1 /* crypto/ecdsa/ecs_lib.c */
2 /* ====================================================================
3 * Copyright (c) 1998-2005 The OpenSSL Project. All rights reserved.
5 * Redistribution and use in source and binary forms, with or without
6 * modification, are permitted provided that the following conditions
9 * 1. Redistributions of source code must retain the above copyright
10 * notice, this list of conditions and the following disclaimer.
12 * 2. Redistributions in binary form must reproduce the above copyright
13 * notice, this list of conditions and the following disclaimer in
14 * the documentation and/or other materials provided with the
17 * 3. All advertising materials mentioning features or use of this
18 * software must display the following acknowledgment:
19 * "This product includes software developed by the OpenSSL Project
20 * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)"
22 * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to
23 * endorse or promote products derived from this software without
24 * prior written permission. For written permission, please contact
25 * openssl-core@OpenSSL.org.
27 * 5. Products derived from this software may not be called "OpenSSL"
28 * nor may "OpenSSL" appear in their names without prior written
29 * permission of the OpenSSL Project.
31 * 6. Redistributions of any form whatsoever must retain the following
33 * "This product includes software developed by the OpenSSL Project
34 * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)"
36 * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY
37 * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
38 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
39 * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR
40 * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
41 * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
42 * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
43 * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
44 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
45 * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
46 * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
47 * OF THE POSSIBILITY OF SUCH DAMAGE.
48 * ====================================================================
50 * This product includes cryptographic software written by Eric Young
51 * (eay@cryptsoft.com). This product includes software written by Tim
52 * Hudson (tjh@cryptsoft.com).
58 #ifndef OPENSSL_NO_ENGINE
59 # include <openssl/engine.h>
61 #include <openssl/err.h>
62 #include <openssl/bn.h>
64 # include <openssl/fips.h>
67 const char ECDSA_version
[] = "ECDSA" OPENSSL_VERSION_PTEXT
;
69 static const ECDSA_METHOD
*default_ECDSA_method
= NULL
;
71 static void *ecdsa_data_new(void);
72 static void *ecdsa_data_dup(void *);
73 static void ecdsa_data_free(void *);
75 void ECDSA_set_default_method(const ECDSA_METHOD
*meth
)
77 default_ECDSA_method
= meth
;
80 const ECDSA_METHOD
*ECDSA_get_default_method(void)
82 if (!default_ECDSA_method
) {
85 return FIPS_ecdsa_openssl();
87 return ECDSA_OpenSSL();
89 default_ECDSA_method
= ECDSA_OpenSSL();
92 return default_ECDSA_method
;
95 int ECDSA_set_method(EC_KEY
*eckey
, const ECDSA_METHOD
*meth
)
99 ecdsa
= ecdsa_check(eckey
);
104 #ifndef OPENSSL_NO_ENGINE
106 ENGINE_finish(ecdsa
->engine
);
107 ecdsa
->engine
= NULL
;
115 static ECDSA_DATA
*ECDSA_DATA_new_method(ENGINE
*engine
)
119 ret
= (ECDSA_DATA
*)OPENSSL_malloc(sizeof(ECDSA_DATA
));
121 ECDSAerr(ECDSA_F_ECDSA_DATA_NEW_METHOD
, ERR_R_MALLOC_FAILURE
);
127 ret
->meth
= ECDSA_get_default_method();
128 ret
->engine
= engine
;
129 #ifndef OPENSSL_NO_ENGINE
131 ret
->engine
= ENGINE_get_default_ECDSA();
133 ret
->meth
= ENGINE_get_ECDSA(ret
->engine
);
135 ECDSAerr(ECDSA_F_ECDSA_DATA_NEW_METHOD
, ERR_R_ENGINE_LIB
);
136 ENGINE_finish(ret
->engine
);
143 ret
->flags
= ret
->meth
->flags
;
144 CRYPTO_new_ex_data(CRYPTO_EX_INDEX_ECDSA
, ret
, &ret
->ex_data
);
146 if ((ret
->meth
->init
!= NULL
) && !ret
->meth
->init(ret
)) {
147 CRYPTO_free_ex_data(CRYPTO_EX_INDEX_ECDSA
, ret
, &ret
->ex_data
);
155 static void *ecdsa_data_new(void)
157 return (void *)ECDSA_DATA_new_method(NULL
);
160 static void *ecdsa_data_dup(void *data
)
162 ECDSA_DATA
*r
= (ECDSA_DATA
*)data
;
164 /* XXX: dummy operation */
168 return ecdsa_data_new();
171 static void ecdsa_data_free(void *data
)
173 ECDSA_DATA
*r
= (ECDSA_DATA
*)data
;
175 #ifndef OPENSSL_NO_ENGINE
177 ENGINE_finish(r
->engine
);
179 CRYPTO_free_ex_data(CRYPTO_EX_INDEX_ECDSA
, r
, &r
->ex_data
);
181 OPENSSL_cleanse((void *)r
, sizeof(ECDSA_DATA
));
186 ECDSA_DATA
*ecdsa_check(EC_KEY
*key
)
188 ECDSA_DATA
*ecdsa_data
;
190 void *data
= EC_KEY_get_key_method_data(key
, ecdsa_data_dup
,
191 ecdsa_data_free
, ecdsa_data_free
);
193 ecdsa_data
= (ECDSA_DATA
*)ecdsa_data_new();
194 if (ecdsa_data
== NULL
)
196 data
= EC_KEY_insert_key_method_data(key
, (void *)ecdsa_data
,
197 ecdsa_data_dup
, ecdsa_data_free
,
201 * Another thread raced us to install the key_method data and
204 ecdsa_data_free(ecdsa_data
);
205 ecdsa_data
= (ECDSA_DATA
*)data
;
208 ecdsa_data
= (ECDSA_DATA
*)data
;
210 if (FIPS_mode() && !(ecdsa_data
->flags
& ECDSA_FLAG_FIPS_METHOD
)
211 && !(EC_KEY_get_flags(key
) & EC_FLAG_NON_FIPS_ALLOW
)) {
212 ECDSAerr(ECDSA_F_ECDSA_CHECK
, ECDSA_R_NON_FIPS_METHOD
);
220 int ECDSA_size(const EC_KEY
*r
)
224 BIGNUM
*order
= NULL
;
225 unsigned char buf
[4];
226 const EC_GROUP
*group
;
230 group
= EC_KEY_get0_group(r
);
234 if ((order
= BN_new()) == NULL
)
236 if (!EC_GROUP_get_order(group
, order
, NULL
)) {
237 BN_clear_free(order
);
240 i
= BN_num_bits(order
);
241 bs
.length
= (i
+ 7) / 8;
243 bs
.type
= V_ASN1_INTEGER
;
244 /* If the top bit is set the asn1 encoding is 1 larger. */
247 i
= i2d_ASN1_INTEGER(&bs
, NULL
);
248 i
+= i
; /* r and s */
249 ret
= ASN1_object_size(1, i
, V_ASN1_SEQUENCE
);
250 BN_clear_free(order
);
254 int ECDSA_get_ex_new_index(long argl
, void *argp
, CRYPTO_EX_new
*new_func
,
255 CRYPTO_EX_dup
*dup_func
, CRYPTO_EX_free
*free_func
)
257 return CRYPTO_get_ex_new_index(CRYPTO_EX_INDEX_ECDSA
, argl
, argp
,
258 new_func
, dup_func
, free_func
);
261 int ECDSA_set_ex_data(EC_KEY
*d
, int idx
, void *arg
)
264 ecdsa
= ecdsa_check(d
);
267 return (CRYPTO_set_ex_data(&ecdsa
->ex_data
, idx
, arg
));
270 void *ECDSA_get_ex_data(EC_KEY
*d
, int idx
)
273 ecdsa
= ecdsa_check(d
);
276 return (CRYPTO_get_ex_data(&ecdsa
->ex_data
, idx
));
279 ECDSA_METHOD
*ECDSA_METHOD_new(const ECDSA_METHOD
*ecdsa_meth
)
283 ret
= OPENSSL_malloc(sizeof(ECDSA_METHOD
));
285 ECDSAerr(ECDSA_F_ECDSA_METHOD_NEW
, ERR_R_MALLOC_FAILURE
);
292 ret
->ecdsa_sign_setup
= 0;
293 ret
->ecdsa_do_sign
= 0;
294 ret
->ecdsa_do_verify
= 0;
298 ret
->flags
|= ECDSA_METHOD_FLAG_ALLOCATED
;
302 void ECDSA_METHOD_set_sign(ECDSA_METHOD
*ecdsa_method
,
303 ECDSA_SIG
*(*ecdsa_do_sign
) (const unsigned char
309 ecdsa_method
->ecdsa_do_sign
= ecdsa_do_sign
;
312 void ECDSA_METHOD_set_sign_setup(ECDSA_METHOD
*ecdsa_method
,
313 int (*ecdsa_sign_setup
) (EC_KEY
*eckey
,
318 ecdsa_method
->ecdsa_sign_setup
= ecdsa_sign_setup
;
321 void ECDSA_METHOD_set_verify(ECDSA_METHOD
*ecdsa_method
,
322 int (*ecdsa_do_verify
) (const unsigned char
324 const ECDSA_SIG
*sig
,
327 ecdsa_method
->ecdsa_do_verify
= ecdsa_do_verify
;
330 void ECDSA_METHOD_set_flags(ECDSA_METHOD
*ecdsa_method
, int flags
)
332 ecdsa_method
->flags
= flags
| ECDSA_METHOD_FLAG_ALLOCATED
;
335 void ECDSA_METHOD_set_name(ECDSA_METHOD
*ecdsa_method
, char *name
)
337 ecdsa_method
->name
= name
;
340 void ECDSA_METHOD_free(ECDSA_METHOD
*ecdsa_method
)
342 if (ecdsa_method
->flags
& ECDSA_METHOD_FLAG_ALLOCATED
)
343 OPENSSL_free(ecdsa_method
);
346 void ECDSA_METHOD_set_app_data(ECDSA_METHOD
*ecdsa_method
, void *app
)
348 ecdsa_method
->app_data
= app
;
351 void *ECDSA_METHOD_get_app_data(ECDSA_METHOD
*ecdsa_method
)
353 return ecdsa_method
->app_data
;