Skip to content

T
Third Party Openssl

OpenHarmony / Third Party Openssl
大约 1 年 前同步成功

通知 9
Star 18
Fork 1
T
Third Party Openssl
切换分支/标签
查找文件 普通视图历史永久链接Permalink
gost2001_keyx.c 12.3 KB
Newer Older
D
GOST public key algorithm ENGINE donated to the OpenSSL by Cryptocom.  
Dr. Stephen Henson 已提交
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 
/**********************************************************************
 *                          gost_keyx.c                               *
 *             Copyright (c) 2005-2006 Cryptocom LTD                  *
 *         This file is distributed under the same license as OpenSSL *
 *                                                                    *
 *   VK0 34.10-2001 key exchange and GOST R 34.10-2001                *
 *   based PKCS7/SMIME support                                        *
 *          Requires OpenSSL 0.9.9 for compilation                    *
 **********************************************************************/
#include <openssl/evp.h>
#include <openssl/rand.h>
#include <string.h>
#include <openssl/objects.h>
#include "gost89.h"
#include "gosthash.h"
#include "e_gost_err.h"
D
Updated version of gost engine.  
Dr. Stephen Henson 已提交
17 18 
#include "gost_keywrap.h"
#include "gost_lcl.h"
B
Fix various warnings.  
Ben Laurie 已提交
19 
#include "gost2001_keyx.h"
D
GOST public key algorithm ENGINE donated to the OpenSSL by Cryptocom.  
Dr. Stephen Henson 已提交
20 21 22 

/* Transform ECDH shared key into little endian as required by Cryptocom
 * key exchange */
D
Updated version of gost engine.  
Dr. Stephen Henson 已提交
23 24 
static void *make_key_le(const void *in, size_t inlen, void *out, size_t *outlen)
	{
D
GOST public key algorithm ENGINE donated to the OpenSSL by Cryptocom.  
Dr. Stephen Henson 已提交
25 26 27 
	const char* inbuf= in;
	char* outbuf= out;
	int i;
D
Updated version of gost engine.  
Dr. Stephen Henson 已提交
28 29 30 31 32 33 
	if (*outlen < inlen)
		{
		return NULL;
		}
	for (i=0;i<inlen;i++)
		{
D
GOST public key algorithm ENGINE donated to the OpenSSL by Cryptocom.  
Dr. Stephen Henson 已提交
34 
		outbuf[inlen-1-i]=inbuf[i];
D
Updated version of gost engine.  
Dr. Stephen Henson 已提交
35 
		}
D
GOST public key algorithm ENGINE donated to the OpenSSL by Cryptocom.  
Dr. Stephen Henson 已提交
36 37 
	*outlen = inlen;
	return out;
D
Updated version of gost engine.  
Dr. Stephen Henson 已提交
38 
	}
D
GOST public key algorithm ENGINE donated to the OpenSSL by Cryptocom.  
Dr. Stephen Henson 已提交
39 40 

/* Create gost 2001 ephemeral key with same parameters as peer key */
D
Updated version of gost engine.  
Dr. Stephen Henson 已提交
41 42 
static EC_KEY *make_ec_ephemeral_key(EC_KEY *peer_key,BIGNUM *seckey)
	{
D
GOST public key algorithm ENGINE donated to the OpenSSL by Cryptocom.  
Dr. Stephen Henson 已提交
43 44 45 46 47 
	EC_KEY *out = EC_KEY_new();
	EC_KEY_copy(out,peer_key);
	EC_KEY_set_private_key(out,seckey);
	gost2001_compute_public(out);
	return out;
D
Updated version of gost engine.  
Dr. Stephen Henson 已提交
48 
	}
D
GOST public key algorithm ENGINE donated to the OpenSSL by Cryptocom.  
Dr. Stephen Henson 已提交
49 50 51 52 
/* Packs GOST elliptic curve key into EVP_PKEY setting same parameters
 * as in passed pubkey
 */
static EVP_PKEY *ec_ephemeral_key_to_EVP(EVP_PKEY *pubk,int type,EC_KEY *ephemeral)
D
Updated version of gost engine.  
Dr. Stephen Henson 已提交
53 
	{
D
GOST public key algorithm ENGINE donated to the OpenSSL by Cryptocom.  
Dr. Stephen Henson 已提交
54 55 56 57 
	EVP_PKEY *newkey;
	newkey = EVP_PKEY_new();
	EVP_PKEY_assign(newkey,type,ephemeral);
	return newkey;
D
Updated version of gost engine.  
Dr. Stephen Henson 已提交
58 
	}
D
GOST public key algorithm ENGINE donated to the OpenSSL by Cryptocom.  
Dr. Stephen Henson 已提交
59 60 61 62 63 64 65 66 

/*  
 * EVP_PKEY_METHOD callback encrypt  
 * Implementation of GOST2001 key transport, cryptocom variation 
 */

int pkey_GOST01cc_encrypt (EVP_PKEY_CTX *pctx,unsigned char *out, 
	size_t *out_len, const unsigned char *key,size_t key_len)
D
Updated version of gost engine.  
Dr. Stephen Henson 已提交
67 
	{
D
GOST public key algorithm ENGINE donated to the OpenSSL by Cryptocom.  
Dr. Stephen Henson 已提交
68 69 70 71 72 73 74 75 
	EVP_PKEY *pubk = EVP_PKEY_CTX_get0_pkey(pctx);
	struct gost_pmeth_data *data = EVP_PKEY_CTX_get_data(pctx);	
	GOST_KEY_TRANSPORT *gkt = NULL;
	int ret=0;
	gost_ctx ctx;
	EC_KEY *ephemeral=NULL;
	const EC_POINT *pub_key_point=NULL;
	unsigned char shared_key[32],encrypted_key[32],hmac[4],
D
Updated version of gost engine.  
Dr. Stephen Henson 已提交
76 
		iv[8]={0,0,0,0,0,0,0,0};
D
GOST public key algorithm ENGINE donated to the OpenSSL by Cryptocom.  
Dr. Stephen Henson 已提交
77 78 79 80 81 
	ephemeral = make_ec_ephemeral_key(EVP_PKEY_get0(pubk), gost_get_priv_key(data->eph_seckey));
	if (!ephemeral) goto err;
	/* compute shared key */
	pub_key_point=EC_KEY_get0_public_key(EVP_PKEY_get0(pubk));
	if (!ECDH_compute_key(shared_key,32,pub_key_point,ephemeral,make_key_le))
D
Updated version of gost engine.  
Dr. Stephen Henson 已提交
82 
		{
D
GOST public key algorithm ENGINE donated to the OpenSSL by Cryptocom.  
Dr. Stephen Henson 已提交
83 84 
		GOSTerr(GOST_F_PKEY_GOST01CC_ENCRYPT,GOST_R_ERROR_COMPUTING_SHARED_KEY);
		goto err;
D
Updated version of gost engine.  
Dr. Stephen Henson 已提交
85 
		}
D
GOST public key algorithm ENGINE donated to the OpenSSL by Cryptocom.  
Dr. Stephen Henson 已提交
86 87 88 89 90 91 
	/* encrypt session key */
	gost_init(&ctx, &GostR3411_94_CryptoProParamSet);
	gost_key(&ctx,shared_key);
	encrypt_cryptocom_key(key,key_len,encrypted_key,&ctx);
	/* compute hmac of session key */
	if (!gost_mac(&ctx,32,key,32,hmac))
D
Updated version of gost engine.  
Dr. Stephen Henson 已提交
92 
		{
D
GOST public key algorithm ENGINE donated to the OpenSSL by Cryptocom.  
Dr. Stephen Henson 已提交
93 94 
		GOSTerr(GOST_F_PKEY_GOST01CC_ENCRYPT,GOST_R_ERROR_COMPUTING_MAC);
		return -1;
D
Updated version of gost engine.  
Dr. Stephen Henson 已提交
95 
		}
D
GOST public key algorithm ENGINE donated to the OpenSSL by Cryptocom.  
Dr. Stephen Henson 已提交
96 97 
	gkt = GOST_KEY_TRANSPORT_new();
	if (!gkt)
D
Updated version of gost engine.  
Dr. Stephen Henson 已提交
98 
		{
D
GOST public key algorithm ENGINE donated to the OpenSSL by Cryptocom.  
Dr. Stephen Henson 已提交
99 100 
		GOSTerr(GOST_F_PKEY_GOST01CC_ENCRYPT,GOST_R_NO_MEMORY);
		return -1;
D
Updated version of gost engine.  
Dr. Stephen Henson 已提交
101 
		}
D
GOST public key algorithm ENGINE donated to the OpenSSL by Cryptocom.  
Dr. Stephen Henson 已提交
102 103 
	/* Store IV which is always zero in our case */
	if (!ASN1_OCTET_STRING_set(gkt->key_agreement_info->eph_iv,iv,8))
D
Updated version of gost engine.  
Dr. Stephen Henson 已提交
104 
		{
D
GOST public key algorithm ENGINE donated to the OpenSSL by Cryptocom.  
Dr. Stephen Henson 已提交
105 106 
		GOSTerr(GOST_F_PKEY_GOST01CC_ENCRYPT,GOST_R_ERROR_STORING_IV);
		goto err;
D
Updated version of gost engine.  
Dr. Stephen Henson 已提交
107 
		}
D
GOST public key algorithm ENGINE donated to the OpenSSL by Cryptocom.  
Dr. Stephen Henson 已提交
108 
	if (!ASN1_OCTET_STRING_set(gkt->key_info->imit,hmac,4))
D
Updated version of gost engine.  
Dr. Stephen Henson 已提交
109 
		{
D
GOST public key algorithm ENGINE donated to the OpenSSL by Cryptocom.  
Dr. Stephen Henson 已提交
110 111 
		GOSTerr(GOST_F_PKEY_GOST01CC_ENCRYPT,GOST_R_ERROR_STORING_MAC);
		goto err;
D
Updated version of gost engine.  
Dr. Stephen Henson 已提交
112 
		}
D
GOST public key algorithm ENGINE donated to the OpenSSL by Cryptocom.  
Dr. Stephen Henson 已提交
113 
	if (!ASN1_OCTET_STRING_set(gkt->key_info->encrypted_key,encrypted_key,32))
D
Updated version of gost engine.  
Dr. Stephen Henson 已提交
114 
		{
D
GOST public key algorithm ENGINE donated to the OpenSSL by Cryptocom.  
Dr. Stephen Henson 已提交
115 116 
		GOSTerr(GOST_F_PKEY_GOST01CC_ENCRYPT,GOST_R_ERROR_STORING_ENCRYPTED_KEY);
		goto err;
D
Updated version of gost engine.  
Dr. Stephen Henson 已提交
117 
		}
D
GOST public key algorithm ENGINE donated to the OpenSSL by Cryptocom.  
Dr. Stephen Henson 已提交
118
D
Updated version of gost engine.  
Dr. Stephen Henson 已提交
119 120 
	if (!X509_PUBKEY_set(&gkt->key_agreement_info->ephem_key,data->eph_seckey))
		{
D
GOST public key algorithm ENGINE donated to the OpenSSL by Cryptocom.  
Dr. Stephen Henson 已提交
121 122 
		GOSTerr(GOST_F_PKEY_GOST01CC_ENCRYPT,GOST_R_CANNOT_PACK_EPHEMERAL_KEY);
		goto err;
D
Updated version of gost engine.  
Dr. Stephen Henson 已提交
123 
		}
D
GOST public key algorithm ENGINE donated to the OpenSSL by Cryptocom.  
Dr. Stephen Henson 已提交
124 125 126 127 
	ASN1_OBJECT_free(gkt->key_agreement_info->cipher);
	gkt->key_agreement_info->cipher = OBJ_nid2obj(NID_id_Gost28147_89_cc);
	if ((*out_len = i2d_GOST_KEY_TRANSPORT(gkt,&out))>0) ret = 1;
	;
D
Updated version of gost engine.  
Dr. Stephen Henson 已提交
128 
	err:
D
GOST public key algorithm ENGINE donated to the OpenSSL by Cryptocom.  
Dr. Stephen Henson 已提交
129 130 
	if (gkt) GOST_KEY_TRANSPORT_free(gkt);
	return ret;
D
Updated version of gost engine.  
Dr. Stephen Henson 已提交
131 
	}
D
GOST public key algorithm ENGINE donated to the OpenSSL by Cryptocom.  
Dr. Stephen Henson 已提交
132 133 134 135 
/*  
 * EVP_PKEY_METHOD callback decrypt  
 * Implementation of GOST2001 key transport, cryptocom variation 
 */
D
Updated version of gost engine.  
Dr. Stephen Henson 已提交
136 137 
int pkey_GOST01cc_decrypt (EVP_PKEY_CTX *pctx, unsigned char *key, size_t *key_len, const unsigned char *in, size_t in_len)
	{
D
GOST public key algorithm ENGINE donated to the OpenSSL by Cryptocom.  
Dr. Stephen Henson 已提交
138 139 140 141 142 143 144 145 146 147 148 149 
	/* Form DH params from compute shared key */
	EVP_PKEY *priv=EVP_PKEY_CTX_get0_pkey(pctx);
	GOST_KEY_TRANSPORT *gkt = NULL;
	const unsigned char *p=in;
	unsigned char shared_key[32];
	unsigned char hmac[4],hmac_comp[4];
	unsigned char iv[8];
	int i;
	gost_ctx ctx;
	const EC_POINT *pub_key_point;
	EVP_PKEY *eph_key;
D
Updated version of gost engine.  
Dr. Stephen Henson 已提交
150 151 
	if (!key)
		{
D
GOST public key algorithm ENGINE donated to the OpenSSL by Cryptocom.  
Dr. Stephen Henson 已提交
152 153 
		*key_len = 32;
		return 1;
D
Updated version of gost engine.  
Dr. Stephen Henson 已提交
154 
		}
D
GOST public key algorithm ENGINE donated to the OpenSSL by Cryptocom.  
Dr. Stephen Henson 已提交
155 156 
	/* Parse passed octet string and find out public key, iv and HMAC*/
	gkt = d2i_GOST_KEY_TRANSPORT(NULL,(const unsigned char **)&p,
D
Updated version of gost engine.  
Dr. Stephen Henson 已提交
157 158 159 
		in_len);
	if (!gkt)
		{
D
GOST public key algorithm ENGINE donated to the OpenSSL by Cryptocom.  
Dr. Stephen Henson 已提交
160 161 
		GOSTerr(GOST_F_PKEY_GOST01CC_DECRYPT,GOST_R_ERROR_PARSING_KEY_TRANSPORT_INFO);
		return 0;
D
Updated version of gost engine.  
Dr. Stephen Henson 已提交
162 
		}
D
GOST public key algorithm ENGINE donated to the OpenSSL by Cryptocom.  
Dr. Stephen Henson 已提交
163 164 165 166 167 168 169 170 171 172 173 174 
	eph_key = X509_PUBKEY_get(gkt->key_agreement_info->ephem_key);
	/* Initialization vector is really ignored here */
	OPENSSL_assert(gkt->key_agreement_info->eph_iv->length==8);
	memcpy(iv,gkt->key_agreement_info->eph_iv->data,8);
	/* HMAC should be computed and checked */
	OPENSSL_assert(gkt->key_info->imit->length==4);
	memcpy(hmac,gkt->key_info->imit->data,4);	
	/* Compute shared key */
	pub_key_point=EC_KEY_get0_public_key(EVP_PKEY_get0(eph_key));
	i=ECDH_compute_key(shared_key,32,pub_key_point,EVP_PKEY_get0(priv),make_key_le);
	EVP_PKEY_free(eph_key);
	if (!i)
D
Updated version of gost engine.  
Dr. Stephen Henson 已提交
175 
		{
D
GOST public key algorithm ENGINE donated to the OpenSSL by Cryptocom.  
Dr. Stephen Henson 已提交
176 177 178 
		GOSTerr(GOST_F_PKEY_GOST01CC_DECRYPT,GOST_R_ERROR_COMPUTING_SHARED_KEY);
		GOST_KEY_TRANSPORT_free(gkt);
		return 0;
D
Updated version of gost engine.  
Dr. Stephen Henson 已提交
179 
		}
D
GOST public key algorithm ENGINE donated to the OpenSSL by Cryptocom.  
Dr. Stephen Henson 已提交
180 181 182 183 184 185 
	/* Decrypt session key */
	gost_init(&ctx, &GostR3411_94_CryptoProParamSet);
	gost_key(&ctx,shared_key);
	
	if (!decrypt_cryptocom_key(key,*key_len,gkt->key_info->encrypted_key->data, 
			gkt->key_info->encrypted_key->length, &ctx))
D
Updated version of gost engine.  
Dr. Stephen Henson 已提交
186 
		{
D
GOST public key algorithm ENGINE donated to the OpenSSL by Cryptocom.  
Dr. Stephen Henson 已提交
187 188 
		GOST_KEY_TRANSPORT_free(gkt);
		return 0;
D
Updated version of gost engine.  
Dr. Stephen Henson 已提交
189 
		}
D
GOST public key algorithm ENGINE donated to the OpenSSL by Cryptocom.  
Dr. Stephen Henson 已提交
190 191 
	GOST_KEY_TRANSPORT_free(gkt);
	/* check HMAC of session key*/
D
Updated version of gost engine.  
Dr. Stephen Henson 已提交
192 193 
	if (!gost_mac(&ctx,32,key,32,hmac_comp))
		{
D
GOST public key algorithm ENGINE donated to the OpenSSL by Cryptocom.  
Dr. Stephen Henson 已提交
194 195 
		GOSTerr(GOST_F_PKEY_GOST01CC_DECRYPT,GOST_R_ERROR_COMPUTING_MAC);
		return 0;
D
Updated version of gost engine.  
Dr. Stephen Henson 已提交
196 197 198 199 
		}
	/* HMAC of session key is not correct */
    if (memcmp(hmac,hmac_comp,4)!=0)
		{
D
GOST public key algorithm ENGINE donated to the OpenSSL by Cryptocom.  
Dr. Stephen Henson 已提交
200 201 
		GOSTerr(GOST_F_PKEY_GOST01CC_DECRYPT,GOST_R_SESSION_KEY_MAC_DOES_NOT_MATCH);
		return 0;
D
Updated version of gost engine.  
Dr. Stephen Henson 已提交
202 
		}
D
GOST public key algorithm ENGINE donated to the OpenSSL by Cryptocom.  
Dr. Stephen Henson 已提交
203 
	return 1;
D
Updated version of gost engine.  
Dr. Stephen Henson 已提交
204 
	}
D
GOST public key algorithm ENGINE donated to the OpenSSL by Cryptocom.  
Dr. Stephen Henson 已提交
205 206 

/* Implementation of CryptoPro VKO 34.10-2001 algorithm */
D
Updated version of gost engine.  
Dr. Stephen Henson 已提交
207 208 
static int VKO_compute_key(unsigned char *shared_key,size_t shared_key_size,const EC_POINT *pub_key,EC_KEY *priv_key,const unsigned char *ukm)
	{
D
GOST public key algorithm ENGINE donated to the OpenSSL by Cryptocom.  
Dr. Stephen Henson 已提交
209 210 211 212 213 214 215 216 
	unsigned char ukm_be[8],databuf[64],hashbuf[64];
	BIGNUM *UKM=NULL,*p=NULL,*order=NULL,*X=NULL,*Y=NULL;
	const BIGNUM* key=EC_KEY_get0_private_key(priv_key);
	EC_POINT *pnt=EC_POINT_new(EC_KEY_get0_group(priv_key));
	int i;
	gost_hash_ctx hash_ctx;
	BN_CTX *ctx = BN_CTX_new();
D
Updated version of gost engine.  
Dr. Stephen Henson 已提交
217 218 
	for (i=0;i<8;i++)
		{
D
GOST public key algorithm ENGINE donated to the OpenSSL by Cryptocom.  
Dr. Stephen Henson 已提交
219 
		ukm_be[7-i]=ukm[i];
D
Updated version of gost engine.  
Dr. Stephen Henson 已提交
220 
		}
D
GOST public key algorithm ENGINE donated to the OpenSSL by Cryptocom.  
Dr. Stephen Henson 已提交
221 222 223 224 225 226 227 228 229 230 
	BN_CTX_start(ctx);
	UKM=getbnfrombuf(ukm_be,8);
	p=BN_CTX_get(ctx);
	order = BN_CTX_get(ctx);
	X=BN_CTX_get(ctx);
	Y=BN_CTX_get(ctx);
	EC_GROUP_get_order(EC_KEY_get0_group(priv_key),order,ctx);
	BN_mod_mul(p,key,UKM,order,ctx);	
	EC_POINT_mul(EC_KEY_get0_group(priv_key),pnt,NULL,pub_key,p,ctx);
	EC_POINT_get_affine_coordinates_GFp(EC_KEY_get0_group(priv_key),
D
Updated version of gost engine.  
Dr. Stephen Henson 已提交
231 
		pnt,X,Y,ctx);
D
GOST public key algorithm ENGINE donated to the OpenSSL by Cryptocom.  
Dr. Stephen Henson 已提交
232 233 234 235 236 
	/*Serialize elliptic curve point same way as we do it when saving
	 * key */
	store_bignum(Y,databuf,32);
	store_bignum(X,databuf+32,32);
 	/* And reverse byte order of whole buffer */
D
Updated version of gost engine.  
Dr. Stephen Henson 已提交
237 238 
	for (i=0;i<64;i++)
		{
D
GOST public key algorithm ENGINE donated to the OpenSSL by Cryptocom.  
Dr. Stephen Henson 已提交
239 
		hashbuf[63-i]=databuf[i];
D
Updated version of gost engine.  
Dr. Stephen Henson 已提交
240 
		}
D
GOST public key algorithm ENGINE donated to the OpenSSL by Cryptocom.  
Dr. Stephen Henson 已提交
241 242 243 244 245 246 247 248 249 250 
	init_gost_hash_ctx(&hash_ctx,&GostR3411_94_CryptoProParamSet);
	start_hash(&hash_ctx);
	hash_block(&hash_ctx,hashbuf,64);
	finish_hash(&hash_ctx,shared_key);
	done_gost_hash_ctx(&hash_ctx);
	BN_free(UKM);
	BN_CTX_end(ctx);
	BN_CTX_free(ctx);
	EC_POINT_free(pnt);
	return 32;
D
Updated version of gost engine.  
Dr. Stephen Henson 已提交
251 
	}
D
GOST public key algorithm ENGINE donated to the OpenSSL by Cryptocom.  
Dr. Stephen Henson 已提交
252 253 254 255 256 257 258 

/* Generates ephemeral key based on pubk algorithm
 * computes shared key using VKO and returns filled up
 * GOST_KEY_TRANSPORT structure
 */
/* Public, because it would be needed in SSL implementation */
GOST_KEY_TRANSPORT *make_rfc4490_keytransport_2001(EVP_PKEY *pubk,BIGNUM *eph_key,
D
Updated version of gost engine.  
Dr. Stephen Henson 已提交
259 260 261 
	const unsigned char *key,size_t keylen, unsigned char *ukm,
	size_t ukm_len)
	{
D
GOST public key algorithm ENGINE donated to the OpenSSL by Cryptocom.  
Dr. Stephen Henson 已提交
262 263 264 265 266 267 268 269 270 271 

	const struct gost_cipher_info *param=get_encryption_params(NULL);
	EC_KEY *ephemeral = NULL;
	GOST_KEY_TRANSPORT *gkt=NULL;
	const EC_POINT *pub_key_point = EC_KEY_get0_public_key(EVP_PKEY_get0(pubk));
	unsigned char shared_key[32],crypted_key[44];
	gost_ctx ctx;
	EVP_PKEY *newkey=NULL;
	
	/* Do not use vizir cipher parameters with cryptopro */
D
Updated version of gost engine.  
Dr. Stephen Henson 已提交
272 273 
	if (!get_gost_engine_param(GOST_PARAM_CRYPT_PARAMS) && param ==  gost_cipher_list)
		{
D
GOST public key algorithm ENGINE donated to the OpenSSL by Cryptocom.  
Dr. Stephen Henson 已提交
274 
		param= gost_cipher_list+1;
D
Updated version of gost engine.  
Dr. Stephen Henson 已提交
275 
		}
D
GOST public key algorithm ENGINE donated to the OpenSSL by Cryptocom.  
Dr. Stephen Henson 已提交
276 277 278 279 280 
	ephemeral = make_ec_ephemeral_key(EVP_PKEY_get0(pubk),eph_key);
    VKO_compute_key(shared_key,32,pub_key_point,ephemeral,ukm);
	gost_init(&ctx,param->sblock);	
	keyWrapCryptoPro(&ctx,shared_key,ukm,key,crypted_key);
	gkt = GOST_KEY_TRANSPORT_new();
D
Updated version of gost engine.  
Dr. Stephen Henson 已提交
281 282 
	if (!gkt)
		{
D
GOST public key algorithm ENGINE donated to the OpenSSL by Cryptocom.  
Dr. Stephen Henson 已提交
283 
		goto memerr;
D
Updated version of gost engine.  
Dr. Stephen Henson 已提交
284 
		}
D
GOST public key algorithm ENGINE donated to the OpenSSL by Cryptocom.  
Dr. Stephen Henson 已提交
285 
	if(!ASN1_OCTET_STRING_set(gkt->key_agreement_info->eph_iv,
D
Updated version of gost engine.  
Dr. Stephen Henson 已提交
286 287 
			ukm,8))
		{
D
GOST public key algorithm ENGINE donated to the OpenSSL by Cryptocom.  
Dr. Stephen Henson 已提交
288 
		goto memerr;
D
Updated version of gost engine.  
Dr. Stephen Henson 已提交
289 290 291 
		}	
	if (!ASN1_OCTET_STRING_set(gkt->key_info->imit,crypted_key+40,4))
		{
D
GOST public key algorithm ENGINE donated to the OpenSSL by Cryptocom.  
Dr. Stephen Henson 已提交
292 
		goto memerr;
D
Updated version of gost engine.  
Dr. Stephen Henson 已提交
293 294 295 
		}
	if (!ASN1_OCTET_STRING_set(gkt->key_info->encrypted_key,crypted_key+8,32))
		{
D
GOST public key algorithm ENGINE donated to the OpenSSL by Cryptocom.  
Dr. Stephen Henson 已提交
296 
		goto memerr;
D
Updated version of gost engine.  
Dr. Stephen Henson 已提交
297 
		}
D
GOST public key algorithm ENGINE donated to the OpenSSL by Cryptocom.  
Dr. Stephen Henson 已提交
298 
	newkey = ec_ephemeral_key_to_EVP(pubk,NID_id_GostR3410_2001,ephemeral);
D
Updated version of gost engine.  
Dr. Stephen Henson 已提交
299 300 
	if (!X509_PUBKEY_set(&gkt->key_agreement_info->ephem_key,newkey))
		{
D
GOST public key algorithm ENGINE donated to the OpenSSL by Cryptocom.  
Dr. Stephen Henson 已提交
301 302 
		GOSTerr(GOST_F_MAKE_RFC4490_KEYTRANSPORT_2001,GOST_R_CANNOT_PACK_EPHEMERAL_KEY);
		goto err;
D
Updated version of gost engine.  
Dr. Stephen Henson 已提交
303 
		}
D
GOST public key algorithm ENGINE donated to the OpenSSL by Cryptocom.  
Dr. Stephen Henson 已提交
304 305 306 307 
	ASN1_OBJECT_free(gkt->key_agreement_info->cipher);
	gkt->key_agreement_info->cipher = OBJ_nid2obj(param->nid);
	EVP_PKEY_free(newkey);
	return gkt;
D
Updated version of gost engine.  
Dr. Stephen Henson 已提交
308 309 310 311 312 313 314 
	memerr:
	GOSTerr(GOST_F_MAKE_RFC4490_KEYTRANSPORT_2001,
		GOST_R_MALLOC_FAILURE);
	err:		
	GOST_KEY_TRANSPORT_free(gkt);
	return NULL;
	}
D
GOST public key algorithm ENGINE donated to the OpenSSL by Cryptocom.  
Dr. Stephen Henson 已提交
315 316 317 318 319 320 321 

/*  
 * EVP_PKEY_METHOD callback encrypt  
 * Implementation of GOST2001 key transport, cryptopo variation 
 */

int pkey_GOST01cp_encrypt (EVP_PKEY_CTX *pctx, unsigned char *out, size_t *out_len, const unsigned char *key,size_t key_len)
D
Updated version of gost engine.  
Dr. Stephen Henson 已提交
322 
	{
D
GOST public key algorithm ENGINE donated to the OpenSSL by Cryptocom.  
Dr. Stephen Henson 已提交
323 324 325 326 327 
	GOST_KEY_TRANSPORT *gkt=NULL; 
	EVP_PKEY *pubk = EVP_PKEY_CTX_get0_pkey(pctx);
	struct gost_pmeth_data *data = EVP_PKEY_CTX_get_data(pctx);
	unsigned char ukm[8];
	int ret=0;
D
Updated version of gost engine.  
Dr. Stephen Henson 已提交
328 329 
	if (RAND_bytes(ukm,8)<=0)
		{
D
GOST public key algorithm ENGINE donated to the OpenSSL by Cryptocom.  
Dr. Stephen Henson 已提交
330 331 332 
		GOSTerr(GOST_F_PKEY_GOST01CP_ENCRYPT,
			GOST_R_RANDOM_GENERATOR_FAILURE);
		return 0;
D
Updated version of gost engine.  
Dr. Stephen Henson 已提交
333 
		}
D
GOST public key algorithm ENGINE donated to the OpenSSL by Cryptocom.  
Dr. Stephen Henson 已提交
334
D
Updated version of gost engine.  
Dr. Stephen Henson 已提交
335 336 
	if (!(gkt=make_rfc4490_keytransport_2001(pubk,gost_get_priv_key(data->eph_seckey),key, key_len,ukm,8)))
		{
D
GOST public key algorithm ENGINE donated to the OpenSSL by Cryptocom.  
Dr. Stephen Henson 已提交
337 
		goto err;
D
Updated version of gost engine.  
Dr. Stephen Henson 已提交
338 
		}
D
GOST public key algorithm ENGINE donated to the OpenSSL by Cryptocom.  
Dr. Stephen Henson 已提交
339 340 341 
	if ((*out_len = i2d_GOST_KEY_TRANSPORT(gkt,&out))>0) ret =1;
	GOST_KEY_TRANSPORT_free(gkt);
	return ret;
D
Updated version of gost engine.  
Dr. Stephen Henson 已提交
342 343 344 345 
	err:		
	GOST_KEY_TRANSPORT_free(gkt);
	return -1;
	}
D
GOST public key algorithm ENGINE donated to the OpenSSL by Cryptocom.  
Dr. Stephen Henson 已提交
346 347 
/* Public, because it would be needed in SSL implementation */
int decrypt_rfc4490_shared_key_2001(EVP_PKEY *priv,GOST_KEY_TRANSPORT *gkt,
D
Updated version of gost engine.  
Dr. Stephen Henson 已提交
348 349 
	unsigned char *key_buf,int key_buf_len) 
	{
D
GOST public key algorithm ENGINE donated to the OpenSSL by Cryptocom.  
Dr. Stephen Henson 已提交
350 351 352 353 354 355 356 357 358 359 360 361 362 363 364 365 
	unsigned char wrappedKey[44];
	unsigned char sharedKey[32];
	gost_ctx ctx;
	const struct gost_cipher_info *param=NULL;
	EVP_PKEY *eph_key=NULL;
	
	eph_key = X509_PUBKEY_get(gkt->key_agreement_info->ephem_key);
	param = get_encryption_params(gkt->key_agreement_info->cipher);
	gost_init(&ctx,param->sblock);	
	OPENSSL_assert(gkt->key_agreement_info->eph_iv->length==8);
	memcpy(wrappedKey,gkt->key_agreement_info->eph_iv->data,8);
	OPENSSL_assert(gkt->key_info->encrypted_key->length==32);
	memcpy(wrappedKey+8,gkt->key_info->encrypted_key->data,32);
	OPENSSL_assert(gkt->key_info->imit->length==4);
	memcpy(wrappedKey+40,gkt->key_info->imit->data,4);	
	VKO_compute_key(sharedKey,32,EC_KEY_get0_public_key(EVP_PKEY_get0(eph_key)),
D
Updated version of gost engine.  
Dr. Stephen Henson 已提交
366 367 368 
		EVP_PKEY_get0(priv),wrappedKey);
	if (!keyUnwrapCryptoPro(&ctx,sharedKey,wrappedKey,key_buf))
		{
D
GOST public key algorithm ENGINE donated to the OpenSSL by Cryptocom.  
Dr. Stephen Henson 已提交
369 
		GOSTerr(GOST_F_PKCS7_GOST94CP_KEY_TRANSPORT_DECRYPT,
D
Updated version of gost engine.  
Dr. Stephen Henson 已提交
370 
			GOST_R_ERROR_COMPUTING_SHARED_KEY);
D
GOST public key algorithm ENGINE donated to the OpenSSL by Cryptocom.  
Dr. Stephen Henson 已提交
371 
		goto err;
D
Updated version of gost engine.  
Dr. Stephen Henson 已提交
372 
		}
D
GOST public key algorithm ENGINE donated to the OpenSSL by Cryptocom.  
Dr. Stephen Henson 已提交
373 374 375 
				
	EVP_PKEY_free(eph_key);
	return 32;
D
Updated version of gost engine.  
Dr. Stephen Henson 已提交
376 
	err:
D
GOST public key algorithm ENGINE donated to the OpenSSL by Cryptocom.  
Dr. Stephen Henson 已提交
377 378 
	EVP_PKEY_free(eph_key);
	return -1;
D
Updated version of gost engine.  
Dr. Stephen Henson 已提交
379 
	}
D
GOST public key algorithm ENGINE donated to the OpenSSL by Cryptocom.  
Dr. Stephen Henson 已提交
380 381 382 383 
/*  
 * EVP_PKEY_METHOD callback decrypt  
 * Implementation of GOST2001 key transport, cryptopo variation 
 */
D
Updated version of gost engine.  
Dr. Stephen Henson 已提交
384 385 
int pkey_GOST01cp_decrypt (EVP_PKEY_CTX *pctx, unsigned char *key, size_t * key_len, const unsigned char *in, size_t in_len)
	{
D
GOST public key algorithm ENGINE donated to the OpenSSL by Cryptocom.  
Dr. Stephen Henson 已提交
386 387 388 389 390 
	const unsigned char *p = in;
	EVP_PKEY *priv = EVP_PKEY_CTX_get0_pkey(pctx);
	GOST_KEY_TRANSPORT *gkt = NULL;
	int ret=0;
D
Updated version of gost engine.  
Dr. Stephen Henson 已提交
391 392 
	if (!key)
		{
D
GOST public key algorithm ENGINE donated to the OpenSSL by Cryptocom.  
Dr. Stephen Henson 已提交
393 394 
		*key_len = 32;
		return 1;
D
Updated version of gost engine.  
Dr. Stephen Henson 已提交
395 
		}
D
GOST public key algorithm ENGINE donated to the OpenSSL by Cryptocom.  
Dr. Stephen Henson 已提交
396 
	gkt = d2i_GOST_KEY_TRANSPORT(NULL,(const unsigned char **)&p,
D
Updated version of gost engine.  
Dr. Stephen Henson 已提交
397 398 399 
		in_len);
	if (!gkt)
		{
D
GOST public key algorithm ENGINE donated to the OpenSSL by Cryptocom.  
Dr. Stephen Henson 已提交
400 401 
		GOSTerr(GOST_F_PKCS7_GOST94CP_KEY_TRANSPORT_DECRYPT,GOST_R_ERROR_PARSING_KEY_TRANSPORT_INFO);
		return -1;
D
Updated version of gost engine.  
Dr. Stephen Henson 已提交
402 
		}
D
GOST public key algorithm ENGINE donated to the OpenSSL by Cryptocom.  
Dr. Stephen Henson 已提交
403 404 405 
	ret = 	decrypt_rfc4490_shared_key_2001(priv,gkt,key,*key_len);
	GOST_KEY_TRANSPORT_free(gkt);
	return ret;
D
Updated version of gost engine.  
Dr. Stephen Henson 已提交
406 
	}