Line data Source code
1 : /*
2 : * Written by Dr Stephen N Henson (steve@openssl.org) for the OpenSSL project
3 : * 2010.
4 : */
5 : /* ====================================================================
6 : * Copyright (c) 2010 The OpenSSL Project. All rights reserved.
7 : *
8 : * Redistribution and use in source and binary forms, with or without
9 : * modification, are permitted provided that the following conditions
10 : * are met:
11 : *
12 : * 1. Redistributions of source code must retain the above copyright
13 : * notice, this list of conditions and the following disclaimer.
14 : *
15 : * 2. Redistributions in binary form must reproduce the above copyright
16 : * notice, this list of conditions and the following disclaimer in
17 : * the documentation and/or other materials provided with the
18 : * distribution.
19 : *
20 : * 3. All advertising materials mentioning features or use of this
21 : * software must display the following acknowledgment:
22 : * "This product includes software developed by the OpenSSL Project
23 : * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)"
24 : *
25 : * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to
26 : * endorse or promote products derived from this software without
27 : * prior written permission. For written permission, please contact
28 : * licensing@OpenSSL.org.
29 : *
30 : * 5. Products derived from this software may not be called "OpenSSL"
31 : * nor may "OpenSSL" appear in their names without prior written
32 : * permission of the OpenSSL Project.
33 : *
34 : * 6. Redistributions of any form whatsoever must retain the following
35 : * acknowledgment:
36 : * "This product includes software developed by the OpenSSL Project
37 : * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)"
38 : *
39 : * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY
40 : * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
41 : * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
42 : * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR
43 : * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
44 : * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
45 : * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
46 : * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
47 : * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
48 : * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
49 : * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
50 : * OF THE POSSIBILITY OF SUCH DAMAGE.
51 : * ====================================================================
52 : */
53 :
54 : #include <stdio.h>
55 : #include "cryptlib.h"
56 : #include <openssl/x509.h>
57 : #include <openssl/x509v3.h>
58 : #include <openssl/evp.h>
59 : #include <openssl/cmac.h>
60 : #include "evp_locl.h"
61 :
62 : /* The context structure and "key" is simply a CMAC_CTX */
63 :
64 0 : static int pkey_cmac_init(EVP_PKEY_CTX *ctx)
65 : {
66 0 : ctx->data = CMAC_CTX_new();
67 0 : if (!ctx->data)
68 : return 0;
69 0 : ctx->keygen_info_count = 0;
70 0 : return 1;
71 : }
72 :
73 0 : static int pkey_cmac_copy(EVP_PKEY_CTX *dst, EVP_PKEY_CTX *src)
74 : {
75 0 : if (!pkey_cmac_init(dst))
76 : return 0;
77 0 : if (!CMAC_CTX_copy(dst->data, src->data))
78 : return 0;
79 0 : return 1;
80 : }
81 :
82 0 : static void pkey_cmac_cleanup(EVP_PKEY_CTX *ctx)
83 : {
84 0 : CMAC_CTX_free(ctx->data);
85 0 : }
86 :
87 0 : static int pkey_cmac_keygen(EVP_PKEY_CTX *ctx, EVP_PKEY *pkey)
88 : {
89 0 : CMAC_CTX *cmkey = CMAC_CTX_new();
90 0 : CMAC_CTX *cmctx = ctx->data;
91 0 : if (!cmkey)
92 : return 0;
93 0 : if (!CMAC_CTX_copy(cmkey, cmctx)) {
94 0 : CMAC_CTX_free(cmkey);
95 0 : return 0;
96 : }
97 0 : EVP_PKEY_assign(pkey, EVP_PKEY_CMAC, cmkey);
98 :
99 0 : return 1;
100 : }
101 :
102 0 : static int int_update(EVP_MD_CTX *ctx, const void *data, size_t count)
103 : {
104 0 : if (!CMAC_Update(ctx->pctx->data, data, count))
105 : return 0;
106 0 : return 1;
107 : }
108 :
109 0 : static int cmac_signctx_init(EVP_PKEY_CTX *ctx, EVP_MD_CTX *mctx)
110 : {
111 0 : EVP_MD_CTX_set_flags(mctx, EVP_MD_CTX_FLAG_NO_INIT);
112 0 : mctx->update = int_update;
113 0 : return 1;
114 : }
115 :
116 0 : static int cmac_signctx(EVP_PKEY_CTX *ctx, unsigned char *sig, size_t *siglen,
117 : EVP_MD_CTX *mctx)
118 : {
119 0 : return CMAC_Final(ctx->data, sig, siglen);
120 : }
121 :
122 0 : static int pkey_cmac_ctrl(EVP_PKEY_CTX *ctx, int type, int p1, void *p2)
123 : {
124 0 : CMAC_CTX *cmctx = ctx->data;
125 0 : switch (type) {
126 :
127 : case EVP_PKEY_CTRL_SET_MAC_KEY:
128 0 : if (!p2 || p1 < 0)
129 : return 0;
130 0 : if (!CMAC_Init(cmctx, p2, p1, NULL, NULL))
131 : return 0;
132 : break;
133 :
134 : case EVP_PKEY_CTRL_CIPHER:
135 0 : if (!CMAC_Init(cmctx, NULL, 0, p2, ctx->engine))
136 : return 0;
137 : break;
138 :
139 : case EVP_PKEY_CTRL_MD:
140 0 : if (ctx->pkey && !CMAC_CTX_copy(ctx->data,
141 0 : (CMAC_CTX *)ctx->pkey->pkey.ptr))
142 : return 0;
143 0 : if (!CMAC_Init(cmctx, NULL, 0, NULL, NULL))
144 : return 0;
145 : break;
146 :
147 : default:
148 : return -2;
149 :
150 : }
151 : return 1;
152 : }
153 :
154 0 : static int pkey_cmac_ctrl_str(EVP_PKEY_CTX *ctx,
155 : const char *type, const char *value)
156 : {
157 0 : if (!value) {
158 : return 0;
159 : }
160 0 : if (!strcmp(type, "key")) {
161 : void *p = (void *)value;
162 0 : return pkey_cmac_ctrl(ctx, EVP_PKEY_CTRL_SET_MAC_KEY, strlen(p), p);
163 : }
164 0 : if (!strcmp(type, "cipher")) {
165 : const EVP_CIPHER *c;
166 0 : c = EVP_get_cipherbyname(value);
167 0 : if (!c)
168 : return 0;
169 0 : return pkey_cmac_ctrl(ctx, EVP_PKEY_CTRL_CIPHER, -1, (void *)c);
170 : }
171 0 : if (!strcmp(type, "hexkey")) {
172 : unsigned char *key;
173 : int r;
174 : long keylen;
175 0 : key = string_to_hex(value, &keylen);
176 0 : if (!key)
177 : return 0;
178 0 : r = pkey_cmac_ctrl(ctx, EVP_PKEY_CTRL_SET_MAC_KEY, keylen, key);
179 0 : OPENSSL_free(key);
180 0 : return r;
181 : }
182 : return -2;
183 : }
184 :
185 : const EVP_PKEY_METHOD cmac_pkey_meth = {
186 : EVP_PKEY_CMAC,
187 : EVP_PKEY_FLAG_SIGCTX_CUSTOM,
188 : pkey_cmac_init,
189 : pkey_cmac_copy,
190 : pkey_cmac_cleanup,
191 :
192 : 0, 0,
193 :
194 : 0,
195 : pkey_cmac_keygen,
196 :
197 : 0, 0,
198 :
199 : 0, 0,
200 :
201 : 0, 0,
202 :
203 : cmac_signctx_init,
204 : cmac_signctx,
205 :
206 : 0, 0,
207 :
208 : 0, 0,
209 :
210 : 0, 0,
211 :
212 : 0, 0,
213 :
214 : pkey_cmac_ctrl,
215 : pkey_cmac_ctrl_str
216 : };
|