Coverage Report

Created: 2025-10-28 06:56

next uncovered line (L), next uncovered region (R), next uncovered branch (B)
/src/openssl/providers/implementations/signature/sm2_sig.c
Line
Count
Source
1
/*
2
 * Copyright 2020-2025 The OpenSSL Project Authors. All Rights Reserved.
3
 *
4
 * Licensed under the Apache License 2.0 (the "License").  You may not use
5
 * this file except in compliance with the License.  You can obtain a copy
6
 * in the file LICENSE in the source distribution or at
7
 * https://www.openssl.org/source/license.html
8
 */
9
10
/*
11
 * ECDSA low level APIs are deprecated for public use, but still ok for
12
 * internal use - SM2 implementation uses ECDSA_size() function.
13
 */
14
#include "internal/deprecated.h"
15
16
#include <string.h> /* memcpy */
17
#include <openssl/crypto.h>
18
#include <openssl/core_dispatch.h>
19
#include <openssl/core_names.h>
20
#include <openssl/dsa.h>
21
#include <openssl/params.h>
22
#include <openssl/evp.h>
23
#include <openssl/err.h>
24
#include <openssl/proverr.h>
25
#include "internal/nelem.h"
26
#include "internal/sizes.h"
27
#include "internal/cryptlib.h"
28
#include "internal/sm3.h"
29
#include "prov/implementations.h"
30
#include "prov/providercommon.h"
31
#include "prov/provider_ctx.h"
32
#include "crypto/ec.h"
33
#include "crypto/sm2.h"
34
#include "prov/der_sm2.h"
35
#include "providers/implementations/signature/sm2_sig.inc"
36
37
static OSSL_FUNC_signature_newctx_fn sm2sig_newctx;
38
static OSSL_FUNC_signature_sign_init_fn sm2sig_signature_init;
39
static OSSL_FUNC_signature_verify_init_fn sm2sig_signature_init;
40
static OSSL_FUNC_signature_sign_fn sm2sig_sign;
41
static OSSL_FUNC_signature_verify_fn sm2sig_verify;
42
static OSSL_FUNC_signature_digest_sign_init_fn sm2sig_digest_signverify_init;
43
static OSSL_FUNC_signature_digest_sign_update_fn sm2sig_digest_signverify_update;
44
static OSSL_FUNC_signature_digest_sign_final_fn sm2sig_digest_sign_final;
45
static OSSL_FUNC_signature_digest_verify_init_fn sm2sig_digest_signverify_init;
46
static OSSL_FUNC_signature_digest_verify_update_fn sm2sig_digest_signverify_update;
47
static OSSL_FUNC_signature_digest_verify_final_fn sm2sig_digest_verify_final;
48
static OSSL_FUNC_signature_freectx_fn sm2sig_freectx;
49
static OSSL_FUNC_signature_dupctx_fn sm2sig_dupctx;
50
static OSSL_FUNC_signature_get_ctx_params_fn sm2sig_get_ctx_params;
51
static OSSL_FUNC_signature_gettable_ctx_params_fn sm2sig_gettable_ctx_params;
52
static OSSL_FUNC_signature_set_ctx_params_fn sm2sig_set_ctx_params;
53
static OSSL_FUNC_signature_settable_ctx_params_fn sm2sig_settable_ctx_params;
54
static OSSL_FUNC_signature_get_ctx_md_params_fn sm2sig_get_ctx_md_params;
55
static OSSL_FUNC_signature_gettable_ctx_md_params_fn sm2sig_gettable_ctx_md_params;
56
static OSSL_FUNC_signature_set_ctx_md_params_fn sm2sig_set_ctx_md_params;
57
static OSSL_FUNC_signature_settable_ctx_md_params_fn sm2sig_settable_ctx_md_params;
58
59
/*
60
 * What's passed as an actual key is defined by the KEYMGMT interface.
61
 * We happen to know that our KEYMGMT simply passes EC structures, so
62
 * we use that here too.
63
 */
64
typedef struct {
65
    OSSL_LIB_CTX *libctx;
66
    char *propq;
67
    EC_KEY *ec;
68
69
    /*
70
     * Flag to determine if the 'z' digest needs to be computed and fed to the
71
     * hash function.
72
     * This flag should be set on initialization and the computation should
73
     * be performed only once, on first update.
74
     */
75
    unsigned int flag_compute_z_digest : 1;
76
77
    char mdname[OSSL_MAX_NAME_SIZE];
78
79
    /* The Algorithm Identifier of the combined signature algorithm */
80
    unsigned char aid_buf[OSSL_MAX_ALGORITHM_ID_SIZE];
81
    size_t  aid_len;
82
83
    /* main digest */
84
    EVP_MD *md;
85
    EVP_MD_CTX *mdctx;
86
    size_t mdsize;
87
88
    /* SM2 ID used for calculating the Z value */
89
    unsigned char *id;
90
    size_t id_len;
91
} PROV_SM2_CTX;
92
93
static int sm2sig_set_mdname(PROV_SM2_CTX *psm2ctx, const char *mdname)
94
0
{
95
0
    if (psm2ctx->md == NULL) /* We need an SM3 md to compare with */
96
0
        psm2ctx->md = EVP_MD_fetch(psm2ctx->libctx, psm2ctx->mdname,
97
0
                                   psm2ctx->propq);
98
0
    if (psm2ctx->md == NULL)
99
0
        return 0;
100
101
    /* XOF digests don't work */
102
0
    if (EVP_MD_xof(psm2ctx->md)) {
103
0
        ERR_raise(ERR_LIB_PROV, PROV_R_XOF_DIGESTS_NOT_ALLOWED);
104
0
        return 0;
105
0
    }
106
107
0
    if (mdname == NULL)
108
0
        return 1;
109
110
0
    if (strlen(mdname) >= sizeof(psm2ctx->mdname)
111
0
        || !EVP_MD_is_a(psm2ctx->md, mdname)) {
112
0
        ERR_raise_data(ERR_LIB_PROV, PROV_R_INVALID_DIGEST, "digest=%s",
113
0
                       mdname);
114
0
        return 0;
115
0
    }
116
117
0
    OPENSSL_strlcpy(psm2ctx->mdname, mdname, sizeof(psm2ctx->mdname));
118
0
    return 1;
119
0
}
120
121
static void *sm2sig_newctx(void *provctx, const char *propq)
122
0
{
123
0
    PROV_SM2_CTX *ctx = OPENSSL_zalloc(sizeof(PROV_SM2_CTX));
124
125
0
    if (ctx == NULL)
126
0
        return NULL;
127
128
0
    ctx->libctx = PROV_LIBCTX_OF(provctx);
129
0
    if (propq != NULL && (ctx->propq = OPENSSL_strdup(propq)) == NULL) {
130
0
        OPENSSL_free(ctx);
131
0
        return NULL;
132
0
    }
133
0
    ctx->mdsize = SM3_DIGEST_LENGTH;
134
0
    strcpy(ctx->mdname, OSSL_DIGEST_NAME_SM3);
135
0
    return ctx;
136
0
}
137
138
static int sm2sig_signature_init(void *vpsm2ctx, void *ec,
139
                                 const OSSL_PARAM params[])
140
0
{
141
0
    PROV_SM2_CTX *psm2ctx = (PROV_SM2_CTX *)vpsm2ctx;
142
143
0
    if (!ossl_prov_is_running()
144
0
            || psm2ctx == NULL)
145
0
        return 0;
146
147
0
    if (ec == NULL && psm2ctx->ec == NULL) {
148
0
        ERR_raise(ERR_LIB_PROV, PROV_R_NO_KEY_SET);
149
0
        return 0;
150
0
    }
151
152
0
    if (ec != NULL) {
153
0
        if (!EC_KEY_up_ref(ec))
154
0
            return 0;
155
0
        EC_KEY_free(psm2ctx->ec);
156
0
        psm2ctx->ec = ec;
157
0
    }
158
159
0
    return sm2sig_set_ctx_params(psm2ctx, params);
160
0
}
161
162
static int sm2sig_sign(void *vpsm2ctx, unsigned char *sig, size_t *siglen,
163
                       size_t sigsize, const unsigned char *tbs, size_t tbslen)
164
0
{
165
0
    PROV_SM2_CTX *ctx = (PROV_SM2_CTX *)vpsm2ctx;
166
0
    int ret;
167
0
    unsigned int sltmp;
168
    /* SM2 uses ECDSA_size as well */
169
0
    size_t ecsize = ECDSA_size(ctx->ec);
170
171
0
    if (sig == NULL) {
172
0
        *siglen = ecsize;
173
0
        return 1;
174
0
    }
175
176
0
    if (sigsize < (size_t)ecsize)
177
0
        return 0;
178
179
0
    if (ctx->mdsize != 0 && tbslen != ctx->mdsize)
180
0
        return 0;
181
182
0
    ret = ossl_sm2_internal_sign(tbs, (int)tbslen, sig, &sltmp, ctx->ec);
183
0
    if (ret <= 0)
184
0
        return 0;
185
186
0
    *siglen = sltmp;
187
0
    return 1;
188
0
}
189
190
static int sm2sig_verify(void *vpsm2ctx, const unsigned char *sig, size_t siglen,
191
                         const unsigned char *tbs, size_t tbslen)
192
0
{
193
0
    PROV_SM2_CTX *ctx = (PROV_SM2_CTX *)vpsm2ctx;
194
195
0
    if (ctx->mdsize != 0 && tbslen != ctx->mdsize)
196
0
        return 0;
197
198
0
    return ossl_sm2_internal_verify(tbs, (int)tbslen, sig, (int)siglen, ctx->ec);
199
0
}
200
201
static void free_md(PROV_SM2_CTX *ctx)
202
0
{
203
0
    EVP_MD_CTX_free(ctx->mdctx);
204
0
    EVP_MD_free(ctx->md);
205
0
    ctx->mdctx = NULL;
206
0
    ctx->md = NULL;
207
0
}
208
209
static int sm2sig_digest_signverify_init(void *vpsm2ctx, const char *mdname,
210
                                         void *ec, const OSSL_PARAM params[])
211
0
{
212
0
    PROV_SM2_CTX *ctx = (PROV_SM2_CTX *)vpsm2ctx;
213
0
    int md_nid;
214
0
    WPACKET pkt;
215
0
    int ret = 0;
216
0
    unsigned char *aid = NULL;
217
218
0
    if (!sm2sig_signature_init(vpsm2ctx, ec, params)
219
0
        || !sm2sig_set_mdname(ctx, mdname))
220
0
        return ret;
221
222
0
    if (ctx->mdctx == NULL) {
223
0
        ctx->mdctx = EVP_MD_CTX_new();
224
0
        if (ctx->mdctx == NULL)
225
0
            goto error;
226
0
    }
227
228
0
    md_nid = EVP_MD_get_type(ctx->md);
229
230
    /*
231
     * We do not care about DER writing errors.
232
     * All it really means is that for some reason, there's no
233
     * AlgorithmIdentifier to be had, but the operation itself is
234
     * still valid, just as long as it's not used to construct
235
     * anything that needs an AlgorithmIdentifier.
236
     */
237
0
    ctx->aid_len = 0;
238
0
    if (WPACKET_init_der(&pkt, ctx->aid_buf, sizeof(ctx->aid_buf))
239
0
        && ossl_DER_w_algorithmIdentifier_SM2_with_MD(&pkt, -1, ctx->ec, md_nid)
240
0
        && WPACKET_finish(&pkt)) {
241
0
        WPACKET_get_total_written(&pkt, &ctx->aid_len);
242
0
        aid = WPACKET_get_curr(&pkt);
243
0
    }
244
0
    WPACKET_cleanup(&pkt);
245
0
    if (aid != NULL && ctx->aid_len != 0)
246
0
        memmove(ctx->aid_buf, aid, ctx->aid_len);
247
248
0
    if (!EVP_DigestInit_ex2(ctx->mdctx, ctx->md, params))
249
0
        goto error;
250
251
0
    ctx->flag_compute_z_digest = 1;
252
253
0
    ret = 1;
254
255
0
 error:
256
0
    return ret;
257
0
}
258
259
static int sm2sig_compute_z_digest(PROV_SM2_CTX *ctx)
260
0
{
261
0
    uint8_t *z = NULL;
262
0
    int ret = 1;
263
264
0
    if (ctx->flag_compute_z_digest) {
265
        /* Only do this once */
266
0
        ctx->flag_compute_z_digest = 0;
267
268
0
        if ((z = OPENSSL_zalloc(ctx->mdsize)) == NULL
269
            /* get hashed prefix 'z' of tbs message */
270
0
            || !ossl_sm2_compute_z_digest(z, ctx->md, ctx->id, ctx->id_len,
271
0
                                          ctx->ec)
272
0
            || !EVP_DigestUpdate(ctx->mdctx, z, ctx->mdsize))
273
0
            ret = 0;
274
0
        OPENSSL_free(z);
275
0
    }
276
277
0
    return ret;
278
0
}
279
280
int sm2sig_digest_signverify_update(void *vpsm2ctx, const unsigned char *data,
281
                                    size_t datalen)
282
0
{
283
0
    PROV_SM2_CTX *psm2ctx = (PROV_SM2_CTX *)vpsm2ctx;
284
285
0
    if (psm2ctx == NULL || psm2ctx->mdctx == NULL)
286
0
        return 0;
287
288
0
    return sm2sig_compute_z_digest(psm2ctx)
289
0
        && EVP_DigestUpdate(psm2ctx->mdctx, data, datalen);
290
0
}
291
292
int sm2sig_digest_sign_final(void *vpsm2ctx, unsigned char *sig, size_t *siglen,
293
                             size_t sigsize)
294
0
{
295
0
    PROV_SM2_CTX *psm2ctx = (PROV_SM2_CTX *)vpsm2ctx;
296
0
    unsigned char digest[EVP_MAX_MD_SIZE];
297
0
    unsigned int dlen = 0;
298
299
0
    if (psm2ctx == NULL || psm2ctx->mdctx == NULL)
300
0
        return 0;
301
302
    /*
303
     * If sig is NULL then we're just finding out the sig size. Other fields
304
     * are ignored. Defer to sm2sig_sign.
305
     */
306
0
    if (sig != NULL) {
307
0
        if (!(sm2sig_compute_z_digest(psm2ctx)
308
0
              && EVP_DigestFinal_ex(psm2ctx->mdctx, digest, &dlen)))
309
0
            return 0;
310
0
    }
311
312
0
    return sm2sig_sign(vpsm2ctx, sig, siglen, sigsize, digest, (size_t)dlen);
313
0
}
314
315
int sm2sig_digest_verify_final(void *vpsm2ctx, const unsigned char *sig,
316
                               size_t siglen)
317
0
{
318
0
    PROV_SM2_CTX *psm2ctx = (PROV_SM2_CTX *)vpsm2ctx;
319
0
    unsigned char digest[EVP_MAX_MD_SIZE];
320
0
    unsigned int dlen = 0;
321
0
    int md_size;
322
323
0
    if (psm2ctx == NULL || psm2ctx->mdctx == NULL)
324
0
        return 0;
325
326
0
    md_size = EVP_MD_get_size(psm2ctx->md);
327
0
    if (md_size <= 0 || md_size > (int)sizeof(digest))
328
0
        return 0;
329
330
0
    if (!(sm2sig_compute_z_digest(psm2ctx)
331
0
          && EVP_DigestFinal_ex(psm2ctx->mdctx, digest, &dlen)))
332
0
        return 0;
333
334
0
    return sm2sig_verify(vpsm2ctx, sig, siglen, digest, (size_t)dlen);
335
0
}
336
337
static void sm2sig_freectx(void *vpsm2ctx)
338
0
{
339
0
    PROV_SM2_CTX *ctx = (PROV_SM2_CTX *)vpsm2ctx;
340
341
0
    free_md(ctx);
342
0
    EC_KEY_free(ctx->ec);
343
0
    OPENSSL_free(ctx->propq);
344
0
    OPENSSL_free(ctx->id);
345
0
    OPENSSL_free(ctx);
346
0
}
347
348
static void *sm2sig_dupctx(void *vpsm2ctx)
349
0
{
350
0
    PROV_SM2_CTX *srcctx = (PROV_SM2_CTX *)vpsm2ctx;
351
0
    PROV_SM2_CTX *dstctx;
352
353
0
    dstctx = OPENSSL_zalloc(sizeof(*srcctx));
354
0
    if (dstctx == NULL)
355
0
        return NULL;
356
357
0
    *dstctx = *srcctx;
358
0
    dstctx->ec = NULL;
359
0
    dstctx->propq = NULL;
360
0
    dstctx->md = NULL;
361
0
    dstctx->mdctx = NULL;
362
0
    dstctx->id = NULL;
363
364
0
    if (srcctx->ec != NULL && !EC_KEY_up_ref(srcctx->ec))
365
0
        goto err;
366
0
    dstctx->ec = srcctx->ec;
367
368
0
    if (srcctx->propq != NULL) {
369
0
        dstctx->propq = OPENSSL_strdup(srcctx->propq);
370
0
        if (dstctx->propq == NULL)
371
0
            goto err;
372
0
    }
373
374
0
    if (srcctx->md != NULL && !EVP_MD_up_ref(srcctx->md))
375
0
        goto err;
376
0
    dstctx->md = srcctx->md;
377
378
0
    if (srcctx->mdctx != NULL) {
379
0
        dstctx->mdctx = EVP_MD_CTX_new();
380
0
        if (dstctx->mdctx == NULL
381
0
                || !EVP_MD_CTX_copy_ex(dstctx->mdctx, srcctx->mdctx))
382
0
            goto err;
383
0
    }
384
385
0
    if (srcctx->id != NULL) {
386
0
        dstctx->id = OPENSSL_malloc(srcctx->id_len);
387
0
        if (dstctx->id == NULL)
388
0
            goto err;
389
0
        dstctx->id_len = srcctx->id_len;
390
0
        memcpy(dstctx->id, srcctx->id, srcctx->id_len);
391
0
    }
392
393
0
    return dstctx;
394
0
 err:
395
0
    sm2sig_freectx(dstctx);
396
0
    return NULL;
397
0
}
398
399
static int sm2sig_get_ctx_params(void *vpsm2ctx, OSSL_PARAM *params)
400
0
{
401
0
    PROV_SM2_CTX *psm2ctx = (PROV_SM2_CTX *)vpsm2ctx;
402
0
    struct sm2sig_get_ctx_params_st p;
403
404
0
    if (psm2ctx == NULL || !sm2sig_get_ctx_params_decoder(params, &p))
405
0
        return 0;
406
407
0
    if (p.algid != NULL
408
0
        && !OSSL_PARAM_set_octet_string(p.algid,
409
0
                                        psm2ctx->aid_len == 0 ? NULL : psm2ctx->aid_buf,
410
0
                                        psm2ctx->aid_len))
411
0
        return 0;
412
413
0
    if (p.size != NULL && !OSSL_PARAM_set_size_t(p.size, psm2ctx->mdsize))
414
0
        return 0;
415
416
0
    if (p.digest != NULL
417
0
            && !OSSL_PARAM_set_utf8_string(p.digest, psm2ctx->md == NULL
418
0
                                                     ? psm2ctx->mdname
419
0
                                                     : EVP_MD_get0_name(psm2ctx->md)))
420
0
        return 0;
421
422
0
    return 1;
423
0
}
424
425
static const OSSL_PARAM *sm2sig_gettable_ctx_params(ossl_unused void *vpsm2ctx,
426
                                                    ossl_unused void *provctx)
427
0
{
428
0
    return sm2sig_get_ctx_params_list;
429
0
}
430
431
static int sm2sig_set_ctx_params(void *vpsm2ctx, const OSSL_PARAM params[])
432
0
{
433
0
    PROV_SM2_CTX *psm2ctx = (PROV_SM2_CTX *)vpsm2ctx;
434
0
    struct sm2sig_set_ctx_params_st p;
435
0
    size_t mdsize;
436
437
0
    if (psm2ctx == NULL || !sm2sig_set_ctx_params_decoder(params, &p))
438
0
        return 0;
439
440
0
    if (p.distid != NULL) {
441
0
        void *tmp_id = NULL;
442
0
        size_t tmp_idlen = 0;
443
444
        /*
445
         * If the 'z' digest has already been computed, the ID is set too late
446
         */
447
0
        if (!psm2ctx->flag_compute_z_digest)
448
0
            return 0;
449
450
0
        if (p.distid->data_size != 0
451
0
            && !OSSL_PARAM_get_octet_string(p.distid, &tmp_id, 0, &tmp_idlen))
452
0
            return 0;
453
0
        OPENSSL_free(psm2ctx->id);
454
0
        psm2ctx->id = tmp_id;
455
0
        psm2ctx->id_len = tmp_idlen;
456
0
    }
457
458
    /*
459
     * The following code checks that the size is the same as the SM3 digest
460
     * size returning an error otherwise.
461
     * If there is ever any different digest algorithm allowed with SM2
462
     * this needs to be adjusted accordingly.
463
     */
464
0
    if (p.size != NULL && (!OSSL_PARAM_get_size_t(p.size, &mdsize)
465
0
                           || mdsize != psm2ctx->mdsize))
466
0
        return 0;
467
468
0
    if (p.digest != NULL) {
469
0
        char *mdname = NULL;
470
471
0
        if (!OSSL_PARAM_get_utf8_string(p.digest, &mdname, 0))
472
0
            return 0;
473
0
        if (!sm2sig_set_mdname(psm2ctx, mdname)) {
474
0
            OPENSSL_free(mdname);
475
0
            return 0;
476
0
        }
477
0
        OPENSSL_free(mdname);
478
0
    }
479
480
0
    return 1;
481
0
}
482
483
static const OSSL_PARAM *sm2sig_settable_ctx_params(ossl_unused void *vpsm2ctx,
484
                                                    ossl_unused void *provctx)
485
0
{
486
0
    return sm2sig_set_ctx_params_list;
487
0
}
488
489
static int sm2sig_get_ctx_md_params(void *vpsm2ctx, OSSL_PARAM *params)
490
0
{
491
0
    PROV_SM2_CTX *psm2ctx = (PROV_SM2_CTX *)vpsm2ctx;
492
493
0
    if (psm2ctx->mdctx == NULL)
494
0
        return 0;
495
496
0
    return EVP_MD_CTX_get_params(psm2ctx->mdctx, params);
497
0
}
498
499
static const OSSL_PARAM *sm2sig_gettable_ctx_md_params(void *vpsm2ctx)
500
0
{
501
0
    PROV_SM2_CTX *psm2ctx = (PROV_SM2_CTX *)vpsm2ctx;
502
503
0
    if (psm2ctx->md == NULL)
504
0
        return 0;
505
506
0
    return EVP_MD_gettable_ctx_params(psm2ctx->md);
507
0
}
508
509
static int sm2sig_set_ctx_md_params(void *vpsm2ctx, const OSSL_PARAM params[])
510
0
{
511
0
    PROV_SM2_CTX *psm2ctx = (PROV_SM2_CTX *)vpsm2ctx;
512
513
0
    if (psm2ctx->mdctx == NULL)
514
0
        return 0;
515
516
0
    return EVP_MD_CTX_set_params(psm2ctx->mdctx, params);
517
0
}
518
519
static const OSSL_PARAM *sm2sig_settable_ctx_md_params(void *vpsm2ctx)
520
0
{
521
0
    PROV_SM2_CTX *psm2ctx = (PROV_SM2_CTX *)vpsm2ctx;
522
523
0
    if (psm2ctx->md == NULL)
524
0
        return 0;
525
526
0
    return EVP_MD_settable_ctx_params(psm2ctx->md);
527
0
}
528
529
const OSSL_DISPATCH ossl_sm2_signature_functions[] = {
530
    { OSSL_FUNC_SIGNATURE_NEWCTX, (void (*)(void))sm2sig_newctx },
531
    { OSSL_FUNC_SIGNATURE_SIGN_INIT, (void (*)(void))sm2sig_signature_init },
532
    { OSSL_FUNC_SIGNATURE_SIGN, (void (*)(void))sm2sig_sign },
533
    { OSSL_FUNC_SIGNATURE_VERIFY_INIT, (void (*)(void))sm2sig_signature_init },
534
    { OSSL_FUNC_SIGNATURE_VERIFY, (void (*)(void))sm2sig_verify },
535
    { OSSL_FUNC_SIGNATURE_DIGEST_SIGN_INIT,
536
      (void (*)(void))sm2sig_digest_signverify_init },
537
    { OSSL_FUNC_SIGNATURE_DIGEST_SIGN_UPDATE,
538
      (void (*)(void))sm2sig_digest_signverify_update },
539
    { OSSL_FUNC_SIGNATURE_DIGEST_SIGN_FINAL,
540
      (void (*)(void))sm2sig_digest_sign_final },
541
    { OSSL_FUNC_SIGNATURE_DIGEST_VERIFY_INIT,
542
      (void (*)(void))sm2sig_digest_signverify_init },
543
    { OSSL_FUNC_SIGNATURE_DIGEST_VERIFY_UPDATE,
544
      (void (*)(void))sm2sig_digest_signverify_update },
545
    { OSSL_FUNC_SIGNATURE_DIGEST_VERIFY_FINAL,
546
      (void (*)(void))sm2sig_digest_verify_final },
547
    { OSSL_FUNC_SIGNATURE_FREECTX, (void (*)(void))sm2sig_freectx },
548
    { OSSL_FUNC_SIGNATURE_DUPCTX, (void (*)(void))sm2sig_dupctx },
549
    { OSSL_FUNC_SIGNATURE_GET_CTX_PARAMS, (void (*)(void))sm2sig_get_ctx_params },
550
    { OSSL_FUNC_SIGNATURE_GETTABLE_CTX_PARAMS,
551
      (void (*)(void))sm2sig_gettable_ctx_params },
552
    { OSSL_FUNC_SIGNATURE_SET_CTX_PARAMS, (void (*)(void))sm2sig_set_ctx_params },
553
    { OSSL_FUNC_SIGNATURE_SETTABLE_CTX_PARAMS,
554
      (void (*)(void))sm2sig_settable_ctx_params },
555
    { OSSL_FUNC_SIGNATURE_GET_CTX_MD_PARAMS,
556
      (void (*)(void))sm2sig_get_ctx_md_params },
557
    { OSSL_FUNC_SIGNATURE_GETTABLE_CTX_MD_PARAMS,
558
      (void (*)(void))sm2sig_gettable_ctx_md_params },
559
    { OSSL_FUNC_SIGNATURE_SET_CTX_MD_PARAMS,
560
      (void (*)(void))sm2sig_set_ctx_md_params },
561
    { OSSL_FUNC_SIGNATURE_SETTABLE_CTX_MD_PARAMS,
562
      (void (*)(void))sm2sig_settable_ctx_md_params },
563
    OSSL_DISPATCH_END
564
};