/src/openssl/crypto/engine/eng_openssl.c
Line | Count | Source (jump to first uncovered line) |
1 | | /* |
2 | | * Copyright 2001-2018 The OpenSSL Project Authors. All Rights Reserved. |
3 | | * Copyright (c) 2002, Oracle and/or its affiliates. All rights reserved |
4 | | * |
5 | | * Licensed under the OpenSSL license (the "License"). You may not use |
6 | | * this file except in compliance with the License. You can obtain a copy |
7 | | * in the file LICENSE in the source distribution or at |
8 | | * https://www.openssl.org/source/license.html |
9 | | */ |
10 | | |
11 | | #include <stdio.h> |
12 | | #include <openssl/crypto.h> |
13 | | #include "internal/cryptlib.h" |
14 | | #include "internal/engine.h" |
15 | | #include <openssl/pem.h> |
16 | | #include <openssl/evp.h> |
17 | | #include <openssl/rand.h> |
18 | | #include <openssl/rsa.h> |
19 | | #include <openssl/dsa.h> |
20 | | #include <openssl/dh.h> |
21 | | |
22 | | #include <openssl/hmac.h> |
23 | | #include <openssl/x509v3.h> |
24 | | |
25 | | /* |
26 | | * This testing gunk is implemented (and explained) lower down. It also |
27 | | * assumes the application explicitly calls "ENGINE_load_openssl()" because |
28 | | * this is no longer automatic in ENGINE_load_builtin_engines(). |
29 | | */ |
30 | | #define TEST_ENG_OPENSSL_RC4 |
31 | | #ifndef OPENSSL_NO_STDIO |
32 | | #define TEST_ENG_OPENSSL_PKEY |
33 | | #endif |
34 | | /* #define TEST_ENG_OPENSSL_HMAC */ |
35 | | /* #define TEST_ENG_OPENSSL_HMAC_INIT */ |
36 | | /* #define TEST_ENG_OPENSSL_RC4_OTHERS */ |
37 | | #define TEST_ENG_OPENSSL_RC4_P_INIT |
38 | | /* #define TEST_ENG_OPENSSL_RC4_P_CIPHER */ |
39 | | #define TEST_ENG_OPENSSL_SHA |
40 | | /* #define TEST_ENG_OPENSSL_SHA_OTHERS */ |
41 | | /* #define TEST_ENG_OPENSSL_SHA_P_INIT */ |
42 | | /* #define TEST_ENG_OPENSSL_SHA_P_UPDATE */ |
43 | | /* #define TEST_ENG_OPENSSL_SHA_P_FINAL */ |
44 | | |
45 | | /* Now check what of those algorithms are actually enabled */ |
46 | | #ifdef OPENSSL_NO_RC4 |
47 | | # undef TEST_ENG_OPENSSL_RC4 |
48 | | # undef TEST_ENG_OPENSSL_RC4_OTHERS |
49 | | # undef TEST_ENG_OPENSSL_RC4_P_INIT |
50 | | # undef TEST_ENG_OPENSSL_RC4_P_CIPHER |
51 | | #endif |
52 | | |
53 | | static int openssl_destroy(ENGINE *e); |
54 | | |
55 | | #ifdef TEST_ENG_OPENSSL_RC4 |
56 | | static int openssl_ciphers(ENGINE *e, const EVP_CIPHER **cipher, |
57 | | const int **nids, int nid); |
58 | | #endif |
59 | | #ifdef TEST_ENG_OPENSSL_SHA |
60 | | static int openssl_digests(ENGINE *e, const EVP_MD **digest, |
61 | | const int **nids, int nid); |
62 | | #endif |
63 | | |
64 | | #ifdef TEST_ENG_OPENSSL_PKEY |
65 | | static EVP_PKEY *openssl_load_privkey(ENGINE *eng, const char *key_id, |
66 | | UI_METHOD *ui_method, |
67 | | void *callback_data); |
68 | | #endif |
69 | | |
70 | | #ifdef TEST_ENG_OPENSSL_HMAC |
71 | | static int ossl_register_hmac_meth(void); |
72 | | static int ossl_pkey_meths(ENGINE *e, EVP_PKEY_METHOD **pmeth, |
73 | | const int **nids, int nid); |
74 | | #endif |
75 | | |
76 | | /* The constants used when creating the ENGINE */ |
77 | | static const char *engine_openssl_id = "openssl"; |
78 | | static const char *engine_openssl_name = "Software engine support"; |
79 | | |
80 | | /* |
81 | | * This internal function is used by ENGINE_openssl() and possibly by the |
82 | | * "dynamic" ENGINE support too |
83 | | */ |
84 | | static int bind_helper(ENGINE *e) |
85 | 0 | { |
86 | 0 | if (!ENGINE_set_id(e, engine_openssl_id) |
87 | 0 | || !ENGINE_set_name(e, engine_openssl_name) |
88 | 0 | || !ENGINE_set_destroy_function(e, openssl_destroy) |
89 | 0 | #ifndef TEST_ENG_OPENSSL_NO_ALGORITHMS |
90 | 0 | # ifndef OPENSSL_NO_RSA |
91 | 0 | || !ENGINE_set_RSA(e, RSA_get_default_method()) |
92 | 0 | # endif |
93 | 0 | # ifndef OPENSSL_NO_DSA |
94 | 0 | || !ENGINE_set_DSA(e, DSA_get_default_method()) |
95 | 0 | # endif |
96 | 0 | # ifndef OPENSSL_NO_EC |
97 | 0 | || !ENGINE_set_EC(e, EC_KEY_OpenSSL()) |
98 | 0 | # endif |
99 | 0 | # ifndef OPENSSL_NO_DH |
100 | 0 | || !ENGINE_set_DH(e, DH_get_default_method()) |
101 | 0 | # endif |
102 | 0 | || !ENGINE_set_RAND(e, RAND_OpenSSL()) |
103 | 0 | # ifdef TEST_ENG_OPENSSL_RC4 |
104 | 0 | || !ENGINE_set_ciphers(e, openssl_ciphers) |
105 | 0 | # endif |
106 | 0 | # ifdef TEST_ENG_OPENSSL_SHA |
107 | 0 | || !ENGINE_set_digests(e, openssl_digests) |
108 | 0 | # endif |
109 | 0 | #endif |
110 | 0 | #ifdef TEST_ENG_OPENSSL_PKEY |
111 | 0 | || !ENGINE_set_load_privkey_function(e, openssl_load_privkey) |
112 | 0 | #endif |
113 | | #ifdef TEST_ENG_OPENSSL_HMAC |
114 | | || !ossl_register_hmac_meth() |
115 | | || !ENGINE_set_pkey_meths(e, ossl_pkey_meths) |
116 | | #endif |
117 | | ) |
118 | 0 | return 0; |
119 | 0 | /* |
120 | 0 | * If we add errors to this ENGINE, ensure the error handling is setup |
121 | 0 | * here |
122 | 0 | */ |
123 | 0 | /* openssl_load_error_strings(); */ |
124 | 0 | return 1; |
125 | 0 | } |
126 | | |
127 | | static ENGINE *engine_openssl(void) |
128 | 0 | { |
129 | 0 | ENGINE *ret = ENGINE_new(); |
130 | 0 | if (ret == NULL) |
131 | 0 | return NULL; |
132 | 0 | if (!bind_helper(ret)) { |
133 | 0 | ENGINE_free(ret); |
134 | 0 | return NULL; |
135 | 0 | } |
136 | 0 | return ret; |
137 | 0 | } |
138 | | |
139 | | void engine_load_openssl_int(void) |
140 | 0 | { |
141 | 0 | ENGINE *toadd = engine_openssl(); |
142 | 0 | if (!toadd) |
143 | 0 | return; |
144 | 0 | ENGINE_add(toadd); |
145 | 0 | /* |
146 | 0 | * If the "add" worked, it gets a structural reference. So either way, we |
147 | 0 | * release our just-created reference. |
148 | 0 | */ |
149 | 0 | ENGINE_free(toadd); |
150 | 0 | ERR_clear_error(); |
151 | 0 | } |
152 | | |
153 | | /* |
154 | | * This stuff is needed if this ENGINE is being compiled into a |
155 | | * self-contained shared-library. |
156 | | */ |
157 | | #ifdef ENGINE_DYNAMIC_SUPPORT |
158 | | static int bind_fn(ENGINE *e, const char *id) |
159 | | { |
160 | | if (id && (strcmp(id, engine_openssl_id) != 0)) |
161 | | return 0; |
162 | | if (!bind_helper(e)) |
163 | | return 0; |
164 | | return 1; |
165 | | } |
166 | | |
167 | | IMPLEMENT_DYNAMIC_CHECK_FN() |
168 | | IMPLEMENT_DYNAMIC_BIND_FN(bind_fn) |
169 | | #endif /* ENGINE_DYNAMIC_SUPPORT */ |
170 | | #ifdef TEST_ENG_OPENSSL_RC4 |
171 | | /*- |
172 | | * This section of code compiles an "alternative implementation" of two modes of |
173 | | * RC4 into this ENGINE. The result is that EVP_CIPHER operation for "rc4" |
174 | | * should under normal circumstances go via this support rather than the default |
175 | | * EVP support. There are other symbols to tweak the testing; |
176 | | * TEST_ENC_OPENSSL_RC4_OTHERS - print a one line message to stderr each time |
177 | | * we're asked for a cipher we don't support (should not happen). |
178 | | * TEST_ENG_OPENSSL_RC4_P_INIT - print a one line message to stderr each time |
179 | | * the "init_key" handler is called. |
180 | | * TEST_ENG_OPENSSL_RC4_P_CIPHER - ditto for the "cipher" handler. |
181 | | */ |
182 | | # include <openssl/rc4.h> |
183 | 0 | # define TEST_RC4_KEY_SIZE 16 |
184 | | typedef struct { |
185 | | unsigned char key[TEST_RC4_KEY_SIZE]; |
186 | | RC4_KEY ks; |
187 | | } TEST_RC4_KEY; |
188 | 0 | # define test(ctx) ((TEST_RC4_KEY *)EVP_CIPHER_CTX_get_cipher_data(ctx)) |
189 | | static int test_rc4_init_key(EVP_CIPHER_CTX *ctx, const unsigned char *key, |
190 | | const unsigned char *iv, int enc) |
191 | 0 | { |
192 | 0 | # ifdef TEST_ENG_OPENSSL_RC4_P_INIT |
193 | 0 | fprintf(stderr, "(TEST_ENG_OPENSSL_RC4) test_init_key() called\n"); |
194 | 0 | # endif |
195 | 0 | memcpy(&test(ctx)->key[0], key, EVP_CIPHER_CTX_key_length(ctx)); |
196 | 0 | RC4_set_key(&test(ctx)->ks, EVP_CIPHER_CTX_key_length(ctx), |
197 | 0 | test(ctx)->key); |
198 | 0 | return 1; |
199 | 0 | } |
200 | | |
201 | | static int test_rc4_cipher(EVP_CIPHER_CTX *ctx, unsigned char *out, |
202 | | const unsigned char *in, size_t inl) |
203 | 0 | { |
204 | | # ifdef TEST_ENG_OPENSSL_RC4_P_CIPHER |
205 | | fprintf(stderr, "(TEST_ENG_OPENSSL_RC4) test_cipher() called\n"); |
206 | | # endif |
207 | 0 | RC4(&test(ctx)->ks, inl, in, out); |
208 | 0 | return 1; |
209 | 0 | } |
210 | | |
211 | | static EVP_CIPHER *r4_cipher = NULL; |
212 | | static const EVP_CIPHER *test_r4_cipher(void) |
213 | 0 | { |
214 | 0 | if (r4_cipher == NULL) { |
215 | 0 | EVP_CIPHER *cipher; |
216 | 0 |
|
217 | 0 | if ((cipher = EVP_CIPHER_meth_new(NID_rc4, 1, TEST_RC4_KEY_SIZE)) == NULL |
218 | 0 | || !EVP_CIPHER_meth_set_iv_length(cipher, 0) |
219 | 0 | || !EVP_CIPHER_meth_set_flags(cipher, EVP_CIPH_VARIABLE_LENGTH) |
220 | 0 | || !EVP_CIPHER_meth_set_init(cipher, test_rc4_init_key) |
221 | 0 | || !EVP_CIPHER_meth_set_do_cipher(cipher, test_rc4_cipher) |
222 | 0 | || !EVP_CIPHER_meth_set_impl_ctx_size(cipher, sizeof(TEST_RC4_KEY))) { |
223 | 0 | EVP_CIPHER_meth_free(cipher); |
224 | 0 | cipher = NULL; |
225 | 0 | } |
226 | 0 | r4_cipher = cipher; |
227 | 0 | } |
228 | 0 | return r4_cipher; |
229 | 0 | } |
230 | | static void test_r4_cipher_destroy(void) |
231 | 0 | { |
232 | 0 | EVP_CIPHER_meth_free(r4_cipher); |
233 | 0 | r4_cipher = NULL; |
234 | 0 | } |
235 | | |
236 | | static EVP_CIPHER *r4_40_cipher = NULL; |
237 | | static const EVP_CIPHER *test_r4_40_cipher(void) |
238 | 0 | { |
239 | 0 | if (r4_40_cipher == NULL) { |
240 | 0 | EVP_CIPHER *cipher; |
241 | 0 |
|
242 | 0 | if ((cipher = EVP_CIPHER_meth_new(NID_rc4, 1, 5 /* 40 bits */)) == NULL |
243 | 0 | || !EVP_CIPHER_meth_set_iv_length(cipher, 0) |
244 | 0 | || !EVP_CIPHER_meth_set_flags(cipher, EVP_CIPH_VARIABLE_LENGTH) |
245 | 0 | || !EVP_CIPHER_meth_set_init(cipher, test_rc4_init_key) |
246 | 0 | || !EVP_CIPHER_meth_set_do_cipher(cipher, test_rc4_cipher) |
247 | 0 | || !EVP_CIPHER_meth_set_impl_ctx_size(cipher, sizeof(TEST_RC4_KEY))) { |
248 | 0 | EVP_CIPHER_meth_free(cipher); |
249 | 0 | cipher = NULL; |
250 | 0 | } |
251 | 0 | r4_40_cipher = cipher; |
252 | 0 | } |
253 | 0 | return r4_40_cipher; |
254 | 0 | } |
255 | | static void test_r4_40_cipher_destroy(void) |
256 | 0 | { |
257 | 0 | EVP_CIPHER_meth_free(r4_40_cipher); |
258 | 0 | r4_40_cipher = NULL; |
259 | 0 | } |
260 | | static int test_cipher_nids(const int **nids) |
261 | 0 | { |
262 | 0 | static int cipher_nids[4] = { 0, 0, 0, 0 }; |
263 | 0 | static int pos = 0; |
264 | 0 | static int init = 0; |
265 | 0 |
|
266 | 0 | if (!init) { |
267 | 0 | const EVP_CIPHER *cipher; |
268 | 0 | if ((cipher = test_r4_cipher()) != NULL) |
269 | 0 | cipher_nids[pos++] = EVP_CIPHER_nid(cipher); |
270 | 0 | if ((cipher = test_r4_40_cipher()) != NULL) |
271 | 0 | cipher_nids[pos++] = EVP_CIPHER_nid(cipher); |
272 | 0 | cipher_nids[pos] = 0; |
273 | 0 | init = 1; |
274 | 0 | } |
275 | 0 | *nids = cipher_nids; |
276 | 0 | return pos; |
277 | 0 | } |
278 | | |
279 | | static int openssl_ciphers(ENGINE *e, const EVP_CIPHER **cipher, |
280 | | const int **nids, int nid) |
281 | 0 | { |
282 | 0 | if (!cipher) { |
283 | 0 | /* We are returning a list of supported nids */ |
284 | 0 | return test_cipher_nids(nids); |
285 | 0 | } |
286 | 0 | /* We are being asked for a specific cipher */ |
287 | 0 | if (nid == NID_rc4) |
288 | 0 | *cipher = test_r4_cipher(); |
289 | 0 | else if (nid == NID_rc4_40) |
290 | 0 | *cipher = test_r4_40_cipher(); |
291 | 0 | else { |
292 | | # ifdef TEST_ENG_OPENSSL_RC4_OTHERS |
293 | | fprintf(stderr, "(TEST_ENG_OPENSSL_RC4) returning NULL for " |
294 | | "nid %d\n", nid); |
295 | | # endif |
296 | | *cipher = NULL; |
297 | 0 | return 0; |
298 | 0 | } |
299 | 0 | return 1; |
300 | 0 | } |
301 | | #endif |
302 | | |
303 | | #ifdef TEST_ENG_OPENSSL_SHA |
304 | | /* Much the same sort of comment as for TEST_ENG_OPENSSL_RC4 */ |
305 | | # include <openssl/sha.h> |
306 | | |
307 | | static int test_sha1_init(EVP_MD_CTX *ctx) |
308 | 0 | { |
309 | | # ifdef TEST_ENG_OPENSSL_SHA_P_INIT |
310 | | fprintf(stderr, "(TEST_ENG_OPENSSL_SHA) test_sha1_init() called\n"); |
311 | | # endif |
312 | | return SHA1_Init(EVP_MD_CTX_md_data(ctx)); |
313 | 0 | } |
314 | | |
315 | | static int test_sha1_update(EVP_MD_CTX *ctx, const void *data, size_t count) |
316 | 0 | { |
317 | | # ifdef TEST_ENG_OPENSSL_SHA_P_UPDATE |
318 | | fprintf(stderr, "(TEST_ENG_OPENSSL_SHA) test_sha1_update() called\n"); |
319 | | # endif |
320 | | return SHA1_Update(EVP_MD_CTX_md_data(ctx), data, count); |
321 | 0 | } |
322 | | |
323 | | static int test_sha1_final(EVP_MD_CTX *ctx, unsigned char *md) |
324 | 0 | { |
325 | | # ifdef TEST_ENG_OPENSSL_SHA_P_FINAL |
326 | | fprintf(stderr, "(TEST_ENG_OPENSSL_SHA) test_sha1_final() called\n"); |
327 | | # endif |
328 | | return SHA1_Final(md, EVP_MD_CTX_md_data(ctx)); |
329 | 0 | } |
330 | | |
331 | | static EVP_MD *sha1_md = NULL; |
332 | | static const EVP_MD *test_sha_md(void) |
333 | 0 | { |
334 | 0 | if (sha1_md == NULL) { |
335 | 0 | EVP_MD *md; |
336 | 0 |
|
337 | 0 | if ((md = EVP_MD_meth_new(NID_sha1, NID_sha1WithRSAEncryption)) == NULL |
338 | 0 | || !EVP_MD_meth_set_result_size(md, SHA_DIGEST_LENGTH) |
339 | 0 | || !EVP_MD_meth_set_input_blocksize(md, SHA_CBLOCK) |
340 | 0 | || !EVP_MD_meth_set_app_datasize(md, |
341 | 0 | sizeof(EVP_MD *) + sizeof(SHA_CTX)) |
342 | 0 | || !EVP_MD_meth_set_flags(md, 0) |
343 | 0 | || !EVP_MD_meth_set_init(md, test_sha1_init) |
344 | 0 | || !EVP_MD_meth_set_update(md, test_sha1_update) |
345 | 0 | || !EVP_MD_meth_set_final(md, test_sha1_final)) { |
346 | 0 | EVP_MD_meth_free(md); |
347 | 0 | md = NULL; |
348 | 0 | } |
349 | 0 | sha1_md = md; |
350 | 0 | } |
351 | 0 | return sha1_md; |
352 | 0 | } |
353 | | static void test_sha_md_destroy(void) |
354 | 0 | { |
355 | 0 | EVP_MD_meth_free(sha1_md); |
356 | 0 | sha1_md = NULL; |
357 | 0 | } |
358 | | static int test_digest_nids(const int **nids) |
359 | 0 | { |
360 | 0 | static int digest_nids[2] = { 0, 0 }; |
361 | 0 | static int pos = 0; |
362 | 0 | static int init = 0; |
363 | 0 |
|
364 | 0 | if (!init) { |
365 | 0 | const EVP_MD *md; |
366 | 0 | if ((md = test_sha_md()) != NULL) |
367 | 0 | digest_nids[pos++] = EVP_MD_type(md); |
368 | 0 | digest_nids[pos] = 0; |
369 | 0 | init = 1; |
370 | 0 | } |
371 | 0 | *nids = digest_nids; |
372 | 0 | return pos; |
373 | 0 | } |
374 | | |
375 | | static int openssl_digests(ENGINE *e, const EVP_MD **digest, |
376 | | const int **nids, int nid) |
377 | 0 | { |
378 | 0 | if (!digest) { |
379 | 0 | /* We are returning a list of supported nids */ |
380 | 0 | return test_digest_nids(nids); |
381 | 0 | } |
382 | 0 | /* We are being asked for a specific digest */ |
383 | 0 | if (nid == NID_sha1) |
384 | 0 | *digest = test_sha_md(); |
385 | 0 | else { |
386 | | # ifdef TEST_ENG_OPENSSL_SHA_OTHERS |
387 | | fprintf(stderr, "(TEST_ENG_OPENSSL_SHA) returning NULL for " |
388 | | "nid %d\n", nid); |
389 | | # endif |
390 | | *digest = NULL; |
391 | 0 | return 0; |
392 | 0 | } |
393 | 0 | return 1; |
394 | 0 | } |
395 | | #endif |
396 | | |
397 | | #ifdef TEST_ENG_OPENSSL_PKEY |
398 | | static EVP_PKEY *openssl_load_privkey(ENGINE *eng, const char *key_id, |
399 | | UI_METHOD *ui_method, |
400 | | void *callback_data) |
401 | 0 | { |
402 | 0 | BIO *in; |
403 | 0 | EVP_PKEY *key; |
404 | 0 | fprintf(stderr, "(TEST_ENG_OPENSSL_PKEY)Loading Private key %s\n", |
405 | 0 | key_id); |
406 | 0 | in = BIO_new_file(key_id, "r"); |
407 | 0 | if (!in) |
408 | 0 | return NULL; |
409 | 0 | key = PEM_read_bio_PrivateKey(in, NULL, 0, NULL); |
410 | 0 | BIO_free(in); |
411 | 0 | return key; |
412 | 0 | } |
413 | | #endif |
414 | | |
415 | | #ifdef TEST_ENG_OPENSSL_HMAC |
416 | | |
417 | | /* |
418 | | * Experimental HMAC redirection implementation: mainly copied from |
419 | | * hm_pmeth.c |
420 | | */ |
421 | | |
422 | | /* HMAC pkey context structure */ |
423 | | |
424 | | typedef struct { |
425 | | const EVP_MD *md; /* MD for HMAC use */ |
426 | | ASN1_OCTET_STRING ktmp; /* Temp storage for key */ |
427 | | HMAC_CTX *ctx; |
428 | | } OSSL_HMAC_PKEY_CTX; |
429 | | |
430 | | static int ossl_hmac_init(EVP_PKEY_CTX *ctx) |
431 | | { |
432 | | OSSL_HMAC_PKEY_CTX *hctx; |
433 | | |
434 | | if ((hctx = OPENSSL_zalloc(sizeof(*hctx))) == NULL) { |
435 | | ENGINEerr(ENGINE_F_OSSL_HMAC_INIT, ERR_R_MALLOC_FAILURE); |
436 | | return 0; |
437 | | } |
438 | | hctx->ktmp.type = V_ASN1_OCTET_STRING; |
439 | | hctx->ctx = HMAC_CTX_new(); |
440 | | if (hctx->ctx == NULL) { |
441 | | OPENSSL_free(hctx); |
442 | | return 0; |
443 | | } |
444 | | EVP_PKEY_CTX_set_data(ctx, hctx); |
445 | | EVP_PKEY_CTX_set0_keygen_info(ctx, NULL, 0); |
446 | | # ifdef TEST_ENG_OPENSSL_HMAC_INIT |
447 | | fprintf(stderr, "(TEST_ENG_OPENSSL_HMAC) ossl_hmac_init() called\n"); |
448 | | # endif |
449 | | return 1; |
450 | | } |
451 | | |
452 | | static void ossl_hmac_cleanup(EVP_PKEY_CTX *ctx); |
453 | | |
454 | | static int ossl_hmac_copy(EVP_PKEY_CTX *dst, EVP_PKEY_CTX *src) |
455 | | { |
456 | | OSSL_HMAC_PKEY_CTX *sctx, *dctx; |
457 | | |
458 | | /* allocate memory for dst->data and a new HMAC_CTX in dst->data->ctx */ |
459 | | if (!ossl_hmac_init(dst)) |
460 | | return 0; |
461 | | sctx = EVP_PKEY_CTX_get_data(src); |
462 | | dctx = EVP_PKEY_CTX_get_data(dst); |
463 | | dctx->md = sctx->md; |
464 | | if (!HMAC_CTX_copy(dctx->ctx, sctx->ctx)) |
465 | | goto err; |
466 | | if (sctx->ktmp.data) { |
467 | | if (!ASN1_OCTET_STRING_set(&dctx->ktmp, |
468 | | sctx->ktmp.data, sctx->ktmp.length)) |
469 | | goto err; |
470 | | } |
471 | | return 1; |
472 | | err: |
473 | | /* release HMAC_CTX in dst->data->ctx and memory allocated for dst->data */ |
474 | | ossl_hmac_cleanup(dst); |
475 | | return 0; |
476 | | } |
477 | | |
478 | | static void ossl_hmac_cleanup(EVP_PKEY_CTX *ctx) |
479 | | { |
480 | | OSSL_HMAC_PKEY_CTX *hctx = EVP_PKEY_CTX_get_data(ctx); |
481 | | |
482 | | if (hctx) { |
483 | | HMAC_CTX_free(hctx->ctx); |
484 | | OPENSSL_clear_free(hctx->ktmp.data, hctx->ktmp.length); |
485 | | OPENSSL_free(hctx); |
486 | | EVP_PKEY_CTX_set_data(ctx, NULL); |
487 | | } |
488 | | } |
489 | | |
490 | | static int ossl_hmac_keygen(EVP_PKEY_CTX *ctx, EVP_PKEY *pkey) |
491 | | { |
492 | | ASN1_OCTET_STRING *hkey = NULL; |
493 | | OSSL_HMAC_PKEY_CTX *hctx = EVP_PKEY_CTX_get_data(ctx); |
494 | | if (!hctx->ktmp.data) |
495 | | return 0; |
496 | | hkey = ASN1_OCTET_STRING_dup(&hctx->ktmp); |
497 | | if (!hkey) |
498 | | return 0; |
499 | | EVP_PKEY_assign(pkey, EVP_PKEY_HMAC, hkey); |
500 | | |
501 | | return 1; |
502 | | } |
503 | | |
504 | | static int ossl_int_update(EVP_MD_CTX *ctx, const void *data, size_t count) |
505 | | { |
506 | | OSSL_HMAC_PKEY_CTX *hctx = EVP_PKEY_CTX_get_data(EVP_MD_CTX_pkey_ctx(ctx)); |
507 | | if (!HMAC_Update(hctx->ctx, data, count)) |
508 | | return 0; |
509 | | return 1; |
510 | | } |
511 | | |
512 | | static int ossl_hmac_signctx_init(EVP_PKEY_CTX *ctx, EVP_MD_CTX *mctx) |
513 | | { |
514 | | EVP_MD_CTX_set_flags(mctx, EVP_MD_CTX_FLAG_NO_INIT); |
515 | | EVP_MD_CTX_set_update_fn(mctx, ossl_int_update); |
516 | | return 1; |
517 | | } |
518 | | |
519 | | static int ossl_hmac_signctx(EVP_PKEY_CTX *ctx, unsigned char *sig, |
520 | | size_t *siglen, EVP_MD_CTX *mctx) |
521 | | { |
522 | | unsigned int hlen; |
523 | | OSSL_HMAC_PKEY_CTX *hctx = EVP_PKEY_CTX_get_data(ctx); |
524 | | int l = EVP_MD_CTX_size(mctx); |
525 | | |
526 | | if (l < 0) |
527 | | return 0; |
528 | | *siglen = l; |
529 | | if (!sig) |
530 | | return 1; |
531 | | |
532 | | if (!HMAC_Final(hctx->ctx, sig, &hlen)) |
533 | | return 0; |
534 | | *siglen = (size_t)hlen; |
535 | | return 1; |
536 | | } |
537 | | |
538 | | static int ossl_hmac_ctrl(EVP_PKEY_CTX *ctx, int type, int p1, void *p2) |
539 | | { |
540 | | OSSL_HMAC_PKEY_CTX *hctx = EVP_PKEY_CTX_get_data(ctx); |
541 | | EVP_PKEY *pk; |
542 | | ASN1_OCTET_STRING *key; |
543 | | switch (type) { |
544 | | |
545 | | case EVP_PKEY_CTRL_SET_MAC_KEY: |
546 | | if ((!p2 && p1 > 0) || (p1 < -1)) |
547 | | return 0; |
548 | | if (!ASN1_OCTET_STRING_set(&hctx->ktmp, p2, p1)) |
549 | | return 0; |
550 | | break; |
551 | | |
552 | | case EVP_PKEY_CTRL_MD: |
553 | | hctx->md = p2; |
554 | | break; |
555 | | |
556 | | case EVP_PKEY_CTRL_DIGESTINIT: |
557 | | pk = EVP_PKEY_CTX_get0_pkey(ctx); |
558 | | key = EVP_PKEY_get0(pk); |
559 | | if (!HMAC_Init_ex(hctx->ctx, key->data, key->length, hctx->md, NULL)) |
560 | | return 0; |
561 | | break; |
562 | | |
563 | | default: |
564 | | return -2; |
565 | | |
566 | | } |
567 | | return 1; |
568 | | } |
569 | | |
570 | | static int ossl_hmac_ctrl_str(EVP_PKEY_CTX *ctx, |
571 | | const char *type, const char *value) |
572 | | { |
573 | | if (!value) { |
574 | | return 0; |
575 | | } |
576 | | if (strcmp(type, "key") == 0) { |
577 | | void *p = (void *)value; |
578 | | return ossl_hmac_ctrl(ctx, EVP_PKEY_CTRL_SET_MAC_KEY, -1, p); |
579 | | } |
580 | | if (strcmp(type, "hexkey") == 0) { |
581 | | unsigned char *key; |
582 | | int r; |
583 | | long keylen; |
584 | | key = OPENSSL_hexstr2buf(value, &keylen); |
585 | | if (!key) |
586 | | return 0; |
587 | | r = ossl_hmac_ctrl(ctx, EVP_PKEY_CTRL_SET_MAC_KEY, keylen, key); |
588 | | OPENSSL_free(key); |
589 | | return r; |
590 | | } |
591 | | return -2; |
592 | | } |
593 | | |
594 | | static EVP_PKEY_METHOD *ossl_hmac_meth; |
595 | | |
596 | | static int ossl_register_hmac_meth(void) |
597 | | { |
598 | | EVP_PKEY_METHOD *meth; |
599 | | meth = EVP_PKEY_meth_new(EVP_PKEY_HMAC, 0); |
600 | | if (meth == NULL) |
601 | | return 0; |
602 | | EVP_PKEY_meth_set_init(meth, ossl_hmac_init); |
603 | | EVP_PKEY_meth_set_copy(meth, ossl_hmac_copy); |
604 | | EVP_PKEY_meth_set_cleanup(meth, ossl_hmac_cleanup); |
605 | | |
606 | | EVP_PKEY_meth_set_keygen(meth, 0, ossl_hmac_keygen); |
607 | | |
608 | | EVP_PKEY_meth_set_signctx(meth, ossl_hmac_signctx_init, |
609 | | ossl_hmac_signctx); |
610 | | |
611 | | EVP_PKEY_meth_set_ctrl(meth, ossl_hmac_ctrl, ossl_hmac_ctrl_str); |
612 | | ossl_hmac_meth = meth; |
613 | | return 1; |
614 | | } |
615 | | |
616 | | static int ossl_pkey_meths(ENGINE *e, EVP_PKEY_METHOD **pmeth, |
617 | | const int **nids, int nid) |
618 | | { |
619 | | static int ossl_pkey_nids[] = { |
620 | | EVP_PKEY_HMAC, |
621 | | 0 |
622 | | }; |
623 | | if (!pmeth) { |
624 | | *nids = ossl_pkey_nids; |
625 | | return 1; |
626 | | } |
627 | | |
628 | | if (nid == EVP_PKEY_HMAC) { |
629 | | *pmeth = ossl_hmac_meth; |
630 | | return 1; |
631 | | } |
632 | | |
633 | | *pmeth = NULL; |
634 | | return 0; |
635 | | } |
636 | | |
637 | | #endif |
638 | | |
639 | | int openssl_destroy(ENGINE *e) |
640 | 0 | { |
641 | 0 | test_sha_md_destroy(); |
642 | 0 | #ifdef TEST_ENG_OPENSSL_RC4 |
643 | 0 | test_r4_cipher_destroy(); |
644 | 0 | test_r4_40_cipher_destroy(); |
645 | 0 | #endif |
646 | 0 | return 1; |
647 | 0 | } |
648 | | |