]> git.ipfire.org Git - thirdparty/openssl.git/blob - crypto/encode_decode/decoder_pkey.c
projects / thirdparty / openssl.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
blame | history | raw | HEAD
Coverity #1486687: fix potential dereference of NULL keymgmt
[thirdparty/openssl.git] / crypto / encode_decode / decoder_pkey.c
1 /*
2 * Copyright 2020-2021 The OpenSSL Project Authors. All Rights Reserved.
3 *
4 * Licensed under the Apache License 2.0 (the "License"). You may not use
5 * this file except in compliance with the License. You can obtain a copy
6 * in the file LICENSE in the source distribution or at
7 * https://www.openssl.org/source/license.html
8 */
9
10 #include <openssl/core_names.h>
11 #include <openssl/core_object.h>
12 #include <openssl/provider.h>
13 #include <openssl/evp.h>
14 #include <openssl/ui.h>
15 #include <openssl/decoder.h>
16 #include <openssl/safestack.h>
17 #include <openssl/trace.h>
18 #include "crypto/evp.h"
19 #include "crypto/decoder.h"
20 #include "encoder_local.h"
21 #include "e_os.h" /* strcasecmp on Windows */
22
23 int OSSL_DECODER_CTX_set_passphrase(OSSL_DECODER_CTX *ctx,
24 const unsigned char *kstr,
25 size_t klen)
26 {
27 return ossl_pw_set_passphrase(&ctx->pwdata, kstr, klen);
28 }
29
30 int OSSL_DECODER_CTX_set_passphrase_ui(OSSL_DECODER_CTX *ctx,
31 const UI_METHOD *ui_method,
32 void *ui_data)
33 {
34 return ossl_pw_set_ui_method(&ctx->pwdata, ui_method, ui_data);
35 }
36
37 int OSSL_DECODER_CTX_set_pem_password_cb(OSSL_DECODER_CTX *ctx,
38 pem_password_cb *cb, void *cbarg)
39 {
40 return ossl_pw_set_pem_password_cb(&ctx->pwdata, cb, cbarg);
41 }
42
43 int OSSL_DECODER_CTX_set_passphrase_cb(OSSL_DECODER_CTX *ctx,
44 OSSL_PASSPHRASE_CALLBACK *cb,
45 void *cbarg)
46 {
47 return ossl_pw_set_ossl_passphrase_cb(&ctx->pwdata, cb, cbarg);
48 }
49
50 /*
51 * Support for OSSL_DECODER_CTX_new_for_pkey:
52 * The construct data, and collecting keymgmt information for it
53 */
54
55 DEFINE_STACK_OF(EVP_KEYMGMT)
56
57 struct decoder_pkey_data_st {
58 OSSL_LIB_CTX *libctx;
59 char *propq;
60 int selection;
61
62 STACK_OF(EVP_KEYMGMT) *keymgmts;
63 char *object_type; /* recorded object data type, may be NULL */
64 void **object; /* Where the result should end up */
65 };
66
67 static int decoder_construct_pkey(OSSL_DECODER_INSTANCE *decoder_inst,
68 const OSSL_PARAM *params,
69 void *construct_data)
70 {
71 struct decoder_pkey_data_st *data = construct_data;
72 OSSL_DECODER *decoder = OSSL_DECODER_INSTANCE_get_decoder(decoder_inst);
73 void *decoderctx = OSSL_DECODER_INSTANCE_get_decoder_ctx(decoder_inst);
74 const OSSL_PROVIDER *decoder_prov = OSSL_DECODER_get0_provider(decoder);
75 EVP_KEYMGMT *keymgmt = NULL;
76 const OSSL_PROVIDER *keymgmt_prov = NULL;
77 int i, end;
78 /*
79 * |object_ref| points to a provider reference to an object, its exact
80 * contents entirely opaque to us, but may be passed to any provider
81 * function that expects this (such as OSSL_FUNC_keymgmt_load().
82 *
83 * This pointer is considered volatile, i.e. whatever it points at
84 * is assumed to be freed as soon as this function returns.
85 */
86 void *object_ref = NULL;
87 size_t object_ref_sz = 0;
88 const OSSL_PARAM *p;
89
90 p = OSSL_PARAM_locate_const(params, OSSL_OBJECT_PARAM_DATA_TYPE);
91 if (p != NULL) {
92 char *object_type = NULL;
93
94 if (!OSSL_PARAM_get_utf8_string(p, &object_type, 0))
95 return 0;
96 OPENSSL_free(data->object_type);
97 data->object_type = object_type;
98 }
99
100 /*
101 * For stuff that should end up in an EVP_PKEY, we only accept an object
102 * reference for the moment. This enforces that the key data itself
103 * remains with the provider.
104 */
105 p = OSSL_PARAM_locate_const(params, OSSL_OBJECT_PARAM_REFERENCE);
106 if (p == NULL || p->data_type != OSSL_PARAM_OCTET_STRING)
107 return 0;
108 object_ref = p->data;
109 object_ref_sz = p->data_size;
110
111 /*
112 * First, we try to find a keymgmt that comes from the same provider as
113 * the decoder that passed the params.
114 */
115 end = sk_EVP_KEYMGMT_num(data->keymgmts);
116 for (i = 0; i < end; i++) {
117 keymgmt = sk_EVP_KEYMGMT_value(data->keymgmts, i);
118 keymgmt_prov = EVP_KEYMGMT_get0_provider(keymgmt);
119
120 if (keymgmt_prov == decoder_prov
121 && evp_keymgmt_has_load(keymgmt)
122 && EVP_KEYMGMT_is_a(keymgmt, data->object_type))
123 break;
124 }
125 if (i < end) {
126 /* To allow it to be freed further down */
127 if (!EVP_KEYMGMT_up_ref(keymgmt))
128 return 0;
129 } else if ((keymgmt = EVP_KEYMGMT_fetch(data->libctx,
130 data->object_type,
131 data->propq)) != NULL) {
132 keymgmt_prov = EVP_KEYMGMT_get0_provider(keymgmt);
133 }
134
135 if (keymgmt != NULL) {
136 EVP_PKEY *pkey = NULL;
137 void *keydata = NULL;
138
139 /*
140 * If the EVP_KEYMGMT and the OSSL_DECODER are from the
141 * same provider, we assume that the KEYMGMT has a key loading
142 * function that can handle the provider reference we hold.
143 *
144 * Otherwise, we export from the decoder and import the
145 * result in the keymgmt.
146 */
147 if (keymgmt_prov == decoder_prov) {
148 keydata = evp_keymgmt_load(keymgmt, object_ref, object_ref_sz);
149 } else {
150 struct evp_keymgmt_util_try_import_data_st import_data;
151
152 import_data.keymgmt = keymgmt;
153 import_data.keydata = NULL;
154 import_data.selection = data->selection;
155
156 /*
157 * No need to check for errors here, the value of
158 * |import_data.keydata| is as much an indicator.
159 */
160 (void)decoder->export_object(decoderctx,
161 object_ref, object_ref_sz,
162 &evp_keymgmt_util_try_import,
163 &import_data);
164 keydata = import_data.keydata;
165 import_data.keydata = NULL;
166 }
167
168 if (keydata != NULL
169 && (pkey = evp_keymgmt_util_make_pkey(keymgmt, keydata)) == NULL)
170 evp_keymgmt_freedata(keymgmt, keydata);
171
172 *data->object = pkey;
173
174 /*
175 * evp_keymgmt_util_make_pkey() increments the reference count when
176 * assigning the EVP_PKEY, so we can free the keymgmt here.
177 */
178 EVP_KEYMGMT_free(keymgmt);
179 }
180 /*
181 * We successfully looked through, |*ctx->object| determines if we
182 * actually found something.
183 */
184 return (*data->object != NULL);
185 }
186
187 static void decoder_clean_pkey_construct_arg(void *construct_data)
188 {
189 struct decoder_pkey_data_st *data = construct_data;
190
191 if (data != NULL) {
192 sk_EVP_KEYMGMT_pop_free(data->keymgmts, EVP_KEYMGMT_free);
193 OPENSSL_free(data->propq);
194 OPENSSL_free(data->object_type);
195 OPENSSL_free(data);
196 }
197 }
198
199 static void collect_name(const char *name, void *arg)
200 {
201 STACK_OF(OPENSSL_CSTRING) *names = arg;
202
203 sk_OPENSSL_CSTRING_push(names, name);
204 }
205
206 static void collect_keymgmt(EVP_KEYMGMT *keymgmt, void *arg)
207 {
208 STACK_OF(EVP_KEYMGMT) *keymgmts = arg;
209
210 if (!EVP_KEYMGMT_up_ref(keymgmt) /* ref++ */)
211 return;
212 if (sk_EVP_KEYMGMT_push(keymgmts, keymgmt) <= 0) {
213 EVP_KEYMGMT_free(keymgmt); /* ref-- */
214 return;
215 }
216 }
217
218 /*
219 * The input structure check is only done on the initial decoder
220 * implementations.
221 */
222 static int decoder_check_input_structure(OSSL_DECODER_CTX *ctx,
223 OSSL_DECODER_INSTANCE *di)
224 {
225 int di_is_was_set = 0;
226 const char *di_is =
227 OSSL_DECODER_INSTANCE_get_input_structure(di, &di_is_was_set);
228
229 /*
230 * If caller didn't give an input structure name, the decoder is accepted
231 * unconditionally with regards to the input structure.
232 */
233 if (ctx->input_structure == NULL)
234 return 1;
235 /*
236 * If the caller did give an input structure name, the decoder must have
237 * a matching input structure to be accepted.
238 */
239 if (di_is != NULL && strcasecmp(ctx->input_structure, di_is) == 0)
240 return 1;
241 return 0;
242 }
243
244 struct collect_decoder_data_st {
245 STACK_OF(OPENSSL_CSTRING) *names;
246 OSSL_DECODER_CTX *ctx;
247
248 int total;
249 unsigned int error_occurred:1;
250 };
251
252 static void collect_decoder(OSSL_DECODER *decoder, void *arg)
253 {
254 struct collect_decoder_data_st *data = arg;
255 size_t i, end_i;
256 const OSSL_PROVIDER *prov = OSSL_DECODER_get0_provider(decoder);
257 void *provctx = OSSL_PROVIDER_get0_provider_ctx(prov);
258
259 if (data->error_occurred)
260 return;
261
262 if (data->names == NULL) {
263 data->error_occurred = 1;
264 return;
265 }
266
267 /*
268 * Either the caller didn't give a selection, or if they did,
269 * the decoder must tell us if it supports that selection to
270 * be accepted. If the decoder doesn't have |does_selection|,
271 * it's seen as taking anything.
272 */
273 if (decoder->does_selection != NULL
274 && !decoder->does_selection(provctx, data->ctx->selection))
275 return;
276
277 OSSL_TRACE_BEGIN(DECODER) {
278 BIO_printf(trc_out,
279 "(ctx %p) Checking out decoder %p:\n"
280 " %s with %s\n",
281 (void *)data->ctx, (void *)decoder,
282 OSSL_DECODER_get0_name(decoder),
283 OSSL_DECODER_get0_properties(decoder));
284 } OSSL_TRACE_END(DECODER);
285
286 end_i = sk_OPENSSL_CSTRING_num(data->names);
287 for (i = 0; i < end_i; i++) {
288 const char *name = sk_OPENSSL_CSTRING_value(data->names, i);
289
290 if (OSSL_DECODER_is_a(decoder, name)) {
291 void *decoderctx = NULL;
292 OSSL_DECODER_INSTANCE *di = NULL;
293
294 if ((decoderctx = decoder->newctx(provctx)) == NULL) {
295 data->error_occurred = 1;
296 return;
297 }
298 if ((di = ossl_decoder_instance_new(decoder, decoderctx)) == NULL) {
299 decoder->freectx(decoderctx);
300 data->error_occurred = 1;
301 return;
302 }
303
304 OSSL_TRACE_BEGIN(DECODER) {
305 BIO_printf(trc_out,
306 "(ctx %p) Checking out decoder %p:\n"
307 " %s with %s\n",
308 (void *)data->ctx, (void *)decoder,
309 OSSL_DECODER_get0_name(decoder),
310 OSSL_DECODER_get0_properties(decoder));
311 } OSSL_TRACE_END(DECODER);
312
313 if (!decoder_check_input_structure(data->ctx, di)) {
314 OSSL_TRACE_BEGIN(DECODER) {
315 BIO_printf(trc_out,
316 " REJECTED: not the desired input structure\n");
317 } OSSL_TRACE_END(DECODER);
318 ossl_decoder_instance_free(di);
319 /* Not a fatal error. Just return */
320 return;
321 }
322 if (!ossl_decoder_ctx_add_decoder_inst(data->ctx, di)) {
323 ossl_decoder_instance_free(di);
324 data->error_occurred = 1;
325 return;
326 }
327 data->total++;
328
329 /* Success */
330 return;
331 }
332 }
333
334 /* Decoder not suitable - but not a fatal error */
335 data->error_occurred = 0;
336 }
337
338 int ossl_decoder_ctx_setup_for_pkey(OSSL_DECODER_CTX *ctx,
339 EVP_PKEY **pkey, const char *keytype,
340 OSSL_LIB_CTX *libctx,
341 const char *propquery)
342 {
343 struct decoder_pkey_data_st *process_data = NULL;
344 STACK_OF(OPENSSL_CSTRING) *names = NULL;
345 const char *input_type = ctx->start_input_type;
346 const char *input_structure = ctx->input_structure;
347 int ok = 0;
348 int isecoid = 0;
349 int i, end;
350
351 if (keytype != NULL
352 && (strcmp(keytype, "id-ecPublicKey") == 0
353 || strcmp(keytype, "1.2.840.10045.2.1") == 0))
354 isecoid = 1;
355
356 OSSL_TRACE_BEGIN(DECODER) {
357 BIO_printf(trc_out,
358 "(ctx %p) Looking for decoders producing %s%s%s%s%s%s\n",
359 (void *)ctx,
360 keytype != NULL ? keytype : "",
361 keytype != NULL ? " keys" : "keys of any type",
362 input_type != NULL ? " from " : "",
363 input_type != NULL ? input_type : "",
364 input_structure != NULL ? " with " : "",
365 input_structure != NULL ? input_structure : "");
366 } OSSL_TRACE_END(DECODER);
367
368 if ((process_data = OPENSSL_zalloc(sizeof(*process_data))) == NULL
369 || (propquery != NULL
370 && (process_data->propq = OPENSSL_strdup(propquery)) == NULL)
371 || (process_data->keymgmts = sk_EVP_KEYMGMT_new_null()) == NULL
372 || (names = sk_OPENSSL_CSTRING_new_null()) == NULL) {
373 ERR_raise(ERR_LIB_OSSL_DECODER, ERR_R_MALLOC_FAILURE);
374 goto err;
375 }
376
377 process_data->object = (void **)pkey;
378 process_data->libctx = libctx;
379 process_data->selection = ctx->selection;
380
381 /* First, find all keymgmts to form goals */
382 EVP_KEYMGMT_do_all_provided(libctx, collect_keymgmt,
383 process_data->keymgmts);
384
385 /* Then, we collect all the keymgmt names */
386 end = sk_EVP_KEYMGMT_num(process_data->keymgmts);
387 for (i = 0; i < end; i++) {
388 EVP_KEYMGMT *keymgmt = sk_EVP_KEYMGMT_value(process_data->keymgmts, i);
389
390 /*
391 * If the key type is given by the caller, we only use the matching
392 * KEYMGMTs, otherwise we use them all.
393 * We have to special case SM2 here because of its abuse of the EC OID.
394 * The EC OID can be used to identify an EC key or an SM2 key - so if
395 * we have seen that OID we try both key types
396 */
397 if (keytype == NULL
398 || EVP_KEYMGMT_is_a(keymgmt, keytype)
399 || (isecoid && EVP_KEYMGMT_is_a(keymgmt, "SM2"))) {
400 if (!EVP_KEYMGMT_names_do_all(keymgmt, collect_name, names)) {
401 ERR_raise(ERR_LIB_OSSL_DECODER, ERR_R_INTERNAL_ERROR);
402 goto err;
403 }
404 }
405 }
406
407 OSSL_TRACE_BEGIN(DECODER) {
408 end = sk_OPENSSL_CSTRING_num(names);
409 BIO_printf(trc_out,
410 " Found %d keytypes (possibly with duplicates)",
411 end);
412 for (i = 0; i < end; i++)
413 BIO_printf(trc_out, "%s%s",
414 i == 0 ? ": " : ", ",
415 sk_OPENSSL_CSTRING_value(names, i));
416 BIO_printf(trc_out, "\n");
417 } OSSL_TRACE_END(DECODER);
418
419 /*
420 * Finally, find all decoders that have any keymgmt of the collected
421 * keymgmt names
422 */
423 {
424 struct collect_decoder_data_st collect_decoder_data = { NULL, };
425
426 collect_decoder_data.names = names;
427 collect_decoder_data.ctx = ctx;
428 OSSL_DECODER_do_all_provided(libctx,
429 collect_decoder, &collect_decoder_data);
430 sk_OPENSSL_CSTRING_free(names);
431 names = NULL;
432
433 if (collect_decoder_data.error_occurred)
434 goto err;
435
436 OSSL_TRACE_BEGIN(DECODER) {
437 BIO_printf(trc_out,
438 "(ctx %p) Got %d decoders producing keys\n",
439 (void *)ctx, collect_decoder_data.total);
440 } OSSL_TRACE_END(DECODER);
441 }
442
443 if (OSSL_DECODER_CTX_get_num_decoders(ctx) != 0) {
444 if (!OSSL_DECODER_CTX_set_construct(ctx, decoder_construct_pkey)
445 || !OSSL_DECODER_CTX_set_construct_data(ctx, process_data)
446 || !OSSL_DECODER_CTX_set_cleanup(ctx,
447 decoder_clean_pkey_construct_arg))
448 goto err;
449
450 process_data = NULL; /* Avoid it being freed */
451 }
452
453 ok = 1;
454 err:
455 decoder_clean_pkey_construct_arg(process_data);
456 sk_OPENSSL_CSTRING_free(names);
457
458 return ok;
459 }
460
461 OSSL_DECODER_CTX *
462 OSSL_DECODER_CTX_new_for_pkey(EVP_PKEY **pkey,
463 const char *input_type,
464 const char *input_structure,
465 const char *keytype, int selection,
466 OSSL_LIB_CTX *libctx, const char *propquery)
467 {
468 OSSL_DECODER_CTX *ctx = NULL;
469
470 if ((ctx = OSSL_DECODER_CTX_new()) == NULL) {
471 ERR_raise(ERR_LIB_OSSL_DECODER, ERR_R_MALLOC_FAILURE);
472 return NULL;
473 }
474
475 OSSL_TRACE_BEGIN(DECODER) {
476 BIO_printf(trc_out,
477 "(ctx %p) Looking for %s decoders with selection %d\n",
478 (void *)ctx, keytype, selection);
479 BIO_printf(trc_out, " input type: %s, input structure: %s\n",
480 input_type, input_structure);
481 } OSSL_TRACE_END(DECODER);
482
483 if (OSSL_DECODER_CTX_set_input_type(ctx, input_type)
484 && OSSL_DECODER_CTX_set_input_structure(ctx, input_structure)
485 && OSSL_DECODER_CTX_set_selection(ctx, selection)
486 && ossl_decoder_ctx_setup_for_pkey(ctx, pkey, keytype,
487 libctx, propquery)
488 && OSSL_DECODER_CTX_add_extra(ctx, libctx, propquery)) {
489 OSSL_TRACE_BEGIN(DECODER) {
490 BIO_printf(trc_out, "(ctx %p) Got %d decoders\n",
491 (void *)ctx, OSSL_DECODER_CTX_get_num_decoders(ctx));
492 } OSSL_TRACE_END(DECODER);
493 return ctx;
494 }
495
496 OSSL_DECODER_CTX_free(ctx);
497 return NULL;
498 }
A mirror of the official openssl repository