/src/openssl36/providers/implementations/signature/slh_dsa_sig.c
Line | Count | Source |
1 | | /* |
2 | | * Copyright 2024-2025 The OpenSSL Project Authors. All Rights Reserved. |
3 | | * |
4 | | * Licensed under the Apache License 2.0 (the "License"). You may not use |
5 | | * this file except in compliance with the License. You can obtain a copy |
6 | | * in the file LICENSE in the source distribution or at |
7 | | * https://www.openssl.org/source/license.html |
8 | | */ |
9 | | /* clang-format off */ |
10 | | |
11 | | /* clang-format on */ |
12 | | |
13 | | #include <openssl/core_names.h> |
14 | | #include <openssl/err.h> |
15 | | #include <openssl/rand.h> |
16 | | #include <openssl/proverr.h> |
17 | | #include "prov/implementations.h" |
18 | | #include "prov/providercommon.h" |
19 | | #include "prov/provider_ctx.h" |
20 | | #include "prov/der_slh_dsa.h" |
21 | | #include "crypto/slh_dsa.h" |
22 | | #include "internal/cryptlib.h" |
23 | | #include "internal/sizes.h" |
24 | | |
25 | | #define SLH_DSA_MAX_ADD_RANDOM_LEN 32 |
26 | | |
27 | | #define SLH_DSA_MESSAGE_ENCODE_RAW 0 |
28 | 2.25k | #define SLH_DSA_MESSAGE_ENCODE_PURE 1 |
29 | | |
30 | | static OSSL_FUNC_signature_sign_message_init_fn slh_dsa_sign_msg_init; |
31 | | static OSSL_FUNC_signature_sign_fn slh_dsa_sign; |
32 | | static OSSL_FUNC_signature_verify_message_init_fn slh_dsa_verify_msg_init; |
33 | | static OSSL_FUNC_signature_verify_fn slh_dsa_verify; |
34 | | static OSSL_FUNC_signature_digest_sign_init_fn slh_dsa_digest_signverify_init; |
35 | | static OSSL_FUNC_signature_digest_sign_fn slh_dsa_digest_sign; |
36 | | static OSSL_FUNC_signature_digest_verify_fn slh_dsa_digest_verify; |
37 | | static OSSL_FUNC_signature_freectx_fn slh_dsa_freectx; |
38 | | static OSSL_FUNC_signature_dupctx_fn slh_dsa_dupctx; |
39 | | static OSSL_FUNC_signature_set_ctx_params_fn slh_dsa_set_ctx_params; |
40 | | static OSSL_FUNC_signature_settable_ctx_params_fn slh_dsa_settable_ctx_params; |
41 | | |
42 | | /* |
43 | | * NOTE: Any changes to this structure may require updating slh_dsa_dupctx(). |
44 | | */ |
45 | | typedef struct { |
46 | | SLH_DSA_KEY *key; /* Note that the key is not owned by this object */ |
47 | | SLH_DSA_HASH_CTX *hash_ctx; |
48 | | uint8_t context_string[SLH_DSA_MAX_CONTEXT_STRING_LEN]; |
49 | | size_t context_string_len; |
50 | | uint8_t add_random[SLH_DSA_MAX_ADD_RANDOM_LEN]; |
51 | | size_t add_random_len; |
52 | | int msg_encode; |
53 | | int deterministic; |
54 | | OSSL_LIB_CTX *libctx; |
55 | | char *propq; |
56 | | const char *alg; |
57 | | /* The Algorithm Identifier of the signature algorithm */ |
58 | | uint8_t aid_buf[OSSL_MAX_ALGORITHM_ID_SIZE]; |
59 | | size_t aid_len; |
60 | | } PROV_SLH_DSA_CTX; |
61 | | |
62 | | static void slh_dsa_freectx(void *vctx) |
63 | 2.25k | { |
64 | 2.25k | PROV_SLH_DSA_CTX *ctx = (PROV_SLH_DSA_CTX *)vctx; |
65 | | |
66 | 2.25k | ossl_slh_dsa_hash_ctx_free(ctx->hash_ctx); |
67 | 2.25k | OPENSSL_free(ctx->propq); |
68 | 2.25k | OPENSSL_cleanse(ctx->add_random, ctx->add_random_len); |
69 | 2.25k | OPENSSL_free(ctx); |
70 | 2.25k | } |
71 | | |
72 | | static void *slh_dsa_newctx(void *provctx, const char *alg, const char *propq) |
73 | 2.25k | { |
74 | 2.25k | PROV_SLH_DSA_CTX *ctx; |
75 | | |
76 | 2.25k | if (!ossl_prov_is_running()) |
77 | 0 | return NULL; |
78 | | |
79 | 2.25k | ctx = OPENSSL_zalloc(sizeof(PROV_SLH_DSA_CTX)); |
80 | 2.25k | if (ctx == NULL) |
81 | 0 | return NULL; |
82 | | |
83 | 2.25k | ctx->libctx = PROV_LIBCTX_OF(provctx); |
84 | 2.25k | if (propq != NULL && (ctx->propq = OPENSSL_strdup(propq)) == NULL) |
85 | 0 | goto err; |
86 | 2.25k | ctx->alg = alg; |
87 | 2.25k | ctx->msg_encode = SLH_DSA_MESSAGE_ENCODE_PURE; |
88 | 2.25k | return ctx; |
89 | 0 | err: |
90 | 0 | slh_dsa_freectx(ctx); |
91 | 0 | return NULL; |
92 | 2.25k | } |
93 | | |
94 | | static void *slh_dsa_dupctx(void *vctx) |
95 | 0 | { |
96 | 0 | PROV_SLH_DSA_CTX *src = (PROV_SLH_DSA_CTX *)vctx; |
97 | 0 | PROV_SLH_DSA_CTX *ret; |
98 | |
|
99 | 0 | if (!ossl_prov_is_running()) |
100 | 0 | return NULL; |
101 | | |
102 | | /* |
103 | | * Note that the SLH_DSA_KEY is ref counted via EVP_PKEY so we can just copy |
104 | | * the key here. |
105 | | */ |
106 | 0 | ret = OPENSSL_memdup(src, sizeof(*src)); |
107 | 0 | if (ret == NULL) |
108 | 0 | return NULL; |
109 | 0 | ret->propq = NULL; |
110 | 0 | ret->hash_ctx = NULL; |
111 | 0 | if (src->propq != NULL && (ret->propq = OPENSSL_strdup(src->propq)) == NULL) |
112 | 0 | goto err; |
113 | 0 | ret->hash_ctx = ossl_slh_dsa_hash_ctx_dup(src->hash_ctx); |
114 | 0 | if (ret->hash_ctx == NULL) |
115 | 0 | goto err; |
116 | | |
117 | 0 | return ret; |
118 | 0 | err: |
119 | 0 | slh_dsa_freectx(ret); |
120 | 0 | return NULL; |
121 | 0 | } |
122 | | |
123 | | static int slh_dsa_set_alg_id_buffer(PROV_SLH_DSA_CTX *ctx) |
124 | 2.25k | { |
125 | 2.25k | int ret; |
126 | 2.25k | WPACKET pkt; |
127 | 2.25k | uint8_t *aid = NULL; |
128 | | |
129 | | /* |
130 | | * We do not care about DER writing errors. |
131 | | * All it really means is that for some reason, there's no |
132 | | * AlgorithmIdentifier to be had, but the operation itself is |
133 | | * still valid, just as long as it's not used to construct |
134 | | * anything that needs an AlgorithmIdentifier. |
135 | | */ |
136 | 2.25k | ctx->aid_len = 0; |
137 | 2.25k | ret = WPACKET_init_der(&pkt, ctx->aid_buf, sizeof(ctx->aid_buf)); |
138 | 2.25k | ret = ret && ossl_DER_w_algorithmIdentifier_SLH_DSA(&pkt, -1, ctx->key); |
139 | 2.25k | if (ret && WPACKET_finish(&pkt)) { |
140 | 2.25k | WPACKET_get_total_written(&pkt, &ctx->aid_len); |
141 | 2.25k | aid = WPACKET_get_curr(&pkt); |
142 | 2.25k | } |
143 | 2.25k | WPACKET_cleanup(&pkt); |
144 | 2.25k | if (aid != NULL && ctx->aid_len != 0) |
145 | 2.25k | memmove(ctx->aid_buf, aid, ctx->aid_len); |
146 | 2.25k | return 1; |
147 | 2.25k | } |
148 | | |
149 | | static int slh_dsa_signverify_msg_init(void *vctx, void *vkey, |
150 | | const OSSL_PARAM params[], int operation, |
151 | | const char *desc) |
152 | 2.25k | { |
153 | 2.25k | PROV_SLH_DSA_CTX *ctx = (PROV_SLH_DSA_CTX *)vctx; |
154 | 2.25k | SLH_DSA_KEY *key = vkey; |
155 | | |
156 | 2.25k | if (!ossl_prov_is_running() |
157 | 2.25k | || ctx == NULL) |
158 | 0 | return 0; |
159 | | |
160 | 2.25k | if (vkey == NULL && ctx->key == NULL) { |
161 | 0 | ERR_raise(ERR_LIB_PROV, PROV_R_NO_KEY_SET); |
162 | 0 | return 0; |
163 | 0 | } |
164 | | |
165 | 2.25k | if (key != NULL) { |
166 | 2.25k | if (!ossl_slh_dsa_key_type_matches(key, ctx->alg)) |
167 | 0 | return 0; |
168 | 2.25k | ctx->hash_ctx = ossl_slh_dsa_hash_ctx_new(key); |
169 | 2.25k | if (ctx->hash_ctx == NULL) |
170 | 0 | return 0; |
171 | 2.25k | ctx->key = vkey; |
172 | 2.25k | } |
173 | | |
174 | 2.25k | slh_dsa_set_alg_id_buffer(ctx); |
175 | 2.25k | if (!slh_dsa_set_ctx_params(ctx, params)) |
176 | 122 | return 0; |
177 | 2.13k | return 1; |
178 | 2.25k | } |
179 | | |
180 | | static int slh_dsa_sign_msg_init(void *vctx, void *vkey, const OSSL_PARAM params[]) |
181 | 1.18k | { |
182 | 1.18k | return slh_dsa_signverify_msg_init(vctx, vkey, params, |
183 | 1.18k | EVP_PKEY_OP_SIGN, "SLH_DSA Sign Init"); |
184 | 1.18k | } |
185 | | |
186 | | static int slh_dsa_digest_signverify_init(void *vctx, const char *mdname, |
187 | | void *vkey, const OSSL_PARAM params[]) |
188 | 0 | { |
189 | 0 | PROV_SLH_DSA_CTX *ctx = (PROV_SLH_DSA_CTX *)vctx; |
190 | |
|
191 | 0 | if (mdname != NULL && mdname[0] != '\0') { |
192 | 0 | ERR_raise_data(ERR_LIB_PROV, PROV_R_INVALID_DIGEST, |
193 | 0 | "Explicit digest not supported for SLH-DSA operations"); |
194 | 0 | return 0; |
195 | 0 | } |
196 | | |
197 | 0 | if (vkey == NULL && ctx->key != NULL) |
198 | 0 | return slh_dsa_set_ctx_params(ctx, params); |
199 | | |
200 | 0 | return slh_dsa_signverify_msg_init(vctx, vkey, params, |
201 | 0 | EVP_PKEY_OP_SIGN, "SLH_DSA Sign Init"); |
202 | 0 | } |
203 | | |
204 | | static int slh_dsa_sign(void *vctx, unsigned char *sig, size_t *siglen, |
205 | | size_t sigsize, const unsigned char *msg, size_t msg_len) |
206 | 2.13k | { |
207 | 2.13k | int ret = 0; |
208 | 2.13k | PROV_SLH_DSA_CTX *ctx = (PROV_SLH_DSA_CTX *)vctx; |
209 | 2.13k | uint8_t add_rand[SLH_DSA_MAX_ADD_RANDOM_LEN], *opt_rand = NULL; |
210 | 2.13k | size_t n = 0; |
211 | | |
212 | 2.13k | if (!ossl_prov_is_running()) |
213 | 0 | return 0; |
214 | | |
215 | 2.13k | if (sig != NULL) { |
216 | 1.06k | if (ctx->add_random_len != 0) { |
217 | 0 | opt_rand = ctx->add_random; |
218 | 1.06k | } else if (ctx->deterministic == 0) { |
219 | 927 | n = ossl_slh_dsa_key_get_n(ctx->key); |
220 | 927 | if (RAND_priv_bytes_ex(ctx->libctx, add_rand, n, 0) <= 0) |
221 | 0 | return 0; |
222 | 927 | opt_rand = add_rand; |
223 | 927 | } |
224 | 1.06k | } |
225 | 2.13k | ret = ossl_slh_dsa_sign(ctx->hash_ctx, msg, msg_len, |
226 | 2.13k | ctx->context_string, ctx->context_string_len, |
227 | 2.13k | opt_rand, ctx->msg_encode, |
228 | 2.13k | sig, siglen, sigsize); |
229 | | /* Only cleanse the temporary buffer generated for this signature. */ |
230 | 2.13k | if (opt_rand == add_rand) |
231 | 927 | OPENSSL_cleanse(add_rand, sizeof(add_rand)); |
232 | 2.13k | return ret; |
233 | 2.13k | } |
234 | | |
235 | | static int slh_dsa_digest_sign(void *vctx, uint8_t *sig, size_t *siglen, size_t sigsize, |
236 | | const uint8_t *tbs, size_t tbslen) |
237 | 0 | { |
238 | 0 | return slh_dsa_sign(vctx, sig, siglen, sigsize, tbs, tbslen); |
239 | 0 | } |
240 | | |
241 | | static int slh_dsa_verify_msg_init(void *vctx, void *vkey, const OSSL_PARAM params[]) |
242 | 1.06k | { |
243 | 1.06k | return slh_dsa_signverify_msg_init(vctx, vkey, params, EVP_PKEY_OP_VERIFY, |
244 | 1.06k | "SLH_DSA Verify Init"); |
245 | 1.06k | } |
246 | | |
247 | | static int slh_dsa_verify(void *vctx, const uint8_t *sig, size_t siglen, |
248 | | const uint8_t *msg, size_t msg_len) |
249 | 1.06k | { |
250 | 1.06k | PROV_SLH_DSA_CTX *ctx = (PROV_SLH_DSA_CTX *)vctx; |
251 | | |
252 | 1.06k | if (!ossl_prov_is_running()) |
253 | 0 | return 0; |
254 | 1.06k | return ossl_slh_dsa_verify(ctx->hash_ctx, msg, msg_len, |
255 | 1.06k | ctx->context_string, ctx->context_string_len, |
256 | 1.06k | ctx->msg_encode, sig, siglen); |
257 | 1.06k | } |
258 | | static int slh_dsa_digest_verify(void *vctx, const uint8_t *sig, size_t siglen, |
259 | | const uint8_t *tbs, size_t tbslen) |
260 | 0 | { |
261 | 0 | return slh_dsa_verify(vctx, sig, siglen, tbs, tbslen); |
262 | 0 | } |
263 | | |
264 | | /* clang-format off */ |
265 | | /* Machine generated by util/perl/OpenSSL/paramnames.pm */ |
266 | | #ifndef slh_dsa_set_ctx_params_list |
267 | | static const OSSL_PARAM slh_dsa_set_ctx_params_list[] = { |
268 | | OSSL_PARAM_octet_string(OSSL_SIGNATURE_PARAM_CONTEXT_STRING, NULL, 0), |
269 | | OSSL_PARAM_octet_string(OSSL_SIGNATURE_PARAM_TEST_ENTROPY, NULL, 0), |
270 | | OSSL_PARAM_int(OSSL_SIGNATURE_PARAM_DETERMINISTIC, NULL), |
271 | | OSSL_PARAM_int(OSSL_SIGNATURE_PARAM_MESSAGE_ENCODING, NULL), |
272 | | OSSL_PARAM_END |
273 | | }; |
274 | | #endif |
275 | | |
276 | | #ifndef slh_dsa_set_ctx_params_st |
277 | | struct slh_dsa_set_ctx_params_st { |
278 | | OSSL_PARAM *context; |
279 | | OSSL_PARAM *det; |
280 | | OSSL_PARAM *entropy; |
281 | | OSSL_PARAM *msgenc; |
282 | | }; |
283 | | #endif |
284 | | |
285 | | #ifndef slh_dsa_set_ctx_params_decoder |
286 | | static int slh_dsa_set_ctx_params_decoder |
287 | | (const OSSL_PARAM *p, struct slh_dsa_set_ctx_params_st *r) |
288 | 1.51k | { |
289 | 1.51k | const char *s; |
290 | | |
291 | 1.51k | memset(r, 0, sizeof(*r)); |
292 | 1.51k | if (p != NULL) |
293 | 3.09k | for (; (s = p->key) != NULL; p++) |
294 | 1.58k | switch(s[0]) { |
295 | 0 | default: |
296 | 0 | break; |
297 | 392 | case 'c': |
298 | 392 | if (ossl_likely(strcmp("ontext-string", s + 1) == 0)) { |
299 | | /* OSSL_SIGNATURE_PARAM_CONTEXT_STRING */ |
300 | 392 | if (ossl_unlikely(r->context != NULL)) { |
301 | 0 | ERR_raise_data(ERR_LIB_PROV, PROV_R_REPEATED_PARAMETER, |
302 | 0 | "param %s is repeated", s); |
303 | 0 | return 0; |
304 | 0 | } |
305 | 392 | r->context = (OSSL_PARAM *)p; |
306 | 392 | } |
307 | 392 | break; |
308 | 723 | case 'd': |
309 | 723 | if (ossl_likely(strcmp("eterministic", s + 1) == 0)) { |
310 | | /* OSSL_SIGNATURE_PARAM_DETERMINISTIC */ |
311 | 723 | if (ossl_unlikely(r->det != NULL)) { |
312 | 0 | ERR_raise_data(ERR_LIB_PROV, PROV_R_REPEATED_PARAMETER, |
313 | 0 | "param %s is repeated", s); |
314 | 0 | return 0; |
315 | 0 | } |
316 | 723 | r->det = (OSSL_PARAM *)p; |
317 | 723 | } |
318 | 723 | break; |
319 | 723 | case 'm': |
320 | 469 | if (ossl_likely(strcmp("essage-encoding", s + 1) == 0)) { |
321 | | /* OSSL_SIGNATURE_PARAM_MESSAGE_ENCODING */ |
322 | 469 | if (ossl_unlikely(r->msgenc != NULL)) { |
323 | 0 | ERR_raise_data(ERR_LIB_PROV, PROV_R_REPEATED_PARAMETER, |
324 | 0 | "param %s is repeated", s); |
325 | 0 | return 0; |
326 | 0 | } |
327 | 469 | r->msgenc = (OSSL_PARAM *)p; |
328 | 469 | } |
329 | 469 | break; |
330 | 469 | case 't': |
331 | 0 | if (ossl_likely(strcmp("est-entropy", s + 1) == 0)) { |
332 | | /* OSSL_SIGNATURE_PARAM_TEST_ENTROPY */ |
333 | 0 | if (ossl_unlikely(r->entropy != NULL)) { |
334 | 0 | ERR_raise_data(ERR_LIB_PROV, PROV_R_REPEATED_PARAMETER, |
335 | 0 | "param %s is repeated", s); |
336 | 0 | return 0; |
337 | 0 | } |
338 | 0 | r->entropy = (OSSL_PARAM *)p; |
339 | 0 | } |
340 | 1.58k | } |
341 | 1.51k | return 1; |
342 | 1.51k | } |
343 | | #endif |
344 | | /* End of machine generated */ |
345 | | /* clang-format on */ |
346 | | |
347 | | static int slh_dsa_set_ctx_params(void *vctx, const OSSL_PARAM params[]) |
348 | 1.51k | { |
349 | 1.51k | PROV_SLH_DSA_CTX *pctx = (PROV_SLH_DSA_CTX *)vctx; |
350 | 1.51k | struct slh_dsa_set_ctx_params_st p; |
351 | | |
352 | 1.51k | if (pctx == NULL || !slh_dsa_set_ctx_params_decoder(params, &p)) |
353 | 0 | return 0; |
354 | | |
355 | 1.51k | if (p.context != NULL) { |
356 | 392 | void *vp = pctx->context_string; |
357 | | |
358 | 392 | if (!OSSL_PARAM_get_octet_string(p.context, &vp, |
359 | 392 | sizeof(pctx->context_string), |
360 | 392 | &(pctx->context_string_len))) { |
361 | 82 | pctx->context_string_len = 0; |
362 | 82 | return 0; |
363 | 82 | } |
364 | 392 | } |
365 | | |
366 | 1.43k | if (p.entropy != NULL) { |
367 | 0 | void *vp = pctx->add_random; |
368 | 0 | size_t n = ossl_slh_dsa_key_get_n(pctx->key); |
369 | |
|
370 | 0 | if (!OSSL_PARAM_get_octet_string(p.entropy, &vp, n, &(pctx->add_random_len)) |
371 | 0 | || pctx->add_random_len != n) { |
372 | 0 | pctx->add_random_len = 0; |
373 | 0 | return 0; |
374 | 0 | } |
375 | 0 | } |
376 | | |
377 | 1.43k | if (p.det != NULL && !OSSL_PARAM_get_int(p.det, &pctx->deterministic)) |
378 | 0 | return 0; |
379 | | |
380 | 1.43k | if (p.msgenc != NULL && !OSSL_PARAM_get_int(p.msgenc, &pctx->msg_encode)) |
381 | 0 | return 0; |
382 | 1.43k | return 1; |
383 | 1.43k | } |
384 | | |
385 | | static const OSSL_PARAM *slh_dsa_settable_ctx_params(void *vctx, |
386 | | ossl_unused void *provctx) |
387 | 15 | { |
388 | 15 | return slh_dsa_set_ctx_params_list; |
389 | 15 | } |
390 | | |
391 | | /* clang-format off */ |
392 | | /* Machine generated by util/perl/OpenSSL/paramnames.pm */ |
393 | | #ifndef slh_dsa_get_ctx_params_list |
394 | | static const OSSL_PARAM slh_dsa_get_ctx_params_list[] = { |
395 | | OSSL_PARAM_octet_string(OSSL_SIGNATURE_PARAM_ALGORITHM_ID, NULL, 0), |
396 | | OSSL_PARAM_END |
397 | | }; |
398 | | #endif |
399 | | |
400 | | #ifndef slh_dsa_get_ctx_params_st |
401 | | struct slh_dsa_get_ctx_params_st { |
402 | | OSSL_PARAM *algid; |
403 | | }; |
404 | | #endif |
405 | | |
406 | | #ifndef slh_dsa_get_ctx_params_decoder |
407 | | static int slh_dsa_get_ctx_params_decoder |
408 | | (const OSSL_PARAM *p, struct slh_dsa_get_ctx_params_st *r) |
409 | 0 | { |
410 | 0 | const char *s; |
411 | |
|
412 | 0 | memset(r, 0, sizeof(*r)); |
413 | 0 | if (p != NULL) |
414 | 0 | for (; (s = p->key) != NULL; p++) |
415 | 0 | if (ossl_likely(strcmp("algorithm-id", s + 0) == 0)) { |
416 | | /* OSSL_SIGNATURE_PARAM_ALGORITHM_ID */ |
417 | 0 | if (ossl_unlikely(r->algid != NULL)) { |
418 | 0 | ERR_raise_data(ERR_LIB_PROV, PROV_R_REPEATED_PARAMETER, |
419 | 0 | "param %s is repeated", s); |
420 | 0 | return 0; |
421 | 0 | } |
422 | 0 | r->algid = (OSSL_PARAM *)p; |
423 | 0 | } |
424 | 0 | return 1; |
425 | 0 | } |
426 | | #endif |
427 | | /* End of machine generated */ |
428 | | /* clang-format on */ |
429 | | |
430 | | static const OSSL_PARAM *slh_dsa_gettable_ctx_params(ossl_unused void *vctx, |
431 | | ossl_unused void *provctx) |
432 | 0 | { |
433 | 0 | return slh_dsa_get_ctx_params_list; |
434 | 0 | } |
435 | | |
436 | | static int slh_dsa_get_ctx_params(void *vctx, OSSL_PARAM *params) |
437 | 0 | { |
438 | 0 | PROV_SLH_DSA_CTX *ctx = (PROV_SLH_DSA_CTX *)vctx; |
439 | 0 | struct slh_dsa_get_ctx_params_st p; |
440 | |
|
441 | 0 | if (ctx == NULL || !slh_dsa_get_ctx_params_decoder(params, &p)) |
442 | 0 | return 0; |
443 | | |
444 | 0 | if (p.algid != NULL |
445 | 0 | && !OSSL_PARAM_set_octet_string(p.algid, |
446 | 0 | ctx->aid_len == 0 ? NULL : ctx->aid_buf, |
447 | 0 | ctx->aid_len)) |
448 | 0 | return 0; |
449 | | |
450 | 0 | return 1; |
451 | 0 | } |
452 | | |
453 | | #define MAKE_SIGNATURE_FUNCTIONS(alg, fn) \ |
454 | | static OSSL_FUNC_signature_newctx_fn slh_dsa_##fn##_newctx; \ |
455 | | static void *slh_dsa_##fn##_newctx(void *provctx, const char *propq) \ |
456 | 2.25k | { \ |
457 | 2.25k | return slh_dsa_newctx(provctx, alg, propq); \ |
458 | 2.25k | } \ slh_dsa_sig.c:slh_dsa_sha2_128s_newctx Line | Count | Source | 456 | 201 | { \ | 457 | 201 | return slh_dsa_newctx(provctx, alg, propq); \ | 458 | 201 | } \ |
slh_dsa_sig.c:slh_dsa_sha2_128f_newctx Line | Count | Source | 456 | 435 | { \ | 457 | 435 | return slh_dsa_newctx(provctx, alg, propq); \ | 458 | 435 | } \ |
slh_dsa_sig.c:slh_dsa_sha2_192s_newctx Line | Count | Source | 456 | 77 | { \ | 457 | 77 | return slh_dsa_newctx(provctx, alg, propq); \ | 458 | 77 | } \ |
slh_dsa_sig.c:slh_dsa_sha2_192f_newctx Line | Count | Source | 456 | 374 | { \ | 457 | 374 | return slh_dsa_newctx(provctx, alg, propq); \ | 458 | 374 | } \ |
slh_dsa_sig.c:slh_dsa_sha2_256s_newctx Line | Count | Source | 456 | 140 | { \ | 457 | 140 | return slh_dsa_newctx(provctx, alg, propq); \ | 458 | 140 | } \ |
slh_dsa_sig.c:slh_dsa_sha2_256f_newctx Line | Count | Source | 456 | 215 | { \ | 457 | 215 | return slh_dsa_newctx(provctx, alg, propq); \ | 458 | 215 | } \ |
slh_dsa_sig.c:slh_dsa_shake_128s_newctx Line | Count | Source | 456 | 72 | { \ | 457 | 72 | return slh_dsa_newctx(provctx, alg, propq); \ | 458 | 72 | } \ |
slh_dsa_sig.c:slh_dsa_shake_128f_newctx Line | Count | Source | 456 | 61 | { \ | 457 | 61 | return slh_dsa_newctx(provctx, alg, propq); \ | 458 | 61 | } \ |
slh_dsa_sig.c:slh_dsa_shake_192s_newctx Line | Count | Source | 456 | 60 | { \ | 457 | 60 | return slh_dsa_newctx(provctx, alg, propq); \ | 458 | 60 | } \ |
slh_dsa_sig.c:slh_dsa_shake_192f_newctx Line | Count | Source | 456 | 265 | { \ | 457 | 265 | return slh_dsa_newctx(provctx, alg, propq); \ | 458 | 265 | } \ |
slh_dsa_sig.c:slh_dsa_shake_256s_newctx Line | Count | Source | 456 | 193 | { \ | 457 | 193 | return slh_dsa_newctx(provctx, alg, propq); \ | 458 | 193 | } \ |
slh_dsa_sig.c:slh_dsa_shake_256f_newctx Line | Count | Source | 456 | 161 | { \ | 457 | 161 | return slh_dsa_newctx(provctx, alg, propq); \ | 458 | 161 | } \ |
|
459 | | const OSSL_DISPATCH ossl_slh_dsa_##fn##_signature_functions[] = { \ |
460 | | { OSSL_FUNC_SIGNATURE_NEWCTX, (void (*)(void))slh_dsa_##fn##_newctx }, \ |
461 | | { OSSL_FUNC_SIGNATURE_SIGN_MESSAGE_INIT, \ |
462 | | (void (*)(void))slh_dsa_sign_msg_init }, \ |
463 | | { OSSL_FUNC_SIGNATURE_SIGN, (void (*)(void))slh_dsa_sign }, \ |
464 | | { OSSL_FUNC_SIGNATURE_VERIFY_MESSAGE_INIT, \ |
465 | | (void (*)(void))slh_dsa_verify_msg_init }, \ |
466 | | { OSSL_FUNC_SIGNATURE_VERIFY, (void (*)(void))slh_dsa_verify }, \ |
467 | | { OSSL_FUNC_SIGNATURE_DIGEST_SIGN_INIT, \ |
468 | | (void (*)(void))slh_dsa_digest_signverify_init }, \ |
469 | | { OSSL_FUNC_SIGNATURE_DIGEST_SIGN, \ |
470 | | (void (*)(void))slh_dsa_digest_sign }, \ |
471 | | { OSSL_FUNC_SIGNATURE_DIGEST_VERIFY_INIT, \ |
472 | | (void (*)(void))slh_dsa_digest_signverify_init }, \ |
473 | | { OSSL_FUNC_SIGNATURE_DIGEST_VERIFY, \ |
474 | | (void (*)(void))slh_dsa_digest_verify }, \ |
475 | | { OSSL_FUNC_SIGNATURE_FREECTX, (void (*)(void))slh_dsa_freectx }, \ |
476 | | { OSSL_FUNC_SIGNATURE_DUPCTX, (void (*)(void))slh_dsa_dupctx }, \ |
477 | | { OSSL_FUNC_SIGNATURE_SET_CTX_PARAMS, (void (*)(void))slh_dsa_set_ctx_params }, \ |
478 | | { OSSL_FUNC_SIGNATURE_SETTABLE_CTX_PARAMS, \ |
479 | | (void (*)(void))slh_dsa_settable_ctx_params }, \ |
480 | | { OSSL_FUNC_SIGNATURE_GET_CTX_PARAMS, \ |
481 | | (void (*)(void))slh_dsa_get_ctx_params }, \ |
482 | | { OSSL_FUNC_SIGNATURE_GETTABLE_CTX_PARAMS, \ |
483 | | (void (*)(void))slh_dsa_gettable_ctx_params }, \ |
484 | | OSSL_DISPATCH_END \ |
485 | | } |
486 | | |
487 | | MAKE_SIGNATURE_FUNCTIONS("SLH-DSA-SHA2-128s", sha2_128s); |
488 | | MAKE_SIGNATURE_FUNCTIONS("SLH-DSA-SHA2-128f", sha2_128f); |
489 | | MAKE_SIGNATURE_FUNCTIONS("SLH-DSA-SHA2-192s", sha2_192s); |
490 | | MAKE_SIGNATURE_FUNCTIONS("SLH-DSA-SHA2-192f", sha2_192f); |
491 | | MAKE_SIGNATURE_FUNCTIONS("SLH-DSA-SHA2-256s", sha2_256s); |
492 | | MAKE_SIGNATURE_FUNCTIONS("SLH-DSA-SHA2-256f", sha2_256f); |
493 | | MAKE_SIGNATURE_FUNCTIONS("SLH-DSA-SHAKE-128s", shake_128s); |
494 | | MAKE_SIGNATURE_FUNCTIONS("SLH-DSA-SHAKE-128f", shake_128f); |
495 | | MAKE_SIGNATURE_FUNCTIONS("SLH-DSA-SHAKE-192s", shake_192s); |
496 | | MAKE_SIGNATURE_FUNCTIONS("SLH-DSA-SHAKE-192f", shake_192f); |
497 | | MAKE_SIGNATURE_FUNCTIONS("SLH-DSA-SHAKE-256s", shake_256s); |
498 | | MAKE_SIGNATURE_FUNCTIONS("SLH-DSA-SHAKE-256f", shake_256f); |