation = EVP_PKEY_OP_VERIFYCTX;
        } else if (EVP_PKEY_verify_init(ctx->pctx) <= 0)
            return 0;
    } else {
        if (ctx->pctx->pmeth->signctx_init) {
            if (ctx->pctx->pmeth->signctx_init(ctx->pctx, ctx) <= 0)
                return 0;
            ctx->pctx->operation = EVP_PKEY_OP_SIGNCTX;
        } else if (EVP_PKEY_sign_init(ctx->pctx) <= 0)
            return 0;
    }
    if (EVP_PKEY_CTX_set_signature_md(ctx->pctx, type) <= 0)
        return 0;
    if (pctx)
        *pctx = ctx->pctx;
    if (ctx->pctx->pmeth->flags & EVP_PKEY_FLAG_SIGCTX_CUSTOM)
        return 1;
    if (!EVP_DigestInit_ex(ctx, type, e))
        return 0;
    return 1;
}

int EVP_DigestSignInit(EVP_MD_CTX *ctx, EVP_PKEY_CTX **pctx,
                       const EVP_MD *type, ENGINE *e, EVP_PKEY *pkey)
{
    return do_sigver_init(ctx, pctx, type, e, pkey, 0);
}

int EVP_DigestVerifyInit(EVP_MD_CTX *ctx, EVP_PKEY_CTX **pctx,
                         const EVP_MD *type, ENGINE *e, EVP_PKEY *pkey)
{
    return do_sigver_init(ctx, pctx, type, e, pkey, 1);
}

int EVP_DigestSignFinal(EVP_MD_CTX *ctx, unsigned char *sigret,
                        size_t *siglen)
{
    int sctx, r = 0;
    EVP_PKEY_CTX *pctx = ctx->pctx;
    if (pctx->pmeth->flags & EVP_PKEY_FLAG_SIGCTX_CUSTOM) {
        EVP_PKEY_CTX *dctx;
        if (!sigret)
            return pctx->pmeth->signctx(pctx, sigret, siglen, ctx);
        dctx = EVP_PKEY_CTX_dup(ctx->pctx);
        if (!dctx)
            return 0;
        r = dctx->pmeth->signctx(dctx, sigret, siglen, ctx);
        EVP_PKEY_CTX_free(dctx);
        return r;
    }
    if (pctx->pmeth->signctx)
        sctx = 1;
    else
        sctx = 0;
    if (sigret) {
        EVP_MD_CTX tmp_ctx;
        unsigned char md[EVP_MAX_MD_SIZE];
        unsigned int mdlen;
        EVP_MD_CTX_init(&tmp_ctx);
        if (!EVP_MD_CTX_copy_ex(&tmp_ctx, ctx))
            return 0;
        if (sctx)
            r = tmp_ctx.pctx->pmeth->signctx(tmp_ctx.pctx,
                                             sigret, siglen, &tmp_ctx);
        else
            r = EVP_DigestFinal_ex(&tmp_ctx, md, &mdlen);
        EVP_MD_CTX_cleanup(&tmp_ctx);
        if (sctx || !r)
            return r;
        if (EVP_PKEY_sign(ctx->pctx, sigret, siglen, md, mdlen) <= 0)
            return 0;
    } else {
        if (sctx) {
            if (pctx->pmeth->signctx(pctx, sigret, siglen, ctx) <= 0)
                return 0;
        } else {
            int s = EVP_MD_size(ctx->digest);
            if (s < 0 || EVP_PKEY_sign(pctx, sigret, siglen, NULL, s) <= 0)
                return 0;
        }
    }
    return 1;
}

int EVP_DigestVerifyFinal(EVP_MD_CTX *ctx, const unsigned char *sig,
                          size_t siglen)
{
    EVP_MD_CTX tmp_ctx;
    unsigned char md[EVP_MAX_MD_SIZE];
    int r;
    unsigned int mdlen;
    int vctx;

    if (ctx->pctx->pmeth->verifyctx)
        vctx = 1;
    else
        vctx = 0;
    EVP_MD_CTX_init(&tmp_ctx);
    if (!EVP_MD_CTX_copy_ex(&tmp_ctx, ctx))
        return -1;
    if (vctx) {
        r = tmp_ctx.pctx->pmeth->verifyctx(tmp_ctx.pctx,
                                           sig, siglen, &tmp_ctx);
    } else
        r = EVP_DigestFinal_ex(&tmp_ctx, md, &mdlen);
    EVP_MD_CTX_cleanup(&tmp_ctx);
    if (vctx || !r)
        return r;
    return EVP_PKEY_verify(ctx->pctx, sig, siglen, md, mdlen);
}

Coverage Report

Created: 2022-11-30 06:20

Line	Count	Source (jump to first uncovered line)
1		/* m_sigver.c */
2		/*
3		* Written by Dr Stephen N Henson (steve@openssl.org) for the OpenSSL project
4		* 2006.
5		*/
6		/* ====================================================================
7		* Copyright (c) 2006,2007 The OpenSSL Project. All rights reserved.
8		*
9		* Redistribution and use in source and binary forms, with or without
10		* modification, are permitted provided that the following conditions
11		* are met:
12		*
13		* 1. Redistributions of source code must retain the above copyright
14		* notice, this list of conditions and the following disclaimer.
15		*
16		* 2. Redistributions in binary form must reproduce the above copyright
17		* notice, this list of conditions and the following disclaimer in
18		* the documentation and/or other materials provided with the
19		* distribution.
20		*
21		* 3. All advertising materials mentioning features or use of this
22		* software must display the following acknowledgment:
23		* "This product includes software developed by the OpenSSL Project
24		* for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)"
25		*
26		* 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to
27		* endorse or promote products derived from this software without
28		* prior written permission. For written permission, please contact
29		* licensing@OpenSSL.org.
30		*
31		* 5. Products derived from this software may not be called "OpenSSL"
32		* nor may "OpenSSL" appear in their names without prior written
33		* permission of the OpenSSL Project.
34		*
35		* 6. Redistributions of any form whatsoever must retain the following
36		* acknowledgment:
37		* "This product includes software developed by the OpenSSL Project
38		* for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)"
39		*
40		* THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY
41		* EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
42		* IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
43		* PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR
44		* ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
45		* SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
46		* NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
47		* LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
48		* HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
49		* STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
50		* ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
51		* OF THE POSSIBILITY OF SUCH DAMAGE.
52		* ====================================================================
53		*
54		* This product includes cryptographic software written by Eric Young
55		* (eay@cryptsoft.com). This product includes software written by Tim
56		* Hudson (tjh@cryptsoft.com).
57		*
58		*/
59
60		#include <stdio.h>
61		#include "cryptlib.h"
62		#include <openssl/evp.h>
63		#include <openssl/objects.h>
64		#include <openssl/x509.h>
65		#include "evp_locl.h"
66
67		static int do_sigver_init(EVP_MD_CTX ctx, EVP_PKEY_CTX *pctx,
68		const EVP_MD type, ENGINE e, EVP_PKEY *pkey,
69		int ver)
70	0	{
71	0	if (ctx->pctx == NULL)
72	0	ctx->pctx = EVP_PKEY_CTX_new(pkey, e);
73	0	if (ctx->pctx == NULL)
74	0	return 0;
75
76	0	if (!(ctx->pctx->pmeth->flags & EVP_PKEY_FLAG_SIGCTX_CUSTOM)) {
77
78	0	if (type == NULL) {
79	0	int def_nid;
80	0	if (EVP_PKEY_get_default_digest_nid(pkey, &def_nid) > 0)
81	0	type = EVP_get_digestbynid(def_nid);
82	0	}
83
84	0	if (type == NULL) {
85	0	EVPerr(EVP_F_DO_SIGVER_INIT, EVP_R_NO_DEFAULT_DIGEST);
86	0	return 0;
87	0	}
88	0	}
89
90	0	if (ver) {
91	0	if (ctx->pctx->pmeth->verifyctx_init) {
92	0	if (ctx->pctx->pmeth->verifyctx_init(ctx->pctx, ctx) <= 0)
93	0	return 0;
94	0	ctx->pctx->operation = EVP_PKEY_OP_VERIFYCTX;
95	0	} else if (EVP_PKEY_verify_init(ctx->pctx) <= 0)
96	0	return 0;
97	0	} else {
98	0	if (ctx->pctx->pmeth->signctx_init) {
99	0	if (ctx->pctx->pmeth->signctx_init(ctx->pctx, ctx) <= 0)
100	0	return 0;
101	0	ctx->pctx->operation = EVP_PKEY_OP_SIGNCTX;
102	0	} else if (EVP_PKEY_sign_init(ctx->pctx) <= 0)
103	0	return 0;
104	0	}
105	0	if (EVP_PKEY_CTX_set_signature_md(ctx->pctx, type) <= 0)
106	0	return 0;
107	0	if (pctx)
108	0	*pctx = ctx->pctx;
109	0	if (ctx->pctx->pmeth->flags & EVP_PKEY_FLAG_SIGCTX_CUSTOM)
110	0	return 1;
111	0	if (!EVP_DigestInit_ex(ctx, type, e))
112	0	return 0;
113	0	return 1;
114	0	}
115
116		int EVP_DigestSignInit(EVP_MD_CTX ctx, EVP_PKEY_CTX *pctx,
117		const EVP_MD type, ENGINE e, EVP_PKEY *pkey)
118	0	{
119	0	return do_sigver_init(ctx, pctx, type, e, pkey, 0);
120	0	}
121
122		int EVP_DigestVerifyInit(EVP_MD_CTX ctx, EVP_PKEY_CTX *pctx,
123		const EVP_MD type, ENGINE e, EVP_PKEY *pkey)
124	0	{
125	0	return do_sigver_init(ctx, pctx, type, e, pkey, 1);
126	0	}
127
128		int EVP_DigestSignFinal(EVP_MD_CTX ctx, unsigned char sigret,
129		size_t *siglen)
130	0	{
131	0	int sctx, r = 0;
132	0	EVP_PKEY_CTX *pctx = ctx->pctx;
133	0	if (pctx->pmeth->flags & EVP_PKEY_FLAG_SIGCTX_CUSTOM) {
134	0	EVP_PKEY_CTX *dctx;
135	0	if (!sigret)
136	0	return pctx->pmeth->signctx(pctx, sigret, siglen, ctx);
137	0	dctx = EVP_PKEY_CTX_dup(ctx->pctx);
138	0	if (!dctx)
139	0	return 0;
140	0	r = dctx->pmeth->signctx(dctx, sigret, siglen, ctx);
141	0	EVP_PKEY_CTX_free(dctx);
142	0	return r;
143	0	}
144	0	if (pctx->pmeth->signctx)
145	0	sctx = 1;
146	0	else
147	0	sctx = 0;
148	0	if (sigret) {
149	0	EVP_MD_CTX tmp_ctx;
150	0	unsigned char md[EVP_MAX_MD_SIZE];
151	0	unsigned int mdlen;
152	0	EVP_MD_CTX_init(&tmp_ctx);
153	0	if (!EVP_MD_CTX_copy_ex(&tmp_ctx, ctx))
154	0	return 0;
155	0	if (sctx)
156	0	r = tmp_ctx.pctx->pmeth->signctx(tmp_ctx.pctx,
157	0	sigret, siglen, &tmp_ctx);
158	0	else
159	0	r = EVP_DigestFinal_ex(&tmp_ctx, md, &mdlen);
160	0	EVP_MD_CTX_cleanup(&tmp_ctx);
161	0	if (sctx \|\| !r)
162	0	return r;
163	0	if (EVP_PKEY_sign(ctx->pctx, sigret, siglen, md, mdlen) <= 0)
164	0	return 0;
165	0	} else {
166	0	if (sctx) {
167	0	if (pctx->pmeth->signctx(pctx, sigret, siglen, ctx) <= 0)
168	0	return 0;
169	0	} else {
170	0	int s = EVP_MD_size(ctx->digest);
171	0	if (s < 0 \|\| EVP_PKEY_sign(pctx, sigret, siglen, NULL, s) <= 0)
172	0	return 0;
173	0	}
174	0	}
175	0	return 1;
176	0	}
177
178		int EVP_DigestVerifyFinal(EVP_MD_CTX ctx, const unsigned char sig,
179		size_t siglen)
180	0	{
181	0	EVP_MD_CTX tmp_ctx;
182	0	unsigned char md[EVP_MAX_MD_SIZE];
183	0	int r;
184	0	unsigned int mdlen;
185	0	int vctx;
186
187	0	if (ctx->pctx->pmeth->verifyctx)
188	0	vctx = 1;
189	0	else
190	0	vctx = 0;
191	0	EVP_MD_CTX_init(&tmp_ctx);
192	0	if (!EVP_MD_CTX_copy_ex(&tmp_ctx, ctx))
193	0	return -1;
194	0	if (vctx) {
195	0	r = tmp_ctx.pctx->pmeth->verifyctx(tmp_ctx.pctx,
196	0	sig, siglen, &tmp_ctx);
197	0	} else
198	0	r = EVP_DigestFinal_ex(&tmp_ctx, md, &mdlen);
199	0	EVP_MD_CTX_cleanup(&tmp_ctx);
200	0	if (vctx \|\| !r)
201	0	return r;
202	0	return EVP_PKEY_verify(ctx->pctx, sig, siglen, md, mdlen);
203	0	}