[thirdparty/openssl.git] / crypto / evp / pmeth_fn.c

/* pmeth_fn.c */
/* Written by Dr Stephen N Henson (shenson@bigfoot.com) for the OpenSSL
 * project 2006.
 */
/* ====================================================================
 * Copyright (c) 2006 The OpenSSL Project.  All rights reserved.
 *
 * Redistribution and use in source and binary forms, with or without
 * modification, are permitted provided that the following conditions
 * are met:
 *
 * 1. Redistributions of source code must retain the above copyright
 *    notice, this list of conditions and the following disclaimer. 
 *
 * 2. Redistributions in binary form must reproduce the above copyright
 *    notice, this list of conditions and the following disclaimer in
 *    the documentation and/or other materials provided with the
 *    distribution.
 *
 * 3. All advertising materials mentioning features or use of this
 *    software must display the following acknowledgment:
 *    "This product includes software developed by the OpenSSL Project
 *    for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)"
 *
 * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to
 *    endorse or promote products derived from this software without
 *    prior written permission. For written permission, please contact
 *    licensing@OpenSSL.org.
 *
 * 5. Products derived from this software may not be called "OpenSSL"
 *    nor may "OpenSSL" appear in their names without prior written
 *    permission of the OpenSSL Project.
 *
 * 6. Redistributions of any form whatsoever must retain the following
 *    acknowledgment:
 *    "This product includes software developed by the OpenSSL Project
 *    for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)"
 *
 * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY
 * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
 * PURPOSE ARE DISCLAIMED.  IN NO EVENT SHALL THE OpenSSL PROJECT OR
 * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
 * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
 * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
 * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
 * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
 * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
 * OF THE POSSIBILITY OF SUCH DAMAGE.
 * ====================================================================
 *
 * This product includes cryptographic software written by Eric Young
 * (eay@cryptsoft.com).  This product includes software written by Tim
 * Hudson (tjh@cryptsoft.com).
 *
 */

#include <stdio.h>
#include <stdlib.h>
#include "cryptlib.h"
#include <openssl/objects.h>
#include <openssl/evp.h>
#include "evp_locl.h"

#define M_check_autoarg(ctx, arg, arglen, err) \
	if (ctx->pmeth->flags & EVP_PKEY_FLAG_AUTOARGLEN) \
		{ \
		size_t pksize = (size_t)EVP_PKEY_size(ctx->pkey); \
		if (!arg) \
			{ \
			*arglen = pksize; \
			return 1; \
			} \
		else if (*arglen < pksize) \
			{ \
			EVPerr(err, EVP_R_BUFFER_TOO_SMALL); /*ckerr_ignore*/\
			return 0; \
			} \
		}

int EVP_PKEY_sign_init(EVP_PKEY_CTX *ctx)
	{
	int ret;
	if (!ctx || !ctx->pmeth || !ctx->pmeth->sign)
		{
		EVPerr(EVP_F_EVP_PKEY_SIGN_INIT,
			EVP_R_OPERATION_NOT_SUPPORTED_FOR_THIS_KEYTYPE);
		return -2;
		}
	ctx->operation = EVP_PKEY_OP_SIGN;
	if (!ctx->pmeth->sign_init)
		return 1;
	ret = ctx->pmeth->sign_init(ctx);
	if (ret <= 0)
		ctx->operation = EVP_PKEY_OP_UNDEFINED;
	return ret;
	}

int EVP_PKEY_sign(EVP_PKEY_CTX *ctx,
			unsigned char *sig, size_t *siglen,
			const unsigned char *tbs, size_t tbslen)
	{
	if (!ctx || !ctx->pmeth || !ctx->pmeth->sign)
		{
		EVPerr(EVP_F_EVP_PKEY_SIGN,
			EVP_R_OPERATION_NOT_SUPPORTED_FOR_THIS_KEYTYPE);
		return -2;
		}
	if (ctx->operation != EVP_PKEY_OP_SIGN)
		{
		EVPerr(EVP_F_EVP_PKEY_SIGN, EVP_R_OPERATON_NOT_INITIALIZED);
		return -1;
		}
	M_check_autoarg(ctx, sig, siglen, EVP_F_EVP_PKEY_SIGN)
	return ctx->pmeth->sign(ctx, sig, siglen, tbs, tbslen);
	}

int EVP_PKEY_verify_init(EVP_PKEY_CTX *ctx)
	{
	int ret;
	if (!ctx || !ctx->pmeth || !ctx->pmeth->verify)
		{
		EVPerr(EVP_F_EVP_PKEY_VERIFY_INIT,
			EVP_R_OPERATION_NOT_SUPPORTED_FOR_THIS_KEYTYPE);
		return -2;
		}
	ctx->operation = EVP_PKEY_OP_VERIFY;
	if (!ctx->pmeth->verify_init)
		return 1;
	ret = ctx->pmeth->verify_init(ctx);
	if (ret <= 0)
		ctx->operation = EVP_PKEY_OP_UNDEFINED;
	return ret;
	}

int EVP_PKEY_verify(EVP_PKEY_CTX *ctx,
			const unsigned char *sig, size_t siglen,
			const unsigned char *tbs, size_t tbslen)
	{
	if (!ctx || !ctx->pmeth || !ctx->pmeth->verify)
		{
		EVPerr(EVP_F_EVP_PKEY_VERIFY,
			EVP_R_OPERATION_NOT_SUPPORTED_FOR_THIS_KEYTYPE);
		return -2;
		}
	if (ctx->operation != EVP_PKEY_OP_VERIFY)
		{
		EVPerr(EVP_F_EVP_PKEY_VERIFY, EVP_R_OPERATON_NOT_INITIALIZED);
		return -1;
		}
	return ctx->pmeth->verify(ctx, sig, siglen, tbs, tbslen);
	}

int EVP_PKEY_verify_recover_init(EVP_PKEY_CTX *ctx)
	{
	int ret;
	if (!ctx || !ctx->pmeth || !ctx->pmeth->verify_recover)
		{
		EVPerr(EVP_F_EVP_PKEY_VERIFY_RECOVER_INIT,
			EVP_R_OPERATION_NOT_SUPPORTED_FOR_THIS_KEYTYPE);
		return -2;
		}
	ctx->operation = EVP_PKEY_OP_VERIFYRECOVER;
	if (!ctx->pmeth->verify_recover_init)
		return 1;
	ret = ctx->pmeth->verify_recover_init(ctx);
	if (ret <= 0)
		ctx->operation = EVP_PKEY_OP_UNDEFINED;
	return ret;
	}

int EVP_PKEY_verify_recover(EVP_PKEY_CTX *ctx,
			unsigned char *rout, size_t *routlen,
			const unsigned char *sig, size_t siglen)
	{
	if (!ctx || !ctx->pmeth || !ctx->pmeth->verify_recover)
		{
		EVPerr(EVP_F_EVP_PKEY_VERIFY_RECOVER,
			EVP_R_OPERATION_NOT_SUPPORTED_FOR_THIS_KEYTYPE);
		return -2;
		}
	if (ctx->operation != EVP_PKEY_OP_VERIFYRECOVER)
		{
		EVPerr(EVP_F_EVP_PKEY_VERIFY_RECOVER, EVP_R_OPERATON_NOT_INITIALIZED);
		return -1;
		}
	M_check_autoarg(ctx, rout, routlen, EVP_F_EVP_PKEY_VERIFY_RECOVER)
	return ctx->pmeth->verify_recover(ctx, rout, routlen, sig, siglen);
	}

int EVP_PKEY_encrypt_init(EVP_PKEY_CTX *ctx)
	{
	int ret;
	if (!ctx || !ctx->pmeth || !ctx->pmeth->encrypt)
		{
		EVPerr(EVP_F_EVP_PKEY_ENCRYPT_INIT,
			EVP_R_OPERATION_NOT_SUPPORTED_FOR_THIS_KEYTYPE);
		return -2;
		}
	ctx->operation = EVP_PKEY_OP_ENCRYPT;
	if (!ctx->pmeth->encrypt_init)
		return 1;
	ret = ctx->pmeth->encrypt_init(ctx);
	if (ret <= 0)
		ctx->operation = EVP_PKEY_OP_UNDEFINED;
	return ret;
	}

int EVP_PKEY_encrypt(EVP_PKEY_CTX *ctx,
			unsigned char *out, size_t *outlen,
			const unsigned char *in, size_t inlen)
	{
	if (!ctx || !ctx->pmeth || !ctx->pmeth->encrypt)
		{
		EVPerr(EVP_F_EVP_PKEY_ENCRYPT,
			EVP_R_OPERATION_NOT_SUPPORTED_FOR_THIS_KEYTYPE);
		return -2;
		}
	if (ctx->operation != EVP_PKEY_OP_ENCRYPT)
		{
		EVPerr(EVP_F_EVP_PKEY_ENCRYPT, EVP_R_OPERATON_NOT_INITIALIZED);
		return -1;
		}
	M_check_autoarg(ctx, out, outlen, EVP_F_EVP_PKEY_ENCRYPT)
	return ctx->pmeth->encrypt(ctx, out, outlen, in, inlen);
	}

int EVP_PKEY_decrypt_init(EVP_PKEY_CTX *ctx)
	{
	int ret;
	if (!ctx || !ctx->pmeth || !ctx->pmeth->decrypt)
		{
		EVPerr(EVP_F_EVP_PKEY_DECRYPT_INIT,
			EVP_R_OPERATION_NOT_SUPPORTED_FOR_THIS_KEYTYPE);
		return -2;
		}
	ctx->operation = EVP_PKEY_OP_DECRYPT;
	if (!ctx->pmeth->decrypt_init)
		return 1;
	ret = ctx->pmeth->decrypt_init(ctx);
	if (ret <= 0)
		ctx->operation = EVP_PKEY_OP_UNDEFINED;
	return ret;
	}

int EVP_PKEY_decrypt(EVP_PKEY_CTX *ctx,
			unsigned char *out, size_t *outlen,
			const unsigned char *in, size_t inlen)
	{
	if (!ctx || !ctx->pmeth || !ctx->pmeth->decrypt)
		{
		EVPerr(EVP_F_EVP_PKEY_DECRYPT,
			EVP_R_OPERATION_NOT_SUPPORTED_FOR_THIS_KEYTYPE);
		return -2;
		}
	if (ctx->operation != EVP_PKEY_OP_DECRYPT)
		{
		EVPerr(EVP_F_EVP_PKEY_DECRYPT, EVP_R_OPERATON_NOT_INITIALIZED);
		return -1;
		}
	M_check_autoarg(ctx, out, outlen, EVP_F_EVP_PKEY_DECRYPT)
	return ctx->pmeth->decrypt(ctx, out, outlen, in, inlen);
	}


int EVP_PKEY_derive_init(EVP_PKEY_CTX *ctx)
	{
	int ret;
	if (!ctx || !ctx->pmeth || !ctx->pmeth->derive)
		{
		EVPerr(EVP_F_EVP_PKEY_DERIVE_INIT,
			EVP_R_OPERATION_NOT_SUPPORTED_FOR_THIS_KEYTYPE);
		return -2;
		}
	ctx->operation = EVP_PKEY_OP_DERIVE;
	if (!ctx->pmeth->derive_init)
		return 1;
	ret = ctx->pmeth->derive_init(ctx);
	if (ret <= 0)
		ctx->operation = EVP_PKEY_OP_UNDEFINED;
	return ret;
	}

int EVP_PKEY_derive_set_peer(EVP_PKEY_CTX *ctx, EVP_PKEY *peer)
	{
	int ret;
	if (!ctx || !ctx->pmeth || !(ctx->pmeth->derive||ctx->pmeth->encrypt) || !ctx->pmeth->ctrl)
		{
		EVPerr(EVP_F_EVP_PKEY_DERIVE_SET_PEER,
			EVP_R_OPERATION_NOT_SUPPORTED_FOR_THIS_KEYTYPE);
		return -2;
		}
	if (ctx->operation != EVP_PKEY_OP_DERIVE && ctx->operation != EVP_PKEY_OP_ENCRYPT)
		{
		EVPerr(EVP_F_EVP_PKEY_DERIVE_SET_PEER,
					EVP_R_OPERATON_NOT_INITIALIZED);
		return -1;
		}

	ret = ctx->pmeth->ctrl(ctx, EVP_PKEY_CTRL_PEER_KEY, 0, peer);

	if (ret <= 0)
		return ret;

	if (ret == 2)
		return 1;

	if (!ctx->pkey)
		{
		EVPerr(EVP_F_EVP_PKEY_DERIVE_SET_PEER, EVP_R_NO_KEY_SET);
		return -1;
		}

	if (ctx->pkey->type != peer->type)
		{
		EVPerr(EVP_F_EVP_PKEY_DERIVE_SET_PEER,
						EVP_R_DIFFERENT_KEY_TYPES);
		return -1;
		}

	if (!EVP_PKEY_missing_parameters(peer) &&
		!EVP_PKEY_cmp_parameters(ctx->pkey, peer))
		{
		EVPerr(EVP_F_EVP_PKEY_DERIVE_SET_PEER,
						EVP_R_DIFFERENT_PARAMETERS);
		return -1;
		}

	ctx->peerkey = peer;

	ret = ctx->pmeth->ctrl(ctx, EVP_PKEY_CTRL_PEER_KEY, 1, peer);

	if (ret <= 0)
		{
		ctx->peerkey = NULL;
		return ret;
		}

	CRYPTO_add(&peer->references,1,CRYPTO_LOCK_EVP_PKEY);
	return 1;
	}


int EVP_PKEY_derive(EVP_PKEY_CTX *ctx, unsigned char *key, size_t *pkeylen)
	{
	if (!ctx || !ctx->pmeth || !ctx->pmeth->derive)
		{
		EVPerr(EVP_F_EVP_PKEY_DERIVE,
			EVP_R_OPERATION_NOT_SUPPORTED_FOR_THIS_KEYTYPE);
		return -2;
		}
	if (ctx->operation != EVP_PKEY_OP_DERIVE)
		{
		EVPerr(EVP_F_EVP_PKEY_DERIVE, EVP_R_OPERATON_NOT_INITIALIZED);
		return -1;
		}
	M_check_autoarg(ctx, key, pkeylen, EVP_F_EVP_PKEY_DERIVE)
	return ctx->pmeth->derive(ctx, key, pkeylen);
	}
Commit	Line	Data
f733a5ef DSH	1	/* pmeth_fn.c */
	2	/* Written by Dr Stephen N Henson (shenson@bigfoot.com) for the OpenSSL
	3	* project 2006.
	4	*/
	5	/* ====================================================================
	6	* Copyright (c) 2006 The OpenSSL Project. All rights reserved.
	7	*
	8	* Redistribution and use in source and binary forms, with or without
	9	* modification, are permitted provided that the following conditions
	10	* are met:
	11	*
	12	* 1. Redistributions of source code must retain the above copyright
	13	* notice, this list of conditions and the following disclaimer.
	14	*
	15	* 2. Redistributions in binary form must reproduce the above copyright
	16	* notice, this list of conditions and the following disclaimer in
	17	* the documentation and/or other materials provided with the
	18	* distribution.
	19	*
	20	* 3. All advertising materials mentioning features or use of this
	21	* software must display the following acknowledgment:
	22	* "This product includes software developed by the OpenSSL Project
	23	* for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)"
	24	*
	25	* 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to
	26	* endorse or promote products derived from this software without
	27	* prior written permission. For written permission, please contact
	28	* licensing@OpenSSL.org.
	29	*
	30	* 5. Products derived from this software may not be called "OpenSSL"
	31	* nor may "OpenSSL" appear in their names without prior written
	32	* permission of the OpenSSL Project.
	33	*
	34	* 6. Redistributions of any form whatsoever must retain the following
	35	* acknowledgment:
	36	* "This product includes software developed by the OpenSSL Project
	37	* for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)"
	38	*
	39	* THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY
	40	* EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
	41	* IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
	42	* PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR
	43	* ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
	44	* SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
	45	* NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
	46	* LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
	47	* HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
	48	* STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
	49	* ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
	50	* OF THE POSSIBILITY OF SUCH DAMAGE.
	51	* ====================================================================
	52	*
	53	* This product includes cryptographic software written by Eric Young
	54	* (eay@cryptsoft.com). This product includes software written by Tim
	55	* Hudson (tjh@cryptsoft.com).
	56	*
	57	*/
	58
	59	#include <stdio.h>
	60	#include <stdlib.h>
f733a5ef	61	#include "cryptlib.h"
c20276e4	62	#include <openssl/objects.h>
f733a5ef DSH	63	#include <openssl/evp.h>
	64	#include "evp_locl.h"
	65
b010b7c4 DSH	66	#define M_check_autoarg(ctx, arg, arglen, err) \
	67	if (ctx->pmeth->flags & EVP_PKEY_FLAG_AUTOARGLEN) \
	68	{ \
eaff5a14	69	size_t pksize = (size_t)EVP_PKEY_size(ctx->pkey); \
b010b7c4 DSH	70	if (!arg) \
	71	{ \
	72	*arglen = pksize; \
	73	return 1; \
	74	} \
	75	else if (*arglen < pksize) \
	76	{ \
5c95c2ac	77	EVPerr(err, EVP_R_BUFFER_TOO_SMALL); /ckerr_ignore/\
b010b7c4 DSH	78	return 0; \
	79	} \
	80	}
	81
cd763898	82	int EVP_PKEY_sign_init(EVP_PKEY_CTX *ctx)
f733a5ef DSH	83	{
f733a5ef DSH	84	int ret;
d1aa0d38	85	if (!ctx \|\| !ctx->pmeth \|\| !ctx->pmeth->sign)
f733a5ef DSH	86	{
	87	EVPerr(EVP_F_EVP_PKEY_SIGN_INIT,
	88	EVP_R_OPERATION_NOT_SUPPORTED_FOR_THIS_KEYTYPE);
	89	return -2;
	90	}
	91	ctx->operation = EVP_PKEY_OP_SIGN;
d1aa0d38 DSH	92	if (!ctx->pmeth->sign_init)
d1aa0d38 DSH	93	return 1;
cd763898	94	ret = ctx->pmeth->sign_init(ctx);
f733a5ef DSH	95	if (ret <= 0)
	96	ctx->operation = EVP_PKEY_OP_UNDEFINED;
	97	return ret;
	98	}
	99
	100	int EVP_PKEY_sign(EVP_PKEY_CTX *ctx,
eaff5a14 DSH	101	unsigned char sig, size_t siglen,
eaff5a14 DSH	102	const unsigned char *tbs, size_t tbslen)
f733a5ef DSH	103	{
	104	if (!ctx \|\| !ctx->pmeth \|\| !ctx->pmeth->sign)
	105	{
	106	EVPerr(EVP_F_EVP_PKEY_SIGN,
	107	EVP_R_OPERATION_NOT_SUPPORTED_FOR_THIS_KEYTYPE);
	108	return -2;
	109	}
	110	if (ctx->operation != EVP_PKEY_OP_SIGN)
	111	{
	112	EVPerr(EVP_F_EVP_PKEY_SIGN, EVP_R_OPERATON_NOT_INITIALIZED);
	113	return -1;
	114	}
b010b7c4	115	M_check_autoarg(ctx, sig, siglen, EVP_F_EVP_PKEY_SIGN)
f733a5ef DSH	116	return ctx->pmeth->sign(ctx, sig, siglen, tbs, tbslen);
	117	}
	118
cd763898	119	int EVP_PKEY_verify_init(EVP_PKEY_CTX *ctx)
f733a5ef DSH	120	{
f733a5ef DSH	121	int ret;
d1aa0d38	122	if (!ctx \|\| !ctx->pmeth \|\| !ctx->pmeth->verify)
f733a5ef DSH	123	{
	124	EVPerr(EVP_F_EVP_PKEY_VERIFY_INIT,
	125	EVP_R_OPERATION_NOT_SUPPORTED_FOR_THIS_KEYTYPE);
	126	return -2;
	127	}
	128	ctx->operation = EVP_PKEY_OP_VERIFY;
d1aa0d38 DSH	129	if (!ctx->pmeth->verify_init)
d1aa0d38 DSH	130	return 1;
cd763898	131	ret = ctx->pmeth->verify_init(ctx);
f733a5ef DSH	132	if (ret <= 0)
	133	ctx->operation = EVP_PKEY_OP_UNDEFINED;
	134	return ret;
	135	}
	136
	137	int EVP_PKEY_verify(EVP_PKEY_CTX *ctx,
eaff5a14 DSH	138	const unsigned char *sig, size_t siglen,
eaff5a14 DSH	139	const unsigned char *tbs, size_t tbslen)
f733a5ef DSH	140	{
	141	if (!ctx \|\| !ctx->pmeth \|\| !ctx->pmeth->verify)
	142	{
	143	EVPerr(EVP_F_EVP_PKEY_VERIFY,
	144	EVP_R_OPERATION_NOT_SUPPORTED_FOR_THIS_KEYTYPE);
	145	return -2;
	146	}
	147	if (ctx->operation != EVP_PKEY_OP_VERIFY)
	148	{
	149	EVPerr(EVP_F_EVP_PKEY_VERIFY, EVP_R_OPERATON_NOT_INITIALIZED);
	150	return -1;
	151	}
	152	return ctx->pmeth->verify(ctx, sig, siglen, tbs, tbslen);
	153	}
	154
cd763898	155	int EVP_PKEY_verify_recover_init(EVP_PKEY_CTX *ctx)
f733a5ef DSH	156	{
f733a5ef DSH	157	int ret;
d1aa0d38	158	if (!ctx \|\| !ctx->pmeth \|\| !ctx->pmeth->verify_recover)
f733a5ef DSH	159	{
	160	EVPerr(EVP_F_EVP_PKEY_VERIFY_RECOVER_INIT,
	161	EVP_R_OPERATION_NOT_SUPPORTED_FOR_THIS_KEYTYPE);
	162	return -2;
	163	}
	164	ctx->operation = EVP_PKEY_OP_VERIFYRECOVER;
d1aa0d38 DSH	165	if (!ctx->pmeth->verify_recover_init)
d1aa0d38 DSH	166	return 1;
cd763898	167	ret = ctx->pmeth->verify_recover_init(ctx);
f733a5ef DSH	168	if (ret <= 0)
	169	ctx->operation = EVP_PKEY_OP_UNDEFINED;
	170	return ret;
	171	}
	172
	173	int EVP_PKEY_verify_recover(EVP_PKEY_CTX *ctx,
eaff5a14 DSH	174	unsigned char rout, size_t routlen,
eaff5a14 DSH	175	const unsigned char *sig, size_t siglen)
f733a5ef DSH	176	{
	177	if (!ctx \|\| !ctx->pmeth \|\| !ctx->pmeth->verify_recover)
	178	{
	179	EVPerr(EVP_F_EVP_PKEY_VERIFY_RECOVER,
	180	EVP_R_OPERATION_NOT_SUPPORTED_FOR_THIS_KEYTYPE);
	181	return -2;
	182	}
	183	if (ctx->operation != EVP_PKEY_OP_VERIFYRECOVER)
	184	{
	185	EVPerr(EVP_F_EVP_PKEY_VERIFY_RECOVER, EVP_R_OPERATON_NOT_INITIALIZED);
	186	return -1;
	187	}
b010b7c4	188	M_check_autoarg(ctx, rout, routlen, EVP_F_EVP_PKEY_VERIFY_RECOVER)
f733a5ef DSH	189	return ctx->pmeth->verify_recover(ctx, rout, routlen, sig, siglen);
	190	}
	191
cd763898	192	int EVP_PKEY_encrypt_init(EVP_PKEY_CTX *ctx)
f733a5ef DSH	193	{
f733a5ef DSH	194	int ret;
d1aa0d38	195	if (!ctx \|\| !ctx->pmeth \|\| !ctx->pmeth->encrypt)
f733a5ef DSH	196	{
	197	EVPerr(EVP_F_EVP_PKEY_ENCRYPT_INIT,
	198	EVP_R_OPERATION_NOT_SUPPORTED_FOR_THIS_KEYTYPE);
	199	return -2;
	200	}
	201	ctx->operation = EVP_PKEY_OP_ENCRYPT;
d1aa0d38 DSH	202	if (!ctx->pmeth->encrypt_init)
d1aa0d38 DSH	203	return 1;
cd763898	204	ret = ctx->pmeth->encrypt_init(ctx);
f733a5ef DSH	205	if (ret <= 0)
	206	ctx->operation = EVP_PKEY_OP_UNDEFINED;
	207	return ret;
	208	}
	209
	210	int EVP_PKEY_encrypt(EVP_PKEY_CTX *ctx,
eaff5a14 DSH	211	unsigned char out, size_t outlen,
eaff5a14 DSH	212	const unsigned char *in, size_t inlen)
f733a5ef DSH	213	{
	214	if (!ctx \|\| !ctx->pmeth \|\| !ctx->pmeth->encrypt)
	215	{
	216	EVPerr(EVP_F_EVP_PKEY_ENCRYPT,
	217	EVP_R_OPERATION_NOT_SUPPORTED_FOR_THIS_KEYTYPE);
	218	return -2;
	219	}
	220	if (ctx->operation != EVP_PKEY_OP_ENCRYPT)
	221	{
	222	EVPerr(EVP_F_EVP_PKEY_ENCRYPT, EVP_R_OPERATON_NOT_INITIALIZED);
	223	return -1;
	224	}
b010b7c4	225	M_check_autoarg(ctx, out, outlen, EVP_F_EVP_PKEY_ENCRYPT)
f733a5ef DSH	226	return ctx->pmeth->encrypt(ctx, out, outlen, in, inlen);
	227	}
	228
cd763898	229	int EVP_PKEY_decrypt_init(EVP_PKEY_CTX *ctx)
f733a5ef DSH	230	{
f733a5ef DSH	231	int ret;
d1aa0d38	232	if (!ctx \|\| !ctx->pmeth \|\| !ctx->pmeth->decrypt)
f733a5ef DSH	233	{
	234	EVPerr(EVP_F_EVP_PKEY_DECRYPT_INIT,
	235	EVP_R_OPERATION_NOT_SUPPORTED_FOR_THIS_KEYTYPE);
	236	return -2;
	237	}
	238	ctx->operation = EVP_PKEY_OP_DECRYPT;
d1aa0d38 DSH	239	if (!ctx->pmeth->decrypt_init)
d1aa0d38 DSH	240	return 1;
cd763898	241	ret = ctx->pmeth->decrypt_init(ctx);
f733a5ef DSH	242	if (ret <= 0)
	243	ctx->operation = EVP_PKEY_OP_UNDEFINED;
	244	return ret;
	245	}
	246
	247	int EVP_PKEY_decrypt(EVP_PKEY_CTX *ctx,
eaff5a14 DSH	248	unsigned char out, size_t outlen,
eaff5a14 DSH	249	const unsigned char *in, size_t inlen)
f733a5ef DSH	250	{
	251	if (!ctx \|\| !ctx->pmeth \|\| !ctx->pmeth->decrypt)
	252	{
	253	EVPerr(EVP_F_EVP_PKEY_DECRYPT,
	254	EVP_R_OPERATION_NOT_SUPPORTED_FOR_THIS_KEYTYPE);
	255	return -2;
	256	}
	257	if (ctx->operation != EVP_PKEY_OP_DECRYPT)
	258	{
	259	EVPerr(EVP_F_EVP_PKEY_DECRYPT, EVP_R_OPERATON_NOT_INITIALIZED);
	260	return -1;
	261	}
b010b7c4	262	M_check_autoarg(ctx, out, outlen, EVP_F_EVP_PKEY_DECRYPT)
f733a5ef DSH	263	return ctx->pmeth->decrypt(ctx, out, outlen, in, inlen);
	264	}
	265
d87e6152 DSH	266
	267	int EVP_PKEY_derive_init(EVP_PKEY_CTX *ctx)
	268	{
	269	int ret;
	270	if (!ctx \|\| !ctx->pmeth \|\| !ctx->pmeth->derive)
	271	{
	272	EVPerr(EVP_F_EVP_PKEY_DERIVE_INIT,
	273	EVP_R_OPERATION_NOT_SUPPORTED_FOR_THIS_KEYTYPE);
	274	return -2;
	275	}
	276	ctx->operation = EVP_PKEY_OP_DERIVE;
	277	if (!ctx->pmeth->derive_init)
	278	return 1;
	279	ret = ctx->pmeth->derive_init(ctx);
	280	if (ret <= 0)
	281	ctx->operation = EVP_PKEY_OP_UNDEFINED;
	282	return ret;
	283	}
	284
ffb1ac67 DSH	285	int EVP_PKEY_derive_set_peer(EVP_PKEY_CTX ctx, EVP_PKEY peer)
	286	{
	287	int ret;
0e1dba93	288	if (!ctx \|\| !ctx->pmeth \|\| !(ctx->pmeth->derive\|\|ctx->pmeth->encrypt) \|\| !ctx->pmeth->ctrl)
ffb1ac67 DSH	289	{
	290	EVPerr(EVP_F_EVP_PKEY_DERIVE_SET_PEER,
	291	EVP_R_OPERATION_NOT_SUPPORTED_FOR_THIS_KEYTYPE);
	292	return -2;
	293	}
0e1dba93	294	if (ctx->operation != EVP_PKEY_OP_DERIVE && ctx->operation != EVP_PKEY_OP_ENCRYPT)
ffb1ac67 DSH	295	{
	296	EVPerr(EVP_F_EVP_PKEY_DERIVE_SET_PEER,
	297	EVP_R_OPERATON_NOT_INITIALIZED);
	298	return -1;
	299	}
	300
	301	ret = ctx->pmeth->ctrl(ctx, EVP_PKEY_CTRL_PEER_KEY, 0, peer);
	302
	303	if (ret <= 0)
	304	return ret;
	305
	306	if (ret == 2)
	307	return 1;
	308
	309	if (!ctx->pkey)
	310	{
	311	EVPerr(EVP_F_EVP_PKEY_DERIVE_SET_PEER, EVP_R_NO_KEY_SET);
	312	return -1;
	313	}
	314
	315	if (ctx->pkey->type != peer->type)
	316	{
	317	EVPerr(EVP_F_EVP_PKEY_DERIVE_SET_PEER,
	318	EVP_R_DIFFERENT_KEY_TYPES);
	319	return -1;
	320	}
	321
	322	if (!EVP_PKEY_missing_parameters(peer) &&
	323	!EVP_PKEY_cmp_parameters(ctx->pkey, peer))
	324	{
	325	EVPerr(EVP_F_EVP_PKEY_DERIVE_SET_PEER,
	326	EVP_R_DIFFERENT_PARAMETERS);
	327	return -1;
	328	}
	329
	330	ctx->peerkey = peer;
	331
	332	ret = ctx->pmeth->ctrl(ctx, EVP_PKEY_CTRL_PEER_KEY, 1, peer);
	333
	334	if (ret <= 0)
	335	{
	336	ctx->peerkey = NULL;
	337	return ret;
	338	}
	339
	340	CRYPTO_add(&peer->references,1,CRYPTO_LOCK_EVP_PKEY);
	341	return 1;
	342	}
	343
	344
eaff5a14	345	int EVP_PKEY_derive(EVP_PKEY_CTX ctx, unsigned char key, size_t *pkeylen)
d87e6152 DSH	346	{
	347	if (!ctx \|\| !ctx->pmeth \|\| !ctx->pmeth->derive)
	348	{
	349	EVPerr(EVP_F_EVP_PKEY_DERIVE,
	350	EVP_R_OPERATION_NOT_SUPPORTED_FOR_THIS_KEYTYPE);
	351	return -2;
	352	}
	353	if (ctx->operation != EVP_PKEY_OP_DERIVE)
	354	{
	355	EVPerr(EVP_F_EVP_PKEY_DERIVE, EVP_R_OPERATON_NOT_INITIALIZED);
	356	return -1;
	357	}
b010b7c4	358	M_check_autoarg(ctx, key, pkeylen, EVP_F_EVP_PKEY_DERIVE)
d87e6152 DSH	359	return ctx->pmeth->derive(ctx, key, pkeylen);
	360	}
	361