1 /* $OpenBSD: ecs_lib.c,v 1.9 2015/02/08 13:35:07 jsing Exp $ */ 2 /* ==================================================================== 3 * Copyright (c) 1998-2005 The OpenSSL Project. All rights reserved. 4 * 5 * Redistribution and use in source and binary forms, with or without 6 * modification, are permitted provided that the following conditions 7 * are met: 8 * 9 * 1. Redistributions of source code must retain the above copyright 10 * notice, this list of conditions and the following disclaimer. 11 * 12 * 2. Redistributions in binary form must reproduce the above copyright 13 * notice, this list of conditions and the following disclaimer in 14 * the documentation and/or other materials provided with the 15 * distribution. 16 * 17 * 3. All advertising materials mentioning features or use of this 18 * software must display the following acknowledgment: 19 * "This product includes software developed by the OpenSSL Project 20 * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)" 21 * 22 * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to 23 * endorse or promote products derived from this software without 24 * prior written permission. For written permission, please contact 25 * openssl-core@OpenSSL.org. 26 * 27 * 5. Products derived from this software may not be called "OpenSSL" 28 * nor may "OpenSSL" appear in their names without prior written 29 * permission of the OpenSSL Project. 30 * 31 * 6. Redistributions of any form whatsoever must retain the following 32 * acknowledgment: 33 * "This product includes software developed by the OpenSSL Project 34 * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)" 35 * 36 * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY 37 * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 38 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR 39 * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR 40 * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, 41 * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT 42 * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; 43 * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 44 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, 45 * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) 46 * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED 47 * OF THE POSSIBILITY OF SUCH DAMAGE. 48 * ==================================================================== 49 * 50 * This product includes cryptographic software written by Eric Young 51 * (eay@cryptsoft.com). This product includes software written by Tim 52 * Hudson (tjh@cryptsoft.com). 53 * 54 */ 55 56 #include <string.h> 57 58 #include <openssl/opensslconf.h> 59 60 #include "ecs_locl.h" 61 #ifndef OPENSSL_NO_ENGINE 62 #include <openssl/engine.h> 63 #endif 64 #include <openssl/err.h> 65 #include <openssl/bn.h> 66 67 static const ECDSA_METHOD *default_ECDSA_method = NULL; 68 69 static void *ecdsa_data_new(void); 70 static void *ecdsa_data_dup(void *); 71 static void ecdsa_data_free(void *); 72 73 void 74 ECDSA_set_default_method(const ECDSA_METHOD *meth) 75 { 76 default_ECDSA_method = meth; 77 } 78 79 const ECDSA_METHOD * 80 ECDSA_get_default_method(void) 81 { 82 if (!default_ECDSA_method) { 83 default_ECDSA_method = ECDSA_OpenSSL(); 84 } 85 return default_ECDSA_method; 86 } 87 88 int 89 ECDSA_set_method(EC_KEY *eckey, const ECDSA_METHOD *meth) 90 { 91 ECDSA_DATA *ecdsa; 92 93 ecdsa = ecdsa_check(eckey); 94 95 if (ecdsa == NULL) 96 return 0; 97 98 #ifndef OPENSSL_NO_ENGINE 99 if (ecdsa->engine) { 100 ENGINE_finish(ecdsa->engine); 101 ecdsa->engine = NULL; 102 } 103 #endif 104 ecdsa->meth = meth; 105 106 return 1; 107 } 108 109 static ECDSA_DATA * 110 ECDSA_DATA_new_method(ENGINE *engine) 111 { 112 ECDSA_DATA *ret; 113 114 ret = malloc(sizeof(ECDSA_DATA)); 115 if (ret == NULL) { 116 ECDSAerr(ECDSA_F_ECDSA_DATA_NEW_METHOD, ERR_R_MALLOC_FAILURE); 117 return (NULL); 118 } 119 120 ret->init = NULL; 121 122 ret->meth = ECDSA_get_default_method(); 123 ret->engine = engine; 124 #ifndef OPENSSL_NO_ENGINE 125 if (!ret->engine) 126 ret->engine = ENGINE_get_default_ECDSA(); 127 if (ret->engine) { 128 ret->meth = ENGINE_get_ECDSA(ret->engine); 129 if (!ret->meth) { 130 ECDSAerr(ECDSA_F_ECDSA_DATA_NEW_METHOD, 131 ERR_R_ENGINE_LIB); 132 ENGINE_finish(ret->engine); 133 free(ret); 134 return NULL; 135 } 136 } 137 #endif 138 139 ret->flags = ret->meth->flags; 140 CRYPTO_new_ex_data(CRYPTO_EX_INDEX_ECDSA, ret, &ret->ex_data); 141 return (ret); 142 } 143 144 static void * 145 ecdsa_data_new(void) 146 { 147 return (void *)ECDSA_DATA_new_method(NULL); 148 } 149 150 static void * 151 ecdsa_data_dup(void *data) 152 { 153 ECDSA_DATA *r = (ECDSA_DATA *)data; 154 155 /* XXX: dummy operation */ 156 if (r == NULL) 157 return NULL; 158 159 return ecdsa_data_new(); 160 } 161 162 static void 163 ecdsa_data_free(void *data) 164 { 165 ECDSA_DATA *r = (ECDSA_DATA *)data; 166 167 #ifndef OPENSSL_NO_ENGINE 168 if (r->engine) 169 ENGINE_finish(r->engine); 170 #endif 171 CRYPTO_free_ex_data(CRYPTO_EX_INDEX_ECDSA, r, &r->ex_data); 172 173 explicit_bzero((void *)r, sizeof(ECDSA_DATA)); 174 175 free(r); 176 } 177 178 ECDSA_DATA * 179 ecdsa_check(EC_KEY *key) 180 { 181 ECDSA_DATA *ecdsa_data; 182 183 void *data = EC_KEY_get_key_method_data(key, ecdsa_data_dup, 184 ecdsa_data_free, ecdsa_data_free); 185 if (data == NULL) { 186 ecdsa_data = (ECDSA_DATA *)ecdsa_data_new(); 187 if (ecdsa_data == NULL) 188 return NULL; 189 data = EC_KEY_insert_key_method_data(key, (void *)ecdsa_data, 190 ecdsa_data_dup, ecdsa_data_free, ecdsa_data_free); 191 if (data != NULL) { 192 /* Another thread raced us to install the key_method 193 * data and won. */ 194 ecdsa_data_free(ecdsa_data); 195 ecdsa_data = (ECDSA_DATA *)data; 196 } 197 } else 198 ecdsa_data = (ECDSA_DATA *)data; 199 200 return ecdsa_data; 201 } 202 203 int 204 ECDSA_size(const EC_KEY *r) 205 { 206 int ret, i; 207 ASN1_INTEGER bs; 208 BIGNUM *order = NULL; 209 unsigned char buf[4]; 210 const EC_GROUP *group; 211 212 if (r == NULL) 213 return 0; 214 group = EC_KEY_get0_group(r); 215 if (group == NULL) 216 return 0; 217 218 if ((order = BN_new()) == NULL) 219 return 0; 220 if (!EC_GROUP_get_order(group, order, NULL)) { 221 BN_clear_free(order); 222 return 0; 223 } 224 i = BN_num_bits(order); 225 bs.length = (i + 7) / 8; 226 bs.data = buf; 227 bs.type = V_ASN1_INTEGER; 228 /* If the top bit is set the asn1 encoding is 1 larger. */ 229 buf[0] = 0xff; 230 231 i = i2d_ASN1_INTEGER(&bs, NULL); 232 i += i; /* r and s */ 233 ret = ASN1_object_size(1, i, V_ASN1_SEQUENCE); 234 BN_clear_free(order); 235 return (ret); 236 } 237 238 int 239 ECDSA_get_ex_new_index(long argl, void *argp, CRYPTO_EX_new *new_func, 240 CRYPTO_EX_dup *dup_func, CRYPTO_EX_free *free_func) 241 { 242 return CRYPTO_get_ex_new_index(CRYPTO_EX_INDEX_ECDSA, argl, argp, 243 new_func, dup_func, free_func); 244 } 245 246 int 247 ECDSA_set_ex_data(EC_KEY *d, int idx, void *arg) 248 { 249 ECDSA_DATA *ecdsa; 250 ecdsa = ecdsa_check(d); 251 if (ecdsa == NULL) 252 return 0; 253 return (CRYPTO_set_ex_data(&ecdsa->ex_data, idx, arg)); 254 } 255 256 void * 257 ECDSA_get_ex_data(EC_KEY *d, int idx) 258 { 259 ECDSA_DATA *ecdsa; 260 ecdsa = ecdsa_check(d); 261 if (ecdsa == NULL) 262 return NULL; 263 return (CRYPTO_get_ex_data(&ecdsa->ex_data, idx)); 264 } 265