1 /* $OpenBSD: gost89imit_pmeth.c,v 1.2 2014/11/09 23:06:52 miod Exp $ */
3 * Copyright (c) 2014 Dmitry Eremin-Solenikov <dbaryshkov@gmail.com>
4 * Copyright (c) 2005-2006 Cryptocom LTD
6 * Redistribution and use in source and binary forms, with or without
7 * modification, are permitted provided that the following conditions
10 * 1. Redistributions of source code must retain the above copyright
11 * notice, this list of conditions and the following disclaimer.
13 * 2. Redistributions in binary form must reproduce the above copyright
14 * notice, this list of conditions and the following disclaimer in
15 * the documentation and/or other materials provided with the
18 * 3. All advertising materials mentioning features or use of this
19 * software must display the following acknowledgment:
20 * "This product includes software developed by the OpenSSL Project
21 * for use in the OpenSSL Toolkit. (http://www.openssl.org/)"
23 * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to
24 * endorse or promote products derived from this software without
25 * prior written permission. For written permission, please contact
26 * openssl-core@openssl.org.
28 * 5. Products derived from this software may not be called "OpenSSL"
29 * nor may "OpenSSL" appear in their names without prior written
30 * permission of the OpenSSL Project.
32 * 6. Redistributions of any form whatsoever must retain the following
34 * "This product includes software developed by the OpenSSL Project
35 * for use in the OpenSSL Toolkit (http://www.openssl.org/)"
37 * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY
38 * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
39 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
40 * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR
41 * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
42 * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
43 * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
44 * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
45 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
46 * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
47 * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
48 * OF THE POSSIBILITY OF SUCH DAMAGE.
49 * ====================================================================
54 #include <openssl/opensslconf.h>
56 #ifndef OPENSSL_NO_GOST
57 #include <openssl/evp.h>
58 #include <openssl/err.h>
59 #include <openssl/gost.h>
60 #include <openssl/x509v3.h> /* For string_to_hex */
63 #include "gost_locl.h"
65 struct gost_mac_pmeth_data
{
67 unsigned char key
[32];
72 pkey_gost_mac_init(EVP_PKEY_CTX
*ctx
)
74 struct gost_mac_pmeth_data
*data
;
76 data
= calloc(1, sizeof(struct gost_mac_pmeth_data
));
79 EVP_PKEY_CTX_set_data(ctx
, data
);
84 pkey_gost_mac_cleanup(EVP_PKEY_CTX
*ctx
)
86 struct gost_mac_pmeth_data
*data
= EVP_PKEY_CTX_get_data(ctx
);
91 pkey_gost_mac_copy(EVP_PKEY_CTX
*dst
, EVP_PKEY_CTX
*src
)
93 struct gost_mac_pmeth_data
*dst_data
, *src_data
;
95 if (pkey_gost_mac_init(dst
) == 0)
98 src_data
= EVP_PKEY_CTX_get_data(src
);
99 dst_data
= EVP_PKEY_CTX_get_data(dst
);
101 *dst_data
= *src_data
;
107 pkey_gost_mac_keygen(EVP_PKEY_CTX
*ctx
, EVP_PKEY
*pkey
)
109 struct gost_mac_pmeth_data
*data
= EVP_PKEY_CTX_get_data(ctx
);
110 unsigned char *keydata
;
112 if (!data
->key_set
) {
113 GOSTerr(GOST_F_PKEY_GOST_MAC_KEYGEN
, GOST_R_MAC_KEY_NOT_SET
);
117 keydata
= malloc(32);
118 if (keydata
== NULL
) {
119 GOSTerr(GOST_F_PKEY_GOST_MAC_KEYGEN
, ERR_R_MALLOC_FAILURE
);
122 memcpy(keydata
, data
->key
, 32);
123 EVP_PKEY_assign(pkey
, NID_id_Gost28147_89_MAC
, keydata
);
129 pkey_gost_mac_ctrl(EVP_PKEY_CTX
*ctx
, int type
, int p1
, void *p2
)
131 struct gost_mac_pmeth_data
*data
= EVP_PKEY_CTX_get_data(ctx
);
134 case EVP_PKEY_CTRL_MD
:
135 if (EVP_MD_type(p2
) != NID_id_Gost28147_89_MAC
) {
136 GOSTerr(GOST_F_PKEY_GOST_MAC_CTRL
,
137 GOST_R_INVALID_DIGEST_TYPE
);
143 case EVP_PKEY_CTRL_SET_MAC_KEY
:
145 GOSTerr(GOST_F_PKEY_GOST_MAC_CTRL
,
146 GOST_R_INVALID_MAC_KEY_LENGTH
);
150 memcpy(data
->key
, p2
, 32);
154 case EVP_PKEY_CTRL_DIGESTINIT
:
156 EVP_MD_CTX
*mctx
= p2
;
159 if (!data
->key_set
) {
160 EVP_PKEY
*pkey
= EVP_PKEY_CTX_get0_pkey(ctx
);
162 GOSTerr(GOST_F_PKEY_GOST_MAC_CTRL
,
163 GOST_R_MAC_KEY_NOT_SET
);
166 key
= EVP_PKEY_get0(pkey
);
168 GOSTerr(GOST_F_PKEY_GOST_MAC_CTRL
,
169 GOST_R_MAC_KEY_NOT_SET
);
175 if (mctx
->digest
->md_ctrl
== NULL
)
177 return mctx
->digest
->md_ctrl(mctx
, EVP_MD_CTRL_SET_KEY
, 32 * 8,
187 pkey_gost_mac_ctrl_str(EVP_PKEY_CTX
*ctx
, const char *type
, const char *value
)
191 if (strcmp(type
, "key") == 0) {
192 void *p
= (void *)value
;
193 return pkey_gost_mac_ctrl(ctx
, EVP_PKEY_CTRL_SET_MAC_KEY
,
196 if (strcmp(type
, "hexkey") == 0) {
201 key
= string_to_hex(value
, &keylen
);
204 r
= pkey_gost_mac_ctrl(ctx
, EVP_PKEY_CTRL_SET_MAC_KEY
, keylen
,
213 pkey_gost_mac_signctx_init(EVP_PKEY_CTX
*ctx
, EVP_MD_CTX
*mctx
)
219 pkey_gost_mac_signctx(EVP_PKEY_CTX
*ctx
, unsigned char *sig
, size_t *siglen
,
222 /* for platforms where sizeof(int) != sizeof(size_t)*/
223 unsigned int tmpsiglen
= *siglen
;
231 ret
= EVP_DigestFinal_ex(mctx
, sig
, &tmpsiglen
);
236 const EVP_PKEY_METHOD gostimit_pkey_meth
= {
237 .pkey_id
= EVP_PKEY_GOSTIMIT
,
239 .init
= pkey_gost_mac_init
,
240 .cleanup
= pkey_gost_mac_cleanup
,
241 .copy
= pkey_gost_mac_copy
,
243 .keygen
= pkey_gost_mac_keygen
,
245 .signctx_init
= pkey_gost_mac_signctx_init
,
246 .signctx
= pkey_gost_mac_signctx
,
248 .ctrl
= pkey_gost_mac_ctrl
,
249 .ctrl_str
= pkey_gost_mac_ctrl_str
,