]>
Commit | Line | Data |
---|---|---|
0f113f3e | 1 | /* |
c13d2ab4 | 2 | * Copyright 2000-2019 The OpenSSL Project Authors. All Rights Reserved. |
5da2f69f | 3 | * |
4a8b0c55 | 4 | * Licensed under the Apache License 2.0 (the "License"). You may not use |
aa6bb135 RS |
5 | * this file except in compliance with the License. You can obtain a copy |
6 | * in the file LICENSE in the source distribution or at | |
7 | * https://www.openssl.org/source/license.html | |
5da2f69f DSH |
8 | */ |
9 | ||
7638370c RL |
10 | /* EVP_MD_CTX related stuff */ |
11 | ||
ff64702b MC |
12 | #include <openssl/core_numbers.h> |
13 | ||
e870791a SL |
14 | #define EVP_CTRL_RET_UNSUPPORTED -1 |
15 | ||
16 | ||
7638370c | 17 | struct evp_md_ctx_st { |
b7c913c8 | 18 | const EVP_MD *reqdigest; /* The original requested digest */ |
7638370c RL |
19 | const EVP_MD *digest; |
20 | ENGINE *engine; /* functional reference if 'digest' is | |
21 | * ENGINE-provided */ | |
22 | unsigned long flags; | |
23 | void *md_data; | |
24 | /* Public key context for sign/verify */ | |
25 | EVP_PKEY_CTX *pctx; | |
26 | /* Update function: usually copied from EVP_MD */ | |
27 | int (*update) (EVP_MD_CTX *ctx, const void *data, size_t count); | |
8c8cf0d9 MC |
28 | |
29 | /* Provider ctx */ | |
30 | void *provctx; | |
31 | EVP_MD *fetched_digest; | |
7638370c RL |
32 | } /* EVP_MD_CTX */ ; |
33 | ||
8baf9968 RL |
34 | struct evp_cipher_ctx_st { |
35 | const EVP_CIPHER *cipher; | |
36 | ENGINE *engine; /* functional reference if 'cipher' is | |
37 | * ENGINE-provided */ | |
38 | int encrypt; /* encrypt or decrypt */ | |
39 | int buf_len; /* number we have left */ | |
40 | unsigned char oiv[EVP_MAX_IV_LENGTH]; /* original iv */ | |
41 | unsigned char iv[EVP_MAX_IV_LENGTH]; /* working iv */ | |
42 | unsigned char buf[EVP_MAX_BLOCK_LENGTH]; /* saved partial block */ | |
43 | int num; /* used by cfb/ofb/ctr mode */ | |
44 | /* FIXME: Should this even exist? It appears unused */ | |
45 | void *app_data; /* application stuff */ | |
46 | int key_len; /* May change for variable length cipher */ | |
47 | unsigned long flags; /* Various flags */ | |
48 | void *cipher_data; /* per EVP data */ | |
49 | int final_used; | |
50 | int block_mask; | |
51 | unsigned char final[EVP_MAX_BLOCK_LENGTH]; /* possible final block */ | |
df05f2ce MC |
52 | |
53 | /* Provider ctx */ | |
54 | void *provctx; | |
55 | EVP_CIPHER *fetched_cipher; | |
8baf9968 RL |
56 | } /* EVP_CIPHER_CTX */ ; |
57 | ||
567db2c1 | 58 | struct evp_mac_ctx_st { |
e74bd290 | 59 | EVP_MAC *meth; /* Method structure */ |
567db2c1 RL |
60 | void *data; /* Individual method data */ |
61 | } /* EVP_MAC_CTX */; | |
62 | ||
5a285add | 63 | struct evp_kdf_ctx_st { |
fb9e6dd6 P |
64 | EVP_KDF *meth; /* Method structure */ |
65 | void *data; /* Algorithm-specific data */ | |
5a285add DM |
66 | } /* EVP_KDF_CTX */ ; |
67 | ||
a94a3e0d RL |
68 | struct evp_keymgmt_st { |
69 | int id; /* libcrypto internal */ | |
70 | ||
6b9e3724 | 71 | char *name; |
a94a3e0d RL |
72 | OSSL_PROVIDER *prov; |
73 | CRYPTO_REF_COUNT refcnt; | |
74 | CRYPTO_RWLOCK *lock; | |
75 | ||
76 | /* Domain parameter routines */ | |
77 | OSSL_OP_keymgmt_importdomparams_fn *importdomparams; | |
78 | OSSL_OP_keymgmt_gendomparams_fn *gendomparams; | |
79 | OSSL_OP_keymgmt_freedomparams_fn *freedomparams; | |
80 | OSSL_OP_keymgmt_exportdomparams_fn *exportdomparams; | |
81 | OSSL_OP_keymgmt_importdomparam_types_fn *importdomparam_types; | |
82 | OSSL_OP_keymgmt_exportdomparam_types_fn *exportdomparam_types; | |
83 | ||
84 | /* Key routines */ | |
85 | OSSL_OP_keymgmt_importkey_fn *importkey; | |
86 | OSSL_OP_keymgmt_genkey_fn *genkey; | |
87 | OSSL_OP_keymgmt_loadkey_fn *loadkey; | |
88 | OSSL_OP_keymgmt_freekey_fn *freekey; | |
89 | OSSL_OP_keymgmt_exportkey_fn *exportkey; | |
90 | OSSL_OP_keymgmt_importkey_types_fn *importkey_types; | |
91 | OSSL_OP_keymgmt_exportkey_types_fn *exportkey_types; | |
92 | } /* EVP_KEYMGMT */ ; | |
93 | ||
dfcb5d29 MC |
94 | struct keymgmt_data_st { |
95 | OPENSSL_CTX *ctx; | |
96 | const char *properties; | |
97 | }; | |
98 | ||
ff64702b | 99 | struct evp_keyexch_st { |
6b9e3724 | 100 | char *name; |
ff64702b MC |
101 | OSSL_PROVIDER *prov; |
102 | CRYPTO_REF_COUNT refcnt; | |
103 | CRYPTO_RWLOCK *lock; | |
104 | ||
8b84b075 RL |
105 | EVP_KEYMGMT *keymgmt; |
106 | ||
ff64702b MC |
107 | OSSL_OP_keyexch_newctx_fn *newctx; |
108 | OSSL_OP_keyexch_init_fn *init; | |
109 | OSSL_OP_keyexch_set_peer_fn *set_peer; | |
110 | OSSL_OP_keyexch_derive_fn *derive; | |
111 | OSSL_OP_keyexch_freectx_fn *freectx; | |
112 | OSSL_OP_keyexch_dupctx_fn *dupctx; | |
9c45222d MC |
113 | OSSL_OP_keyexch_set_ctx_params_fn *set_ctx_params; |
114 | OSSL_OP_keyexch_settable_ctx_params_fn *settable_ctx_params; | |
ff64702b MC |
115 | } /* EVP_KEYEXCH */; |
116 | ||
dfcb5d29 MC |
117 | struct evp_signature_st { |
118 | char *name; | |
119 | OSSL_PROVIDER *prov; | |
120 | CRYPTO_REF_COUNT refcnt; | |
121 | CRYPTO_RWLOCK *lock; | |
122 | ||
123 | EVP_KEYMGMT *keymgmt; | |
124 | ||
125 | OSSL_OP_signature_newctx_fn *newctx; | |
126 | OSSL_OP_signature_sign_init_fn *sign_init; | |
127 | OSSL_OP_signature_sign_fn *sign; | |
390acbeb MC |
128 | OSSL_OP_signature_verify_init_fn *verify_init; |
129 | OSSL_OP_signature_verify_fn *verify; | |
130 | OSSL_OP_signature_verify_recover_init_fn *verify_recover_init; | |
131 | OSSL_OP_signature_verify_recover_fn *verify_recover; | |
dfcb5d29 MC |
132 | OSSL_OP_signature_freectx_fn *freectx; |
133 | OSSL_OP_signature_dupctx_fn *dupctx; | |
9c45222d MC |
134 | OSSL_OP_signature_get_ctx_params_fn *get_ctx_params; |
135 | OSSL_OP_signature_gettable_ctx_params_fn *gettable_ctx_params; | |
136 | OSSL_OP_signature_set_ctx_params_fn *set_ctx_params; | |
137 | OSSL_OP_signature_settable_ctx_params_fn *settable_ctx_params; | |
dfcb5d29 MC |
138 | } /* EVP_SIGNATURE */; |
139 | ||
0f113f3e MC |
140 | int PKCS5_v2_PBKDF2_keyivgen(EVP_CIPHER_CTX *ctx, const char *pass, |
141 | int passlen, ASN1_TYPE *param, | |
142 | const EVP_CIPHER *c, const EVP_MD *md, | |
143 | int en_de); | |
a0be4fd1 RL |
144 | |
145 | struct evp_Encode_Ctx_st { | |
146 | /* number saved in a partial encode/decode */ | |
147 | int num; | |
148 | /* | |
149 | * The length is either the output line length (in input bytes) or the | |
150 | * shortest input line length that is ok. Once decoding begins, the | |
151 | * length is adjusted up each time a longer line is decoded | |
152 | */ | |
153 | int length; | |
154 | /* data to encode */ | |
155 | unsigned char enc_data[80]; | |
156 | /* number read on current line */ | |
157 | int line_num; | |
c0804614 | 158 | unsigned int flags; |
a0be4fd1 | 159 | }; |
4a1f3f27 DSH |
160 | |
161 | typedef struct evp_pbe_st EVP_PBE_CTL; | |
162 | DEFINE_STACK_OF(EVP_PBE_CTL) | |
7141ba31 MC |
163 | |
164 | int is_partially_overlapping(const void *ptr1, const void *ptr2, int len); | |
c13d2ab4 RL |
165 | |
166 | #include <openssl/ossl_typ.h> | |
167 | #include <openssl/core.h> | |
168 | ||
169 | void *evp_generic_fetch(OPENSSL_CTX *ctx, int operation_id, | |
170 | const char *algorithm, const char *properties, | |
6b9e3724 RL |
171 | void *(*new_method)(const char *name, |
172 | const OSSL_DISPATCH *fns, | |
3ca9d210 RL |
173 | OSSL_PROVIDER *prov, |
174 | void *method_data), | |
175 | void *method_data, | |
7c95390e | 176 | int (*up_ref_method)(void *), |
0211740f | 177 | void (*free_method)(void *)); |
3d96a51c RL |
178 | void evp_generic_do_all(OPENSSL_CTX *libctx, int operation_id, |
179 | void (*user_fn)(void *method, void *arg), | |
180 | void *user_arg, | |
181 | void *(*new_method)(const char *name, | |
182 | const OSSL_DISPATCH *fns, | |
3ca9d210 RL |
183 | OSSL_PROVIDER *prov, |
184 | void *method_data), | |
185 | void *method_data, | |
3d96a51c | 186 | void (*free_method)(void *)); |
13273237 | 187 | |
3fd70262 RL |
188 | /* Internal structure constructors for fetched methods */ |
189 | EVP_MD *evp_md_new(void); | |
550f974a | 190 | EVP_CIPHER *evp_cipher_new(void); |
3fd70262 | 191 | |
13273237 RL |
192 | /* Helper functions to avoid duplicating code */ |
193 | ||
194 | /* | |
459b15d4 | 195 | * These methods implement different ways to pass a params array to the |
13273237 RL |
196 | * provider. They will return one of these values: |
197 | * | |
198 | * -2 if the method doesn't come from a provider | |
199 | * (evp_do_param will return this to the called) | |
200 | * -1 if the provider doesn't offer the desired function | |
201 | * (evp_do_param will raise an error and return 0) | |
202 | * or the return value from the desired function | |
203 | * (evp_do_param will return it to the caller) | |
204 | */ | |
459b15d4 SL |
205 | int evp_do_ciph_getparams(const EVP_CIPHER *ciph, OSSL_PARAM params[]); |
206 | int evp_do_ciph_ctx_getparams(const EVP_CIPHER *ciph, void *provctx, | |
13273237 | 207 | OSSL_PARAM params[]); |
459b15d4 | 208 | int evp_do_ciph_ctx_setparams(const EVP_CIPHER *ciph, void *provctx, |
13273237 | 209 | OSSL_PARAM params[]); |
6a3b7c68 RL |
210 | int evp_do_md_getparams(const EVP_MD *md, OSSL_PARAM params[]); |
211 | int evp_do_md_ctx_getparams(const EVP_MD *md, void *provctx, | |
212 | OSSL_PARAM params[]); | |
213 | int evp_do_md_ctx_setparams(const EVP_MD *md, void *provctx, | |
214 | OSSL_PARAM params[]); | |
ff64702b MC |
215 | |
216 | OSSL_PARAM *evp_pkey_to_param(EVP_PKEY *pkey, size_t *sz); | |
217 | ||
218 | #define M_check_autoarg(ctx, arg, arglen, err) \ | |
219 | if (ctx->pmeth->flags & EVP_PKEY_FLAG_AUTOARGLEN) { \ | |
220 | size_t pksize = (size_t)EVP_PKEY_size(ctx->pkey); \ | |
221 | \ | |
222 | if (pksize == 0) { \ | |
223 | EVPerr(err, EVP_R_INVALID_KEY); /*ckerr_ignore*/ \ | |
224 | return 0; \ | |
225 | } \ | |
226 | if (arg == NULL) { \ | |
227 | *arglen = pksize; \ | |
228 | return 1; \ | |
229 | } \ | |
230 | if (*arglen < pksize) { \ | |
231 | EVPerr(err, EVP_R_BUFFER_TOO_SMALL); /*ckerr_ignore*/ \ | |
232 | return 0; \ | |
233 | } \ | |
234 | } | |
864b89ce MC |
235 | |
236 | void evp_pkey_ctx_free_old_ops(EVP_PKEY_CTX *ctx); |