• Home
  • Line#
  • Scopes#
  • Navigate#
  • Raw
  • Download
1 /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
2  * All rights reserved.
3  *
4  * This package is an SSL implementation written
5  * by Eric Young (eay@cryptsoft.com).
6  * The implementation was written so as to conform with Netscapes SSL.
7  *
8  * This library is free for commercial and non-commercial use as long as
9  * the following conditions are aheared to.  The following conditions
10  * apply to all code found in this distribution, be it the RC4, RSA,
11  * lhash, DES, etc., code; not just the SSL code.  The SSL documentation
12  * included with this distribution is covered by the same copyright terms
13  * except that the holder is Tim Hudson (tjh@cryptsoft.com).
14  *
15  * Copyright remains Eric Young's, and as such any Copyright notices in
16  * the code are not to be removed.
17  * If this package is used in a product, Eric Young should be given attribution
18  * as the author of the parts of the library used.
19  * This can be in the form of a textual message at program startup or
20  * in documentation (online or textual) provided with the package.
21  *
22  * Redistribution and use in source and binary forms, with or without
23  * modification, are permitted provided that the following conditions
24  * are met:
25  * 1. Redistributions of source code must retain the copyright
26  *    notice, this list of conditions and the following disclaimer.
27  * 2. Redistributions in binary form must reproduce the above copyright
28  *    notice, this list of conditions and the following disclaimer in the
29  *    documentation and/or other materials provided with the distribution.
30  * 3. All advertising materials mentioning features or use of this software
31  *    must display the following acknowledgement:
32  *    "This product includes cryptographic software written by
33  *     Eric Young (eay@cryptsoft.com)"
34  *    The word 'cryptographic' can be left out if the rouines from the library
35  *    being used are not cryptographic related :-).
36  * 4. If you include any Windows specific code (or a derivative thereof) from
37  *    the apps directory (application code) you must include an acknowledgement:
38  *    "This product includes software written by Tim Hudson (tjh@cryptsoft.com)"
39  *
40  * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND
41  * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
42  * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
43  * ARE DISCLAIMED.  IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
44  * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
45  * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
46  * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
47  * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
48  * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
49  * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
50  * SUCH DAMAGE.
51  *
52  * The licence and distribution terms for any publically available version or
53  * derivative of this code cannot be changed.  i.e. this code cannot simply be
54  * copied and put under another distribution licence
55  * [including the GNU Public Licence.] */
56 
57 #include <openssl/evp.h>
58 
59 #include <assert.h>
60 #include <string.h>
61 
62 #include <openssl/dsa.h>
63 #include <openssl/ec.h>
64 #include <openssl/err.h>
65 #include <openssl/mem.h>
66 #include <openssl/nid.h>
67 #include <openssl/rsa.h>
68 #include <openssl/thread.h>
69 
70 #include "internal.h"
71 #include "../internal.h"
72 
73 
EVP_PKEY_new(void)74 EVP_PKEY *EVP_PKEY_new(void) {
75   EVP_PKEY *ret;
76 
77   ret = OPENSSL_malloc(sizeof(EVP_PKEY));
78   if (ret == NULL) {
79     OPENSSL_PUT_ERROR(EVP, ERR_R_MALLOC_FAILURE);
80     return NULL;
81   }
82 
83   OPENSSL_memset(ret, 0, sizeof(EVP_PKEY));
84   ret->type = EVP_PKEY_NONE;
85   ret->references = 1;
86 
87   return ret;
88 }
89 
free_it(EVP_PKEY * pkey)90 static void free_it(EVP_PKEY *pkey) {
91   if (pkey->ameth && pkey->ameth->pkey_free) {
92     pkey->ameth->pkey_free(pkey);
93     pkey->pkey.ptr = NULL;
94     pkey->type = EVP_PKEY_NONE;
95   }
96 }
97 
EVP_PKEY_free(EVP_PKEY * pkey)98 void EVP_PKEY_free(EVP_PKEY *pkey) {
99   if (pkey == NULL) {
100     return;
101   }
102 
103   if (!CRYPTO_refcount_dec_and_test_zero(&pkey->references)) {
104     return;
105   }
106 
107   free_it(pkey);
108   OPENSSL_free(pkey);
109 }
110 
EVP_PKEY_up_ref(EVP_PKEY * pkey)111 int EVP_PKEY_up_ref(EVP_PKEY *pkey) {
112   CRYPTO_refcount_inc(&pkey->references);
113   return 1;
114 }
115 
EVP_PKEY_is_opaque(const EVP_PKEY * pkey)116 int EVP_PKEY_is_opaque(const EVP_PKEY *pkey) {
117   if (pkey->ameth && pkey->ameth->pkey_opaque) {
118     return pkey->ameth->pkey_opaque(pkey);
119   }
120   return 0;
121 }
122 
EVP_PKEY_cmp(const EVP_PKEY * a,const EVP_PKEY * b)123 int EVP_PKEY_cmp(const EVP_PKEY *a, const EVP_PKEY *b) {
124   if (a->type != b->type) {
125     return -1;
126   }
127 
128   if (a->ameth) {
129     int ret;
130     // Compare parameters if the algorithm has them
131     if (a->ameth->param_cmp) {
132       ret = a->ameth->param_cmp(a, b);
133       if (ret <= 0) {
134         return ret;
135       }
136     }
137 
138     if (a->ameth->pub_cmp) {
139       return a->ameth->pub_cmp(a, b);
140     }
141   }
142 
143   return -2;
144 }
145 
EVP_PKEY_copy_parameters(EVP_PKEY * to,const EVP_PKEY * from)146 int EVP_PKEY_copy_parameters(EVP_PKEY *to, const EVP_PKEY *from) {
147   if (to->type != from->type) {
148     OPENSSL_PUT_ERROR(EVP, EVP_R_DIFFERENT_KEY_TYPES);
149     goto err;
150   }
151 
152   if (EVP_PKEY_missing_parameters(from)) {
153     OPENSSL_PUT_ERROR(EVP, EVP_R_MISSING_PARAMETERS);
154     goto err;
155   }
156 
157   if (from->ameth && from->ameth->param_copy) {
158     return from->ameth->param_copy(to, from);
159   }
160 
161 err:
162   return 0;
163 }
164 
EVP_PKEY_missing_parameters(const EVP_PKEY * pkey)165 int EVP_PKEY_missing_parameters(const EVP_PKEY *pkey) {
166   if (pkey->ameth && pkey->ameth->param_missing) {
167     return pkey->ameth->param_missing(pkey);
168   }
169   return 0;
170 }
171 
EVP_PKEY_size(const EVP_PKEY * pkey)172 int EVP_PKEY_size(const EVP_PKEY *pkey) {
173   if (pkey && pkey->ameth && pkey->ameth->pkey_size) {
174     return pkey->ameth->pkey_size(pkey);
175   }
176   return 0;
177 }
178 
EVP_PKEY_bits(EVP_PKEY * pkey)179 int EVP_PKEY_bits(EVP_PKEY *pkey) {
180   if (pkey && pkey->ameth && pkey->ameth->pkey_bits) {
181     return pkey->ameth->pkey_bits(pkey);
182   }
183   return 0;
184 }
185 
EVP_PKEY_id(const EVP_PKEY * pkey)186 int EVP_PKEY_id(const EVP_PKEY *pkey) {
187   return pkey->type;
188 }
189 
190 // evp_pkey_asn1_find returns the ASN.1 method table for the given |nid|, which
191 // should be one of the |EVP_PKEY_*| values. It returns NULL if |nid| is
192 // unknown.
evp_pkey_asn1_find(int nid)193 static const EVP_PKEY_ASN1_METHOD *evp_pkey_asn1_find(int nid) {
194   switch (nid) {
195     case EVP_PKEY_RSA:
196       return &rsa_asn1_meth;
197     case EVP_PKEY_EC:
198       return &ec_asn1_meth;
199     case EVP_PKEY_DSA:
200       return &dsa_asn1_meth;
201     case EVP_PKEY_ED25519:
202       return &ed25519_asn1_meth;
203     default:
204       return NULL;
205   }
206 }
207 
EVP_PKEY_type(int nid)208 int EVP_PKEY_type(int nid) {
209   const EVP_PKEY_ASN1_METHOD *meth = evp_pkey_asn1_find(nid);
210   if (meth == NULL) {
211     return NID_undef;
212   }
213   return meth->pkey_id;
214 }
215 
EVP_PKEY_set1_RSA(EVP_PKEY * pkey,RSA * key)216 int EVP_PKEY_set1_RSA(EVP_PKEY *pkey, RSA *key) {
217   if (EVP_PKEY_assign_RSA(pkey, key)) {
218     RSA_up_ref(key);
219     return 1;
220   }
221   return 0;
222 }
223 
EVP_PKEY_assign_RSA(EVP_PKEY * pkey,RSA * key)224 int EVP_PKEY_assign_RSA(EVP_PKEY *pkey, RSA *key) {
225   return EVP_PKEY_assign(pkey, EVP_PKEY_RSA, key);
226 }
227 
EVP_PKEY_get0_RSA(EVP_PKEY * pkey)228 RSA *EVP_PKEY_get0_RSA(EVP_PKEY *pkey) {
229   if (pkey->type != EVP_PKEY_RSA) {
230     OPENSSL_PUT_ERROR(EVP, EVP_R_EXPECTING_AN_RSA_KEY);
231     return NULL;
232   }
233   return pkey->pkey.rsa;
234 }
235 
EVP_PKEY_get1_RSA(EVP_PKEY * pkey)236 RSA *EVP_PKEY_get1_RSA(EVP_PKEY *pkey) {
237   RSA *rsa = EVP_PKEY_get0_RSA(pkey);
238   if (rsa != NULL) {
239     RSA_up_ref(rsa);
240   }
241   return rsa;
242 }
243 
EVP_PKEY_set1_DSA(EVP_PKEY * pkey,DSA * key)244 int EVP_PKEY_set1_DSA(EVP_PKEY *pkey, DSA *key) {
245   if (EVP_PKEY_assign_DSA(pkey, key)) {
246     DSA_up_ref(key);
247     return 1;
248   }
249   return 0;
250 }
251 
EVP_PKEY_assign_DSA(EVP_PKEY * pkey,DSA * key)252 int EVP_PKEY_assign_DSA(EVP_PKEY *pkey, DSA *key) {
253   return EVP_PKEY_assign(pkey, EVP_PKEY_DSA, key);
254 }
255 
EVP_PKEY_get0_DSA(EVP_PKEY * pkey)256 DSA *EVP_PKEY_get0_DSA(EVP_PKEY *pkey) {
257   if (pkey->type != EVP_PKEY_DSA) {
258     OPENSSL_PUT_ERROR(EVP, EVP_R_EXPECTING_A_DSA_KEY);
259     return NULL;
260   }
261   return pkey->pkey.dsa;
262 }
263 
EVP_PKEY_get1_DSA(EVP_PKEY * pkey)264 DSA *EVP_PKEY_get1_DSA(EVP_PKEY *pkey) {
265   DSA *dsa = EVP_PKEY_get0_DSA(pkey);
266   if (dsa != NULL) {
267     DSA_up_ref(dsa);
268   }
269   return dsa;
270 }
271 
EVP_PKEY_set1_EC_KEY(EVP_PKEY * pkey,EC_KEY * key)272 int EVP_PKEY_set1_EC_KEY(EVP_PKEY *pkey, EC_KEY *key) {
273   if (EVP_PKEY_assign_EC_KEY(pkey, key)) {
274     EC_KEY_up_ref(key);
275     return 1;
276   }
277   return 0;
278 }
279 
EVP_PKEY_assign_EC_KEY(EVP_PKEY * pkey,EC_KEY * key)280 int EVP_PKEY_assign_EC_KEY(EVP_PKEY *pkey, EC_KEY *key) {
281   return EVP_PKEY_assign(pkey, EVP_PKEY_EC, key);
282 }
283 
EVP_PKEY_get0_EC_KEY(EVP_PKEY * pkey)284 EC_KEY *EVP_PKEY_get0_EC_KEY(EVP_PKEY *pkey) {
285   if (pkey->type != EVP_PKEY_EC) {
286     OPENSSL_PUT_ERROR(EVP, EVP_R_EXPECTING_AN_EC_KEY_KEY);
287     return NULL;
288   }
289   return pkey->pkey.ec;
290 }
291 
EVP_PKEY_get1_EC_KEY(EVP_PKEY * pkey)292 EC_KEY *EVP_PKEY_get1_EC_KEY(EVP_PKEY *pkey) {
293   EC_KEY *ec_key = EVP_PKEY_get0_EC_KEY(pkey);
294   if (ec_key != NULL) {
295     EC_KEY_up_ref(ec_key);
296   }
297   return ec_key;
298 }
299 
EVP_PKEY_get0_DH(EVP_PKEY * pkey)300 DH *EVP_PKEY_get0_DH(EVP_PKEY *pkey) { return NULL; }
301 
EVP_PKEY_assign(EVP_PKEY * pkey,int type,void * key)302 int EVP_PKEY_assign(EVP_PKEY *pkey, int type, void *key) {
303   if (!EVP_PKEY_set_type(pkey, type)) {
304     return 0;
305   }
306   pkey->pkey.ptr = key;
307   return key != NULL;
308 }
309 
EVP_PKEY_set_type(EVP_PKEY * pkey,int type)310 int EVP_PKEY_set_type(EVP_PKEY *pkey, int type) {
311   const EVP_PKEY_ASN1_METHOD *ameth;
312 
313   if (pkey && pkey->pkey.ptr) {
314     free_it(pkey);
315   }
316 
317   ameth = evp_pkey_asn1_find(type);
318   if (ameth == NULL) {
319     OPENSSL_PUT_ERROR(EVP, EVP_R_UNSUPPORTED_ALGORITHM);
320     ERR_add_error_dataf("algorithm %d", type);
321     return 0;
322   }
323 
324   if (pkey) {
325     pkey->ameth = ameth;
326     pkey->type = pkey->ameth->pkey_id;
327   }
328 
329   return 1;
330 }
331 
332 
333 
EVP_PKEY_cmp_parameters(const EVP_PKEY * a,const EVP_PKEY * b)334 int EVP_PKEY_cmp_parameters(const EVP_PKEY *a, const EVP_PKEY *b) {
335   if (a->type != b->type) {
336     return -1;
337   }
338   if (a->ameth && a->ameth->param_cmp) {
339     return a->ameth->param_cmp(a, b);
340   }
341   return -2;
342 }
343 
EVP_PKEY_CTX_set_signature_md(EVP_PKEY_CTX * ctx,const EVP_MD * md)344 int EVP_PKEY_CTX_set_signature_md(EVP_PKEY_CTX *ctx, const EVP_MD *md) {
345   return EVP_PKEY_CTX_ctrl(ctx, -1, EVP_PKEY_OP_TYPE_SIG, EVP_PKEY_CTRL_MD, 0,
346                            (void *)md);
347 }
348 
EVP_PKEY_CTX_get_signature_md(EVP_PKEY_CTX * ctx,const EVP_MD ** out_md)349 int EVP_PKEY_CTX_get_signature_md(EVP_PKEY_CTX *ctx, const EVP_MD **out_md) {
350   return EVP_PKEY_CTX_ctrl(ctx, -1, EVP_PKEY_OP_TYPE_SIG, EVP_PKEY_CTRL_GET_MD,
351                            0, (void *)out_md);
352 }
353 
OpenSSL_add_all_algorithms(void)354 void OpenSSL_add_all_algorithms(void) {}
355 
OPENSSL_add_all_algorithms_conf(void)356 void OPENSSL_add_all_algorithms_conf(void) {}
357 
OpenSSL_add_all_ciphers(void)358 void OpenSSL_add_all_ciphers(void) {}
359 
OpenSSL_add_all_digests(void)360 void OpenSSL_add_all_digests(void) {}
361 
EVP_cleanup(void)362 void EVP_cleanup(void) {}
363